[Snyk] Upgrade mongoose from 3.8.10 to 3.9.7

[snyk-bot]

Snyk has created this PR to upgrade mongoose from 3.8.10 to 3.9.7.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 37 versions ahead of your current version.
• The recommended version was released 8 years ago, on 2014-12-19.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Remote Memory Exposure npm:mongoose:20160116	641/1000 Why? Mature exploit, Has a fix available, CVSS 5.1	Mature

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: mongoose

• 3.9.7 - 2014-12-19
• 3.9.6 - 2014-12-05
• 3.9.5 - 2014-11-10
• 3.9.4 - 2014-10-25
• 3.9.3 - 2014-10-01
• 3.9.2 - 2014-09-08
• 3.9.1 - 2014-08-17
• 3.9.0 - 2014-05-22
• 3.8.40 - 2016-04-24
• 3.8.39 - 2016-01-15
• 3.8.38 - 2016-01-07
• 3.8.37 - 2015-11-16
• 3.8.36 - 2015-10-18
• 3.8.35 - 2015-08-14
• 3.8.34 - 2015-07-20
• 3.8.33 - 2015-07-10
• 3.8.31 - 2015-06-20
• 3.8.30 - 2015-06-05
• 3.8.29 - 2015-05-27
• 3.8.28 - 2015-05-12
• 3.8.27 - 2015-04-22
• 3.8.26 - 2015-04-07
• 3.8.25 - 2015-03-13
• 3.8.24 - 2015-02-25
• 3.8.23 - 2015-02-06
• 3.8.22 - 2015-01-24
• 3.8.21 - 2014-12-18
• 3.8.20 - 2014-12-01
• 3.8.19 - 2014-11-09
• 3.8.18 - 2014-10-22
• 3.8.17 - 2014-09-29
• 3.8.16 - 2014-09-08
• 3.8.15 - 2014-08-17
• 3.8.14 - 2014-07-26
• 3.8.13 - 2014-07-14
• 3.8.12 - 2014-05-30
• 3.8.11 - 2014-05-22
• 3.8.10 - 2014-05-20

from mongoose GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs