What exactly does npm ci command does ? why is it used in all ci pipelines instead of npm install?
Question
I am a bit new to this whole CI/CD world but whenever I see the config.yml files there in any node.js project there is always npm ci instead of npm install . I have read some things from docs but it's still unclear to me. Can someone please explain in clear and concise language?
1 answers
solution1
9 ACCPTED 2021-10-06 05:22:59
npm install generates the package-lock.json for you. The file contains the exact version numbers of all dependencies that you installed as well as the version number of transitive dependencies, all bassed on what you defined in package.json. Note however that in your package.json you can define your version starting with ^ or ~ , suggesting that you want to install the latest patch or minor version of a certain dependency. As a result, every time you run npm install your package-lock.json might end up containing slightly newer versions of your packages if available.
npm ci on the other hand doesn't not generate package-lock.json file. Quite the opposite. It requires your package-lock.json to already be there and it installs exactly the versions that are listed there. This is the command that you want to run on your CI/CD pipeline. This way you can ensure that your pipeline uses exactly the same dependencies you last used locally and can confirm that they worked for you.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.