This helps with CI and deploys, but on developer machines running `npm i` will i... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		TranquilMarmot on Jan 10, 2022 \| parent \| context \| favorite \| on: Dev corrupts NPM libs 'colors' and 'faker', breaki... This helps with CI and deploys, but on developer machines running `npm i` will install different things at different times. The amount of churn a `package-lock.json` file undergoes when all of the dependencies have a `^` is crazy.

realityking on Jan 10, 2022 [–]

When you have a package-lock.json file npm i will not upgrade packages. You have to do that manually.

The biggest churn in package-lock.json files is from using different npm versions. It’s worth keeping them aligned within a dev team.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact