chore: pin dependencies with lockfile (#729)

Belco90 · web-flow · commit e2c1a6f9dd3a · 2023-02-04T11:14:19.000+01:00
diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml
@@ -3,13 +3,14 @@ name: Pipeline
 on:
   push:
     branches:
-      # semantic-release valid branches
+      # semantic-release valid branches and all-contributors branches
       - '+([0-9])?(.{+([0-9]),x}).x'
       - 'main'
       - 'next'
       - 'next-major'
       - 'beta'
       - 'alpha'
+      - 'all-contributors/**'
   pull_request:
     types: [opened, synchronize]
 
diff --git a/.gitignore b/.gitignore
@@ -67,7 +67,6 @@ yarn-error.log
 # Yarn Integrity file
 .yarn-integrity
 
-# these cause more harm than good
-# when working with contributors
-package-lock.json
+# Ignore locks other than npm
+pnpm-lock.yaml
 yarn.lock
diff --git a/.npmrc b/.npmrc
@@ -1,3 +1,2 @@
-package-lock=false
 auto-install-peers=true
 enable-pre-post-scripts=true
diff --git a/package-lock.json b/package-lock.json
