yarn: frozen-lockfile integration test

[slimreaper35]

closes #655

The integration test covers a scenario when running yarn install ... command will fail becuase of new dependencies that were added to package.json and yarn.lock would have to updated to reflect these changes.

Maintainers will complete the following section

• Commit messages are descriptive enough
• Code coverage from testing does not decrease and new code is covered
• Docs updated (if applicable)
• Docs links in the code are still valid (if docs were updated)

Note: if the contribution is external (not from an organization member), the CI
pipeline will not run automatically. After verifying that the CI is safe to run:

• approve GitHub Actions workflows by clicking a button
• approve the Red Hat Trusted App Pipeline container build by commenting /ok-to-test
  (as is the standard for Pipelines as Code)

[slimreaper35]

Related PR: cachito-testing/cachi2-yarn#1

[eskultety]

closes #655

The way the issue is currently written then this PR definitely doesn't resolve it, it only addresses one of the list items. Depending on the consensus on #655 (comment) this PR might eventually be merged as is OR it'll need an additional inverted test (i.e. removing deps).

[slimreaper35]

https://github.com/cachito-testing/cachi2-yarn/tree/invalid_frozen_lockfile

When I manually ran the command yarn install --frozen-lockfile on that branch lockfile wasn't touched at all.