Skip to content

Lockfiles have needs too and this package takes care of them

License

Notifications You must be signed in to change notification settings

lirantal/lockfile-prune

lockfile-prune

Lockfiles have needs too and this package takes care of them

npm version license downloads build codecov Known Vulnerabilities Responsible Disclosure Policy

About

This package prunes any devDependencies entries in an npm's lockfile, supporting either npm-shrinkwrap.json or package-lock.json.

Usage

npx lockfile-prune <path/to/lockfile>

Example

If you use this as part of an automated flow for releasing packages with something like semantic-release then you only need to npx' the lockfile before the release process.

However, you can also automate it in the following way, by adding these run-script hooks into package.json:

 "scripts": {
   "prepublishOnly": "npx lockfile-prune npm-shrinkwrap.json",
   "postpublish": "git checkout npm-shrinkwrap.json"
}

The postpublish hook isn't strictly necessary on build systems but can prove useful to maintain the same git tree if you are publishing from a local development machine.

Contributing

Please consult CONTRIBUTING for guidelines on contributing to this project.

Author

lockfile-prune © Liran Tal, Released under the Apache-2.0 License.

About

Lockfiles have needs too and this package takes care of them

Topics

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Packages

No packages published