Bump sequelize from 6.37.0 to 6.37.8

[dependabot]

Bumps sequelize from 6.37.0 to 6.37.8.

Release notes

Sourced from sequelize's releases.

v6.37.8

6.37.8 (2026-03-07)

Security improvements

• validate cast types in JSON where clauses (b147528) (CVE-2026-30951)

v6.37.7

6.37.7 (2025-03-28)

Bug Fixes

• oracle: fix changeColumn SQL for BLOB to avoid implicit conversion (#17719) (5b7c801)

v6.37.6

6.37.6 (2025-03-04)

Meta

• add call for new maintainers to README (#17701) (ef3bffb)

v6.37.5

6.37.5 (2024-10-25)

Bug Fixes

• cast numbers in DataTypes.STRING to strings (#17564) (fce5ad3)

v6.37.4

6.37.4 (2024-10-04)

Bug Fixes

• oracle: add support for Oracle Database 23ai (#17345) (b9e71a7)
• oracle: validate input with TO_TIMESTAMP_TZ and TO_DATE (#17516) (5deadd2)

v6.37.3

6.37.3 (2024-04-13)

... (truncated)

Commits

• cb7f99a fix: validate cast types in JSON where clauses
• b147528 Merge commit from fork
• 4b8b5b9 meta: Fix MSSQL CI (#17931)
• 5b7c801 fix(oracle): fix changeColumn SQL for BLOB to avoid implicit conversion (#17...
• 5623e2d ci: use ubuntu-22.04 for jobs that use Node 10 (#17724)
• ef3bffb fix: add call for new maintainers to README (#17701)
• fce5ad3 fix: cast numbers in DataTypes.STRING to strings (#17564)
• 78a9733 meta: ignore mssql failures for releasing v6 (#17524)
• 5deadd2 fix(oracle): validate input with TO_TIMESTAMP_TZ and TO_DATE (#17516)
• b9e71a7 fix(oracle): add support for Oracle Database 23ai (#17345)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wikirik, a new releaser for sequelize since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 45.55%. Comparing base (0977d77) to head (b3ec45b).

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #2108   +/-   ##
=======================================
  Coverage   45.55%   45.55%           
=======================================
  Files        1044     1044           
  Lines       17327    17327           
  Branches     3140     3140           
=======================================
  Hits         7894     7894           
  Misses       9433     9433           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.