“Initially, following the prescribed best practices, we only checked in package.json and asked engineers to manually run npm install. This worked well enough for engineers, but broke down in our continuous integration environments, which need to be sandboxed and cut off from the internet for security and reliability reasons.”
More from Sebastian McKenzie
“At Facebook we're already using Yarn in production, and it's been working really well for…”
“Yarn is a new package manager that replaces the existing workflow for the npm client or…”
“By breaking these steps down cleanly and having deterministic results, Yarn is able to…”