[Snyk] Security upgrade lerna from 8.2.4 to 9.0.0

[rvu-snyk]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Directory Traversal SNYK-JS-TAR-15307072	813

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Directory Traversal

[rvu-snyk]

This major upgrade from lerna v8 to v9 introduces significant breaking changes, including the removal of long-deprecated commands and a change in supported Node.js versions.

Key Breaking Changes:

• Command Removals: The lerna bootstrap, lerna add, and lerna link commands have been completely removed. The @lerna/legacy-package-management package that polyfilled them is also gone. Workflows using these commands will fail.
• Node.js Version Support: Support for Node.js 18 has been dropped. Lerna v9 requires Node.js version ^20.19.0, ^22.12.0, or >=24.0.0.
• Configuration & Workspace Detection: Lerna now defaults to using your package manager's native workspace configuration (package.json workspaces, pnpm-workspace.yaml, etc.) to discover packages. The useWorkspaces flag in lerna.json is obsolete.

Recommendation:

• Replace Legacy Commands: Update your CI/CD scripts and local development workflows to use your package manager's commands for dependency installation and linking (e.g., npm install, yarn install, pnpm install).
• Verify Node.js Version: Ensure your development and deployment environments are running a supported version of Node.js.
• Update Configuration: After upgrading, run lerna repair to automatically migrate your lerna.json to the new format.

Source: GitHub Release Notes

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.