build(deps): bump corepack from 0.26.0 to 0.28.0 in /js-deps

[dependabot[bot]]

Bumps corepack from 0.26.0 to 0.28.0.

Changelog

Sourced from corepack's changelog.

0.28.0 (2024-04-20)

⚠ BREAKING CHANGES

• call executePackageManagerRequest directly (#430)

Bug Fixes

• call executePackageManagerRequest directly (#430) (0f9b748)

0.27.0 (2024-04-19)

⚠ BREAKING CHANGES

• attempting to download a version from the npm registry (or a mirror) that was published using the now deprecated PGP signature without providing a hash will trigger an error. Users can disable the signature verification using a environment variable.

Features

• separate read and write operations on lastKnownGood.json (#446) (c449adc)
• update package manager versions (#425) (1423190)
• update package manager versions (#462) (56816c2)
• verify integrity signature when downloading from npm registry (#432) (e561dd0)

Bug Fixes

• add path to package.json in error message (#456) (32a93ea)
• correctly set Dispatcher prototype for ProxyAgent (#451) (73d9a1e)
• download fewer metadata from npm registry (#436) (082fabf)
• hash check when downloading Yarn Berry from npm (#439) (4672162)
• Incorrect authorization prefix for basic auth, and undocumented env var (#454) (2d63536)
• re-add support for custom registries with auth (#397) (d267753)

Commits

• 78781fa chore(main): release 0.28.0 (#464)
• 0f9b748 fix!: call executePackageManagerRequest directly (#430)
• df1b773 chore(main): release 0.27.0 (#442)
• abe4cf6 chore: bump yarn version and npm deps (#457)
• 56816c2 feat: update package manager versions (#462)
• a62cd7b docs: add link to OpenJS slack channel (#461)
• e033b5f chore(tests): handle windows path formatting more gracefully (#460)
• 32a93ea fix: add path to package.json in error message (#456)
• 1423190 feat: update package manager versions (#425)
• c449adc feat: separate read and write operations on lastKnownGood.json (#446)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[eskultety]

Please hold on merging this as it would cause conflicts with https://github.com/containerbuildsystem/cachi2/pull/528 which given the nature of changes in this PR is IMO unnecessary.

[dependabot[bot]]

Superseded by #548.