patch-package
Advanced tools
The patch-package npm package allows users to keep track of modifications to node_modules. It is useful when a user needs to make a quick fix to a node module and wants to persist this change across installs without waiting for the upstream fix. It lets you keep your workarounds in version control.
Creating Patches
This command is used to create a patch file for the npm package 'some-package'. After making changes to the node module, running this command will generate a patch file in a directory that can be committed to version control.
npx patch-package some-packageApplying Patches
This command applies all patches from the patches directory. It is typically used in the postinstall script in package.json to ensure that patches are applied after every npm install.
npx patch-packageApplying Specific Patch
This command applies a patch to a specific package. It is useful when you want to apply a patch to 'some-package' without applying all available patches.
npx patch-package some-packageShrinkwrap is a tool for locking down the versions of npm packages installed. It is similar to patch-package in that it helps maintain consistency in dependencies, but it does not allow for modifications to the package code itself.
patch-package lets app authors instantly make and keep small necessary fixes to npm
dependencies
# fix a bug in one of your deps
vim node_modules/some-package/brokenFile.js
# run patch-package to create a .patch file
patch-package some-package
# commit the patch file to share the fix with your team
git add patches/some-package+3.14.15.patch
git commit -m "fix brokenFile.js in some-package"
Patches created by patch-package are automatically and gracefully applied
any time the contents of node_modules is installed by npm(>=5) or yarn. If a patched dependency gets a version bump the patch file you created might not make sense anymore, so patch-package will explicitly prompt you to check.
You'll need patch-package. If you use yarn, you might like to have a local copy of that too.
yarn add --dev patch-package
In package.json
"scripts": {
"prepare": "patch-package"
}
First make changes to the files of a particular package in your node_modules folder, then run
patch-package package-name
where package-name matches the name of the package you made changes to.
If this is the first time you've used patch-package, it will create a folder called patches in
the root dir of your app. Inside will be a file called package-name+0.44.0.patch or something,
which is a diff between normal old package-name and your fixed version. Commit this to share the fix with your team.
Use exactly the same process as for making patches in the first place, i.e. make more changes, run patch-package, commit the changes to the patch file.
Patches are applied automatically by the prepare npm/yarn hook if you followed the set-up guide above. For manual use,
run patch-package without arguments to apply all patches in your project.
patch-package cannot apply individual packages just yet, but you can use the unix patch
command, of course.
patch --forward -p1 -i patches/package-name+0.44.2.patch
Nah. You're just fixing your dependencies. Just don't do anything wild with it unless you're certain you're the only consumer of the affected dependency.
Most times when you do a yarn, yarn add, yarn remove, or yarn install (which is the same as just yarn) Yarn will completely replace the contents of your node_modules with freshly unpackaged modules. patch-package uses the prepare hook to modify these fresh modules, so that they behave well according to your will.
Plain unpatched Yarn only runs the prepare hook after yarn and yarn add, but not after yarn remove. patch-package benefits from a local copy of yarn so that it can patch it to run the prepare hook after yarn remove and thus make sure that your node_modules is always* patched and ready to go. It's a simple one-line change
All that you need to do to enable this patch is install a project-local copy of yarn:
yarn add --dev yarn
And then run
which yarn
The output should be ./node_modules/.bin/yarn. If not, make sure ./node_modules/.bin/ is at the start of your PATH environment variable.
* If you ever run yarn remove from a non-root project directory, things might break. But just run yarn again to restore order.
MIT
3.4.0
FAQs
Fix broken node modules with no fuss
The npm package patch-package receives a total of 1,150,808 weekly downloads. As such, patch-package popularity was classified as popular.
We found that patch-package demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.
Security News
vlt introduced its new package manager and a serverless registry this week, innovating in a space where npm has stagnated.