grunt-local-deps-update
Advanced tools
Detects and updates dependencies if package.json or bower.json version changed
Detects and updates local dependencies if package.json or bower.json version changed.
Why? If your node_modules or bower_components folder is not under version control, then you would probably have to notify the team that the package.json or bower.json changed and everyone would have to run "npm install" or "bower install". While this workflow could work, this is not very reliable!
Now you have grunt-local-deps-update which notfies a team member with outdated dependencies and auto install them if enabled.
This plugin requires Grunt.
If you haven't used Grunt before, be sure to check out the Getting Started guide, as it explains how to create a Gruntfile as well as install and use Grunt plugins. Once you're familiar with that process, you may install this plugin with this command:
npm install https://github.com/virtser/grunt-local-deps-update --save-dev
Once the plugin has been installed, it may be enabled inside your Gruntfile with this line of JavaScript:
grunt.loadNpmTasks('grunt-local-deps-update');
The task doesn't require any configuration.
Simply add it to your default task, or make sure it's the first task being executed.
grunt.registerTask('default', ['depsupdate']);
In case the package.json or bower.json version changed, this is what you can expect to see:
$ grunt
Running "depsupdate" task
New package.json version detected (from 0.0.2 to 0.0.3)
Running npm update...
... done!
>> Please run 'grunt' again
Done, without errors.
grunt.initConfig({
autoupdate: {
options: {
pkgFile : '.pkg',
npmCheck: true,
bowerCheck: true,
warnOnly: false
}
},
})
In lieu of a formal styleguide, take care to maintain the existing coding style. Add unit tests for any new or changed functionality. Lint and test your code using Grunt.
Copyright (c) 2014 Erwan Jegouzo. Licensed under the MIT license. Copyright (c) 2016 David Virtser. Licensed under the MIT license.
FAQs
Detects and updates dependencies if package.json or bower.json version changed
We found that grunt-local-deps-update demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.
Research
Security News
Socket researchers have discovered multiple malicious npm packages targeting Solana private keys, abusing Gmail to exfiltrate the data and drain Solana wallets.