@lerna/add
Advanced tools
@lerna/addAdd a dependency to matched packages
Install lerna for access to the lerna CLI.
$ lerna add <package>[@version] [--dev] [--exact] [--peer]
Add local or remote package as dependency to packages in the current Lerna repo. Note that only a single package can be added at a time compared to yarn add or npm install.
When run, this command will:
package to each applicable package. Applicable are packages that are not package and are in scopepackage.json)If no version specifier is provided, it defaults to the latest dist-tag, just like npm install.
lerna add accepts all filter flags.
--devAdd the new package to devDependencies instead of dependencies.
$ lerna add --exact
Add the new package with an exact version (e.g., 1.0.1) rather than the default ^ semver range (e.g., ^1.0.1).
--peerAdd the new package to peerDependencies instead of dependencies.
--registry <url>Use a custom registry to install the targeted package.
--no-bootstrapSkip the chained lerna bootstrap.
# Adds the module-1 package to the packages in the 'prefix-' prefixed folders
lerna add module-1 packages/prefix-*
# Install module-1 to module-2
lerna add module-1 --scope=module-2
# Install module-1 to module-2 in devDependencies
lerna add module-1 --scope=module-2 --dev
# Install module-1 to module-2 in peerDependencies
lerna add module-1 --scope=module-2 --peer
# Install module-1 in all modules except module-1
lerna add module-1
# Install babel-core in all modules
lerna add babel-core
5.0.0 (2022-05-24)
Lerna workspaces no longer have dependency deprecation warnings.
Node v10.x and v12.x are no longer supported.
Internally npm lifecycle scripts are now invoked using @npmcli/run-script instead of npm-lifecycle in order to modernize the package and fix package vulnerabilities and deprecations.
We are classing this as a breaking change because the APIs of npm-lifecycle and @npmcli/run-script are significantly different, despite @npmcli/run-script being the official successor to npm-lifecycle.
We have successfully made the integration test suite we inherited pass with this change, but there may potentially be aspects related to it which are not covered by the tests and are breaking. If you encounter any issues you believe are related to this change please open a new issue with a dedicated reproduction for us to look into!
FAQs
Add a dependency to matched packages
We found that @lerna/add demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
vlt's new "reproduce" tool verifies npm packages against their source code, outperforming traditional provenance adoption in the JavaScript ecosystem.
Research
Security News
Socket researchers uncovered a malicious PyPI package exploiting Deezer’s API to enable coordinated music piracy through API abuse and C2 server control.
Research
The Socket Research Team discovered a malicious npm package, '@ton-wallet/create', stealing cryptocurrency wallet keys from developers and users in the TON ecosystem.