fix(TWILIGHT-2544): add pnpm lock file and update package manager to pnpm

[Nabute]

What kind of change does this PR introduce? (Bug fix, feature, docs update, ...)

• Feature: Added support for PNPM as the package manager and generated a lockfile.

What is the current behavior? (You can also link to an open issue here)

• Currently, the project uses npm, and the lockfile is generated as package-lock.json, which can lead to larger disk usage and slower installs due to duplication of dependencies across projects.

What is the new behavior? (You can also link to the ticket here)

• With this PR, the project switches to PNPM, which uses a global store for dependencies. The new pnpm-lock.yaml file ensures consistent dependency versions and faster installs.

Does this PR introduce a breaking change?

• No, this PR does not introduce any breaking changes. The project can continue to run with the same dependencies, just managed more efficiently with PNPM.

Screenshots (If appropriate)

• N/A

[Nabute]

/autoupdate

[SallaDev]

The branch feature/TWILIGHT-2544-add-pnpm-support-new of #510 Branch is up-to-date..✅

[codacy-production]

⚠️ Codacy found a medium Security issue: Insecure dependency [email protected] (CVE-2023-45857: axios: exposure of confidential data stored in cookies) (update to 0.28.0)

The issue reported by the Trivy linter is related to a vulnerability in the axios library, specifically version 0.27.2, which has been flagged for exposing confidential data stored in cookies (CVE-2023-45857). The recommended action is to update the axios library to version 0.28.0 or later to mitigate this security risk.

To fix the issue, you should update the version of axios from 0.23.0 to 0.28.0 in your dependency list. Here is the code suggestion to make that change:

Suggested change

	axios@0.23.0:
	axios@0.28.0:

---

This comment was generated by an experimental AI tool.