as you first dowload node package depending on the package.json.
it will generate a package-lock.json; when you will download the node packages will depend on package-lock.json; if you want to update package version;you can delete the file,or npm update
package-lock.json
![](https://media.dev.to/cdn-cgi/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1359349%2Fafe14344-d720-4592-b61f-2abc9eed2655.png)