deps(deps): bump pino from 8.21.0 to 10.2.1

[dependabot]

Bumps pino from 8.21.0 to 10.2.1.

Release notes

Sourced from pino's releases.

v10.2.1

What's Changed

• fix: prevent ERR_WORKER_INVALID_EXEC_ARGV with monitoring tools by @​mcollina in pinojs/pino#2379

Full Changelog: pinojs/pino@v10.2.0...v10.2.1

v10.2.0

What's Changed

• chore: lint TypeScript files by @​mrazauskas in pinojs/pino#2363
• fix: prevent memory leak when using transport with --import preload by @​mcollina in pinojs/pino#2374

New Contributors

• @​mrazauskas made their first contribution in pinojs/pino#2363

Full Changelog: pinojs/pino@v10.1.1...v10.2.0

v10.1.1

What's Changed

• fix(types): Correct conditional type handling for generic log function arguments by @​samchungy in pinojs/pino#2329
• perf: use JSON.stringify in fast path for node v25+ by @​ronag in pinojs/pino#2330
• build(deps): bump actions/setup-node from 4 to 6 by @​dependabot[bot] in pinojs/pino#2336
• build(deps-dev): bump borp from 0.20.2 to 0.21.0 by @​dependabot[bot] in pinojs/pino#2337
• build(deps): bump pino-abstract-transport from 2.0.0 to 3.0.0 by @​dependabot[bot] in pinojs/pino#2338
• docs: update CONTRIBUTING.md to reference 'main' instead of 'master' by @​NoobFullStack in pinojs/pino#2334
• feat(browser): add reportCaller to surface user callsite by @​dev-KingMaster in pinojs/pino#2340
• docs: update transports.md by @​marklai1998 in pinojs/pino#2224
• docs: add Node.js 22+ native TypeScript type stripping support by @​mcollina in pinojs/pino#2347
• feat(types): use ThreadStream type from thread-stream by @​CHC383 in pinojs/pino#2320
• build(deps): bump actions/checkout from 5.0.0 to 6.0.0 by @​dependabot[bot] in pinojs/pino#2354
• build(deps): update thread-stream to v4 by @​mcollina in pinojs/pino#2356
• fix: harden transport loading against prototype pollution by @​omdxp in pinojs/pino#2358
• docs: add threat model to SECURITY.md by @​mcollina in pinojs/pino#2360
• build(deps): bump actions/checkout from 6.0.0 to 6.0.1 by @​dependabot[bot] in pinojs/pino#2365
• build(deps-dev): bump @​types/node from 24.10.4 to 25.0.3 by @​dependabot[bot] in pinojs/pino#2367
• fix: allow passing string, number, null for %o placeholder by @​rChaoz in pinojs/pino#2372

New Contributors

• @​NoobFullStack made their first contribution in pinojs/pino#2334
• @​dev-KingMaster made their first contribution in pinojs/pino#2340
• @​marklai1998 made their first contribution in pinojs/pino#2224
• @​CHC383 made their first contribution in pinojs/pino#2320
• @​omdxp made their first contribution in pinojs/pino#2358
• @​rChaoz made their first contribution in pinojs/pino#2372

Full Changelog: pinojs/pino@v10.1.0...v10.1.1

v10.1.0

What's Changed

• test: add regression test for issue #2313 by @​mcollina in pinojs/pino#2314

... (truncated)

Commits

• 31966a3 Bumped v10.2.1
• 417ef57 fix: prevent ERR_WORKER_INVALID_EXEC_ARGV with monitoring tools (#2379)
• 1833a6d Bumped v10.2.0
• 47619e6 Add claude files to .gitignore
• 658effe fix: prevent memory leak when using transport with --import preload (#2374)
• 79a6087 chore: lint the .ts files (#2363)
• 3390470 Bumped v10.1.1
• 791adbe fix: allow passing string, number, null for %o placeholder (#2372)
• 851a43f build(deps-dev): bump @​types/node from 24.10.4 to 25.0.3 (#2367)
• 0c78849 build(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#2365)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for pino since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies, security. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[codeant-ai]

Skipping PR review because a bot author is detected.

If you want to trigger CodeAnt AI, comment @codeant-ai review to trigger a manual review.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[dependabot]

Superseded by #134.