Bump mongoose from 4.7.9 to 5.8.11

[dependabot]

Bumps mongoose from 4.7.9 to 5.8.11.

Changelog

Sourced from mongoose's changelog.

5.8.11 / 2020-01-31

• fix(document): allow calling validate() multiple times in parallel on subdocs to avoid errors if Mongoose double-validates taxilian #8548 #8539
• fix(connection): allow calling initial mongoose.connect() after connection helpers on the same tick #8534
• fix(connection): throw helpful error when callback param to mongoose.connect() or mongoose.createConnection() is not a function #8556
• fix(drivers): avoid unnecessary caught error when importing #8528
• fix(discriminator): remove unnecessary utils.merge() samgladstone #8542
• docs: add "built with mongoose" page #8540

5.8.10 / 2020-01-27

• perf(document): improve performance of document creation by skipping unnecessary split() calls #8533 igrunert-atlassian
• fix(document): only call validate once for deeply nested subdocuments #8532 #8531 taxilian
• fix(document): create document array defaults in forward order, not reverse #8514
• fix(document): allow function as message for date min/max validator #8512
• fix(populate): don't try to populate embedded discriminator that has populated path but no refPath #8527
• fix(document): plugins from base schema when creating a discriminator #8536 samgladstone
• fix(document): ensure parent and ownerDocument are set for subdocs in document array defaults #8509
• fix(document): dont set undefined keys to null if minimize is false #8504
• fix(update): bump timestamps when using update aggregation pipelines #8524
• fix(model): ensure cleanIndexes() drops indexes with different collations #8521
• docs(model): document insertMany lean option #8522
• docs(connections): document authSource option #8517

5.8.9 / 2020-01-17

• fix(populate): skip populating embedded discriminator array values that don't have a refPath #8499
• docs(queries): clarify when to use queries versus aggregations #8494

5.8.8 / 2020-01-14

• fix(model): allow using lean with insertMany() #8507 #8234 ntsekouras
• fix(document): don't throw parallel validate error when validating subdoc underneath modified nested path #8486
• fix: allow typePojoToMixed as top-level option #8501 #8500 AbdelrahmanHafez
• docs(populate+schematypes): make note of _id getter for ObjectIds in populate docs #8483

5.8.7 / 2020-01-10

• fix(documentarray): modify ownerDocument when setting doc array to a doc array thats part of another document #8479
• fix(document): ensure that you can call splice() after slice() on an array #8482
• docs(populate): improve cross-db populate docs to include model refs #8497

5.8.6 / 2020-01-07

• chore: merge changes from 4.13.20 and override mistaken publish to latest tag

4.13.20 / 2020-01-07

• fix(schema): make aliases handle mongoose-lean-virtuals #6069

... (truncated)

Commits

• ba79cca chore: release 5.8.11
• 4b72a6f docs: add "built with mongoose" page
• 2379a42 fix(connection): throw helpful error when callback param to `mongoose.connect...
• 047fc94 fix(document): allow calling validate() multiple times in parallel on subdo...
• bbb234d Merge pull request #8548 from taxilian/feature/single_validate_subpaths_and_i...
• 3f1f1de fix: remove discriminator schema _id before merging if base schema has cust...
• c91c1a4 Merge pull request #8543 from samgladstone/discriminator-issue
• 867cb5f fix(connection): allow calling initial mongoose.connect() after connection ...
• 2389ea4 lint
• 834200d Fix minor issues and add test cases for #8543
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.