Here's the article I wrote on checking in modules as well. I haven't really tried shrinkwrap, but it sounds like there are enough differences between the two approaches that you should explore both and see which one suits your needs best. I would employ shrinkwrap on a project where the deploy process was straightforward and the deps were very manageable. But as soon as any of that became a problem, I would move to checking in deps without thinking twice.
http://eng.yammer.com/managing-node-js-dependencies-and-deployments-at-yammer/ :Marco On Wednesday, December 26, 2012 4:05:45 PM UTC-8, José F. Romaniello wrote: > > Hi all, I have read few times that is better to checking the dependencies > folder into git when you are working on a project that must be deployed, it > seems that this makes testing and maintainance easier. So, the advice seems > "be flexible with the dependencies for libraries, and very strict for > projects". > > For me the pros are: > - dont have to blindly trust the correct use of semver from the package > owner > - make sure everyone has the same versions > - probabily faster to deploy, since npm install will do nothing > > The bigger cons I see is that i dont like something in GIT that can be > auto-generated. It will happen almost for sure that someone will commit a > change in the package.json updating the version of the dependency and > forget about the node_modules or vicecersa. It will be easy to notice if it > breacks a test but not sure who wants to be dealing with that after all... > > Thoughts? experiences? > > > Thanks! > -- Job Board: http://jobs.nodejs.org/ Posting guidelines: https://github.com/joyent/node/wiki/Mailing-List-Posting-Guidelines You received this message because you are subscribed to the Google Groups "nodejs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/nodejs?hl=en?hl=en
