[Snyk] Upgrade typeorm from 0.3.20 to 0.3.22

[renatosugimoto]

Snyk has created this PR to upgrade typeorm from 0.3.20 to 0.3.22.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 80 versions ahead of your current version.

• The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Arbitrary Code Injection SNYK-JS-NESTJSCOMMON-9538801	561	Proof of Concept

Release notes

Package name: typeorm

• 0.3.22 - 2025-04-03
  

  What's Changed

  • fix: transaction not ending correctly by @ alumni in #11264
  • docs: add "How to use Vite for the backend" entry to faq by @ robkorv in #11306
  • chore: don't use version in docker-compose files by @ assapir in #11320
  • fix(sap): pass the configured schema to the db client by @ alumni in #11321
  • fix(sap): incorrect handling of simple array/json data type by @ alumni in #11322
  • fix: add VirtualColumn to model shim by @ FrancoisDeBellescize in #11331
  • fix: remove unnecessary import from JS migration by @ TkachenkoDmitry in #11327
  • test: rename tests to better describe the case by @ OSA413 in #11280
  • chore(test): set timezone to UTC by @ douglascayers in #11247
  • ci: add CodeQL workflow by @ naorpeled in #11337
  • fix: empty objects being hydrated when eager loading relations that have a @ VirtualColumn by @ alumni in #10927
  • test: fix and run tests on Windows by @ OSA413 in #11257
  • feat(postgres): support macaddr8 column type by @ chkjohn in #11345
  • build: run format in ci by @ mguida22 in #11342
  • style: lint repository by @ alumni in #11346
  • fix: ensure correct MSSQL parameter conversion in where conditions by @ sudhirt4 in #11298
  • chore: update dependencies by @ alumni in #11339
  • fix: FindOptionsSelect to use correct type when property is an object by @ MGB247 in #11355
  • refactor: database server version fetching & comparison by @ alumni in #11357
  • build: improve test workflow by @ alumni in #11361
  • build: setup SAP HANA tests by @ alumni in #11347
  • fix: export QueryEvent before/after types by @ nover in #10688
  • fix: mongodb connection options by @ mohd-akram in #11310
  • feat: Incorporate wrapping metadata for MongoDB client instances by @ alexbevi in #11214
  • fix: bulk insert NULL values in Oracle (#11362) by @ ertl in #11363
  • fix: remove unnecessary spaces in message when running non-fake migrations by @ zyoshoka in #10809
  • fix: sql escape issues identified by CodeQL by @ alumni in #11338
  • fix(sap): normalize deprecated/removed data types in SAP HANA Cloud by @ alumni in #11356
  • fix: version detection for Postgres derived variants by @ alumni in #11375
  • feat: Support Expo SQLite Next by @ pmk1c in #11107
  • docs: add comment explaining select version() by @ mguida22 in #11376
  • fix: incorrect table alias in insert orUpdate with Postgres driver by @ Ben1306 in #11082
  • chore: Add package publishing workflow by @ michaelbromley in #11377
  • chore: Bump version to v0.3.22 and generate changelog by @ michaelbromley in #11378

  New Contributors

  • @ robkorv made their first contribution in #11306
  • @ assapir made their first contribution in #11320
  • @ FrancoisDeBellescize made their first contribution in #11331
  • @ TkachenkoDmitry made their first contribution in #11327
  • @ douglascayers made their first contribution in #11247
  • @ chkjohn made their first contribution in #11345
  • @ sudhirt4 made their first contribution in #11298
  • @ MGB247 made their first contribution in #11355
  • @ alexbevi made their first contribution in #11214
  • @ zyoshoka made their first contribution in #10809
  • @ pmk1c made their first contribution in #11107
  • @ Ben1306 made their first contribution in #11082

  Full Changelog: 0.3.21...0.3.22

• 0.3.22-dev.fb06662 - 2025-03-29
• 0.3.22-dev.ecae9f5 - 2025-03-20
• 0.3.22-dev.deb0e81 - 2025-03-12
• 0.3.22-dev.de8eb04 - 2025-03-20
• 0.3.22-dev.c3bebdc - 2025-04-01
• 0.3.22-dev.bcaa0bf - 2025-04-01
• 0.3.22-dev.ba47b62 - 2025-03-12
• 0.3.22-dev.b0ea913 - 2025-03-19
• 0.3.22-dev.ae96f87 - 2025-03-14
• 0.3.22-dev.a29e047 - 2025-03-31
• 0.3.22-dev.8c2b2ae - 2025-03-20
• 0.3.22-dev.863caf1 - 2025-04-01
• 0.3.22-dev.8429e8f - 2025-03-13
• 0.3.22-dev.834e856 - 2025-03-25
• 0.3.22-dev.81bb9d5 - 2025-03-30
• 0.3.22-dev.7b242e1 - 2025-04-01
• 0.3.22-dev.72c6991 - 2025-04-02
• 0.3.22-dev.72beb26 - 2025-04-02
• 0.3.22-dev.72145b8 - 2025-03-10
• 0.3.22-dev.6ba4082 - 2025-03-26
• 0.3.22-dev.673b6ce - 2025-03-03
• 0.3.22-dev.5d6d893 - 2025-03-14
• 0.3.22-dev.5a276a4 - 2025-03-10
• 0.3.22-dev.513be33 - 2025-03-04
• 0.3.22-dev.4e31a86 - 2025-03-26
• 0.3.22-dev.460ef02 - 2025-04-01
• 0.3.22-dev.40cc688 - 2025-03-05
• 0.3.22-dev.3d79786 - 2025-04-01
• 0.3.22-dev.27b4207 - 2025-03-06
• 0.3.22-dev.206af0a - 2025-03-03
• 0.3.22-dev.04ca83a - 2025-03-06
• 0.3.22-dev.03dbc7a - 2025-03-30
• 0.3.22-dev.00d5639 - 2025-03-21
• 0.3.22-dev.5922519 - 2025-04-01
• 0.3.21 - 2025-03-03
  

  What's Changed

  • docs: update the custom-repository.md file in the docs/zh_CN directory by @ OrangeSheepCool in #10676
  • chore(TypeORM): Create test case to uncover TypeORM composite key save issue by @ jeisberg in #10672
  • Moved reflect-metadata to peerDependencies and set version to "^0.1.14 || ^0.2.0" by @ OSA413 in #10779
  • chore(docs): add announcement by @ dlhck in #11125
  • chore: Replace Slack links with Discord by @ michaelbromley in #11153
  • test: Add GitHub Actions for tests CI/CD by @ OSA413 in #11157
  • test: remove restriction of CI/CD runs for fork branches by @ OSA413 in #11173
  • Split SQLite tests and fix better-sqlite3 by @ OSA413 in #11174
  • style: apply formatting by @ OSA413 in #11175
  • chore: update some packages and run npm audit fix by @ OSA413 in #11181
  • docs(datasource): some sentence updated for datasource doc by @ albasyir in #11182
  • Remove CircleCI by @ stim371 in #11189
  • test: Expand node version matrix to node16, node18, and node20 by @ OSA413 in #11183
  • test: redo cockroachdb to service-container GHA and update its version to latest (24) by @ OSA413 in #11190
  • remove github issues as a suggested place for questions by @ mguida22 in #11194
  • Remove links to defunct Vesper project by @ stim371 in #11195
  • Lint on GitHub actions by @ stim371 in #11177
  • docs: Refine Markdown Language for Better Clarity and Grammar by @ albasyir in #11207
  • docs: update QueryResultCache method descriptions by @ mguida22 in #11192
  • chore: migrate to ESLint flat config by @ alumni in #11205
  • Update select-query-builder.md by @ madmaxdios in #11166
  • refactor: use node:fs/promises by @ alumni in #11206
  • chore(license): update copyright year to 2025 by @ maxktz in #11223
  • Update many-to-many-relations.md by @ standage-thanh in #10699
  • Typo - setOnLock -> setOnLocked by @ felipensp in #11120
  • docs: one-to-one relation explanation fix by @ pato1713 in #11151
  • Update README.md by @ jonathanberger in #11089
  • docs(multiple-data-sources.md): fix spacing by @ jhi721 in #11052
  • docs: update deprecated naming by @ puleugo in #11017
  • Docs: fix connection options description by @ os-moussao in #10935
  • docs: add Lock tables in Set Locking by @ youngkiu in #10921
  • docs: removed dead link about using typeorm with DI from faq.md by @ giom-l in #10886
  • docs: update find-options.md by @ NikolayKrishchuk in #10877
  • refactor: update EntityManager.ts by @ eltociear in #10875
  • docs: documentation for parameters in Repository, DataSource, EntityManager query methods by @ vlahovivan in #10848
  • docs: improve OneToOne description by @ pavlokolodka in #10798
  • Update eager-and-lazy-relations.md by @ kunalrgarg in #10791
  • docs: Include info about using soft delete in Repository API by @ sanjacob in #10722
  • Update mongodb.md by @ LucoEldritch in #10718
  • docs: fix imports in 'Or' find operator example by @ myypo in #10689
  • docs: clarify adjacency list by @ DevAhmedRadwan in #10664
  • chore(test): Add Coverage on Coveralls by @ OSA413 in #11225
  • perf: improve results transformer performance by @ mohd-akram in #10349
  • Rename SubjectTopoligicalSorter as SubjectTopologicalSorter by @ ocozalp in #11074
  • Fix maximum call stack error by @ mgorunuch in #10733
  • refactor: added --cache to prettier call by @ RohanTalip in