pnpm
Replies: 1 comment 1 reply
-
|
|
Beta Was this translation helpful? Give feedback.
1 reply
-
|
Okay, thanks for the confirmation. |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Per my understanding,
pnpm dedupefinds cases where multiple versions of a package are used and tries to reduce the number of versions used. For instance, if the project uses [email protected] in one place and [email protected] in another, runningpnpm dedupewould likely consolidate to just using [email protected] everywhere.How it deduplicates a package that has different major/minor version throughout the app? As if lodash@^9 and lodash@^10 is used in different parts of the project. Though it is generally not recommended to have such a setup, I want to be sure that
pnpm dedupeis safe to use in production. E.g., you have a Dockerfile that uses pnpm and after installing packages, you also runpnpm dedupe.So, my question is: does
pnpm deduperespect semver ranges by not violating the semver constraints specified in the package.json dependencies? I assume the answer is affirmative, but I could not find any official information on it, nor similar questions raised there or confirmation in the docs.I think some clarification on the inner workings of this CLI command should be added to the command's description.
Thank you.
Beta Was this translation helpful? Give feedback.
All reactions