jw3 commented on a change in pull request #26:
URL: https://github.com/apache/daffodil-vscode/pull/26#discussion_r728062986
##########
File path: yarn.lock
##########
@@ -0,0 +1,4249 @@
+# THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
Review comment:
Yarn is an alternative package manager to npm, but behaves similarly.
This file specifies the versions it resolved to perform the build, including
both our explicitly declared versions and all transients. If using npm this
file would be named package-lock.json and would have the same type of
dependency version info.
If this file is not present at the next build yarn will generate it by
resolving all dependencies again. Because libraries can and do specify
floating versions, the only way to achieve a repeatable build is to commit a
lock.
Rule of thumb is that applications get a lock file and libraries do not.
This extension would be considered an application here.
For comparison, Scala doesn't have this problem at all since you must
explicitly declare versions for dependencies, and that requirement goes all the
way down through all your transients, providing stable versions by default.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
