NPM version 5 introduced package-lock.json as a way to capture the exact dependency tree installed at any point in time. See why it’s important and how it can make your life easier.