changesets for branch lts

packages/apollo-federation-subgraph-compatibility/package.json

@@ -10,7 +10,7 @@
     "dependencies": {
         "@apollo/server": "^4.7.0",
         "@graphql-tools/wrap": "^10.0.0",
-        "@neo4j/graphql": "^5.11.5",
+        "@neo4j/graphql": "^5.12.0",
         "graphql": "16.10.0",
         "graphql-tag": "^2.12.6",
         "neo4j-driver": "^5.8.0"

packages/graphql/CHANGELOG.md

@@ -1,5 +1,79 @@
 # @neo4j/graphql
 
+## 5.12.0
+
+### Minor Changes
+
+-   [#6033](https://github.com/neo4j/graphql/pull/6033) [`48704e2`](https://github.com/neo4j/graphql/commit/48704e2595928ca78689261bbc1b5dd1b31d22ab) Thanks [@darrellwarde](https://github.com/darrellwarde)! - Add a new field directive `@sortable` which can be used to configure whether results can be sorted by field values or not.
+
+### Patch Changes
+
+-   [#6043](https://github.com/neo4j/graphql/pull/6043) [`d090d0b`](https://github.com/neo4j/graphql/commit/d090d0b1d113cc0bd904a7bc3cfcaf8427f55bc1) Thanks [@angrykoala](https://github.com/angrykoala)! - Add `unsafeEscapeOptions` to `Neo4jGraphQL` features with the following flags:
+
+    -   `disableRelationshipTypeEscaping` (default to `false`)
+    -   `disableNodeLabelEscaping` (defaults to `false`)
+
+    These flags remove the automatic escaping of node labels and relationship types in the generated Cypher.
+
+    For example, given the following schema:
+
+    ```graphql
+    type Actor {
+        name: String!
+    }
+
+    type Movie {
+        title: String!
+        actors: [Actor!]! @relationship(type: "ACTED IN", direction: OUT)
+    }
+    ```
+
+    A GraphQL query going through the `actors` relationship:
+
+    ```graphql
+    query {
+        movies {
+            title
+            actors {
+                name
+            }
+        }
+    }
+    ```
+
+    Will normally generate the following Cypher for the relationship:
+
+    ```cypher
+    MATCH (this:Movie)-[this0:`ACTED IN`]->(this1:Actor)
+    ```
+
+    The label `ACTED IN` is escaped by placing it inside backticks (`\``), as some characters in it are susceptible of code injection.
+
+    If the option `disableRelationshipTypeEscaping` is set in `Neo4jGraphQL`, this safety mechanism will be disabled:
+
+    ```js
+    new Neo4jGraphQL({
+        typeDefs,
+        features: {
+            unsafeEscapeOptions: {
+                disableRelationshipTypeEscaping: true,
+            },
+        },
+    });
+    ```
+
+    Generating the following (incorrect) Cypher instead:
+
+    ```cypher
+    MATCH (this:Movie)-[this0:ACTED IN]->(this1:Actor)
+    ```
+
+    This can be useful in very custom scenarios where the Cypher needs to be tweaked or if the labels and types have already been escaped.
+
+    > Warning: This is a safety mechanism to avoid Cypher injection. Changing these options may lead to code injection and an unsafe server.
+
+-   [#6041](https://github.com/neo4j/graphql/pull/6041) [`c119004`](https://github.com/neo4j/graphql/commit/c1190045ee85ec3882cff5bf9067a87e710a0c0a) Thanks [@MacondoExpress](https://github.com/MacondoExpress)! - Fixed bug that causes connection fields for interfaces to not be able to be filtered using the typename filters.
+
 ## 5.11.5
 
 ### Patch Changes

packages/graphql/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@neo4j/graphql",
-    "version": "5.11.5",
+    "version": "5.12.0",
     "description": "A GraphQL to Cypher query execution layer for Neo4j and JavaScript GraphQL implementations",
     "keywords": [
         "neo4j",

packages/ogm/CHANGELOG.md

@@ -1,5 +1,12 @@
 # @neo4j/graphql-ogm
 
+## 5.12.0
+
+### Patch Changes
+
+-   Updated dependencies [[`d090d0b`](https://github.com/neo4j/graphql/commit/d090d0b1d113cc0bd904a7bc3cfcaf8427f55bc1), [`48704e2`](https://github.com/neo4j/graphql/commit/48704e2595928ca78689261bbc1b5dd1b31d22ab), [`c119004`](https://github.com/neo4j/graphql/commit/c1190045ee85ec3882cff5bf9067a87e710a0c0a)]:
+    -   @neo4j/graphql@5.12.0
+
 ## 5.11.5
 
 ### Patch Changes

packages/ogm/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@neo4j/graphql-ogm",
-    "version": "5.11.5",
+    "version": "5.12.0",
     "description": "GraphQL powered OGM for Neo4j and Javascript applications",
     "keywords": [
         "neo4j",
@@ -36,7 +36,7 @@
         "@graphql-codegen/plugin-helpers": "^5.0.0",
         "@graphql-codegen/typescript": "^4.0.0",
         "@graphql-tools/merge": "^9.0.0",
-        "@neo4j/graphql": "^5.11.5",
+        "@neo4j/graphql": "^5.12.0",
         "prettier": "^2.7.1"
     },
     "peerDependencies": {

yarn.lock

@@ -2884,7 +2884,7 @@ __metadata:
     "@graphql-codegen/plugin-helpers": "npm:^5.0.0"
     "@graphql-codegen/typescript": "npm:^4.0.0"
     "@graphql-tools/merge": "npm:^9.0.0"
-    "@neo4j/graphql": "npm:^5.11.5"
+    "@neo4j/graphql": "npm:^5.12.0"
     "@types/jest": "npm:29.5.14"
     "@types/node": "npm:20.17.16"
     camelcase: "npm:6.3.0"
@@ -2908,7 +2908,7 @@ __metadata:
   languageName: node
   linkType: soft
 
-"@neo4j/graphql@npm:^5.0.0, @neo4j/graphql@npm:^5.11.2, @neo4j/graphql@npm:^5.11.5, @neo4j/graphql@npm:^5.4.0, @neo4j/graphql@workspace:packages/graphql":
+"@neo4j/graphql@npm:^5.0.0, @neo4j/graphql@npm:^5.11.2, @neo4j/graphql@npm:^5.12.0, @neo4j/graphql@npm:^5.4.0, @neo4j/graphql@workspace:packages/graphql":
   version: 0.0.0-use.local
   resolution: "@neo4j/graphql@workspace:packages/graphql"
   dependencies:
@@ -5811,7 +5811,7 @@ __metadata:
     "@apollo/federation-subgraph-compatibility": "npm:2.2.0"
     "@apollo/server": "npm:^4.7.0"
     "@graphql-tools/wrap": "npm:^10.0.0"
-    "@neo4j/graphql": "npm:^5.11.5"
+    "@neo4j/graphql": "npm:^5.12.0"
     fork-ts-checker-webpack-plugin: "npm:9.0.2"
     graphql: "npm:16.10.0"
     graphql-tag: "npm:^2.12.6"