This is an idea I had recently. Since npm install as well as yarn update their lockfiles when the package.json doesn't match the lockfile it could actually be enough to just commit and push the changed lockfiles.
Not sure when or if I have time to continue with this though.
This is an idea I had recently. Since
npm installas well asyarnupdate their lockfiles when thepackage.jsondoesn't match the lockfile it could actually be enough to just commit and push the changed lockfiles.Not sure when or if I have time to continue with this though.