Update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@pnpm/audit (source)	7.0.16 -> 7.0.17
eslint (source)	8.50.0 -> 8.51.0
pnpm (source)	8.8.0 -> 8.9.2

---

Release Notes

eslint/eslint (eslint)

v8.51.0

Compare Source

Features

• 0a9c433 feat: Add --no-warn-ignored CLI option for flat config (#​17569) (Domantas Petrauskas)
• 977e67e feat: logical-assignment-operators to report expressions with 3 operands (#​17600) (Yosuke Ota)

Bug Fixes

• f976b2f fix: make rule severity case-sensitive in flat config (#​17619) (Milos Djermanovic)
• 0edfe36 fix: Ensure crash error messages are not duplicated (#​17584) (Nicholas C. Zakas)
• dd79abc fix: eslint-disable to be able to parse quoted rule names (#​17612) (Yosuke Ota)
• d2f6801 fix: Ensure correct code path for && followed by ?? (#​17618) (Nicholas C. Zakas)

Documentation

• ee5be81 docs: default to sourceType: "module" in rule examples (#​17615) (Francesco Trotta)
• 1aa26df docs: Add more examples for multiline-ternary (#​17610) (George Ashiotis)
• 47d0b44 docs: Update README (GitHub Actions Bot)
• dbf831e docs: use generated og image (#​17601) (Percy Ma)
• 1866da5 docs: Update README (GitHub Actions Bot)

Chores

• 1ef39ea chore: upgrade @​eslint/js@​8.51.0 (#​17624) (Milos Djermanovic)
• f8c7403 chore: package.json update for @​eslint/js release (ESLint Jenkins)
• 2665552 test: fix flat config linter tests to use Linter in flat config mode (#​17616) (Milos Djermanovic)
• 7b77bcc chore: Refactor CodePathState (#​17510) (Nicholas C. Zakas)
• bc77c9a chore: Document and refactor ForkContext (#​17566) (Nicholas C. Zakas)
• 24e1f14 chore: Refactor and document CodePath (#​17558) (Nicholas C. Zakas)

pnpm/pnpm (pnpm)

v8.9.2

Compare Source

Patch Changes

• Don't use reflink on Windows #​7186.
• Do not run node-gyp rebuild if preinstall lifecycle script is present #​7206.

Our Gold Sponsors

Our Silver Sponsors

v8.9.1

Compare Source

Patch Changes

• Optimize selection result output of pnpm update --interactive 7109
• When shared-workspace-lockfile is set to false, read the pnpm settings from package.json files that are nested. This was broken in pnpm v8.9.0 #​7184.
• Fix file cloning to node_modules on Windows Dev Drives #​7186. This is a fix to a regression that was shipped with v8.9.0.
• pnpm dlx should ignore any settings that are in a package.json file found in the current working directory #​7198.

Our Gold Sponsors

Our Silver Sponsors

v8.9.0

Compare Source

Minor Changes

• 🚀Performance improvement: Use reflinks instead of hard links by default on macOS and Windows Dev Drives #​5001.

• The list of packages that are allowed to run installation scripts now may be provided in a separate configuration file. The path to the file should be specified via the pnpm.onlyBuiltDependenciesFile field in package.json. For instance:

  {
    "dependencies": {
      "@​my-org/policy": "1.0.0"
    }
    "pnpm": {
      "onlyBuiltDependenciesFile": "node_modules/@​my-org/policy/allow-build.json"
    }
  }

  In the example above, the list is loaded from a dependency. The JSON file with the list should contain an array of package names. For instance:

  ["esbuild", "@​reflink/reflink"]

  With the above list, only esbuild and @reflink/reflink will be allowed to run scripts during installation.

  Related issue: #​7137.

• Add disallow-workspace-cycles option to error instead of warn about cyclic dependencies

• Allow env rm to remove multiple node versions at once, and introduce env add for installing node versions without setting as default #​7155.

Patch Changes

• Fix memory error in pnpm why when the dependencies tree is too big, the command will now prune the tree to just 10 end leafs and now supports --depth argument #​7122.
• Use neverBuiltDependencies and onlyBuiltDependencies from the root package.json of the workspace, when shared-workspace-lockfile is set to false #​7141.
• Optimize peers resolution to avoid out-of-memory exceptions in some rare cases, when there are too many circular dependencies and peer dependencies #​7149.
• Instead of pnpm.overrides replacing resolutions, the two are now merged. This is intended to make it easier to migrate from Yarn by allowing one to keep using resolutions for Yarn, but adding additional changes just for pnpm using pnpm.overrides.

Our Gold Sponsors

Our Silver Sponsors

---

Configuration

📅 Schedule: Branch creation - "after 9am on Wednesday" in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.