LuisLlamas Logo
gestion-de-versiones-en-npm

How to manage NPM package versions

  • 3 min
  • Intermediate

Version management refers to the control we will exercise in our project over the versions of dependencies. In general, dependencies will be from third parties (libraries, etc.) but they can also be from our own packages.

In the case of NPM, the packages we install and manage always have their designated version. NPM works with these versions to configure our project. Therefore, it is important to understand how to specify and work with these versions to manage our project.

Semantic Versioning

Semantic versioning is a convention used in version management that allows us to assign a version number following a specific format. This format consists of three numbers separated by dots, like so:

MAJOR.MINOR.PATCH
Copied!
  • The number MAJOR: indicates a major change in the project that may cause incompatibilities with previous versions.
  • The number MINOR: indicates the addition of new functionality to the project without altering its compatibility with previous versions.
  • The number PATCH: indicates the correction of errors or minor issues without adding new functionality or altering compatibility with previous versions.

Version Control in NPM

The NPM package manager provides us with tools to manage the versions of dependencies in our projects easily.

Through the package.json file, we can specify the dependencies needed for our project and the specific versions we want to use.

For example, if we want to use version 2.1.0 of a dependency called lodash, we can add the following line to the package.json file:

“dependencies”: { “lodash”: “2.1.0” }

This way, when we run the npm install command, NPM will install exactly version 2.1.0 of the lodash dependency in our project.

Version Ranges

In addition to specifying an exact version of a dependency, NPM allows us to use version ranges to indicate which versions are compatible with our project. Some examples of version ranges are:

  • ^2.1.0: indicates that any version greater than or equal to 2.1.0 and less than 3.0.0 is compatible.
  • ~2.1.0: indicates that any version greater than or equal to 2.1.0 and less than 2.2.0 is compatible.
  • >=2.1.0 <3.0.0: indicates that any version greater than or equal to 2.1.0 and less than 3.0.0 is compatible.

These version ranges allow us to specify our project’s dependencies more flexibly and take advantage of updates and improvements made in later versions.

Version Locking

In some cases, it may be necessary to lock the version of a dependency to prevent automatic updates. To do this, we can use the = character followed by the specific version we want to lock.

For example, if we want to lock the version of the lodash dependency to version 2.1.0, we can add the following line to the package.json file:

“dependencies”: { “lodash”: “=2.1.0” }

This ensures that the version of lodash will remain at version 2.1.0 always, unless we explicitly modify this line in our package.json file.

On this page