loading...

re: When not to use package-lock.json VIEW POST

TOP OF THREAD FULL DISCUSSION
re: If you need to lock down dev dependencies, use semver range that meets your requirements Exact semver range isn't locking. Transitive dependencie...

I understand your argument (using lock files ensures smooth deployments and development cycles). However, unlike others in this thread, I do not put as much value on this argument compared to the downsides I have described in this article. In practise, I have found it extremely rare that dependencies or transitive dependencies break or introduce bugs within semver changes that prevent me from working or that would have been prevented using lock files. Happened, maybe 3 times over the last 5 years that my work was interrupted for longer than an hour.

code of conduct - report abuse