|
|
|
|
|
|
by K0nserv
1626 days ago
|
|
|
It’s not particularly insane. package.json and package-lock.json have different purposes, namely package.json specified intent e.g. I want a version that satisfies >=5.2.3 && < 6.0.0 and package-lock.json records the exact resolved version. Off the top of my head Bundler, CocoaPods, Cargo, SPM, Pipfile(and various other Python dependency managers), and composer also all work like this. Cargo even makes it implicit that a version like “1” means “^1.0.0” in Cargo.toml. |
|
|