I'm using pnpm for package management in my project and VS code editor. However, every time I save changes to package.json, a package-lock.json file gets automatically generated, even though I'm no...

Is there a way to check if a package-lock.json file is compatible with package.json without running npm install? Compatible means the versions specified package.json can be fulfilled by package-loc...

I used the command yarn install in Visual Studio Code, but it ocurred error. following error message. package-lock.json found. Your project contains lock files generated by tools other than Yarn. ...

I downloaded a theme and it has a package-lock.json file but no package.json file. Is there a way I can generate the package.json from the package-lock.json file. How do I install the node modules ...

In a team set up, usually, I have faced merge conflicts in package-lock.json and my quick fix has always been to delete the file and regenerate it with npm install. I have not seriously thought abo...

I'm getting the following error when I try to import mongoose with TypeScript node_modules/mongoose/node_modules/mongodb/mongodb.d.ts:3309:5 - error TS2416: Property 'end' in type 'GridFSBucketWrit...

I've received for the first time a notification from GitHub about a potential security issue (label: high-severity) with some of my project's dependencies. Here's the sample message: url-parse v...

Today I pulled latest from a shared Git repository and noticed that another developer on my team added an NPM package. So I ran npm install, and then saw that my package-lock.json file had changed....

I just generated a new npm lockfile, package-lock.json, as part of my typical workflow. But I noticed that this time all of the integrity hashes have been changed from sha1 to sha512. What is happe...

I just recently upgraded to npm@5. I now have a package-lock.json file with everything from package.json. I would expect that, when I run npm install that the dependency versions would be pulled fr...

whenever I generate a package-lock file, there is also "resolved" block that looks like this: "resolved": "http://devel.npm.registry:4873/lodash/-/lodash-4.17.5.tgz" What is the point of this UR...

If two different developers are using different versions of node (12/15) & npm (6/7) in a project that was originally created using a package-lock.json "lockfileVersion": 1, when the ...

Ocassionally, when installing an (unrelated) dependency, I lose the resolved values from each of my private nexus repository dependencies, meaning that when my build server runs npm ci it falls bac...

My project depends on analytics-node which has a dependency on axios: "^0.16.2". We have been flagged with npm audit that axios has a vulnerability in it but its fixed in 0.18.1. However, analyti...

I'm trying to run this command: npm ci And it returns this error: npm ERR! pkg-dir not accessible from find-cache-dir What am I missing here?

I have a CI/CD pipeline for an Angular project which yesterday worked fine, but today the same code is returning several errors on the build: ./src/styles.scss.webpack[javascript/auto]!=!./node_mod...

On npm install, I see that in package-lock.json property packages[""].name is sometimes removed and sometimes added. How to prevent this change, since it appears in git changes?

What is the point of putting npm's package-lock.json under version control? In my experience having this file source controlled has caused more trouble and confusion than efficiency gains. Having ...

TL;DR How do I update package.json and package-lock.json version number without updating dependencies? We have a problem where we want to uptick our version number after development and before dep...

I accidentally deleted my package-lock.json file. npm install is not generating a new one. How do I get npm to recreate this file.

I want to a do a diff but without package-lock.json which is huge and is a generated file so nothing interesting for me there. I tried both : git diff -- ':(exclude)package-lock.json' git diff --...

After updating NPM to version 5, I found package-lock.json file with package.json. What is the difference between this two files? What are the advantages of package-lock.json?

I'm using Vue 3 and I pushed a version of my project that was working well to GitHub 19 hours ago. About 5 hours later, the problem below occurred when I entered npm run serve which resulted in the...

I had node version 10 installed in my system, after upgrading my npm from version 6 to version 7 I couldn't install the dependencies, and I'm getting error so I had to downgrade my node to 6, (both...

I deleted it by accident and have made many changes to package.json since. An npm install or npm update do not generate package-lock.json anymore. I tried clearing my npm cache and my nvm cache, bu...