Why not use * version numbers?
Am I the only one that prefers to use
* for my version specifiers in my package.json file?
Like ya’ll, when I run
yarn outdated, I want to quickly update the outdated packages. My goal is to get the new packages and commit a newer
yarn.lock file. I think the standard process is to open up your
package.json a start iterating. But honestly, this is a diversion from my goal. And from my experience, it’s quite tedious and error prone.
Additionally, after a little while, a version number in
^1.0.2 provides little information. It tells me is what the version was when I first added the package. It’s information that will by definition become stale. It’s historical information available in git. It’s non-information and I don’t want it.
My preference is just to list all my dependencies with a
* version. When I run
yarn install, yarn guarantees to get the latest version that is compatible with all my other packages:
If yarn.lock is absent, or is not enough to satisfy all the dependencies listed in package.json (for example, if you manually add a dependency to package.json), Yarn looks for the newest versions available that satisfy the constraints in package.json. The results are written to yarn.lock.
So I just let yarn handle the upgrade.
I usually upgrade iteratively, committing as I go. Something like:
- Pick a package and
yarn upgrade a-pkgI will often take a set of packages, such as all the lint-related files at once.
- If everything is OK, commit:
yarn add yarn.lockand then
git commit -m 'yarn upgrade a-pkg'(I actually type
⬆️ ⬆️ ^A g co -m' ^e ')
- Go to step 1
Yarn takes care of all guaranteeing the versions are compatible (or at least think they are).
(Note: this is written in terms of
yarn, but it also applies to
npm and even Ruby