fix: upgrade to mpath v0.8.4 re: security issue

vkarpov15 · vkarpov15 · commit 264554fc3221 · 2021-09-06T12:39:26.000-04:00
Note that the security issue in earlier versions of mpath does **not** affect Mongoose Fix #10683
diff --git a/lib/document.js b/lib/document.js
@@ -1368,8 +1368,6 @@ Document.prototype.$set = function $set(path, val, type, options) {
         this.unmarkModified(path);
       }
     }
-  } else {
-    console.log('No shouldSet', path);
   }
 
   if (schema.$isSingleNested && (this.isDirectModified(path) || val == null)) {
diff --git a/package.json b/package.json
@@ -25,7 +25,7 @@
     "kareem": "2.3.2",
     "mongodb": "3.6.11",
     "mongoose-legacy-pluralize": "1.0.2",
-    "mpath": "0.8.3",
+    "mpath": "0.8.4",
     "mquery": "3.2.5",
     "ms": "2.1.2",
     "optional-require": "1.0.x",

Original file line number	Diff line number	Diff line change
`@@ -1368,8 +1368,6 @@ Document.prototype.$set = function $set(path, val, type, options) {`
`1368`	`1368`	`this.unmarkModified(path);`
`1369`	`1369`	`}`
`1370`	`1370`	`}`
`1371`		`- } else {`
`1372`		`- console.log('No shouldSet', path);`
`1373`	`1371`	`}`
`1374`	`1372`
`1375`	`1373`	`if (schema.$isSingleNested && (this.isDirectModified(path) \|\| val == null)) {`