Stop using npm install in your CI/CD pipelines

TLDR: npm install can update your npm packages potentially destabilizing your build process by using untested dependency versions. Use npm ci instead!

If you’re like me you might have several node-based apps, nicely configured to be built and deployed using automatic build & release pipelines.

So one of the first things you’re probably doing in that build pipeline is installing all required dependencies from npm, with your process looking something like this:

Stop using npm install in your CI/CD pipelines weiterlesen