stackoom
  简体   繁体   中英

what‘s the best frequence of updating the yarn.lock or package.lock file?

 原文  2019-03-13 05:15:31       npm

Question

we are developing an large web application which depend some private npm packages and public packages. we need to lock the version, but we can not sure which time to update these package and update the lock file.

1 answers

solution1
 0  2019-03-13 07:35:47

In my web project, I update lock files only if i add, update, remove a node package for my project. In this case, I take advantage to update all packages of my lock files.

For the other developers who work in my web project, they use cmd : 

npm ci

or 

yarn install --frozen-lockfile

They must not absolutely modify the lock files.

Furthermore, i am sure that everybody have the same environment (for behavioral reproduction).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question What is the difference between yarn.lock and npm's package-lock? How to symlink a package in workspace without updating yarn.lock? What is the difference between yarn.lock and npm's shrinkwrap? NPM and yarn.lock Alerts security Github - what is the correct way to fix vulnerability in yarn.lock/package-lock.json sync yarn.lock back into package.json and lock how to convert package-lock.json to yarn.lock? Is there a way to download all dependencies in a package-lock.json/yarn.lock file without installing them? Why does my project have both a package-lock.json and yarn.lock file? Is it possible to tell Yarn not to create a yarn.lock file?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM