chore(deps): bump pnpm from 9.10.0 to 9.15.5

[dependabot]

Bumps pnpm from 9.10.0 to 9.15.5.

Release notes

Sourced from pnpm's releases.

pnpm 9.15.5

Patch Changes

• Verify that the package name is valid when executing the publish command.
• When running pnpm install, the preprepare and postprepare scripts of the project should be executed #8989.
• Quote args for scripts with shell-quote to support new lines (on POSIX only) #8980.
• Proxy settings should be respected, when resolving Git-hosted dependencies #6530.
• Replace strip-ansi with the built-in util.stripVTControlCharacters #9009.

Platinum Sponsors

Gold Sponsors

... (truncated)

Changelog

Sourced from pnpm's changelog.

9.15.5

Patch Changes

• Verify that the package name is valid when executing the publish command.
• When running pnpm install, the preprepare and postprepare scripts of the project should be executed #8989.
• Quote args for scripts with shell-quote to support new lines (on POSIX only) #8980.
• Proxy settings should be respected, when resolving Git-hosted dependencies #6530.
• Replace strip-ansi with the built-in util.stripVTControlCharacters #9009.

9.15.4

Patch Changes

• Ensure that recursive pnpm update --latest <pkg> updates only the specified package, with dedupe-peer-dependents=true.

9.15.3

Patch Changes

• Fixed the Regex used to find the package manifest during packing #8938.
• pnpm update --filter <pattern> --latest <pkg> should only change the specified package for the specified workspace, when dedupe-peer-dependents is set to true #8877.
• Exclude .DS_Store file at patch-commit #8922.
• Fix a bug in which pnpm patch is unable to bring back old patch without specifying @version suffix #8919.

9.15.2

Patch Changes

• Fixed publish/pack error with workspace dependencies with relative paths #8904. It was broken in v9.4.0 (398472c).
• Use double quotes in the command suggestion by pnpm patch on Windows #7546.
• Do not fall back to SSH, when resolving a git-hosted package if git ls-remote works via HTTPS #8906.
• Improve how packages with blocked lifecycle scripts are reported during installation. Always print the list of ignored scripts at the end of the output. Include a hint about how to allow the execution of those packages.

9.15.1

Patch Changes

• pnpm remove should not link dependencies from the workspace, when link-workspace-packages is set to false #7674.
• Installation with hoisted node_modules should not fail, when a dependency has itself in its own peer dependencies #8854.

9.15.0

Minor Changes

• Metadata directory version bumped to force fresh cache after we shipped a fix to the metadata write function. This change is backward compatible as install doesn't require a metadata cache.

Patch Changes

• pnpm update --global should not crash if there are no any global packages installed #7898.

... (truncated)

Commits

• 70d38c5 chore(release): 9.15.5
• 7eff24d fix(lifecycle): properly quote args (#9018)
• 8dc032e refactor: replace strip-ansi with built-in util.stripVTControlCharacters ...
• 3e7e864 chore(release): 9.15.4
• 388e246 docs: update years
• f713b4e fix: ensure that recursive pnpm update --latest \<pkg> updates only the spec...
• 58e4867 chore(release): 9.15.3
• db01197 chore: pd should not switch to another version of pnpm (#8930)
• dec8a47 fix: pnpm update --filter --latest should only change relevant packages and...
• c056fe0 chore(release): 9.15.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Superseded by #755.