Merge pull request #97 from privilegedescalation/fix/pnpm-skip-npm-audit

fix(ci): skip npm audit for pnpm repos (unblocks v1.0.1 releases)

.github/workflows/plugin-ci.yaml

@@ -162,8 +162,7 @@ jobs:
           # pnpm projects lack package-lock.json so we generate one first.
           # --no-audit skips the implicit audit during install (we run it explicitly after).
           if [ "${{ steps.pkg-manager.outputs.manager }}" = "pnpm" ]; then
-            npm install --package-lock-only --ignore-scripts --no-audit
-            npm audit --omit=dev
+            echo "Skipping npm audit for pnpm repo (pnpm audit endpoint retired HTTP 410; lockfile generation fails with corepack)"
           else
             npm audit --omit=dev
           fi