Upgrade: [dependabot] - bump pino from 9.11.0 to 10.2.0 by dependabot[bot] · Pull Request #671 · NHSDigital/eps-load-test

dependabot · 2026-01-16T18:10:10Z

Bumps pino from 9.11.0 to 10.2.0.

Release notes

v10.2.0

What's Changed

chore: lint TypeScript files by @mrazauskas in pinojs/pino#2363

fix: prevent memory leak when using transport with --import preload by @mcollina in pinojs/pino#2374

New Contributors

@mrazauskas made their first contribution in pinojs/pino#2363

Full Changelog: pinojs/pino@v10.1.1...v10.2.0

v10.1.1

What's Changed

fix(types): Correct conditional type handling for generic log function arguments by @samchungy in pinojs/pino#2329

perf: use JSON.stringify in fast path for node v25+ by @ronag in pinojs/pino#2330

build(deps): bump actions/setup-node from 4 to 6 by @dependabot[bot] in pinojs/pino#2336

build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @dependabot[bot] in pinojs/pino#2337

build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @dependabot[bot] in pinojs/pino#2338

docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by @NoobFullStack in pinojs/pino#2334

feat(browser): add reportCaller to surface user callsite by @dev-KingMaster in pinojs/pino#2340

docs: update transports.md by @marklai1998 in pinojs/pino#2224

docs: add Node.js 22+ native TypeScript type stripping support by @mcollina in pinojs/pino#2347

feat(types): use ThreadStream type from thread-stream by @CHC383 in pinojs/pino#2320

build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by @dependabot[bot] in pinojs/pino#2354

build(deps): update thread-stream to v4 by @mcollina in pinojs/pino#2356

fix: harden transport loading against prototype pollution by @omdxp in pinojs/pino#2358

docs: add threat model to SECURITY.md by @mcollina in pinojs/pino#2360

build(deps): bump actions/checkout from 6.0.0 to 6.0.1 by @dependabot[bot] in pinojs/pino#2365

build(deps-dev): bump @types/node from 24.10.4 to 25.0.3 by @dependabot[bot] in pinojs/pino#2367

fix: allow passing string, number, null for %o placeholder by @rChaoz in pinojs/pino#2372

New Contributors

@NoobFullStack made their first contribution in pinojs/pino#2334

@dev-KingMaster made their first contribution in pinojs/pino#2340

@marklai1998 made their first contribution in pinojs/pino#2224

@CHC383 made their first contribution in pinojs/pino#2320

@omdxp made their first contribution in pinojs/pino#2358

@rChaoz made their first contribution in pinojs/pino#2372

Full Changelog: pinojs/pino@v10.1.0...v10.1.1

v10.1.0

What's Changed

test: add regression test for issue #2313 by @mcollina in pinojs/pino#2314

fix!: use safer types for censor function signature (#2307) by @slifty in pinojs/pino#2308

remove unused parsedChindingsSym symbol by @mcollina in pinojs/pino#2315

chore: add .npmignore to exclude unnecessary files by @mcollina in pinojs/pino#2312

chore(lint): migrate from standard to neostandard & upgrade eslint to v9 by @lokeshwar777 in pinojs/pino#2316

build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 by @dependabot[bot] in pinojs/pino#2305

Use @pinojs/redact by @mcollina in pinojs/pino#2321

fix: added missing isoTimeNano to nested namespace by @edge33 in pinojs/pino#2325

... (truncated)

Commits

1833a6d Bumped v10.2.0
47619e6 Add claude files to .gitignore
658effe fix: prevent memory leak when using transport with --import preload (#2374)
79a6087 chore: lint the .ts files (#2363)
3390470 Bumped v10.1.1
791adbe fix: allow passing string, number, null for %o placeholder (#2372)
851a43f build(deps-dev): bump @types/node from 24.10.4 to 25.0.3 (#2367)
0c78849 build(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#2365)
8a816c0 docs: add threat model to SECURITY.md (#2360)
5ec12e7 fix: harden transport loading against prototype pollution (#2358)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

eps-autoapprove-dependabot · 2026-01-16T18:10:21Z