deps: bump which from 2.0.2 to 3.0.0

Bumps [which](https://github.com/npm/node-which) from 2.0.2 to 3.0.0.
- [Release notes](https://github.com/npm/node-which/releases)
- [Changelog](https://github.com/npm/node-which/blob/main/CHANGELOG.md)
- [Commits](npm/node-which@v2.0.2...v3.0.0)

---
updated-dependencies:
- dependency-name: which
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Author: dependabot[bot]

package.json

@@ -35,7 +35,7 @@
     "tap": "^16.0.1"
   },
   "dependencies": {
-    "which": "^2.0.2"
+    "which": "^3.0.0"
   },
   "engines": {
     "node": "^14.17.0 || ^16.13.0 || >=18.0.0"