Bump pnpm/action-setup from 2 to 4

[dependabot]

Bumps pnpm/action-setup from 2 to 4.

Release notes

Sourced from pnpm/action-setup's releases.

v4.0.0

An error is thrown if one version of pnpm is specified in the packageManager field of package.json and a different version is specified in the action's settings #122

v3.0.0

The action is updated to run on Node.js v20

v2.4.1

Updated the bundled pnpm version to v7 to fix the ERR_INVALID_THIS error.

v2.4.0

Add ability to install standalone binary (pnpm/action-setup#92).

v2.3.0

• feat: specifying path to non-root package.json file (pnpm/action-setup#88).
• docs: improve.

v2.2.4

No deprecation warnings are printed about set-state and set-output commands (pnpm/action-setup#57)

v2.2.3

Bump Node.js version to 16 pnpm/action-setup#56

v2.2.2

Fixing network issues.

Related issues:

• pnpm/action-setup#44
• pnpm/action-setup#22

Related PR:

• pnpm/action-setup#46

v2.2.1

Fix "packageManager" reader pnpm/action-setup#35

v2.2.0

• Support the packageManager field in the package.json file pnpm/action-setup#33.
• Use @pnpm/fetch as an attempt to fix pnpm/action-setup#22 pnpm/action-setup#32.

v2.1.0

Support pnpm v7 pnpm/action-setup#29

v2.0.1

Update versions in code examples in README.md to the latest ones to avoid users using the wrong versions.

Commits

• b906aff Revert "feat!: run the action on Node.js 24 (#205)"
• 9b5745c feat!: run the action on Node.js 24 (#205)
• 1e1c8ea ci: pin github actions (#199)
• b9e1dbc fix(ci): exclude macos (#197)
• 61bc82c refactor: remove star imports (#196)
• e94b270 feat: store caching (#188)
• ee7b871 Clarify that package_json_file is relative to GITHUB_WORKSPACE (#184)
• 3a0024f Remove unused @types/node-fetch dependency (#186)
• 72f0451 Update README.md (#175)
• 41ff726 feat: support installation from custom NPM registry (#179)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[cloudflare-workers-and-pages]

Deploying tvm with    Cloudflare Pages

Latest commit:	6b4820f
Status:	✅  Deploy successful!
Preview URL:	https://f8a4a052.tvm.pages.dev
Branch Preview URL:	https://dependabot-github-actions-pn.tvm.pages.dev

View logs

[JiwaniZakir]

The version bump from pnpm/action-setup@v2 to v4 in .github/workflows/build.yml is a significant jump that skips v3, so it's worth confirming the changelog for any breaking changes between those versions. Notably, pnpm/action-setup@v4 dropped the version input as a required field in favor of reading from packageManager in package.json — if package.json doesn't define a packageManager field and no version is specified in the with block, the action will fail at runtime. The existing with block in this workflow doesn't include a version key, so it would be worth verifying that the repo's package.json has something like "packageManager": "pnpm@x.y.z" to avoid a silent breakage on the next CI run.