Comment by ptx
2 months ago
NPM lock files seem to include hashes for integrity checking, so as long as you check the lock file into the VCS, what's the difference?
2 months ago
NPM lock files seem to include hashes for integrity checking, so as long as you check the lock file into the VCS, what's the difference?
Wrong question; NPM isn't bedrock. The question to be answered if there is no difference is, "In that case, why bother with NPM?"