fix: reuse catalog resolutions of npm aliases correctly

[gluxon]

Problem

When running pnpm update in this repo, pnpm looks for execa@0.1.2 and 404s instead of looking for safe-execa@0.1.2.

This is because of a bug in my prior PR from a few days ago. 🤦🏻‍♂️

• fix: reuse existing cataloged resolutions for consistency #8259.

The repo uses the catalog specifier for execa. The change above isn't handling npm aliases correctly.

pnpm/pnpm-workspace.yaml

Line 136 in a3d5f60

execa: npm:safe-execa@0.1.2

Changes

Using replaceVersionInPref to fix the bug above. This function handles npm: specifiers correctly.

We're currently using this function elsewhere for a very similar short-circuiting purpose.

pnpm/pkg-manager/resolve-dependencies/src/resolveDependencies.ts

Line 1200 in 89363fa

wantedDependency.pref = replaceVersionInPref(wantedDependency.pref, currentPkg.version)

[gluxon]

I had a more complicated fix in #8280, but went with the one here after realizing the catalog snapshot version should probably stay as concrete versions for now. Otherwise we'd store peers suffixes in the catalog snapshot, which was never intended.

[zkochan]

Looks complicated but if it works, let it be, I guess.