Update package versions
alopezsanchez opened this issue · 3 comments
Hello.
This issue is related to #18.
First, i ran a npm outdated
:
@bmeurer, I have some questions about it:
- Should we upgrade all package versions?
- The reason to have explicit version of packages in
package.json
is the traceability between package versions and project version, right? I mean, having"prettier": "1.8.2"
instead of"prettier": "^1.8.2"
, for example. - This implies a project version bump, right?
0.4.0
?
Hey @alopezsanchez,
Thanks for kicking this off. Answers to your questions:
- Yes, please upgrade all packages to the latest versions.
- The reason for explicit versions is indeed reproducibility between different builds. All tools/libraries under test need to have explicit versions in the
package.json
. - Yes, please bump the version to
0.4.0
.
Some drive-by comments:
-
All tools/libraries under test need to have explicit versions in the
package.json
.Let’s add a pre-commit hook that tests for that!
-
Note that we could also use
package-lock.json
to guarantee reproducibility between different builds. -
Updating dependencies in
package.json
to the latest version can be automated: just runnpx npm-check-updates -a
. Thennpm install
and verify that everything still works. -
Version number bumps should happen in separate commits, IMHO.
I think I tried package-lock.json
and that didn't really work as expected. But happy to take patches. Otherwise, +1 to everything you suggested.