Skip to content

Bump @mikro-orm/core from 6.4.16 to 6.6.10 in /ai-service#5902

Closed
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/ai-service/mikro-orm/core-6.6.10
Closed

Bump @mikro-orm/core from 6.4.16 to 6.6.10 in /ai-service#5902
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/npm_and_yarn/ai-service/mikro-orm/core-6.6.10

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 29, 2026
edited
Loading

Bumps @mikro-orm/core from 6.4.16 to 6.6.10.

Release notes

Sourced from @​mikro-orm/core's releases.

v6.6.10

6.6.10 (2026-03-26)

Bug Fixes

  • core: handle JSON column type conversion in em.refresh() for detached entities (e41b500), closes #7383
  • core: prevent prototype pollution in Utils.merge (06ed5f6)
  • core: tighten query construction validation (ad3643e)
  • schema: escape single quotes in enum CHECK constraints (#7397) (db19731), closes #7396 #7395

v6.6.9

6.6.9 (2026-03-05)

Bug Fixes

  • core: fix findOne with entity refs for composite PKs with shared FK columns (6f95f72), closes #5629
  • core: make entity prototype toJSON non-enumerable to prevent data leaks (c895808)
  • core: prevent double JSON-encoding of nested embeddable arrays (309b278), closes #7233
  • migrations: normalize snapshots and write on both up/down (#7236) (a07aca6), closes #7234
  • migrations: skip snapshot write on migration:up to support read-only filesystems (c8584e8), closes #7232
  • mysql: fix table.bigincrements() producing int instead of bigint (5660607), closes #7246

v6.6.8

6.6.8 (2026-03-01)

Bug Fixes

  • core: allow using property accessor on to-one relations (06978c9), closes #7211
  • core: fix double processing of JSON properties when reloading an entity (514ed87)
  • core: preserve embeddable properties in toPOJO regardless of partial loading hints (c27dbae)
  • core: preserve function expression indexes through metadata cache round-trip (#7229) (9ae8d20), closes #7238
  • core: use full hydration in mergeData for initialized entities (5529308), closes #7205
  • knex: handle $not operator inside relation filters (#7227) (d0dac2f), closes #7226
  • migrations: delete snapshot file after migration:down (dfcc8c6), closes #7210
  • postgres: fix phantom diffs for check constraints (#7224) (103346c)

v6.6.7

6.6.7 (2026-02-15)

Bug Fixes

  • core: do not propagate cursor related options to populate queries (e6b9a6a), closes #7148
  • core: ignore empty conditions produced by filters (1ebbfb0)
  • guard prototype.toJSON against being called on prototype itself (#7152) (fa5290e), closes #7151
  • migrations: support emitting multiline queries (fcf360a), closes #7185
  • schema: do not ignore changes to entity level comments (b421c9d), closes #7187

... (truncated)

Changelog

Sourced from @​mikro-orm/core's changelog.

6.6.10 (2026-03-26)

Bug Fixes

  • core: handle JSON column type conversion in em.refresh() for detached entities (e41b500), closes #7383
  • core: prevent prototype pollution in Utils.merge (06ed5f6)
  • core: tighten query construction validation (ad3643e)
  • schema: escape single quotes in enum CHECK constraints (#7397) (db19731), closes #7396 #7395

6.6.9 (2026-03-05)

Bug Fixes

  • core: fix findOne with entity refs for composite PKs with shared FK columns (6f95f72), closes #5629
  • core: make entity prototype toJSON non-enumerable to prevent data leaks (c895808)
  • core: prevent double JSON-encoding of nested embeddable arrays (309b278), closes #7233
  • migrations: normalize snapshots and write on both up/down (#7236) (a07aca6), closes #7234
  • migrations: skip snapshot write on migration:up to support read-only filesystems (c8584e8), closes #7232
  • mysql: fix table.bigincrements() producing int instead of bigint (5660607), closes #7246

6.6.8 (2026-03-01)

Bug Fixes

  • core: allow using property accessor on to-one relations (06978c9), closes #7211
  • core: fix double processing of JSON properties when reloading an entity (514ed87)
  • core: preserve embeddable properties in toPOJO regardless of partial loading hints (c27dbae)
  • core: preserve function expression indexes through metadata cache round-trip (#7229) (9ae8d20), closes #7238
  • core: use full hydration in mergeData for initialized entities (5529308), closes #7205
  • knex: handle $not operator inside relation filters (#7227) (d0dac2f), closes #7226
  • migrations: delete snapshot file after migration:down (dfcc8c6), closes #7210
  • postgres: fix phantom diffs for check constraints (#7224) (103346c)

6.6.7 (2026-02-15)

... (truncated)

Commits
  • a55e6f2 chore(release): v6.6.10 [skip ci]
  • ad3643e fix(core): tighten query construction validation
  • 06ed5f6 fix(core): prevent prototype pollution in Utils.merge
  • db19731 fix(schema): escape single quotes in enum CHECK constraints (#7397)
  • e41b500 fix(core): handle JSON column type conversion in em.refresh() for detached ...
  • 823b3d5 ci: use next-v6 dist tag for canary releases on 6.x branch
  • 2e53006 chore(release): update internal dependencies [skip ci]
  • 85d6eb2 chore(release): v6.6.9 [skip ci]
  • 5de970b chore(deps): bump mysql2 to 3.19.0
  • 6f95f72 fix(core): fix findOne with entity refs for composite PKs with shared FK columns
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​mikro-orm/core since your current version.


Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 29, 2026
@dependabot dependabot Bot requested a review from a team as a code owner March 29, 2026 20:45
@dependabot dependabot Bot added the javascript Pull requests that update Javascript code label Mar 29, 2026
@dependabot dependabot Bot requested review from a team as code owners March 29, 2026 20:45
@dependabot dependabot Bot requested review from andrewb1269 and mb-swirlds March 29, 2026 20:45
@dependabot
Bump @mikro-orm/core from 6.4.16 to 6.6.10 in /ai-service
286a879 
Bumps [@mikro-orm/core](https://github.com/mikro-orm/mikro-orm) from 6.4.16 to 6.6.10.
- [Release notes](https://github.com/mikro-orm/mikro-orm/releases)
- [Changelog](https://github.com/mikro-orm/mikro-orm/blob/v6.6.10/CHANGELOG.md)
- [Commits](mikro-orm/mikro-orm@v6.4.16...v6.6.10)

---
updated-dependencies:
- dependency-name: "@mikro-orm/core"
  dependency-version: 6.6.10
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/ai-service/mikro-orm/core-6.6.10 branch from d804d9e to 286a879 Compare April 17, 2026 14:11
@Pyatakov Pyatakov changed the base branch from main to develop May 27, 2026 10:21
@Pyatakov Pyatakov mentioned this pull request May 27, 2026
Draft
@Pyatakov
Copy link
Copy Markdown
Contributor

Pyatakov commented May 27, 2026

Superseded by #6129

@Pyatakov Pyatakov closed this May 27, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 27, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/ai-service/mikro-orm/core-6.6.10 branch May 27, 2026 23:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andrewb1269 andrewb1269 Awaiting requested review from andrewb1269 andrewb1269 is a code owner automatically assigned from hashgraph/platform-ci

@mb-swirlds mb-swirlds Awaiting requested review from mb-swirlds mb-swirlds is a code owner automatically assigned from hashgraph/developer-advocates

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Pyatakov