Upgrade: [dependabot] - bump pino from 9.11.0 to 10.3.0 by dependabot[bot] · Pull Request #683 · NHSDigital/eps-load-test

dependabot · 2026-01-23T18:06:25Z

Bumps pino from 9.11.0 to 10.3.0.

Release notes

v10.3.0

What's Changed

feat: improve the return type of multistream().clone() by @mrazauskas in pinojs/pino#2377

feat: set worker thread name for transport identification by @mcollina in pinojs/pino#2380

Full Changelog: pinojs/pino@v10.2.1...v10.3.0

v10.2.1

What's Changed

fix: prevent ERR_WORKER_INVALID_EXEC_ARGV with monitoring tools by @mcollina in pinojs/pino#2379

Full Changelog: pinojs/pino@v10.2.0...v10.2.1

v10.2.0

What's Changed

chore: lint TypeScript files by @mrazauskas in pinojs/pino#2363

fix: prevent memory leak when using transport with --import preload by @mcollina in pinojs/pino#2374

New Contributors

@mrazauskas made their first contribution in pinojs/pino#2363

Full Changelog: pinojs/pino@v10.1.1...v10.2.0

v10.1.1

What's Changed

fix(types): Correct conditional type handling for generic log function arguments by @samchungy in pinojs/pino#2329

perf: use JSON.stringify in fast path for node v25+ by @ronag in pinojs/pino#2330

build(deps): bump actions/setup-node from 4 to 6 by @dependabot[bot] in pinojs/pino#2336

build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @dependabot[bot] in pinojs/pino#2337

build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @dependabot[bot] in pinojs/pino#2338

docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by @NoobFullStack in pinojs/pino#2334

feat(browser): add reportCaller to surface user callsite by @dev-KingMaster in pinojs/pino#2340

docs: update transports.md by @marklai1998 in pinojs/pino#2224

docs: add Node.js 22+ native TypeScript type stripping support by @mcollina in pinojs/pino#2347

feat(types): use ThreadStream type from thread-stream by @CHC383 in pinojs/pino#2320

build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by @dependabot[bot] in pinojs/pino#2354

build(deps): update thread-stream to v4 by @mcollina in pinojs/pino#2356

fix: harden transport loading against prototype pollution by @omdxp in pinojs/pino#2358

docs: add threat model to SECURITY.md by @mcollina in pinojs/pino#2360

build(deps): bump actions/checkout from 6.0.0 to 6.0.1 by @dependabot[bot] in pinojs/pino#2365

build(deps-dev): bump @types/node from 24.10.4 to 25.0.3 by @dependabot[bot] in pinojs/pino#2367

fix: allow passing string, number, null for %o placeholder by @rChaoz in pinojs/pino#2372

New Contributors

@NoobFullStack made their first contribution in pinojs/pino#2334

@dev-KingMaster made their first contribution in pinojs/pino#2340

@marklai1998 made their first contribution in pinojs/pino#2224

@CHC383 made their first contribution in pinojs/pino#2320

... (truncated)

Commits

d6adf03 Bumped v10.3.0
06d55b1 feat: set worker thread name for transport identification (#2380)
a728702 fix: fix multistream().clone() return type (#2377)
31966a3 Bumped v10.2.1
417ef57 fix: prevent ERR_WORKER_INVALID_EXEC_ARGV with monitoring tools (#2379)
1833a6d Bumped v10.2.0
47619e6 Add claude files to .gitignore
658effe fix: prevent memory leak when using transport with --import preload (#2374)
79a6087 chore: lint the .ts files (#2363)
3390470 Bumped v10.1.1
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

eps-autoapprove-dependabot · 2026-01-23T18:06:38Z