REQUIRE_ONE_VERSION_POLICY
Requires all dependencies in a monorepo to have the same version policy.Conformance is available on Enterprise plans
Dependency mismatch is a common and easily preventable problem. When there are multiple versions of a single dependency, not only is there additional complexity in maintaining different versions of that dependency, there are also code size complications with bundling. Having multiple versions of a given dependency will likely result in bloated code size as each dependency version will need to be bundled independently. Having multiple versions might also leave developers confused and lead to possible security implications.
Additionally – keeping versions consistent reduces the possibility of type mismatches across the monorepo.
By default, this rule is disabled. Enable it by customizing Conformance.
Ensure all package.json files in your monorepo that have a dependency are
aligned to all have the same version. Version ranges are not always reliable, so it's recommended that
you pin all versions to the same given version to ensure consistency.
Sometimes it is useful to temporarily have two or more versions of a dependency whilst incrementally migrating a monorepo to having the same version policy. In which case, it's acceptable to allowlist this rule on specific parts of the codebase using by customizing Conformance until all packages have been successfully migrated.
Was this helpful?