Updating an indirect dependency in shrinkwrapped project

1.1k Views Asked by Jacob At 22 November 2017 at 22:42

Is there a good way with npm (I'm on npm@5) to do a version bump for a nested dependency in a shrinkwrapped/lockfiled project?

Doing an npm install package@latest --save will update the shrinkwrap file as expected, but it also adds the dependency to package.json, which is not what I want. Doing an npm install --no-save package@latest will properly skip updating package.json, but it also won't update the shrinkwrap file.

Is there a simple way to update the sub-dependency and shrinkwrap file without touching package.json?

Original Q&A

There are 1 best solutions below

Jacob On 22 November 2017 at 22:44

The workaround I most often use is a two-step process:

npm i --no-save subdependency@latest && npm shrinkwrap --dev

This is not ideal, but it works. Hopefully someone else has a one-step solution.

Update:

Nowadays, I do this:

npm i --save subdependency@latest && npm uninstall --save subdependency

...which is also annoying.

Updating an indirect dependency in shrinkwrapped project

There are 1 best solutions below

Related Questions in NODE.JS

Related Questions in NPM

Related Questions in DEPENDENCIES

Related Questions in LOCKFILE

Related Questions in NPM-SHRINKWRAP

Trending Questions

Popular # Hahtags

Popular Questions