Bump mongoose from 5.4.20 to 5.5.4

[dependabot-preview]

Bumps mongoose from 5.4.20 to 5.5.4.

Changelog

Sourced from mongoose's changelog.

5.5.4 / 2019-04-25

• fix(document): avoid calling custom getters when saving #7719
• fix(timestamps): handle child schema timestamps correctly when reusing child schemas #7712
• fix(query): pass correct callback for _legacyFindAndModify #7736 Fonger
• fix(model+query): allow setting replacement parameter for findOneAndReplace() #7654
• fix(map): make delete() unset the key in the database #7746 Fonger
• fix(array): use symbol for _schema property to avoid confusing deep equality checks #7700
• fix(document): prevent depopulate() from removing fields with empty array #7741 #7740 Fonger
• fix: make MongooseArray#includes support ObjectIds #7732 #6354 Fonger
• fix(document): report correct validation error index when pushing onto doc array #7744 Fonger

5.5.3 / 2019-04-22

• fix: add findAndModify deprecation warning that references the useFindAndModify option #7644
• fix(document): handle pushing a doc onto a discriminator that contains a doc array #7704
• fix(update): run setters on array elements when doing $set #7679
• fix: correct usage of arguments while buffering commands #7718 rzymek
• fix(document): avoid error clearing modified subpaths if doc not defined #7715 bitflower
• refactor(array): move _parent property behind a symbol #7726 #7700
• docs(model): list out all operations and options for bulkWrite() #7055
• docs(aggregate): use eachAsync() instead of nonexistent each() #7699
• docs(validation): add CastError validation example #7514
• docs(query+model): list out all options and callback details for Model.updateX() and Query#updateX() #7646

5.5.2 / 2019-04-16

• fix(document): support setting nested path to non-POJO object #7639
• perf(connection): remove leaked event handler in Model.init() so deleteModel() frees all memory #7682
• fix(timestamps): handle custom statics that conflict with built-in functions (like mongoose-delete plugin) #7698
• fix(populate): make Document#populated() work for populated subdocs #7685
• fix(document): support .set() on document array underneath embedded discriminator path #7656

5.5.1 / 2019-04-11

• fix(document): correctly overwrite all properties when setting a single nested subdoc #7660 #7681
• fix(array): allow customization of array required validator #7696 freewil
• fix(discriminator): handle embedded discriminators when casting array defaults #7687
• fix(collection): ensure collection functions return a promise even if disconnected #7676
• fix(schematype): avoid indexing properties with { unique: false, index: false } #7620
• fix(aggregate): make Aggregate#model() with no arguments return the aggregation's model #7608

5.5.0 / 2019-04-08

• feat(model): support applying hooks to custom static functions #5982
• feat(populate): support specifying a function as match #7397
• perf(buffer): avoid calling defineProperties() in Buffer constructor #7331
• feat(connection): add plugin() for connection-scoped plugins #7378
• feat(model): add Model#deleteOne() and corresponding hooks #7538
• feat(query): support hooks for Query#distinct() #5938

... (truncated)

Commits

• de66520 chore: release 5.5.4
• 67c3140 Merge pull request #7744 from Fonger/fix-7724
• 476607d Merge pull request #7746 from Fonger/fix-7743
• c377e65 fix(map): handle update for MongooseMap#delete
• b63128b test(map): repro #7743
• 6b4479c fix(documentarray): preserve the correct index for push()-ed subdoc
• 679a8f6 test(documentarray): repro #7724
• 90703ba fix(array): use symbol for _schema property to avoid confusing deep equalit...
• df96b50 Merge branch 'master' of github.com:Automattic/mongoose
• d8c2618 fix(document): avoid calling custom getters when saving
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.