chore: add changeset for CVE-2025-57319 fix

sapientpants · sapientpants · commit 04cb3522380a · 2025-09-29T22:11:16.000+02:00
diff --git a/.changeset/fix-cve-2025-57319.md b/.changeset/fix-cve-2025-57319.md
@@ -0,0 +1,9 @@
+---
+'sonarqube-mcp-server': patch
+---
+
+fix: update pino to 9.12.0 to resolve CVE-2025-57319
+
+- Updated pino from 9.11.0 to 9.12.0
+- Pino 9.12.0 replaces fast-redact with slow-redact
+- Resolves prototype pollution vulnerability in fast-redact@3.5.0 (CVE-2025-57319, low severity)
