chore(deps): update dependency pino to v10

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
pino (source)	^9.0.0 -> ^10.0.0

---

Release Notes

pinojs/pino (pino)

v10.1.0

Compare Source

What's Changed

• test: add regression test for issue #​2313 by @​mcollina in #​2314
• fix!: use safer types for censor function signature (#​2307) by @​slifty in #​2308
• remove unused parsedChindingsSym symbol by @​mcollina in #​2315
• chore: add .npmignore to exclude unnecessary files by @​mcollina in #​2312
• chore(lint): migrate from standard to neostandard & upgrade eslint to v9 by @​lokeshwar777 in #​2316
• build(deps-dev): bump eslint-plugin-n from 15.7.0 to 17.23.1 by @​dependabot[bot] in #​2305
• Use @​pinojs/redact by @​mcollina in #​2321
• fix: added missing isoTimeNano to nested namespace by @​edge33 in #​2325

New Contributors

• @​slifty made their first contribution in #​2308
• @​lokeshwar777 made their first contribution in #​2316

Full Changelog: pinojs/pino@v10.0.0...v10.1.0

v10.0.0

Compare Source

The only breaking change is dropping support for Node 18.

What's Changed

• feat(types): add LogFnFields by @​samchungy in #​2254
• Convert tests to node:test by @​jsumners in #​2299
• removed unused .taprc.yaml by @​jsumners in #​2310

Full Changelog: pinojs/pino@v9.13.1...v10.0.0

v9.14.0

Compare Source

What's Changed

• feat(types): add LogFnFields by @​samchungy in #​2254
• [v9.x] Update to pinojs redact by @​mcollina in #​2322
• Revert setlevel opt in 9.x by @​mcollina in #​2323

Full Changelog: pinojs/pino@v9.13.1...v9.14.0

v9.13.1

Compare Source

What's Changed

• fix(log): better logfn handling of generics by @​rozzilla in #​2309

Full Changelog: pinojs/pino@v9.13.0...v9.13.1

v9.13.0

Compare Source

What's Changed

• build(deps): bump actions/checkout from 4.3.0 to 5.0.0 by @​dependabot[bot] in #​2301
• build(deps): bump actions/github-script from 7 to 8 by @​dependabot[bot] in #​2303
• build(deps-dev): bump @​yao-pkg/pkg from 6.3.0 to 6.7.0 by @​dependabot[bot] in #​2306
• perf: optimize .child by @​ronag in #​2300
• docs(ecosystem): add eslint-plugin-pino to ecosystem page by @​orzarchi in #​2297

New Contributors

• @​ronag made their first contribution in #​2300
• @​orzarchi made their first contribution in #​2297

Full Changelog: pinojs/pino@v9.12.0...v9.13.0

v9.12.0

Compare Source

What's Changed

• types: expose stdTimeFunctions on nested namespace pino while preserv… by @​tawseefnabi in #​2263
• test: exclude Windows + Node 18.18 from test matrix by @​aryamohanan in #​2292
• Replace fast-redact with slow-redact by @​mcollina in #​2298

New Contributors

• @​tawseefnabi made their first contribution in #​2263

Full Changelog: pinojs/pino@v9.11.0...v9.12.0

v9.11.0

Compare Source

What's Changed

• feat: added timestamp rfc3339 format with nanoseconds by @​edge33 in #​2251
• fix: gracefully handle missing diagChannel.tracingChannel on Node < 18.19 by @​aryamohanan in #​2290

New Contributors

• @​edge33 made their first contribution in #​2251
• @​aryamohanan made their first contribution in #​2290

Full Changelog: pinojs/pino@v9.10.0...v9.11.0

v9.10.0

Compare Source

What's Changed

• docs: Move pino-logflare out of legacy transports list by @​kamilogorek in #​2283
• Add support for Pear and Bare runtimes by @​yassernasc in #​2278
• Add tracing channels by @​jsumners-nr in #​2281
• Add pino-console to ecoystem page by @​mcollina in #​2288

New Contributors

• @​kamilogorek made their first contribution in #​2283
• @​yassernasc made their first contribution in #​2278
• @​jsumners-nr made their first contribution in #​2281

Full Changelog: pinojs/pino@v9.9.5...v9.10.0

v9.9.5

Compare Source

What's Changed

• fix: allow object type in %s placeholder by @​mcollina in #​2277

Full Changelog: pinojs/pino@v9.9.4...v9.9.5

v9.9.4

Compare Source

What's Changed

• fix(logfn): use unknown type by @​rozzilla in #​2276

Full Changelog: pinojs/pino@v9.9.3...v9.9.4

v9.9.3

Compare Source

What's Changed

• fix(types): compatibility when leveraging parameters by @​rozzilla in #​2273

New Contributors

• @​rozzilla made their first contribution in #​2273

Full Changelog: pinojs/pino@v9.9.2...v9.9.3

v9.9.2

Compare Source

What's Changed

• Avoid setLevel in child when possible by @​mcollina in #​2271

Full Changelog: pinojs/pino@v9.9.1...v9.9.2

v9.9.1

Compare Source

What's Changed

• build(deps): bump actions/checkout from 4 to 5 by @​dependabot[bot] in #​2268
• build(deps-dev): bump tsd from 0.32.0 to 0.33.0 by @​dependabot[bot] in #​2269
• fix: TypeScript regression with boolean values in %s placeholders by @​mcollina in #​2262

Full Changelog: pinojs/pino@v9.9.0...v9.9.1

v9.9.0

Compare Source

What's Changed

• Fix TypeScript types by @​joshkel in #​2258
• feat: Added remove to multistream. by @​ShogunPanda in #​2257

Full Changelog: pinojs/pino@v9.8.0...v9.9.0

v9.8.0

Compare Source

What's Changed

• build(deps-dev): bump pino-pretty from 11.3.0 to 13.0.0 by @​dependabot[bot] in #​2083
• chore(license): update licensing year by @​Tony133 in #​2226
• Enhance logger function typing by @​samchungy in #​2230
• Fix typo in bench-long-string script name in package.json by @​prkomb in #​2235
• fix: remove trailing comma in tsconfig.json by @​prkomb in #​2236
• build(deps-dev): bump @​types/node from 22.15.34 to 24.0.8 by @​dependabot[bot] in #​2238
• build(deps-dev): bump jest from 29.7.0 to 30.0.3 by @​dependabot[bot] in #​2240
• Fix missing asObjectBindingsOnly type from browser config by @​MarsCapone in #​2243
• chore: remove benchmark as devDependency by @​Uzlopak in #​2247
• feat: introduce logger.msgPrefix getter by @​indutny-signal in #​2232
• docs: link hono integration to homepage by @​0-BSCode in #​2252
• Fix TS export condition by @​mcollina in #​2223
• build(deps-dev): bump typescript from 5.8.3 to 5.9.2 by @​dependabot[bot] in #​2250

New Contributors

• @​Tony133 made their first contribution in #​2226
• @​samchungy made their first contribution in #​2230
• @​prkomb made their first contribution in #​2235
• @​MarsCapone made their first contribution in #​2243
• @​Uzlopak made their first contribution in #​2247
• @​indutny-signal made their first contribution in #​2232
• @​0-BSCode made their first contribution in #​2252

Full Changelog: pinojs/pino@v9.7.0...v9.8.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	pino@​9.7.0 ⏵ 10.1.0	+1

View full report

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
npm/@pinojs/redact	0.4.0	Unknown	Unknown
npm/pino	10.1.0	🟢 6.8	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 7 Found 19/24 approved changesets -- score normalized to 7 Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo License 🟢 10 license file detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected Pinned-Dependencies ⚠️ 1 dependency not pinned by hash detected -- score normalized to 1 Fuzzing ⚠️ 0 project is not fuzzed Packaging 🟢 10 packaging workflow detected Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches

Scanned Files

• package-lock.json