build(deps-dev): bump @yarnpkg/shell from 3.2.5 to 4.0.0

[dependabot]

Bumps @yarnpkg/shell from 3.2.5 to 4.0.0.

Release notes

Sourced from @​yarnpkg/shell's releases.

v4.0.0

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.6.4...@​yarnpkg/cli/4.0.0

v3.6.4

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.6.3...@​yarnpkg/cli/3.6.4

v3.6.3

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.6.2...@​yarnpkg/cli/3.6.3

v3.6.2

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.6.1...@​yarnpkg/cli/3.6.2

v3.6.1

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.6.0...@​yarnpkg/cli/3.6.1

v3.6.0

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.5.1...@​yarnpkg/cli/3.6.0

v3.5.1

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.5.0...@​yarnpkg/cli/3.5.1

v3.5.0

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.4.1...@​yarnpkg/cli/3.5.0

v3.4.1

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.4.0...@​yarnpkg/cli/3.4.1

v3.4.0

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.3.1...@​yarnpkg/cli/3.4.0

v3.3.1

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.3.0...@​yarnpkg/cli/3.3.1

v3.3.0

Full Changelog: https://github.com/yarnpkg/berry/compare/@​yarnpkg/cli/3.2.4...@​yarnpkg/cli/3.3.0

Changelog

Sourced from @​yarnpkg/shell's changelog.

4.0.0

Major Changes

• With Node.js 16's now being End of Life'd, we dropped support for Node.js versions lower than 18.12.

• Some important defaults have changed:

  • yarn set version will prefer using packageManager rather than yarnPath when possible.
  • yarn init will no longer use zero-install by default. You still can enable it, but it should make it easier to start one-of projects without having to rewrite the configuration afterwards.
  • yarn workspaces foreach now requires one of --all, --recursive, --since, or --worktree to be explicitly specified; the previous default was --worktree, but it was rarely what users expected.

• All official Yarn plugins are now included by default in the bundle we provide. You no longer need to run yarn plugin import for official plugins (you still need to do it for third-party plugins, of course).

  • This doesn't change anything to the plugin API we provide, which will keep being maintained.
  • Yarn still has a modular architecture and uses the exact same APIs as contrib plugins; all that changes is how we distribute our own features.

• Yarn's UI during installs has been greatly improved:

  • Packages added and removed from the lockfile are now explicitly reported.
  • Fluctuations in the project cache size are now reported as a single line.
  • Unactionable warnings (node-gyp and transitive peer dependency errors) have been removed.
  • Skipped builds are now only reported during initial installs and manual yarn rebuild calls.
  • The Yarn version is now displayed on installs to help us investigate issues when reported as screenshots.
  • Deprecation checks have been moved to yarn npm audit.

• Some settings were renamed or removed:

  • caFilePath is now httpsCaFilePath
  • preferAggregateCacheInfo has been removed (it's now always on)
  • pnpDataPath has been removed to adhere to our new PnP specification. For consistency, all PnP files will now be hardcoded to a single value so that third-party tools can implement the PnP specification without relying on the Yarn configuration.

• The yarn npm audit command has been reimplemented:

  • The audit registry must now implement the /-/npm/v1/security/advisories/bulk endpoint.
  • The npmAuditRegistry can be used to temporarily route audit queries to the npm registry.
  • Deprecations are now returned by default. To silence them, use yarn npm audit ! --no-deprecations.

• Some legacy layers have been sunset:

  • Plugins cannot access the Clipanion 2 APIs anymore (upgrade to Clipanion 3)
  • Plugins cannot access the internal copy of Yup anymore (use Typanion instead)
  • Yarn will no longer remove the old Yarn 2.x .pnp.js file when migrating.
  • The --assume-fresh-project flag of yarn init has been removed.

API Changes

The following changes only affect people writing Yarn plugins:

• The ZipFS and ZipOpenFS classes have been moved from @yarnpkg/fslib to @yarnpkg/libzip. They no longer need or accept the libzip parameter.

  • Reading the zip archives is now done on the Node.js side for performance; as a result, the open, ZIP_CREATE, and ZIP_TRUNCATE bindings are no longer needed for ZipFS and have also been removed.

• The dependencies field sent returned by Resolver#resolve must now be the result of a Configuration#normalizeDependencyMap call. This change is prompted by a refactoring of how default protocols (ie npm:) are injected into descriptors. The previous implementation caused various descriptors to never be normalized, which made it difficult to know what were the descriptors each function should expect.

  • Similarly, the descriptors returned by Resolve#getResolutionDependencies are now expected to be the result of Configuration#normalizeDependency calls.

... (truncated)

Commits

• c6764b2 Releasing 40 new packages
• dffef57 Releasing 40 new packages
• 3cc7c55 Releasing 40 new packages
• 7b5b84a Disables emoji in our Windows tests until Node is fixed (#5763)
• 4be0987 Releasing 40 new packages
• 07c7c28 Releasing 40 new packages
• 3b2eae1 Releasing 40 new packages
• d85702c Improvements on the Docusaurus website (#5643)
• cea1621 Updates Clipanion to 4.0.0-rc.1 (#5624)
• 88cf2c2 refactor: use timers/promises (#5620)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Looks like @yarnpkg/shell is up-to-date now, so this is no longer needed.