DEV Community

10 npm Commands that every developer must know

Gurshehzad Singh on June 21, 2021

NPM stands for Node Package Manager and it is the package manager for the Node JavaScript platform. It put modules in place so that node can find t...

Read full post

Robin van der Knaap • Jun 21 '21

What about npm audit and npm audit fix for security fixes?

Daniel Parmenvik • Jun 22 '21

I agree with you Robin that security issues and remediation should be an important part. But I would 10/10 times use a tool that continuously checks that for you. Doing it manually is prone to fail at some time.

Robin van der Knaap • Jun 22 '21

Absolutely!

Gurshehzad Singh • Jun 22 '21

Yes, they can be added here. But i just wanted to keep it brief so that new developers can get a glimpse of how to start working with npm

Matt Revell • Jun 24 '21

Might be a good shout to add it (npm audit) to your ci pipeline on push to repo, assuming you are using a ci system.

Jordan Finneran • Jun 21 '21

I'd definitely add npm outdated and npm update to this list for package maintenance!

Gurshehzad Singh • Jun 22 '21

Me too.. But i wanted to keep it short till 10 so that it doesn't get overwhelming for beginners

Joe Attardi • Jun 22 '21 • Edited

Good list, however npm does not actually stand for "Node Package Manager".

twitter.com/npmjs/status/105690425...

TED Vortex (Teodor Eugen Duțulescu) • Jun 24 '21

this person gets it. or rather, how to read the official docs

Jakub Stibůrek • Jun 23 '21

What is this trickery? 😁

Matthew Riley • Jun 24 '21

npm i - installs the packages in package.json but rewrites the lock file, which because of both the ecosystem and the default behaviour of npm i -s, means that different people working on the same code base can have very different packages installed, which can lead to problems. npm ci is the better way of installing packages from package.json