build(deps): bump pnpm from 8.9.2 to 10.6.0

[dependabot]

Bumps pnpm from 8.9.2 to 10.6.0.

Release notes

Sourced from pnpm's releases.

pnpm 10.6

Minor Changes

• pnpm-workspace.yaml can now hold all the settings that .npmrc accepts. The settings should use camelCase #9211.

  pnpm-workspace.yaml example:

  verifyDepsBeforeRun: install
  optimisticRepeatInstall: true
  publicHoistPattern:
    - "*types*"
    - "!@types/react"

• Projects using a file: dependency on a local tarball file (i.e. .tgz, .tar.gz, .tar) will see a performance improvement during installation. Previously, using a file: dependency on a tarball caused the lockfile resolution step to always run. The lockfile will now be considered up-to-date if the tarball is unchanged.

Patch Changes

• pnpm self-update should not leave a directory with a broken pnpm installation if the installation fails.
• fast-glob replace with tinyglobby to reduce the size of the pnpm CLI dependencies #9169.
• pnpm deploy should not remove fields from the deployed package's package.json file #9215.
• pnpm self-update should not read the pnpm settings from the package.json file in the current working directory.
• Fix pnpm deploy creating a package.json without the imports and license field #9193.
• pnpm update -i should list only packages that have newer versions #9206.
• Fix a bug causing entries in the catalogs section of the pnpm-lock.yaml file to be removed when dedupe-peer-dependents=false on a filtered install. #9112

Platinum Sponsors

... (truncated)

Changelog

Sourced from pnpm's changelog.

10.6.0

Minor Changes

• pnpm-workspace.yaml can now hold all the settings that .npmrc accepts. The settings should use camelCase #9211.

  pnpm-workspace.yaml example:

  verifyDepsBeforeRun: install
  optimisticRepeatInstall: true
  publicHoistPattern:
    - "*types*"
    - "!@types/react"

• Projects using a file: dependency on a local tarball file (i.e. .tgz, .tar.gz, .tar) will see a performance improvement during installation. Previously, using a file: dependency on a tarball caused the lockfile resolution step to always run. The lockfile will now be considered up-to-date if the tarball is unchanged.

Patch Changes

• pnpm self-update should not leave a directory with a broken pnpm installation if the installation fails.
• fast-glob replace with tinyglobby to reduce the size of the pnpm CLI dependencies #9169.
• pnpm deploy should not remove fields from the deployed package's package.json file #9215.
• pnpm self-update should not read the pnpm settings from the package.json file in the current working directory.
• Fix pnpm deploy creating a package.json without the imports and license field #9193.
• pnpm update -i should list only packages that have newer versions #9206.
• Fix a bug causing entries in the catalogs section of the pnpm-lock.yaml file to be removed when dedupe-peer-dependents=false on a filtered install. #9112

10.5.2

Patch Changes

• The pnpm config set command should change the global .npmrc file by default. This was a regression introduced by #9151 and shipped in pnpm v10.5.0.

10.5.1

Patch Changes

• Throw an error message if a pnpm-workspaces.yaml or pnpm-workspaces.yml file is found instead of a pnpm-workspace.yaml #9170.
• Fix the update of pnpm-workspace.yaml by the pnpm approve-builds command #9168.
• Normalize generated link paths in package.json #9163
• Specifying overrides in pnpm-workspace.yaml should work.
• pnpm dlx should ignore settings from the package.json file in the current working directory #9178.

10.5.0

Minor Changes

• Allow to set the "pnpm" settings from package.json via the pnpm-workspace.yaml file #9121.

... (truncated)

Commits

• 86ff415 chore(release): 10.6.0
• d965748 feat: setting config settings via pnpm-workspace.yaml (#9211)
• cd8caec docs: update sponsors
• adb236f refactor: improve regexp (#9203)
• 5e78da2 style: order the keys in package.json files
• f394713 chore: use resolution-mode=lowest-direct
• 6a59366 fix: self-update should not read pnpm settings from current package.json (#9196)
• fcb01a1 chore(release): 10.5.2
• c334834 fix: config set should be global by default (#9185)
• 70d565c chore(release): 10.5.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
devs-in-tech	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Mar 6, 2025 8:19pm

[netlify]

❌ Deploy Preview for devsintech failed.

Name	Link
🔨 Latest commit	0775921
🔍 Latest deploy log	https://app.netlify.com/sites/devsintech/deploys/67ca03367822b90008487f60

[dependabot]

Superseded by #785.