Yarn.lock Is Modified On Dev/live Server
This is quite strange problem. I believe it was not in there before (in previous versions of yarn or it's some package problem). I'm using yarn on MacOS and deploy application to live server. Yarn on both is latest 1.12.1
On localhost:
- I removed
node_modulesdirectory - I removed also
yarn.lock - I run
yarn installto install all fresh dependencies
Now I deployed code to live server (with yarn.lock) and:
- I removed
node_modulesdirectory - I run
yarn installto install all fresh dependencies - it should useyarn.lockand not modify it
The problem is that on live server yarn.lock file is modified.
When I run git diff I'm getting (beginning of diff):
resolved "https://registry.yarnpkg.com/@xtuc/long/-/long-4.2.2.tgz#d291c6a4e97989b5c61d9acf396ae4fe133a718d"
integrity sha512-NuHqBY1PB/D8xU6s/thBgOAiAP7HOYDQ32+BFZILJ8ivkUkAHQnWfn6WhL79Owj1qmUnoN/YPhktdIoucipkAQ==
[email protected]:
- version "1.1.1"
- resolved "https://registry.yarnpkg.com/abbrev/-/abbrev-1.1.1.tgz#f8f2c887ad10bf67f634f005b6987fed3179aac8"
- integrity sha512-nne9/IiQ/hzIhY6pdDnbBtz7DjPTKrY00P/zvPSm5pOFkl6xuGrGnXn/VtTNNfNtAfZ9/1RtehkszU9qcTii0Q==
-
[email protected]~1.3.4, [email protected]~1.3.5, [email protected]~1.3.7:
version "1.3.7"
resolved "https://registry.yarnpkg.com/accepts/-/accepts-1.3.7.tgz#531bc726517a3b2b41f850021c6cc15eaab507cd"
@@ -1071,19 +1066,11 @@ [email protected]~3.1.1:
normalize-path "^3.0.0"
picomatch "^2.0.4"
[email protected]^1.0.3, [email protected]^1.1.1:
[email protected]^1.1.1:
As you can see on live server [email protected] is removed from here, and aproba changes from [email protected]^1.0.3, [email protected]^1.1.1: to [email protected]^1.1.1:.
What could be the reason of it? Before it was not happenning and always when I commited modified yarn.lock it was not modified on live server.
Answer
Use
yarn install --frozen-lockfile
as per the yarn docs:
If you need reproducible dependencies, which is usually the case with the continuous integration systems, you should pass
--frozen-lockfileflag.
This is the behavior of yarn install:
Install all the dependencies listed within
package.jsonin the localnode_modulesfolder.The
yarn.lockfile is utilized as follows:
- If yarn.lock is present and is enough to satisfy all the dependencies listed in
package.json, the exact versions recorded inyarn.lockare installed, and yarn.lock will be unchanged. Yarn will not check for newer versions.- If
yarn.lockis absent, or is not enough to satisfy all the dependencies listed inpackage.json(for example, if you manually add a dependency to package.json), Yarn looks for the newest versions available that satisfy the constraints inpackage.json. The results are written to yarn.lock.If you want to ensure
yarn.lockis not updated, use--frozen-lockfile.
Related Questions
- → How to update data attribute on Ajax complete
- → October CMS - Radio Button Ajax Click Twice in a Row Causes Content to disappear
- → Octobercms Component Unique id (Twig & Javascript)
- → Passing a JS var from AJAX response to Twig
- → Laravel {!! Form::open() !!} doesn't work within AngularJS
- → DropzoneJS & Laravel - Output form validation errors
- → Import statement and Babel
- → Uncaught TypeError: Cannot read property '__SECRET_DOM_DO_NOT_USE_OR_YOU_WILL_BE_FIRED' of undefined
- → React-router: Passing props to children
- → ListView.DataSource looping data for React Native
- → Can't test submit handler in React component
- → React + Flux - How to avoid global variable
- → Webpack, React & Babel, not rendering DOM