How to avoid npm install/update surprises?

node.js angular npm angular-cli devops
10,780

Solution 1

If you use yarn or a more recent version of npm, it will generate for you a yarn.lock or package-lock.json.

This will keep exactly the version of any package when it's first installed, so further calls to yarn or npm install will fetch and install exactly those versions.

Of course you should add these lock files to your repository so anyone doing a fresh clone get the same dependencies installed.

See the npm docs: https://docs.npmjs.com/files/package-lock.json

And the yarn docs: https://yarnpkg.com/lang/en/docs/yarn-lock/

Solution 2

  1. package.json file indicates ranges but not specific versions : Re-read the documentation, you can specify specific versions. See point 3 for an example.
  2. Why would this happens in 2018 <= I/we can't speculate as to problems where you did not include any specific details, it might be a valid general gripe you have but StackOverflow is not the correct place to vent it.

  3. Again, see the documentation. You just have to include the version number with an = sign. Example below would get only the version 5.0.0 of @angular/cdk.

    "@angular/cdk": "5.0.0"
Share:
10,780
user2080105
Author by

user2080105

Updated on June 12, 2022

Comments

  • user2080105
    user2080105 almost 2 years

    How to safely npm install/update when deploying/upgrading ?

    • Problem 1 : npm install is a statefull operation that depends on the latest versions of dependencies in the time when the command is executed. This causes surprises when deploying since package.json file indicates ranges but not specific versions.

    • Problem 2 : everytime I make npm update or use ncu, I spend hours/days trying to handle incoherences between modules. Why would this happens in 2018 ?

    • Problem 3 : How to have package.json file that describes exactly the state of installed packages instead of ranges so that I can deploy without surprises ?

    NB: I use Angular

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Cannot install @angular/cli
Why is npm throwing the error "checksum failed while installing @angular/cli"?
@angular-cli install fails with deprecated [email protected]: request has been deprecated (mac)
Npm ERR! code EPERM
The term 'ng' is not recognized as the name of a cmdlet
You seem to not be depending on "@angular/core and/or "rxjs". This is an error
bash: npm: command not found
Schematic "library" not found in collection "@schematics/angular"
Node JS 6.9 and angular CLI version compatibility
Use node crypto in angular 9