sync-dependencies
Advanced tools
This script synchronizes versions of dependencies from a source package. For each dependency that exists in both the source and target, the version from the source is adopted. The source package does not need to be installed; it is looked up from npm or git as required.
To install:
npm install -g sync-dependencies
Sync dependencies from the version of a package that is specified in package.json:
sync-dependencies --source terriajs
Sync dependencies from a package.json on disk:
sync-dependencies --source terriajs --from ./packages/terriajs/package.json
FAQs
Updates dependency versions in one package.json to match another.
We found that sync-dependencies demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.
Security News
Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.