Hacker News new | ask | show | jobs
by judge2020 2439 days ago
`npm`/`yarn` have hash checks when using the lockfile (side note: you should be using `npm ci` in your deployments so it doesn't install newer versions). Maybe there could be a lockfile system for webpack that would verify a file like the one they suggest doesn't change between installs and systems.
1 comments
realPubkey 2439 days ago
Doesnt deno also have a lockfile?
link
rhacker 2439 days ago
That's why I don't want to use it personally, it's all in the imports. Making things a pita when you want to just upgrade something.
link