Tool to update indirect dependencies in Yarn lockfiles. Indirect means that the dependency is not directly referenced in a project's package.json, but is a transitive dependency of a package that is.
This tool is a workaround for the lack of an easy built-in way to update
indirect dependencies in yarn.lock files. See this
issue.
The tool works in two steps:
- Edit the project's
yarn.lockfile to remove existing resolutions for a package. - Re-run
yarn installto refresh the lockfile and add resolutions for the current versions.
This tool is designed for Yarn v3+ (aka. "yarn modern"). It does not work with Yarn classic (v1.x).
As an example, suppose your project has indirect dependencies on "foo" and "bar" and you want to update them to the latest compatible versions, you would run:
npm install yarn-update-indirect
yarn-update-indirect foo bar
This will update the "yarn.lock" file in the current working directory.