Upgrade: [dependabot] - bump pino from 9.11.0 to 10.2.0
Open
Number: #671
Type: Pull Request
State: Open
Type: Pull Request
State: Open
Author:
![dependabot[bot]](https://github.com/dependabot.png)
dependabot[bot]
Association: Unknown
Comments: 7
dependabot[bot]Association: Unknown
Comments: 7
Created:
January 16, 2026 at 06:10 PM UTC
(5 months ago)
(5 months ago)
Updated:
January 16, 2026 at 08:01 PM UTC
(5 months ago)
(5 months ago)
Labels:
dependencies javascript requires-manual-qa
dependencies javascript requires-manual-qa
Description:
⚠️ Dependabot is rebasing this PR ⚠️
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
Bumps pino from 9.11.0 to 10.2.0.
Release notes
Sourced from pino's releases.
v10.2.0
What's Changed
- chore: lint TypeScript files by
@mrazauskasin pinojs/pino#2363- fix: prevent memory leak when using transport with --import preload by
@mcollinain pinojs/pino#2374New Contributors
@mrazauskasmade their first contribution in pinojs/pino#2363Full Changelog: https://github.com/pinojs/pino/compare/v10.1.1...v10.2.0
v10.1.1
What's Changed
- fix(types): Correct conditional type handling for generic log function arguments by
@samchungyin pinojs/pino#2329- perf: use JSON.stringify in fast path for node v25+ by
@ronagin pinojs/pino#2330- build(deps): bump actions/setup-node from 4 to 6 by
@dependabot[bot] in pinojs/pino#2336- build(deps-dev): bump borp from 0.20.2 to 0.21.0 by
@dependabot[bot] in pinojs/pino#2337- build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by
@dependabot[bot] in pinojs/pino#2338- docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by
@NoobFullStackin pinojs/pino#2334- feat(browser): add reportCaller to surface user callsite by
@dev-KingMasterin pinojs/pino#2340- docs: update transports.md by
@marklai1998in pinojs/pino#2224- docs: add Node.js 22+ native TypeScript type stripping support by
@mcollinain pinojs/pino#2347- feat(types): use ThreadStream type from thread-stream by
@CHC383in pinojs/pino#2320- build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by
@dependabot[bot] in pinojs/pino#2354- build(deps): update thread-stream to v4 by
@mcollinain pinojs/pino#2356- fix: harden transport loading against prototype pollution by
@omdxpin pinojs/pino#2358- docs: add threat model to SECURITY.md by
@mcollinain pinojs/pino#2360- build(deps): bump actions/checkout from 6.0.0 to 6.0.1 by
@dependabot[bot] in pinojs/pino#2365- build(deps-dev): bump
@types/nodefrom 24.10.4 to 25.0.3 by@dependabot[bot] in pinojs/pino#2367- fix: allow passing string, number, null for %o placeholder by
@rChaozin pinojs/pino#2372New Contributors
@NoobFullStackmade their first contribution in pinojs/pino#2334@dev-KingMastermade their first contribution in pinojs/pino#2340@marklai1998made their first contribution in pinojs/pino#2224@CHC383made their first contribution in pinojs/pino#2320@omdxpmade their first contribution in pinojs/pino#2358@rChaozmade their first contribution in pinojs/pino#2372Full Changelog: https://github.com/pinojs/pino/compare/v10.1.0...v10.1.1
v10.1.0
What's Changed
- test: add regression test for issue #2313 by
@mcollinain pinojs/pino#2314- fix!: use safer types for censor function signature (#2307) by
@sliftyin pinojs/pino#2308- remove unused parsedChindingsSym symbol by
@mcollinain pinojs/pino#2315- chore: add .npmignore to exclude unnecessary files by
@mcollinain pinojs/pino#2312- chore(lint): migrate from standard to neostandard & upgrade eslint to v9 by
@lokeshwar777in pinojs/pino#2316- build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 by
@dependabot[bot] in pinojs/pino#2305- Use
@pinojs/redactby@mcollinain pinojs/pino#2321- fix: added missing isoTimeNano to nested namespace by
@edge33in pinojs/pino#2325
... (truncated)
Commits
1833a6dBumped v10.2.047619e6Add claude files to .gitignore658effefix: prevent memory leak when using transport with --import preload (#2374)79a6087chore: lint the.tsfiles (#2363)3390470Bumped v10.1.1791adbefix: allow passing string, number, null for %o placeholder (#2372)851a43fbuild(deps-dev): bump@types/nodefrom 24.10.4 to 25.0.3 (#2367)0c78849build(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#2365)8a816c0docs: add threat model to SECURITY.md (#2360)5ec12e7fix: harden transport loading against prototype pollution (#2358)- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Package Dependencies
Technical Details
| ID: | 12829020 |
| UUID: | 3823077885 |
| Node ID: | PR_kwDOL025w869rHCY |
| Host: | GitHub |
| Repository: | NHSDigital/eps-load-test |