build(deps): bump pnpm from 8.9.2 to 10.11.1

[dependabot]

Bumps pnpm from 8.9.2 to 10.11.1.

Release notes

Sourced from pnpm's releases.

pnpm 10.11.1

Patch Changes

• Fix an issue in which pnpm deploy --legacy creates unexpected directories when the root package.json has a workspace package as a peer dependency #9550.
• Dependencies specified via a URL that redirects will only be locked to the target if it is immutable, fixing a regression when installing from GitHub releases. (#9531)
• Installation should not exit with an error if strictPeerDependencies is true but all issues are ignored by peerDependencyRules #9505.
• Use pnpm_config_ env variables instead of npm_config_ #9571.
• Fix a regression (in v10.9.0) causing the --lockfile-only flag on pnpm update to produce a different pnpm-lock.yaml than an update without the flag.
• Let pnpm deploy work in repos with overrides when inject-workspace-packages=true #9283.
• Fixed the problem of path loss caused by parsing URL address. Fixes a regression shipped in pnpm v10.11 via #9502.
• pnpm -r --silent run should not print out section #9563.

Platinum Sponsors

Gold Sponsors

... (truncated)

Changelog

Sourced from pnpm's changelog.

10.11.1

Patch Changes

• Fix an issue in which pnpm deploy --legacy creates unexpected directories when the root package.json has a workspace package as a peer dependency #9550.
• Dependencies specified via a URL that redirects will only be locked to the target if it is immutable, fixing a regression when installing from GitHub releases. (#9531)
• Installation should not exit with an error if strictPeerDependencies is true but all issues are ignored by peerDependencyRules #9505.
• Use pnpm_config_ env variables instead of npm_config_ #9571.
• Fix a regression (in v10.9.0) causing the --lockfile-only flag on pnpm update to produce a different pnpm-lock.yaml than an update without the flag.
• Let pnpm deploy work in repos with overrides when inject-workspace-packages=true #9283.
• Fixed the problem of path loss caused by parsing URL address. Fixes a regression shipped in pnpm v10.11 via #9502.
• pnpm -r --silent run should not print out section #9563.

10.11.0

Minor Changes

• A new setting added for pnpm init to create a package.json with type=module, when init-type is module. Works as a flag for the init command too #9463.

• Added support for Nushell to pnpm setup #6476.

• Added two new flags to the pnpm audit command, --ignore and --ignore-unfixable #8474.

  Ignore all vulnerabilities that have no solution:

  > pnpm audit --ignore-unfixable

  Provide a list of CVE's to ignore those specifically, even if they have a resolution.

  > pnpm audit --ignore=CVE-2021-1234 --ignore=CVE-2021-5678

• Added support for recursively running pack in every project of a workspace #4351.

  Now you can run pnpm -r pack to pack all packages in the workspace.

Patch Changes

• pnpm version management should work, when dangerouslyAllowAllBuilds is set to true #9472.
• pnpm link should work from inside a workspace #9506.
• Set the default workspaceConcurrency to Math.min(os.availableParallelism(), 4) #9493.
• Installation should not exit with an error if strictPeerDependencies is true but all issues are ignored by peerDependencyRules #9505.
• Read updateConfig from pnpm-workspace.yaml #9500.
• Add support for recursive pack
• Remove url.parse usage to fix warning on Node.js 24 #9492.
• pnpm run should be able to run commands from the workspace root, if ignoreScripts is set tot true #4858.

10.10.0

... (truncated)

Commits

• e9c09b1 chore(release): 10.11.1
• 3387aa9 fix(deploy/legacy): unexpected directory creations (#9574)
• 8d175c0 fix: use pnpm_config_ instead of npm_config_ (#9571)
• 157bb24 test: write settings to pnpm-workspace.yaml instead of .npmrc (#9523)
• 789e723 chore(release): 10.11.0
• e4af08c fix: linking package globally from workspace should work (#9521)
• f0c3ed6 fix: don't fail with strictPeerDependencies=true if the peerDependencyRules i...
• 36d1448 feat: add workspace-concurrency cli option for pack and publish command (#9...
• 62029d1 fix: add command --allow-build option should specify package (#9489)
• 7ab633d chore(release): 10.10.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
devs-in-tech	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jun 2, 2025 8:42pm

[netlify]

❌ Deploy Preview for devsintech failed. Why did it fail? →

Name	Link
🔨 Latest commit	7d5b589
🔍 Latest deploy log	https://app.netlify.com/projects/devsintech/deploys/683e0c775a82c60008bb1626