npm install the exact package version specified in package.json

Question

Currently, If I run npm install, it installs the updated version of already installed packages. How can I install the exact version as specified in the package.json file?

how have you specified the version in the `package.json`? there is a modifier for fixed version. — Sirko, Dec 06 '16 at 19:41
My bad, `package.json` had versions specified as `^version`. I just assumed this how to versions. Will remove the `^` modifier. Thanks! — suheb, Dec 06 '16 at 19:53

score 119 · Answer 1 · edited Jul 16 '22 at 20:04

119

By default npm installs packages using ^ which means any version in the same major range, you can switch this behaviour by using --save-exact

// npm
npm install --save --save-exact react

// yarn
yarn add --exact react

I created a blog post about this if anyone is looking for this in the future.

https://www.dalejefferson.com/articles/2018-02-04-how-to-save-exact-npm-package-versions/

edited Jul 16 '22 at 20:04

Zoe

27,060
21
118
148

answered Feb 05 '18 at 12:41

Dale Jefferson

1,730
1
14
7

15

Also, for both npm and yarn `-E` is the short form of `--save-exact` / `--exact` – davnicwil Jan 14 '19 at 14:42
Is exact version necessary or is the same major range ok – Timo Mar 09 '21 at 18:54
1

Is there any way to make this behavior default across all installations with `npm`? – rmolinamir Jan 26 '22 at 18:49
2

yes, there is: `npm config set save-exact=true` or you can add `save-exact=true` to your .npmrc manually – TomRaaff Jul 15 '22 at 11:48

score 68 · Accepted Answer · answered Dec 06 '16 at 19:41

68

That behavior is really driven by the one specifying the versions in the package.json. If the version number looks like "1.0.0", without any other symbols, the exact version (1.0.0) should be installed.

So what you could do is simply modify the package.json and run a npm install then. Be sure to clear out the node_modules directory before you do that.

https://docs.npmjs.com/files/package.json#dependencies

answered Dec 06 '16 at 19:41

manonthemat

6,101
1
24
49

6

Please note that there is still one issue with all subdependencies. Even if you specify strict versions for direct dependencies, the is no guarantee that those in turn will not trigger the installation of something new when it will be released. – Victor Yarema Dec 28 '16 at 17:12
I can't believe this is the only solution. It's very important for those creating packages to test with the lowest possible number. I'm considering creating a separate `package-min.json` file and using that as the `package.json` in CI – David Callanan Aug 15 '19 at 09:56

score 42 · Answer 3 · answered Jun 13 '19 at 07:21

42

You can also open package.json and change value for the package you want to remain exact. From "vue": "^2.6.10" to "vue": "2.6.10". Notice the lack of ^ sign in front of the version number.

answered Jun 13 '19 at 07:21

Vladimir Jovanović

3,288
1
20
27

score 0 · Answer 4 · answered May 23 '23 at 07:51

0

another best way which works for me

npm i --legacy-peer-deps

answered May 23 '23 at 07:51

Shoaib Dev

71
6

4

Please include in the answer why this works and what it does differently to other answers. – phuzi May 23 '23 at 09:48

npm install the exact package version specified in package.json

4 Answers4

Linked

Related