fix: update dependency @pnpm/read-project-manifest to v6

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
@pnpm/read-project-manifest (source)	^5.0.10 → ^6.0.0

---

Release Notes

pnpm/pnpm (@​pnpm/read-project-manifest)

v6.0.2

Compare Source

Bug Fixes

• pnpm publish: lifecycle scripts should not be executed twice when the globally installed npm version is 7 #​3340.
• pnpm list: hoisted dependencies are not listed as unsaved dependencies #​3339.
• pnpm.overrides should override direct dev dependencies #​3327.
• Commands from the root of the workspace should be in the PATH even when there is no lockfile in the workspace root #​2086.

v6.0.1

Compare Source

Bug Fixes

• Use + instead of # in directory names inside the virtual store directory (node_modules/.pnpm). # causes issues with Webpack and Vite #​3314.

v6.0.0

Breaking Changes

• Node.js v10 support is dropped. At least Node.js v12.17 is required for the package to work.

• Arbitrary pre/post hooks for user-defined scripts (such as prestart) are not executed automatically #​2891.

• The lockfile version is bumped to v5.3. Changes in the new format:

  • Blank lines added between package/project entries to improve readability and decrease merge issues.
  • The resolution, engines, os, and cpu fields are now always written in a single lines, as the first keys of the package objects.
  • A new field is added to the package objects: transitivePeerDependencies.

• The layout of the virtual store directory has changed (node_modules/.pnpm) to allow keeping cache in it:

  • All packages inside the virtual store directory are on the same depth. Instead of subdirectories, one directory is used with # instead of slashes.
  • New setting added: modules-cache-max-age. The default value of the setting is 10080 (7 days in seconds). modules-cache-max-age is the time in minutes after which pnpm should remove the orphan packages from node_modules.

• pnpx does not automatically install packages. A prompt asks the user if a package should be installed, if it is not present.

  pnpx --yes tells pnpx to install any missing package.

  pnpx --no makes pnpx fail if the called packages is not installed.

• pnpmfile.js renamed to .pnpmfile.cjs in order to force CommonJS.

• .pnp.js renamed to .pnp.cjs in order to force CommonJS.

• The pnpm-prefix setting is removed. Use global-dir to specify a custom location for the globally installed packages.

• The default depth of an update is Infinity, not 0.

• The --global option should be used when linking from/to the global modules directory.

  Linking a package to the global directory:

  • pnpm v5: pnpm link
  • pnpm v6: pnpm link --global

  Linking a package from the global directory:

  • pnpm v5: pnpm link foo
  • pnpm v6: pnpm link --global foo

• pnpm's command file's extension changed to .cjs (bin/pnpm.js=>bin/pnpm.cjs).

• node-gyp updated to v8.

• prepublish is not executed on a local pnpm install. Use prepare instead.

Features

• A new command added: pnpm fetch.

  Fetch packages from a lockfile into virtual store, package manifest is ignored.
  This command is specifically designed to boost building a docker image.

• Overrides match dependencies by checking if the target range is a subset of the specified range, instead of making an exact match.

  For example, the following override will replace any version of foo that has a subrange on v2:

  "pnpm": {
    "overrides": {
      "foo@2": "2.1.0"
    }
  }

  This will override foo@2.2.0 and foo@^2.3.0 to foo@2.1.0 as both 2.2.0 and ^2.3.0 are subranges of 2.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codesandbox-ci]

This pull request is automatically built and testable in CodeSandbox.

To see build info of the built libraries, click here or the icon next to each commit SHA.