Bump the logging group across 1 directory with 2 updates by dependabot[bot] · Pull Request #92 · DEFRA/forms-notify-listener

dependabot · 2025-12-01T13:04:10Z

Bumps the logging group with 2 updates in the / directory: pino and pino-pretty.

Updates pino from 9.14.0 to 10.3.1

Release notes

v10.3.1

What's Changed

build(deps): bump actions/checkout from 6.0.1 to 6.0.2 by @dependabot[bot] in pinojs/pino#2385

build(deps-dev): bump eslint-plugin-n from 17.23.1 to 17.23.2 by @dependabot[bot] in pinojs/pino#2386

docs: clarify transport level filtering behavior by @mcollina in pinojs/pino#2390

fix(transport): sanitize invalid NODE_OPTIONS preloads for workers by @mcollina in pinojs/pino#2391

Full Changelog: pinojs/pino@v10.3.0...v10.3.1

v10.3.0

What's Changed

feat: improve the return type of multistream().clone() by @mrazauskas in pinojs/pino#2377

feat: set worker thread name for transport identification by @mcollina in pinojs/pino#2380

Full Changelog: pinojs/pino@v10.2.1...v10.3.0

v10.2.1

What's Changed

fix: prevent ERR_WORKER_INVALID_EXEC_ARGV with monitoring tools by @mcollina in pinojs/pino#2379

Full Changelog: pinojs/pino@v10.2.0...v10.2.1

v10.2.0

What's Changed

chore: lint TypeScript files by @mrazauskas in pinojs/pino#2363

fix: prevent memory leak when using transport with --import preload by @mcollina in pinojs/pino#2374

New Contributors

@mrazauskas made their first contribution in pinojs/pino#2363

Full Changelog: pinojs/pino@v10.1.1...v10.2.0

v10.1.1

What's Changed

fix(types): Correct conditional type handling for generic log function arguments by @samchungy in pinojs/pino#2329

perf: use JSON.stringify in fast path for node v25+ by @ronag in pinojs/pino#2330

build(deps): bump actions/setup-node from 4 to 6 by @dependabot[bot] in pinojs/pino#2336

build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @dependabot[bot] in pinojs/pino#2337

build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @dependabot[bot] in pinojs/pino#2338

docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by @NoobFullStack in pinojs/pino#2334

feat(browser): add reportCaller to surface user callsite by @dev-KingMaster in pinojs/pino#2340

docs: update transports.md by @marklai1998 in pinojs/pino#2224

docs: add Node.js 22+ native TypeScript type stripping support by @mcollina in pinojs/pino#2347

feat(types): use ThreadStream type from thread-stream by @CHC383 in pinojs/pino#2320

build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by @dependabot[bot] in pinojs/pino#2354

build(deps): update thread-stream to v4 by @mcollina in pinojs/pino#2356

fix: harden transport loading against prototype pollution by @omdxp in pinojs/pino#2358

... (truncated)

Commits

6b34498 Bumped v10.3.1
f1203e6 fix(transport): sanitize invalid NODE_OPTIONS preloads for workers (#2391)
6a8e598 docs: clarify transport level filtering behavior (#2390)
49a4807 Merge branch 'main' of github.com:pinojs/pino
960bbbb build(deps-dev): bump eslint-plugin-n from 17.23.1 to 17.23.2 (#2386)
e2a5b4a build(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#2385)
04859e2 chore: update gitignore for ai assistant files
d6adf03 Bumped v10.3.0
06d55b1 feat: set worker thread name for transport identification (#2380)
a728702 fix: fix multistream().clone() return type (#2377)
Additional commits viewable in compare view

Updates pino-pretty from 13.1.2 to 13.1.3

Release notes

Sourced from pino-pretty's releases.

v13.1.3

What's Changed

Add in the README file a snippet to use pino-pretty only for dev by @himito in pinojs/pino-pretty#623

build(deps): bump actions/setup-node from 4 to 6 by @dependabot[bot] in pinojs/pino-pretty#626

build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @dependabot[bot] in pinojs/pino-pretty#627

build(deps-dev): bump pino from 9.14.0 to 10.1.0 by @dependabot[bot] in pinojs/pino-pretty#628

build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @dependabot[bot] in pinojs/pino-pretty#629

Update format-time.js documentation to match functionality by @g-sanner in pinojs/pino-pretty#632

build(deps): bump actions/checkout from 5 to 6 by @dependabot[bot] in pinojs/pino-pretty#636

build(deps): bump fast-copy from 3.0.2 to 4.0.0 by @dependabot[bot] in pinojs/pino-pretty#637

fix: messageFormat print 0 value by @gutenye in pinojs/pino-pretty#635

New Contributors

@himito made their first contribution in pinojs/pino-pretty#623

@g-sanner made their first contribution in pinojs/pino-pretty#632

@gutenye made their first contribution in pinojs/pino-pretty#635

Full Changelog: pinojs/pino-pretty@v13.1.2...v13.1.3

Commits

08425cd v13.1.3
6afb524 fix: messageFormat print 0 value (#635)
70c73ea build(deps): bump fast-copy from 3.0.2 to 4.0.0 (#637)
2cd9794 build(deps): bump actions/checkout from 5 to 6 (#636)
c06e276 Update format-time.js documentation to match functionality (#632)
47ffb45 build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 (#629)
932af85 build(deps-dev): bump pino from 9.14.0 to 10.1.0 (#628)
6d48318 build(deps-dev): bump borp from 0.20.2 to 0.21.0 (#627)
3b89a0c build(deps): bump actions/setup-node from 4 to 6 (#626)
ab0ccab Add in the README file a snippet to use pino-pretty only for dev (#623)
See full diff in compare view

sonarqubecloud · 2026-02-09T11:49:49Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Bumps the logging group with 2 updates in the / directory: [pino](https://github.com/pinojs/pino) and [pino-pretty](https://github.com/pinojs/pino-pretty). Updates `pino` from 9.14.0 to 10.3.1 - [Release notes](https://github.com/pinojs/pino/releases) - [Commits](pinojs/pino@v9.14.0...v10.3.1) Updates `pino-pretty` from 13.1.2 to 13.1.3 - [Release notes](https://github.com/pinojs/pino-pretty/releases) - [Commits](pinojs/pino-pretty@v13.1.2...v13.1.3) --- updated-dependencies: - dependency-name: pino dependency-version: 10.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: logging - dependency-name: pino-pretty dependency-version: 13.1.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: logging ... Signed-off-by: dependabot[bot] <support@github.com>

sonarqubecloud · 2026-04-29T09:41:30Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Dec 1, 2025

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch 2 times, most recently from 1d4d965 to c00c047 Compare December 11, 2025 09:20

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch from c00c047 to 3cfddcd Compare December 22, 2025 10:24

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch from 3cfddcd to 801ddd9 Compare January 5, 2026 10:46

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch 2 times, most recently from 0f63488 to 75471bb Compare January 19, 2026 12:08

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch from 75471bb to 6913c93 Compare January 26, 2026 11:41

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch from 6913c93 to 217b7a5 Compare February 9, 2026 11:47

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch 2 times, most recently from 1f4b0e3 to 79667a6 Compare March 25, 2026 10:35

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch 3 times, most recently from e909bd7 to 59868ae Compare April 1, 2026 10:58

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch 2 times, most recently from cae115c to d05d3b4 Compare April 22, 2026 09:34

dependabot Bot changed the title ~~build(deps): Bump the logging group across 1 directory with 2 updates~~ Bump the logging group across 1 directory with 2 updates Apr 29, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/logging-8bf3f194e0 branch from d05d3b4 to e339b73 Compare April 29, 2026 09:39

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the logging group across 1 directory with 2 updates#92

Bump the logging group across 1 directory with 2 updates#92
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/logging-8bf3f194e0

dependabot Bot commented on behalf of github Dec 1, 2025 •

edited

Loading

Uh oh!

sonarqubecloud Bot commented Feb 9, 2026

Uh oh!

sonarqubecloud Bot commented Apr 29, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Dec 1, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v10.3.1

What's Changed

v10.3.0

What's Changed

v10.2.1

What's Changed

v10.2.0

What's Changed

New Contributors

v10.1.1

What's Changed

v13.1.3

What's Changed

New Contributors

Uh oh!

sonarqubecloud Bot commented Feb 9, 2026

Quality Gate passed

Uh oh!

sonarqubecloud Bot commented Apr 29, 2026

Quality Gate passed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Dec 1, 2025 •

edited

Loading