Bump mongoose from 4.13.14 to 5.2.3

[dependabot-preview]

Bumps mongoose from 4.13.14 to 5.2.3.

Changelog

Sourced from mongoose's changelog.

5.2.3 / 2018-07-11

• fix(populate): if a getter is defined on the localField, use it when populating #6702 #6618 lineus
• docs(schema): add example of nested aliases #6671
• fix(query): add session() function to queries to avoid positional argument mistakes #6663
• docs(transactions): use new session() helper to make positional args less confusing #6663
• fix(query+model+schema): add support for writeConcern option and writeConcern helpers #6620
• docs(guide): add writeConcern option and re-add description for safe option #6620
• docs(schema): fix broken API links #6619
• docs(connections): add information re: socketTimeoutMS and connectTimeoutMS #4789

5.2.2 / 2018-07-08

• fix(model+query): add missing estimatedDocumentCount() function #6697
• docs(faq): improve array-defaults section #6695 lineus
• docs(model): fix countDocuments() docs, bad copy/paste from count() docs #6694 #6643
• fix(connection): add startSession() helper to connection and mongoose global #6689
• fix: upgrade mongodb driver -> 3.1.1 for countDocuments() fix #6688 #6666
• docs(compatibility): add MongoDB 4 range #6685
• fix(populate): add ability to define refPath as a function #6683 lineus
• docs: add rudimentary transactions guide #6672
• fix(update): make setDefaultsOnInsert handle nested subdoc updates with deeply nested defaults #6665
• docs: use latest acquit-ignore to handle examples that start with acquit:ignore:start #6657
• fix(validation): format properties.message as well as message #6621

5.2.1 / 2018-07-03

• fix(connection): allow setting the mongodb driver's useNewUrlParser option, default to false #6656 #6648 #6647
• fix(model): only warn on custom _id index if index only has _id key #6650

5.2.0 / 2018-07-02

• feat(model): add countDocuments() #6643
• feat(model): make ensureIndexes() fail if specifying an index on _id #6605
• feat(mongoose): add objectIdGetter option to remove ObjectId.prototype._id #6588
• feat: upgrade mongodb -> 3.1.0 for full MongoDB 4.0 support #6579
• feat(query): support runValidators as a global option #6578
• perf(schema): use WeakMap instead of array for schema stack #6503
• feat(model): decorate unique discriminator indexes with partialFilterExpressions #6347
• feat(model): add syncIndexes(), drops indexes that aren't in schema #6281
• feat(document): add default getter/setter if virtual doesn't have one #6262
• feat(discriminator): support discriminators on nested doc arrays #6202
• feat(update): add Query.prototype.set() #5770

5.1.8 / 2018-07-02

• fix: don't throw TypeError if calling save() after original save() failed with push() #6638 evanhenke
• fix(query): add explain() helper and don't hydrate explain output #6625
• docs(query): fix setOptions() lists #6624
• docs: add geojson docs #6607

... (truncated)

Commits

• 81e248d chore: release 5.2.3
• 3398f31 docs(schema): add example of nested aliases
• 50e66a2 Merge pull request #6702 from lineus/fix-6618
• 05f0323 use applyGetters instead of calling just the first getter directly
• f21245a docs(transactions): use new session() helper to make positional args less con...
• 5aa62cb fix(query): add session() function to queries to avoid positional argument ...
• 290a28a docs(schema): fix broken API links
• 3ba8306 docs(guide): add writeConcern option and re-add description for safe option
• 4e16fa0 fix(query+model+schema): add support for writeConcern option and writeConce...
• bad4be8 docs(connections): add information re: socketTimeoutMS and connectTimeoutMS
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[dependabot-preview]

Superseded by #123.