deps: bump pino from 9.14.0 to 10.2.0

[dependabot]

Bumps pino from 9.14.0 to 10.2.0.

Release notes

Sourced from pino's releases.

v10.2.0

What's Changed

• chore: lint TypeScript files by @​mrazauskas in pinojs/pino#2363
• fix: prevent memory leak when using transport with --import preload by @​mcollina in pinojs/pino#2374

New Contributors

• @​mrazauskas made their first contribution in pinojs/pino#2363

Full Changelog: pinojs/pino@v10.1.1...v10.2.0

v10.1.1

What's Changed

• fix(types): Correct conditional type handling for generic log function arguments by @​samchungy in pinojs/pino#2329
• perf: use JSON.stringify in fast path for node v25+ by @​ronag in pinojs/pino#2330
• build(deps): bump actions/setup-node from 4 to 6 by @​dependabot[bot] in pinojs/pino#2336
• build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @​dependabot[bot] in pinojs/pino#2337
• build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @​dependabot[bot] in pinojs/pino#2338
• docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by @​NoobFullStack in pinojs/pino#2334
• feat(browser): add reportCaller to surface user callsite by @​dev-KingMaster in pinojs/pino#2340
• docs: update transports.md by @​marklai1998 in pinojs/pino#2224
• docs: add Node.js 22+ native TypeScript type stripping support by @​mcollina in pinojs/pino#2347
• feat(types): use ThreadStream type from thread-stream by @​CHC383 in pinojs/pino#2320
• build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by @​dependabot[bot] in pinojs/pino#2354
• build(deps): update thread-stream to v4 by @​mcollina in pinojs/pino#2356
• fix: harden transport loading against prototype pollution by @​omdxp in pinojs/pino#2358
• docs: add threat model to SECURITY.md by @​mcollina in pinojs/pino#2360
• build(deps): bump actions/checkout from 6.0.0 to 6.0.1 by @​dependabot[bot] in pinojs/pino#2365
• build(deps-dev): bump @​types/node from 24.10.4 to 25.0.3 by @​dependabot[bot] in pinojs/pino#2367
• fix: allow passing string, number, null for %o placeholder by @​rChaoz in pinojs/pino#2372

New Contributors

• @​NoobFullStack made their first contribution in pinojs/pino#2334
• @​dev-KingMaster made their first contribution in pinojs/pino#2340
• @​marklai1998 made their first contribution in pinojs/pino#2224
• @​CHC383 made their first contribution in pinojs/pino#2320
• @​omdxp made their first contribution in pinojs/pino#2358
• @​rChaoz made their first contribution in pinojs/pino#2372

Full Changelog: pinojs/pino@v10.1.0...v10.1.1

v10.1.0

What's Changed

• test: add regression test for issue #2313 by @​mcollina in pinojs/pino#2314
• fix!: use safer types for censor function signature (#2307) by @​slifty in pinojs/pino#2308
• remove unused parsedChindingsSym symbol by @​mcollina in pinojs/pino#2315
• chore: add .npmignore to exclude unnecessary files by @​mcollina in pinojs/pino#2312
• chore(lint): migrate from standard to neostandard & upgrade eslint to v9 by @​lokeshwar777 in pinojs/pino#2316
• build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 by @​dependabot[bot] in pinojs/pino#2305
• Use @​pinojs/redact by @​mcollina in pinojs/pino#2321
• fix: added missing isoTimeNano to nested namespace by @​edge33 in pinojs/pino#2325

... (truncated)

Commits

• 1833a6d Bumped v10.2.0
• 47619e6 Add claude files to .gitignore
• 658effe fix: prevent memory leak when using transport with --import preload (#2374)
• 79a6087 chore: lint the .ts files (#2363)
• 3390470 Bumped v10.1.1
• 791adbe fix: allow passing string, number, null for %o placeholder (#2372)
• 851a43f build(deps-dev): bump @​types/node from 24.10.4 to 25.0.3 (#2367)
• 0c78849 build(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#2365)
• 8a816c0 docs: add threat model to SECURITY.md (#2360)
• 5ec12e7 fix: harden transport loading against prototype pollution (#2358)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[reverentgeek]

Approving pino v10 upgrade. Reviewed codebase - no usage of censor/redact functionality affected by breaking type changes. Basic pino-pretty logging is compatible.

🤖 Generated with Claude Code