| ▲ | Joker_vD 4 days ago | |
NPM has, starting with version 0.5.1, an absolutely lovely feature where it simply ignores the package-lock.json file altogether. Or to be more precise, "npm install" regenerates package-lock.json based on package.json. What's the point of "npm upgrade" then? Eh. | ||
| ▲ | 4 days ago | parent | next [-] | |
| [deleted] | ||
| ▲ | 0cf8612b2e1e 4 days ago | parent | prev | next [-] | |
I hate this reality. | ||
| ▲ | thunderfork 4 days ago | parent | prev [-] | |
You can use `npm ci` for "don't update the lockfile, fail if an exact lockfile match can't be collected" | ||