Bump mongoose from 4.13.14 to 5.4.19

[dependabot-preview]

Bumps mongoose from 4.13.14 to 5.4.19.

Changelog

Sourced from mongoose's changelog.

5.4.19 / 2019-03-11

• fix(mongoose): ensure virtuals set on subdocs in global plugins get applied #7592
• docs(tutorials): add "Working With Dates" tutorial #7597
• docs(guide): clarify that versioning only affects array fields #7555
• docs(model): list out all bulkWrite() options #7550

5.4.18 / 2019-03-08

• fix(document): handle nested virtuals in populated docs when parent path is projected out #7491
• fix(model): make subclassed models handle discriminators correctly #7547
• fix(model): remove $versionError from save options for better debug output #7570

5.4.17 / 2019-03-03

• fix(update): handle all positional operator when casting array filters #7540
• fix(populate): handle populating nested path where top-level path is a primitive in the db #7545
• fix(update): run update validators on array filters #7536
• fix(document): clean modified subpaths when sorting an array #7556
• fix(model): cast $setOnInsert correctly with nested docs #7534
• docs: remove extra curly brace from example #7569 kolya182

5.4.16 / 2019-02-26

• fix(schema): handle nested objects with _id: false #7524
• fix(schema): don't throw error if declaring a virtual that starts with a map path name #7464
• fix(browser): add stubbed model() function so code that uses model doesn't throw #7541 caub
• fix(schema): merge virtuals correctly #7563 yoursdearboy
• docs(connections): add reconnectFailed to connection docs #7477
• docs(index): fix typo #7553 DenrizSusam
• refactor(schema): iterate over paths instead of depending on childSchemas #7554

5.4.15 / 2019-02-22

• fix(update): don't call schematype validators on array if using $pull with runValidators #6971
• fix(schema): clone all schema types when cloning an array #7537
• docs(connections): improve connectTimeoutMS docs and socketTimeoutMS docs to link to Node.js net.setTimeout() #5169
• docs: fix setters example in migration guide #7546 freewil

5.4.14 / 2019-02-19

• fix(populate): make getters option handle nested paths #7521
• fix(documentarray): report validation errors that occur in an array subdoc created using create() and then set() #7504
• docs(schema): add examples for schema functions that didn't have any #7525
• docs: add MongooseError to API docs and add list of error names
• docs(CONTRIBUTING): fix link #7530 sarpik

5.4.13 / 2019-02-15

• fix(query): throw handy error when using updateOne() with overwrite: true and no dollar keys #7475

... (truncated)

Commits

• 5e47d8b chore: release 5.4.19
• 6b40cbd docs(guides): add link to dates docs
• 702682d docs(model): add bulkWrite() options
• 8b483c6 test: fix date tutorial tests
• 14e8cd5 test: fix tests
• 7bdfe8c test: fix tests
• f2fc0ff Merge pull request #7528 from chrischen/master
• 0761fcc docs(tutorials): add date tutorial
• 26313ad docs(guide): clarify that versioning only affects array fields
• d870a31 fix(mongoose): ensure virtuals set on subdocs in global plugins get applied
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[codecov]

Codecov Report

Merging #215 into develop will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff            @@
##           develop     #215   +/-   ##
========================================
  Coverage    66.66%   66.66%           
========================================
  Files          146      146           
  Lines         1926     1926           
========================================
  Hits          1284     1284           
  Misses         642      642

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 8f0edaf...c33f485. Read the comment docs.

[dependabot-preview]

Superseded by #219.