:arrow_up: Update Yarn to v4

renovate[bot] commented 8 months ago

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
yarn (source)	`3.2.2` -> `4.3.1`

Release Notes

yarnpkg/berry (yarn)

### [`v4.3.1`](https://togithub.com/yarnpkg/berry/compare/b2eb9dce084f1a892101d1b693fea25f05428ff8...2e73cdb7e2057a3ab4bd93074190b508b407c7ab) [Compare Source](https://togithub.com/yarnpkg/berry/compare/b2eb9dce084f1a892101d1b693fea25f05428ff8...2e73cdb7e2057a3ab4bd93074190b508b407c7ab) ### [`v4.3.0`](https://togithub.com/yarnpkg/berry/compare/effc932614d5351bbfeed8e0e6aa4b2c6c52821d...b2eb9dce084f1a892101d1b693fea25f05428ff8) [Compare Source](https://togithub.com/yarnpkg/berry/compare/effc932614d5351bbfeed8e0e6aa4b2c6c52821d...b2eb9dce084f1a892101d1b693fea25f05428ff8) ### [`v4.2.2`](https://togithub.com/yarnpkg/berry/compare/bf24f592eb0a7e8ac207387b0d60ea2ac7d66ebf...effc932614d5351bbfeed8e0e6aa4b2c6c52821d) [Compare Source](https://togithub.com/yarnpkg/berry/compare/bf24f592eb0a7e8ac207387b0d60ea2ac7d66ebf...effc932614d5351bbfeed8e0e6aa4b2c6c52821d) ### [`v4.2.1`](https://togithub.com/yarnpkg/berry/compare/9a853e35cfe44d1cbd17b9739f68e90d1c79c96e...bf24f592eb0a7e8ac207387b0d60ea2ac7d66ebf) [Compare Source](https://togithub.com/yarnpkg/berry/compare/9a853e35cfe44d1cbd17b9739f68e90d1c79c96e...bf24f592eb0a7e8ac207387b0d60ea2ac7d66ebf) ### [`v4.2.0`](https://togithub.com/yarnpkg/berry/compare/6b7621f0736ef7ed423672392882d68592d61c81...9a853e35cfe44d1cbd17b9739f68e90d1c79c96e) [Compare Source](https://togithub.com/yarnpkg/berry/compare/6b7621f0736ef7ed423672392882d68592d61c81...9a853e35cfe44d1cbd17b9739f68e90d1c79c96e) ### [`v4.1.1`](https://togithub.com/yarnpkg/berry/compare/52909a5e0d2fe72245957870bcd654218d93ef72...6b7621f0736ef7ed423672392882d68592d61c81) [Compare Source](https://togithub.com/yarnpkg/berry/compare/52909a5e0d2fe72245957870bcd654218d93ef72...6b7621f0736ef7ed423672392882d68592d61c81) ### [`v4.1.0`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#410) [Compare Source](https://togithub.com/yarnpkg/berry/compare/a64075561a6476aa79d0fa1012ecf6b1633a88f2...52909a5e0d2fe72245957870bcd654218d93ef72) - Tweaks `-,--verbose` in `yarn workspaces foreach`; `-v` will now only print the prefixes, `-vv` will be necessary to also print the timings. - Adds a new `--json` option to `yarn run` when called without script name - Fixes `node-modules` linker `link:` dependencies mistreatment as inner workspaces, when they point to a parent folder of a workspace - Fixes spurious "No candidates found" errors - Fixes missing executable permissions when using `nodeLinker: pnpm` - Fixes packages being incorrectly flagged as optional - Fixes cache key corruptions due to uncontrolled git merges - Fixes `yarn version apply --all --dry-run` making unexpected changes - Fixes `yarn npm login` when the remote registry is Verdaccio ### [`v4.0.2`](https://togithub.com/yarnpkg/berry/compare/be5a1bf87c2de22d8098b3a19a391cc40dfd2f3b...a64075561a6476aa79d0fa1012ecf6b1633a88f2) [Compare Source](https://togithub.com/yarnpkg/berry/compare/be5a1bf87c2de22d8098b3a19a391cc40dfd2f3b...a64075561a6476aa79d0fa1012ecf6b1633a88f2) ### [`v4.0.1`](https://togithub.com/yarnpkg/berry/compare/c6764b28f8e8dbdac7ad318d6d98b5d5f0f4679e...be5a1bf87c2de22d8098b3a19a391cc40dfd2f3b) [Compare Source](https://togithub.com/yarnpkg/berry/compare/c6764b28f8e8dbdac7ad318d6d98b5d5f0f4679e...be5a1bf87c2de22d8098b3a19a391cc40dfd2f3b) ### [`v4.0.0`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#400) [Compare Source](https://togithub.com/yarnpkg/berry/compare/ea42c48d716543f570ae368a5683137de53b131d...c6764b28f8e8dbdac7ad318d6d98b5d5f0f4679e) ##### **Major Changes** - With Node.js 16's [now being End of Life'd](https://nodejs.org/en/blog/announcements/nodejs16-eol), we dropped support for Node.js versions lower than 18.12. - Some important defaults have changed: - `yarn set version` will prefer using `packageManager` rather than `yarnPath` when possible. - `yarn init` will no longer use zero-install by default. You still can enable it, but it should make it easier to start one-of projects without having to rewrite the configuration afterwards. - `yarn workspaces foreach` now requires one of `--all`, `--recursive`, `--since`, or `--worktree` to be explicitly specified; the previous default was `--worktree`, but it was rarely what users expected. - All official Yarn plugins are now included by default in the bundle we provide. You no longer need to run `yarn plugin import` for *official* plugins (you still need to do it for third-party plugins, of course). - This doesn't change anything to the plugin API we provide, which will keep being maintained. - Yarn still has a modular architecture and uses the exact same APIs as contrib plugins; all that changes is how we distribute our own features. - Yarn's UI during installs has been greatly improved: - Packages added and removed from the lockfile are now explicitly reported. - Fluctuations in the project cache size are now reported as a single line. - Unactionable warnings (`node-gyp` and transitive peer dependency errors) have been removed. - Skipped builds are now only reported during initial installs and manual `yarn rebuild` calls. - The Yarn version is now displayed on installs to help us investigate issues [when reported as screenshots](https://meta.stackoverflow.com/questions/285551/why-should-i-not-upload-images-of-code-data-errors/285557#285557). - Deprecation checks have been moved to `yarn npm audit`. - Some settings were renamed or removed: - `caFilePath` is now `httpsCaFilePath` - `preferAggregateCacheInfo` has been removed (it's now always on) - `pnpDataPath` has been removed to adhere to our new [PnP specification](https://yarnpkg.com/advanced/pnp-spec). For consistency, all PnP files will now be hardcoded to a single value so that third-party tools can implement the PnP specification without relying on the Yarn configuration. - The `yarn npm audit` command has been reimplemented: - The audit registry must now implement the `/-/npm/v1/security/advisories/bulk` endpoint. - The `npmAuditRegistry` can be used to temporarily route audit queries to the npm registry. - Deprecations are now returned by default. To silence them, use `yarn npm audit ! --no-deprecations`. - Some legacy layers have been sunset: - Plugins cannot access the Clipanion 2 APIs anymore (upgrade to [Clipanion 3](https://togithub.com/arcanis/clipanion)) - Plugins cannot access the internal copy of Yup anymore (use [Typanion](https://togithub.com/arcanis/typanion) instead) - Yarn will no longer remove the old Yarn 2.x `.pnp.js` file when migrating. - The `--assume-fresh-project` flag of `yarn init` has been removed. ##### **API Changes** The following changes only affect people writing Yarn plugins: - The `ZipFS` and `ZipOpenFS` classes have been moved from `@yarnpkg/fslib` to `@yarnpkg/libzip`. They no longer need or accept the `libzip` parameter. - Reading the zip archives is now done on the Node.js side for performance; as a result, the `open`, `ZIP_CREATE`, and `ZIP_TRUNCATE` bindings are no longer needed for `ZipFS` and have also been removed. - The `dependencies` field sent returned by `Resolver#resolve` must now be the result of a `Configuration#normalizeDependencyMap` call. This change is prompted by a refactoring of how default protocols (ie `npm:`) are injected into descriptors. The previous implementation caused various descriptors to never be normalized, which made it difficult to know what were the descriptors each function should expect. - Similarly, the descriptors returned by `Resolve#getResolutionDependencies` are now expected to be the result of `Configuration#normalizeDependency` calls. - Note that this only applies to the `dependencies` field; the `peerDependencies` field is unchanged, as it must only contains semver ranges without any protocol (with an exception for `workspace:`, but that's not relevant here). - The `Resolve#getResolutionDependencies` function must now return an object of arbitrary string keys and descriptor values (instead of a map with `DescriptorHash` keys). Those descriptors will be resolved and assigned to the same keys as the initial object. This change allows resolvers to wrap resolution dependencies from other resolvers, which wasn't possible before since it'd have caused the key to change. - The `generateLoader` function in `@yarnpkg/pnp` no longer generates the `$$SETUP_STATE` function, it now needs to be present in the `loader` passed to the function. - The `getCustomDataKey` function in `Installer` from `@yarnpkg/core` has been moved to `Linker`. - `renderForm`'s `options` argument is now required to enforce that custom streams are always specified. - `npmConfigUtils.getAuditRegistry` no longer takes a `Manifest` as its first argument. - The `FetchOptions.skipIntegrityCheck` option has been removed. Use `FetchOptions.cacheOptions.skipIntegrityCheck` instead. - `MapConfigurationValue` has been removed. Use `miscUtils.ToMapValue` instead. - `Manifest.isManifestFieldCompatible` and `Manifest.prototype.isCompatibleWith{OS,CPU}` have been removed. Use `Manifest.prototype.getConditions` and `structUtils.isPackageCompatible` instead. - `versionUtils.{fetchBase,fetchRoot,fetchChangedFiles}` have been moved from `@yarnpkg/plugin-version` to `@yarnpkg/plugin-git`. Use `gitUtils.{fetchBase,fetchRoot,fetchChangedFiles}` instead. - For consistency reasons: - `Link{Resolver,Fetcher}` have been renamed to `Portal{Resolver,Fetcher}` - `RawLink{Resolver,Fetcher}` have been renamed to `Link{Resolver,Fetcher}` - `FakeFS` classes are now required to implement `lutimes{Sync,Promise}`. - `workspace.dependencies` has been removed. Use `workspace.anchoredPackage.dependencies` instead. - The `Installer` class must now return `BuildRequest` structures instead of `BuildDirective[]`. This lets you mark that the build must be skipped, and the reason why. - `startCacheReport` has been removed, and is now part of the output generated by `fetchEverything`. - `forgettableNames` & `forgettableBufferSize` have been removed (the only messages using them have been removed, making the forgettable logs implementation obsolete). - `workspace.locator` has been removed. You can instead use: - `workspace.anchoredLocator` to get the locator that's used throughout the dependency tree. - `workspace.manifest.version` to get the workspace version. - `configuration.{packageExtensions,refreshPackageExtensions}` have been removed. Use `configuration.getPackageExtensions` instead. - `configuration.normalizePackage` now requires a `packageExtensions` option. - `ProjectLookup` has been removed. Both `Configuration.find` and `Configuration.findProjectCwd` now always do a lockfile lookup. ##### Installs - Yarn now caches npm version metadata, leading to faster resolution steps and decreased network data usage. - The `pnpm` linker avoids creating symlinks that lead to loops on the file system, by moving them higher up in the directory structure. - The `pnpm` linker no longer reports duplicate "incompatible virtual" warnings. ##### Features - `enableOfflineMode` is a new setting that, when set, will instruct Yarn to only use the metadata and archives already stored on the local machine rather than download them from the registry. This can be useful when performing local development under network-constrained environments (trains, planes, ...). - `yarn run bin` now injects the environment variables defined in `.env.yarn` when spawning a process. This can be configured using the `injectEnvironmentFiles` variable. - `yarn workspaces foreach` now automatically enables the `yarn workspaces foreach ! --verbose` flag in interactive terminals. - Constraints can now be written in JavaScript. See the [revamped documentation](/features/constraints) for more information. ##### Bugfixes - `yarn dlx` will no longer report false-positive `UNUSED_PACKAGE_EXTENSION` warnings - `yarn workspace` will now set `$INIT_CWD` to the CLI working directory rather than the workspace root. ##### Shell - The builtin shell now supports whitespace-only commands. ##### Compatibility - The patched filesystem now supports `FileHandle.readLines`. - PnP now reports missing files when in watch mode. ### [`v3.8.3`](https://togithub.com/yarnpkg/berry/compare/450097c303ab0247f131291ed6916bffaa42d5f8...ea42c48d716543f570ae368a5683137de53b131d) [Compare Source](https://togithub.com/yarnpkg/berry/compare/450097c303ab0247f131291ed6916bffaa42d5f8...ea42c48d716543f570ae368a5683137de53b131d) ### [`v3.8.2`](https://togithub.com/yarnpkg/berry/compare/4308dca8091438e8f88682e59ef5ba5bc72241ca...450097c303ab0247f131291ed6916bffaa42d5f8) [Compare Source](https://togithub.com/yarnpkg/berry/compare/4308dca8091438e8f88682e59ef5ba5bc72241ca...450097c303ab0247f131291ed6916bffaa42d5f8) ### [`v3.8.1`](https://togithub.com/yarnpkg/berry/compare/a71d42c2ffd6278a202cccb5fb92c3ac0caf9cae...4308dca8091438e8f88682e59ef5ba5bc72241ca) [Compare Source](https://togithub.com/yarnpkg/berry/compare/a71d42c2ffd6278a202cccb5fb92c3ac0caf9cae...4308dca8091438e8f88682e59ef5ba5bc72241ca) ### [`v3.8.0`](https://togithub.com/yarnpkg/berry/compare/ea39bf05158c791ed51cc924284ac4603be4a5ba...a71d42c2ffd6278a202cccb5fb92c3ac0caf9cae) [Compare Source](https://togithub.com/yarnpkg/berry/compare/ea39bf05158c791ed51cc924284ac4603be4a5ba...a71d42c2ffd6278a202cccb5fb92c3ac0caf9cae) ### [`v3.7.0`](https://togithub.com/yarnpkg/berry/compare/f01354319156060924a26bfa7985756f7407003e...ea39bf05158c791ed51cc924284ac4603be4a5ba) [Compare Source](https://togithub.com/yarnpkg/berry/compare/f01354319156060924a26bfa7985756f7407003e...ea39bf05158c791ed51cc924284ac4603be4a5ba) ### [`v3.6.4`](https://togithub.com/yarnpkg/berry/compare/b6026842dfec4b012571b5982bb74420c7682a73...f01354319156060924a26bfa7985756f7407003e) [Compare Source](https://togithub.com/yarnpkg/berry/compare/b6026842dfec4b012571b5982bb74420c7682a73...f01354319156060924a26bfa7985756f7407003e) ### [`v3.6.3`](https://togithub.com/yarnpkg/berry/compare/7b88e9ef75bf73e97df47428c9146322c9c4315f...b6026842dfec4b012571b5982bb74420c7682a73) [Compare Source](https://togithub.com/yarnpkg/berry/compare/7b88e9ef75bf73e97df47428c9146322c9c4315f...b6026842dfec4b012571b5982bb74420c7682a73) ### [`v3.6.2`](https://togithub.com/yarnpkg/berry/compare/4ed09ecb51d4c69775d61b5d2ddc7cf9301452ac...7b88e9ef75bf73e97df47428c9146322c9c4315f) [Compare Source](https://togithub.com/yarnpkg/berry/compare/4ed09ecb51d4c69775d61b5d2ddc7cf9301452ac...7b88e9ef75bf73e97df47428c9146322c9c4315f) ### [`v3.6.1`](https://togithub.com/yarnpkg/berry/compare/98c9662047200aec924e34664ba53293474c93bc...4ed09ecb51d4c69775d61b5d2ddc7cf9301452ac) [Compare Source](https://togithub.com/yarnpkg/berry/compare/98c9662047200aec924e34664ba53293474c93bc...4ed09ecb51d4c69775d61b5d2ddc7cf9301452ac) ### [`v3.6.0`](https://togithub.com/yarnpkg/berry/compare/c6bcbfe8e24c1af6d3b59436c7ef673b367a1335...98c9662047200aec924e34664ba53293474c93bc) [Compare Source](https://togithub.com/yarnpkg/berry/compare/c6bcbfe8e24c1af6d3b59436c7ef673b367a1335...98c9662047200aec924e34664ba53293474c93bc) ### [`v3.5.1`](https://togithub.com/yarnpkg/berry/compare/f4af6c7cf1588f80011ec13060099d96be67127c...c6bcbfe8e24c1af6d3b59436c7ef673b367a1335) [Compare Source](https://togithub.com/yarnpkg/berry/compare/f4af6c7cf1588f80011ec13060099d96be67127c...c6bcbfe8e24c1af6d3b59436c7ef673b367a1335) ### [`v3.5.0`](https://togithub.com/yarnpkg/berry/compare/0d66d6e73acf0303c4461fbb9023b02cb942845f...f4af6c7cf1588f80011ec13060099d96be67127c) [Compare Source](https://togithub.com/yarnpkg/berry/compare/0d66d6e73acf0303c4461fbb9023b02cb942845f...f4af6c7cf1588f80011ec13060099d96be67127c) ### [`v3.4.1`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#341) [Compare Source](https://togithub.com/yarnpkg/berry/compare/8ba1a57e0cfdf8bf649d04cff0f18664e5164b33...0d66d6e73acf0303c4461fbb9023b02cb942845f) - Fixes an accidental backport error in `yarn init`. ### [`v3.4.0`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#340) [Compare Source](https://togithub.com/yarnpkg/berry/compare/340e0db330e242946b570d8a08b0a9d97d8d8774...8ba1a57e0cfdf8bf649d04cff0f18664e5164b33) ##### Node.js parity - PnP now supports the Node `--conditions` flag. - PnP now supports the Node `--watch` flag on Node 18 (it previously only supported it on Node 19). ##### Bugfixes - The PnP API module (`pnpapi`) can now be imported from ESM modules. - `ZipFS.prototype.getBufferAndClose` will not error on empty archives resulting from an unlink after write. - Fixes various issues around postinstall script inter-dependencies. - Removes the message prefixes (`YN0000`) from `yarn workspaces foreach`. ##### Compatibility - Updates the PnP compatibility layer for TypeScript v5.0.0-beta. ### [`v3.3.1`](https://togithub.com/yarnpkg/berry/compare/2693d1d729957f74b4d5bb13f59410cca2faac56...340e0db330e242946b570d8a08b0a9d97d8d8774) [Compare Source](https://togithub.com/yarnpkg/berry/compare/2693d1d729957f74b4d5bb13f59410cca2faac56...340e0db330e242946b570d8a08b0a9d97d8d8774) ### [`v3.3.0`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#330) [Compare Source](https://togithub.com/yarnpkg/berry/compare/032a9453e4553268025afebf9720cdc3a1f7a2a8...2693d1d729957f74b4d5bb13f59410cca2faac56) ##### Installs - The node-modules linker avoids creation of circular symlinks - The node-modules linker no longer creates duplicate copies inside of aliased packages - The node-modules linker locates binaries correctly when the same version of the package is duplicated inside root workspace and another workspace - Improved performance for `hardlinks-global` `node-modules` linker mode by 1.5x ##### Compatibility - Updates the PnP compatibility layer for TypeScript v4.9.2-rc. ### [`v3.2.4`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#324) [Compare Source](https://togithub.com/yarnpkg/berry/compare/3f3b8a529b32fe3a92a19724df54434c9e1958fa...032a9453e4553268025afebf9720cdc3a1f7a2a8) ##### Compatibility - The patched filesystem now supports fchown. - PnP now handles private import mappings. - Updates the PnP compatibility layer for TypeScript v4.8.4 and v4.9.1-beta. - PnP now reports loaded modules when in watch mode. ### [`v3.2.3`](https://togithub.com/yarnpkg/berry/blob/HEAD/CHANGELOG.md#323) [Compare Source](https://togithub.com/yarnpkg/berry/compare/7a42886db3ad437b5f0c2dc6e12c2cd9b894070d...3f3b8a529b32fe3a92a19724df54434c9e1958fa) ##### Bugfixes - When Corepack is enabled Yarn will now use the current CLI to prepare external Yarn classic projects, matching the behaviour of when Corepack is disabled. ##### Compatibility - Updates the PnP compatibility layer for TypeScript 4.8.1-rc - The ESM loader now supports unflagged JSON modules.