[discussion] migrating to pnpm for the monorepo setup #145
Description
We currently have a couple of deps that we need to either replace or bundle w/ the deployed package (thanks to socket for flagging them as trivial):
- [bug] dependency
has-unicodehas issues related to triviality (and more) #57 - [bug] dependency
supports-ansihas issues related to triviality (and more) #58
We also have a problem of the npm lockfile version changing from 2 to 3 in npm@9
Does this mean that we should switch to either pnpm for their lockfile at this point, or maybe Yarn?
I don't really mind either way, but the problematic lockfile bump is going to be something to watch out for:
- chore(deps): lock file maintenance #142
- chore(deps): lock file maintenance #143
- chore(deps): lock file maintenance #144
The Snyk check was failing those PRs as the lockfile being inconsistent w/ the deps(-dev) that are listed in our package.json — we can't have this as being flagged by Snyk (unacceptable).
/cc @shellscape