Comment by ptx
5 months ago
NPM lock files seem to include hashes for integrity checking, so as long as you check the lock file into the VCS, what's the difference?
5 months ago
NPM lock files seem to include hashes for integrity checking, so as long as you check the lock file into the VCS, what's the difference?
Wrong question; NPM isn't bedrock. The question to be answered if there is no difference is, "In that case, why bother with NPM?"