If a new dependency is installed and added to composer.json, the composer.lock on the host is not updated, making composer fail to install dependencies. Come up with a smarter way to get around that while keeping the package versions equivalent.
Possibly the simplest solution is to deploy composer.lock along with composer.json.
If a new dependency is installed and added to composer.json, the composer.lock on the host is not updated, making composer fail to install dependencies. Come up with a smarter way to get around that while keeping the package versions equivalent.
Possibly the simplest solution is to deploy composer.lock along with composer.json.