Reputation: 4134
Can I have a package.json but avoid my project from getting published to npm servers?
Basically the thing is I'm working on a project that uses grunt for build tasks and as I have a few dependencies here and there I thought it was a good idea to declare those on a package.json so that my co-workers can npm install without being required to manually install every package at the correct version.
Now the thing is, what if someone "accidentally" runs npm publish? Is there a way to have the package.json while keeping my stuff private?
Upvotes: 42
Views: 11716
Answers (2)
Reputation: 144842
If you set
"private": truein your package.json, then npm will refuse to publish it.This is a way to prevent accidental publication of private repositories. If you would like to ensure that a given package is only ever published to a specific registry (for example, an internal registry), then use the publishConfig hash described below to override the registry config param at publish-time.
Upvotes: 69
Reputation: 5079
You can set "private" : true in your package.json file
Your CoWorkers will get an error if they try to publish it
Upvotes: 9
Related Questions
- How to npm publish specific folder but as package root
- npm - can I publish npm package to my server?
- Preventing npm private org from publishing public packages
- How to publish package to npm without revealing the code
- Publish NPM package with only non-bundled dependencies
- Mark package as `private` from CLI?
- Prevent Publishing Node Application
- Is it possible to generate just a package-lock.json file without doing an npm install?
- Publishing Node.js Packages Other Than To NPM
- How to create source tarball release of package with npm without publishing it