Change package.json to pegged npm versions, and ship a package-lock.json #162

Open

opened

So that installation instructions in future tell end users to run npm ci not npm install (reduces security risks)

Metadata

Assignees

No one assigned

Labels

No labels

No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests