npmpackage.info

Gathering detailed insights and metrics for yarn-workspace-sync-deps

yarn-workspace-sync-deps - 0.3.3 | npmpackage.info

yarn-workspace-sync-deps

A simple script for keeping dependencies are same between root and packages on Yarn workspaces

0.3.3

MIT

JavaScript

7.35 kB

2.5

Installations

npm install yarn-workspace-sync-deps

Developer Guide

BETA

Typescript

No

Module System

N/A

Node Version

16.13.1

NPM Version

8.1.2 Score

70.9

Supply Chain

75.3

Quality

75.8

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

3

Total

197

Closed

82

Merged

112

Issues

Open

1

Total

4

Closed

3

Releases

Unable to fetch releases

Languages

JavaScript

JavaScript (100%)

Developer

mybigday

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

MIT License

2 Stars

141 Commits

3 Forks

3 Watchers

4 Branches

4 Contributors

Updated on Jan 09, 2022

Maintainers

View All 4 Contributors

Package Meta Information

Latest Version

0.3.3

Package Id

yarn-workspace-sync-deps@0.3.3

Unpacked Size

7.35 kB

Size

3.19 kB

File Count

NPM Version

8.1.2

Node Version

16.13.1

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

minimist

Dev Dependencies

@fugood/eslint-config-base eslint jest shelljs

yarn-workspace-sync-deps

A simple script for keeping dependencies are same between root and packages on Yarn workspaces.

What?

We are using Yarn workspaces and enabled Greenkeeper, but Greenkeeper currently doesn't check for packages/*. We gave up the independent dependencies in packages/*, make the dependencies same as root dependencies.

You still need update the dependencies of packages/* on local, but it will be helpful for CI and Greenkeeper.

Installation

In the root workspace:

1$ yarn add --dev -W yarn-workspace-sync-deps

Usage

We are using it after yarn install in the root workspace:

1{
2  "scripts": {
3    "postinstall": "yarnw-sync-deps && yarn --ignore-scripts"
4  }
5}

License

MIT

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

2.5

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More