Nice, but if you edit package.json, then how does package-lock.json update to the correct dependencies? I have two which are different, and npm install and other dependency updates aren't being reflected in the lock file so I'm getting problems.

So while your descriptions are nice, we need the practical to go with the theoretical.