Package Version Management - Complete Guide

# Semantic Versioning (SemVer)

# 1. Version Format: MAJOR.MINOR.PATCH
# MAJOR: Breaking changes
# MINOR: New features (backward compatible)
# PATCH: Bug fixes (backward compatible)

# 2. Version Ranges
# Exact version
"react": "18.2.0"

# Tilde range (patch updates)
"react": "~18.2.0"  # 18.2.x

# Caret range (minor updates)
"react": "^18.2.0"  # 18.x.x

# Range (any version in range)
"react": ">=18.0.0 <19.0.0"

# 3. Pre-release versions
"react": "18.3.0-alpha.1"
"react": "18.3.0-beta.2"
"react": "18.3.0-rc.1"

# 4. Version bumping
npm version patch   # 1.0.0 -> 1.0.1
npm version minor   # 1.0.0 -> 1.1.0
npm version major   # 1.0.0 -> 2.0.0

# 5. Pre-release bumping
npm version prerelease --preid=alpha
npm version prerelease --preid=beta
npm version prerelease --preid=rc

# 6. Version validation
npm version --dry-run
npm version --no-git-tag-version

# 7. Custom version
npm version 2.1.0
npm version 2.1.0-beta.1

# 8. Version in package.json
{
  "name": "my-package",
  "version": "1.0.0",
  "dependencies": {
    "react": "^18.2.0",
    "lodash": "~4.17.21"
  }
}

# 9. Version constraints
# Peer dependencies
"peerDependencies": {
  "react": ">=16.8.0 <19.0.0"
}

# Optional dependencies
"optionalDependencies": {
  "fsevents": "^2.3.2"
}

# 10. Version resolution
npm install package@latest
npm install package@next
npm install package@beta

# Dependency Update Strategies

# 1. Check outdated packages
npm outdated
yarn outdated

# 2. Update all packages
npm update
yarn upgrade

# 3. Update specific package
npm install package@latest
yarn upgrade package

# 4. Update to latest major version
npm install package@latest
yarn upgrade package --latest

# 5. Update with version range
npm install package@^2.0.0
yarn upgrade package@^2.0.0

# 6. Interactive updates
npm-check-updates -u
yarn upgrade-interactive

# 7. Update lock file
npm install
yarn install

# 8. Audit and fix
npm audit fix
yarn audit --fix

# 9. Update dev dependencies
npm install --save-dev package@latest
yarn add --dev package@latest

# 10. Update production dependencies
npm install --save package@latest
yarn add package@latest

# 11. Selective updates
npm install package@1.2.3
yarn add package@1.2.3

# 12. Update workspace packages
npm update --workspaces
yarn workspaces run upgrade

# 13. Update with constraints
npm install package@">=1.0.0 <2.0.0"
yarn add package@">=1.0.0 <2.0.0"

# 14. Update with exact version
npm install --save-exact package@1.2.3
yarn add --exact package@1.2.3

# 15. Update with pre-release
npm install package@beta
yarn add package@beta

# Version Control Best Practices

# 1. Lock file management
# Always commit lock files
git add package-lock.json
git add yarn.lock

# 2. Version pinning strategy
# Pin major versions for stability
"react": "^18.0.0"
"lodash": "^4.17.0"

# 3. Dependency audit
# Regular security audits
npm audit
yarn audit

# 4. Version testing
# Test before updating
npm install --dry-run
yarn install --dry-run

# 5. Rollback strategy
# Keep previous versions
git tag v1.0.0
git checkout v1.0.0

# 6. Version documentation
# Document breaking changes
# CHANGELOG.md
# BREAKING_CHANGES.md

# 7. Automated updates
# Use Dependabot
# Use Renovate
# Use Greenkeeper

# 8. Version compatibility
# Test compatibility matrix
npm test
yarn test

# 9. Version monitoring
# Monitor package updates
npm ls
yarn list

# 10. Version rollback
# Rollback to previous version
npm install package@previous-version
yarn add package@previous-version

# 11. Version constraints
# Use peer dependencies
"peerDependencies": {
  "react": ">=16.8.0"
}

# 12. Version resolution
# Resolve version conflicts
npm install --legacy-peer-deps
yarn install --legacy-peer-deps

# 13. Version validation
# Validate version ranges
npm ls --depth=0
yarn list --depth=0

# 14. Version cleanup
# Remove unused dependencies
npm prune
yarn install --check-files

# 15. Version security
# Use npm audit
npm audit fix
yarn audit --fix