prefetch-npm-deps: bail upon seeing git dependencies with install scripts

[winterqt]

Description of changes

Things done

• Built on platform(s)
  • x86_64-linux
  • aarch64-linux
  • x86_64-darwin
  • aarch64-darwin
• For non-Linux: Is sandbox = true set in nix.conf? (See Nix manual)
• Tested, as applicable:
  • NixOS test(s) (look inside nixos/tests)
  • and/or package tests
  • or, for functions and "core" functionality, tests in lib/tests or pkgs/test
  • made sure NixOS tests are linked to the relevant packages
• Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
• Tested basic functionality of all binary files (usually in ./result/bin/)
• 23.05 Release Notes (or backporting 22.11 Release notes)
  • (Package updates) Added a release notes entry if the change is major or breaking
  • (Module updates) Added a release notes entry if the change is significant
  • (Module addition) Added a release notes entry if adding a new NixOS module
  • (Release notes changes) Ran nixos/doc/manual/md-to-db.sh to update generated release notes
• Fits CONTRIBUTING.md.

[winterqt]

This is basically done, I just don't feel like writing a proper description right now, so a draft it is.

[winterqt]

Maybe I should have ran the tests on the last commit before pushing... oops.

So, as far as I know, there are some dependencies (like node-sqlite3 here) where their install script runs fine. So, we have two options here:

1. Warn instead of bailing
2. Bail, but allow the user to say "I want to try to see if this dependency works," via an environment variable or something

Would appreciate any thoughts on this.

[lilyinstarlight]

So, as far as I know, there are some dependencies (like node-sqlite3 here) where their install script runs fine. So, we have two options here:

1. Warn instead of bailing
2. Bail, but allow the user to say "I want to try to see if this dependency works," via an environment variable or something

Would appreciate any thoughts on this.

I'm slightly inclined towards warning if it's non-fatal enough of the time and the warning would be somewhat prominent/not buried in the middle of logs

What is an example of a dependency that it breaks for?

(Also I'll do some actual testing on this PR in a bit, hopefully today or tomorrow)

[winterqt]

What is an example of a dependency that it breaks for?

https://github.com/mongodb-js/electron-notarize, depended on by https://github.com/mongodb-js/mongosh.

[winterqt]

Superseded by #206476.