TLDR: npm install can update your npm packages potentially destabilizing your build process by using untested dependency versions. Use npm ci instead!
If you’re like me you might have several node-based apps, nicely configured to be built and deployed using automatic build & release pipelines.
So one of the first things you’re probably doing in that build pipeline is installing all required dependencies from npm, with your process looking something like this:
Stop using npm install in your CI/CD pipelines weiterlesen