Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Does package-lock.json need to be versioned in git?

Tags:

git

gitignore

node.js

npm

package

npm 5 & nodejs 8 introduces a file named package-lock.json, I want to know if it is need to be versioned or be ignored in git

like image 200
Henry Leu Avatar asked Jun 20 '17 07:06

Henry Leu

People also ask

Should package lock json be committed to repo?

The package-lock. json file needs to be committed to your Git repository, so it can be fetched by other people, if the project is public or you have collaborators, or if you use Git as a source for deployments. The dependencies versions will be updated in the package-lock. json file when you run npm update .

Do we need to push package lock json?

If you're collaborating on a shared project with multiple developers, and you want to ensures that installations remain identical for all developers and environments, you need to use package-lock. json . package-lock. json is automatically generated for any operations where npm modifies either package.

Should you include package json in Git?

To recap, you should always include both package. json and package-lock. json in your source control. Thus, never put them in the .

Should I remove package lock json?

package-lock. json defines versions used in my project. There should be no need to remove it completely and thus upgrade all dependencies to the latest version just because I upgrade Vaadin.

1 Answers

Short Answer : Yes It must be.

Long Answer :

As Per npmjs Documentaion :

package-lock.json is automatically generated for any operations where npm modifies either the node_modules tree, or package.json. It describes the exact tree that was generated, such that subsequent installs are able to generate identical trees, regardless of intermediate dependency updates.

This file is intended to be committed into source repositories, and serves various purposes:

  • Describe a single representation of a dependency tree such that teammates, deployments, and continuous integration are guaranteed to install exactly the same dependencies.

  • Provide a facility for users to time-travel to previous states of npm_modules without having to commit the directory itself.

  • To facilitate greater visibility of tree changes through readable source control diffs.

  • And optimize the installation process by allowing npm to skip repeated metadata resolutions for previously-installed packages.

like image 142
LuFFy Avatar answered Oct 17 '22 21:10

LuFFy
Sign in to Comment

Related questions

How can avoid symlink problems with npm running in Docker on a Windows host?
Node: one core, many processes
PostgreSQL multi-row updates in Node.js
TypeError: callback.apply is not a function (Node.js & Mongodb)
Connecting to AWS Elasticsearch from non-AWS node.js app
Understanding promise rejection in node.js
Can fs.unlink() delete a empty or non empty folder?
node.js mysql query in a for loop
Save video blob to filesystem electron/node js
how does createConnection work with nodeJS in mysql?
Node.js TypeError: Object function Object() { [native code] } has no method 'assign'
How to get the profile of current user in node js
How to query tree structure recursively with MongoDB?
ssh2 node js sftp protocol Error Handshake failed
Why use redis for websocket communication?
Nodejs mssql ConnectionError: Login failed for user ' '
When to close Database with node-sqlite3 and express?
node.js api gateway implementation and passport authentication
Transform JSX to JS using babel
Node express HTML to PDF

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!