Open
Conversation
Snyk has created this PR to upgrade pino from 10.0.0 to 10.1.1. See this package in npm: pino See this project in Snyk: https://app.snyk.io/org/isckosta-W2Hs2JnwmpAuhQtMdWLfYh/project/bf2a56ba-17c5-4c98-9944-24e33d5711d4?utm_source=github&utm_medium=referral&page=upgrade-pr
github-actions
bot
added
dependencies
Contributor
🏆 Performance Benchmark Results⚡ Command Parsing PerformanceTesting command parsing speed...
🎯 Risk Assessment PerformanceTesting risk engine speed...
📊 Stats Display PerformanceTesting stats rendering speed...
💾 Memory UsageTesting memory footprint...
Automated benchmark from workflow |
Codecov Report✅ All modified and coverable lines are covered by tests. 📢 Thoughts on this report? Let us know! |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade pino from 10.0.0 to 10.1.1.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 2 versions ahead of your current version.
The recommended version was released 25 days ago.
Release notes
Package name: pino
-
10.1.1 - 2026-01-09
- fix(types): Correct conditional type handling for generic log function arguments by @ samchungy in #2329
- perf: use JSON.stringify in fast path for node v25+ by @ ronag in #2330
- build(deps): bump actions/setup-node from 4 to 6 by @ dependabot[bot] in #2336
- build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @ dependabot[bot] in #2337
- build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @ dependabot[bot] in #2338
- docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by @ NoobFullStack in #2334
- feat(browser): add reportCaller to surface user callsite by @ dev-KingMaster in #2340
- docs: update transports.md by @ marklai1998 in #2224
- docs: add Node.js 22+ native TypeScript type stripping support by @ mcollina in #2347
- feat(types): use ThreadStream type from thread-stream by @ CHC383 in #2320
- build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by @ dependabot[bot] in #2354
- build(deps): update thread-stream to v4 by @ mcollina in #2356
- fix: harden transport loading against prototype pollution by @ omdxp in #2358
- docs: add threat model to SECURITY.md by @ mcollina in #2360
- build(deps): bump actions/checkout from 6.0.0 to 6.0.1 by @ dependabot[bot] in #2365
- build(deps-dev): bump @ types/node from 24.10.4 to 25.0.3 by @ dependabot[bot] in #2367
- fix: allow passing string, number, null for %o placeholder by @ rChaoz in #2372
- @ NoobFullStack made their first contribution in #2334
- @ dev-KingMaster made their first contribution in #2340
- @ marklai1998 made their first contribution in #2224
- @ CHC383 made their first contribution in #2320
- @ omdxp made their first contribution in #2358
- @ rChaoz made their first contribution in #2372
-
10.1.0 - 2025-10-18
- test: add regression test for issue #2313 by @ mcollina in #2314
- fix!: use safer types for censor function signature (#2307) by @ slifty in #2308
- remove unused parsedChindingsSym symbol by @ mcollina in #2315
- chore: add .npmignore to exclude unnecessary files by @ mcollina in #2312
- chore(lint): migrate from standard to neostandard & upgrade eslint to v9 by @ lokeshwar777 in #2316
- build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 by @ dependabot[bot] in #2305
- Use @ pinojs/redact by @ mcollina in #2321
- fix: added missing isoTimeNano to nested namespace by @ edge33 in #2325
- @ slifty made their first contribution in #2308
- @ lokeshwar777 made their first contribution in #2316
-
10.0.0 - 2025-10-03
- feat(types): add LogFnFields by @ samchungy in #2254
- Convert tests to node:test by @ jsumners in #2299
- removed unused .taprc.yaml by @ jsumners in #2310
from pino GitHub release notesWhat's Changed
New Contributors
Full Changelog: v10.1.0...v10.1.1
What's Changed
New Contributors
Full Changelog: v10.0.0...v10.1.0
The only breaking change is dropping support for Node 18.
What's Changed
Full Changelog: v9.13.1...v10.0.0
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: