lockfile-lint provides comprehensive validation and linting for package-lock.json and yarn.lock files. It identifies common lockfile issues like invalid or missing integrity hashes, incorrect dependencies, and vulnerabilities. Enforcing lock file integrity ensures consistent installations across environments, preventing unexpected build failures and security risks. lockfile-lint integrates seamlessly into CI/CD pipelines, offering programmatic API and command-line interface usage for automated checks. This helps maintain dependency integrity and project stability.
Lockfile-lint's release frequency is highly variable. It peaked in 2019 and 2020, with several months having multiple releases. After a period of sparse releases in 2021, the package saw a resurgence in 2022. Release activity dwindled after 2023, with only one release in April of 2025.
lockfile-lint downloads show a general upward trend from March 2024 to June 2025, peaking at over 1 million downloads. There was a slowdown in the summer of 2025. September 2025 data is incomplete and shows a significant drop, reflecting the partial month.
