yarn-upgrade-all
Advanced tools
Readme
This is a command line utility program to upgrade all the packages in your package.json to the latest version
(potentially upgrading packages across major versions).
yarn add --dev yarn-upgrade-all
yarn yarn-upgrade-all
For every type of dependencies in package.json, run
yarn add [--dev|--peer] <package-names>`.
You may pass additional options to the yarn add command:
yarn yarn-upgrade-all --option-1 --option-2
Which will invoke:
yarn add [--dev|--peer] <package-names> --option-1 --option-2
In that case, that package will be skipped and an error message will be printed.
You need to read the error message and manually install that package.
It is the recommended flow. Because if a package failed to install, most of the time, you need to manually troubleshoot the issue and fix the issue.
You can add the following to package.json file:
...
"yarn-upgrade-all": {
"ignore": [
"react"
]
}
...
With configuration above, yarn-upgrade-all won't upgrade react for you.
yarn global add yarn-upgrade-all
npm install -g yarn-upgrade-all
:exclamation: Don't use yarn to install it on Windows because there is a bug: yarnpkg/yarn#2224.
yarn-upgrade-all --global or yarn-upgrade-all -g
FAQs
This is a command line utility program to upgrade all the packages in your package.json to the latest version (potentially upgrading packages across major versions).
The npm package yarn-upgrade-all receives a total of 14,745 weekly downloads. As such, yarn-upgrade-all popularity was classified as popular.
We found that yarn-upgrade-all demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
This episode of the Risky Biz podcast discusses how the rise of small open source packages and the shift towards individual maintainers makes the ecosystem more vulnerable to supply chain attacks.
Product
Streamline your login process and enhance security by enabling Single Sign-On (SSO) on the Socket platform, now available for all customers on the Enterprise plan, supporting 20+ identity providers.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.