chore: migrate impit-node to pnpm and enable minimum release age

[B4nan]

Summary

Migrate the impit-node/ Node/TypeScript subpackage from Yarn 4 to pnpm 10.24.0 as part of the org-wide supply-chain hardening rollout (aligning with apify/got-scraping#175 and apify/actor-scraper#273). The Rust workspace (impit/) and impit-python/ are untouched.

A 24 h minimumReleaseAge is enforced via pnpm-workspace.yaml and Renovate, with @apify/* and @crawlee/* excluded so first-party packages flow through immediately.

Changes

• impit-node/package.json: packageManager -> [email protected]; scripts rewritten so npm run build:debug becomes pnpm build:debug. engines.node was already >= 20 so no change needed.
• impit-node/pnpm-workspace.yaml (new): minimumReleaseAge: 1440 with @apify/*, @crawlee/* in the exclude list.
• impit-node/.npmrc (new): node-linker=hoisted, link-workspace-packages=true, prefer-workspace-packages=true, public-hoist-pattern[]=* - needed so napi-rs, typedoc, and friends can resolve transitive deps without the Yarn PnP / flat layout they implicitly rely on.
• Deleted: impit-node/yarn.lock, impit-node/.yarnrc.yml. There was no .yarn/patches/ directory to preserve.
• Added: impit-node/pnpm-lock.yaml (generated by pnpm install).
• .github/actions/pnpm-install/action.yml (new): composite action copied verbatim from apify/got-scraping for consistency. The impit workflows don't end up using it (see below) but it's in place for future reuse.
• .github/workflows/node-test.yaml: removed cache: yarn, corepack enable, yarn global add pnpm lerna; replaced yarn --cwd impit-node X with pnpm X (build job already sets defaults.run.working-directory: impit-node); inlined the pnpm setup (pnpm/[email protected] + pnpm install --frozen-lockfile) rather than using the composite because each job interleaves Rust toolchain setup, dtolnay/rust-toolchain, cargo caching, and Docker-based musl builds - approach (a) from the migration guide is cleaner here. Node test matrix is now [18, 20, 22, 24] (was [20, 22]). Docker-based musl/aarch64 test shells install pnpm via npm install -g [email protected] before invoking it.
• .github/workflows/node-release.yaml: same pnpm substitution; yarn version -> npm version --no-git-tag-version + pnpm copy-version; npm publish --provenance -> pnpm publish --no-git-checks --provenance; yarn install --no-immutable lockfile refresh -> pnpm install --lockfile-only; npx semver -> pnpm dlx semver.
• .github/workflows/docs.yaml: replaced the Yarn setup in the TypeDoc job with pnpm; cd impit-node && yarn docs -> cd impit-node && pnpm docs. Rust and Python docs jobs untouched.
• renovate.json: added minimumReleaseAge: "1 day" and internalChecksFilter: "strict"; added a package rule bypassing the delay for @apify/* and @crawlee/*; dropped the constraints.npm block which no longer reflects reality under pnpm.

Rust + Node layout notes

• impit-node/ is one crate in a multi-crate Cargo workspace. cargo metadata and the napi build both run from impit-node/ and reach out to the parent Cargo.toml, so nothing about the pnpm change affects the Rust side.
• The build job in node-test.yaml uses defaults.run.working-directory: impit-node and the inline pnpm setup honours that. The docker-based musl matrix entries still cd impit-node explicitly because they run from the mounted workspace root (/build).

Verification

• pnpm install and pnpm install --frozen-lockfile in impit-node/ both succeed with pnpm 10.24.0.
• pnpm exec napi --version resolves (3.6.1), confirming the napi CLI is reachable through the hoisted layout.
• pnpm build / pnpm build:debug / pnpm test require the Rust toolchain, which is not available in this environment; they are exercised by CI which already installs dtolnay/rust-toolchain@stable.
• No lint script exists in impit-node/package.json, so nothing to run there.

🤖 Generated with Claude Code

[barjin]

One nit, otherwise ✔️ . Thanks!