The fact npm modifies the package-lock.json file when you run npm install is frustrating. Just install the same set of packages every time.

I've not played around with it so I can't offer an opinion. My strong preference for choosing tools (especially JS) though is to pick well established, mature libraries/frameworks.