Bump parse-server from 3.10.0 to 4.3.0

[dependabot]

Bumps parse-server from 3.10.0 to 4.3.0.

Release notes

Sourced from parse-server's releases.

4.3.0

Full Changelog

• PERFORMANCE: Optimizing pointer CLP query decoration done by DatabaseController#addPointerPermissions #6747. Thanks to mess-lelouch.
• SECURITY: Fix security breach on GraphQL viewer. Thanks to Antoine Cormouls.
• FIX: Save context not present if direct access enabled #6764. Thanks to Omair Vaiyani.
• NEW: Before Connect + Before Subscribe #6793. Thanks to dblythy.
• FIX: Add version to playground to fix CDN #6804. Thanks to Antoine Cormouls.
• NEW (EXPERIMENTAL): Idempotency enforcement for client requests. This deduplicates requests where the client intends to send one request to Parse Server but due to network issues the server receives the request multiple times. Caution, this is an experimental feature that may not be appropriate for production. #6748. Thanks to Manuel Trezza.
• FIX: Add production Google Auth Adapter instead of using the development url #6734. Thanks to SebC..
• IMPROVE: Run Prettier JS Again Without requiring () on arrow functions #6796. Thanks to Diamond Lewis.
• IMPROVE: Run Prettier JS #6795. Thanks to Diamond Lewis.
• IMPROVE: Replace bcrypt with @node-rs/bcrypt #6794. Thanks to LongYinan.
• IMPROVE: Make clear description of anonymous user #6655. Thanks to Jerome De Leon.
• IMPROVE: Simplify GraphQL merge system to avoid js ref bugs #6791. Thanks to Antoine Cormouls.
• NEW: Pass context in beforeDelete, afterDelete, beforeFind and Parse.Cloud.run #6666. Thanks to yog27ray.
• NEW: Allow passing custom gql schema function to ParseServer#start options #6762. Thanks to Luca.
• NEW: Allow custom cors origin header #6772. Thanks to Kevin Yao.
• FIX: Fix context for cascade-saving and saving existing object #6735. Thanks to Manuel.
• NEW: Add file bucket encryption using fileKey #6765. Thanks to Corey Baker.
• FIX: Removed gaze from dev dependencies and removed not working dev script #6745. Thanks to Vincent Semrau.
• IMPROVE: Upgrade graphql-tools to v6 #6701. Thanks to Yaacov Rydzinski.
• NEW: Support Metadata in GridFSAdapter #6660. Thanks to Diamond Lewis.
• NEW: Allow to unset file from graphql #6651. Thanks to Antoine Cormouls.
• NEW: Handle shutdown for RedisCacheAdapter #6658. Thanks to promisenxu.
• FIX: Fix explain on user class #6650. Thanks to Manuel.
• FIX: Fix read preference for aggregate #6585. Thanks to Manuel.
• NEW: Add context to Parse.Object.save #6626. Thanks to Manuel.
• NEW: Adding ssl config params to Postgres URI #6580. Thanks to Corey Baker.
• FIX: Travis postgres update: removing unnecessary start of mongo-runner #6594. Thanks to Corey Baker.
• FIX: ObjectId size for Pointer in Postgres #6619. Thanks to Corey Baker.
• IMPROVE: Improve a test case #6629. Thanks to Gordon Sun.
• NEW: Allow to resolve automatically Parse Type fields from Custom Schema #6562. Thanks to Antoine Cormouls.
• FIX: Remove wrong console log in test #6627. Thanks to Gordon Sun.
• IMPROVE: Graphql tools v5 #6611. Thanks to Yaacov Rydzinski.
• FIX: Catch JSON.parse and return 403 properly #6589. Thanks to Gordon Sun.
• PERFORMANCE: Allow covering relation queries with minimal index #6581. Thanks to Noah Silas.
• FIX: Fix Postgres group aggregation #6522. Thanks to Siddharth Ramesh.
• NEW: Allow set user mapped from JWT directly on request #6411. Thanks to Gordon Sun.

4.2.0

Full Changelog

• UPGRADE: Parse JS SDK to 2.12.0 #6548
• NEW: Support Group aggregation on multiple columns for Postgres #6483. Thanks to Siddharth Ramesh.
• FIX: Improve test reliability by instructing Travis to only install one version of Postgres #6490. Thanks to Corey Baker.
• FIX: Unknown type bug on overloaded types #6494. Thanks to Antoine Cormouls.
• FIX: Improve reliability of 'SignIn with AppleID' #6416. Thanks to Andy King.
• FIX: Improve Travis reliability by separating Postgres & Mongo scripts #6505. Thanks to Corey Baker.
• NEW: Apple SignIn support for multiple IDs #6523. Thanks to UnderratedDev.

Changelog

Sourced from parse-server's changelog.

4.3.0

Full Changelog

• PERFORMANCE: Optimizing pointer CLP query decoration done by DatabaseController#addPointerPermissions #6747. Thanks to mess-lelouch.
• SECURITY: Fix security breach on GraphQL viewer. Thanks to Antoine Cormouls.
• FIX: Save context not present if direct access enabled #6764. Thanks to Omair Vaiyani.
• NEW: Before Connect + Before Subscribe #6793. Thanks to dblythy.
• FIX: Add version to playground to fix CDN #6804. Thanks to Antoine Cormouls.
• NEW (EXPERIMENTAL): Idempotency enforcement for client requests. This deduplicates requests where the client intends to send one request to Parse Server but due to network issues the server receives the request multiple times. Caution, this is an experimental feature that may not be appropriate for production. #6748. Thanks to Manuel Trezza.
• FIX: Add production Google Auth Adapter instead of using the development url #6734. Thanks to SebC..
• IMPROVE: Run Prettier JS Again Without requiring () on arrow functions #6796. Thanks to Diamond Lewis.
• IMPROVE: Run Prettier JS #6795. Thanks to Diamond Lewis.
• IMPROVE: Replace bcrypt with @node-rs/bcrypt #6794. Thanks to LongYinan.
• IMPROVE: Make clear description of anonymous user #6655. Thanks to Jerome De Leon.
• IMPROVE: Simplify GraphQL merge system to avoid js ref bugs #6791. Thanks to Antoine Cormouls.
• NEW: Pass context in beforeDelete, afterDelete, beforeFind and Parse.Cloud.run #6666. Thanks to yog27ray.
• NEW: Allow passing custom gql schema function to ParseServer#start options #6762. Thanks to Luca.
• NEW: Allow custom cors origin header #6772. Thanks to Kevin Yao.
• FIX: Fix context for cascade-saving and saving existing object #6735. Thanks to Manuel.
• NEW: Add file bucket encryption using fileKey #6765. Thanks to Corey Baker.
• FIX: Removed gaze from dev dependencies and removed not working dev script #6745. Thanks to Vincent Semrau.
• IMPROVE: Upgrade graphql-tools to v6 #6701. Thanks to Yaacov Rydzinski.
• NEW: Support Metadata in GridFSAdapter #6660. Thanks to Diamond Lewis.
• NEW: Allow to unset file from graphql #6651. Thanks to Antoine Cormouls.
• NEW: Handle shutdown for RedisCacheAdapter #6658. Thanks to promisenxu.
• FIX: Fix explain on user class #6650. Thanks to Manuel.
• FIX: Fix read preference for aggregate #6585. Thanks to Manuel.
• NEW: Add context to Parse.Object.save #6626. Thanks to Manuel.
• NEW: Adding ssl config params to Postgres URI #6580. Thanks to Corey Baker.
• FIX: Travis postgres update: removing unnecessary start of mongo-runner #6594. Thanks to Corey Baker.
• FIX: ObjectId size for Pointer in Postgres #6619. Thanks to Corey Baker.
• IMPROVE: Improve a test case #6629. Thanks to Gordon Sun.
• NEW: Allow to resolve automatically Parse Type fields from Custom Schema #6562. Thanks to Antoine Cormouls.
• FIX: Remove wrong console log in test #6627. Thanks to Gordon Sun.
• IMPROVE: Graphql tools v5 #6611. Thanks to Yaacov Rydzinski.
• FIX: Catch JSON.parse and return 403 properly #6589. Thanks to Gordon Sun.
• PERFORMANCE: Allow covering relation queries with minimal index #6581. Thanks to Noah Silas.
• FIX: Fix Postgres group aggregation #6522. Thanks to Siddharth Ramesh.
• NEW: Allow set user mapped from JWT directly on request #6411. Thanks to Gordon Sun.

4.2.0

Full Changelog

• UPGRADE: Parse JS SDK to 2.12.0 #6548
• NEW: Support Group aggregation on multiple columns for Postgres #6483. Thanks to Siddharth Ramesh.
• FIX: Improve test reliability by instructing Travis to only install one version of Postgres #6490. Thanks to Corey Baker.
• FIX: Unknown type bug on overloaded types #6494. Thanks to Antoine Cormouls.
• FIX: Improve reliability of 'SignIn with AppleID' #6416. Thanks to Andy King.
• FIX: Improve Travis reliability by separating Postgres & Mongo scripts #6505. Thanks to Corey Baker.
• NEW: Apple SignIn support for multiple IDs #6523. Thanks to UnderratedDev.

Commits

• 6f060e0 Release 4.3.0 (#6811)
• d698333 Optimizing pointer CLP query decoration done by DatabaseController#addPointer...
• 78239ac Merge pull request from GHSA-236h-rqv8-8q73
• f6ed506 Remove wontfix label from stalebot (#6810)
• ea1ec9b Update bug report template (#6805)
• 5e67e7d fix: upgrade @graphql-tools/stitch from 6.0.10 to 6.0.11 (#6808)
• 85ec22c fix(direct-access): save context not present if direct access enabled (#6764)
• 2e708cc fix: upgrade @graphql-tools/utils from 6.0.10 to 6.0.11 (#6809)
• 4f7fd17 chore(deps): bump lodash from 4.17.16 to 4.17.19 (#6807)
• 44015c3 Before Connect + Before Subscribe help required (#6793)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by davimacedo, a new releaser for parse-server since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.