The pubspec file

Every pub package needs some metadata so it can specify its dependencies. Pub packages that are shared with others also need to provide some other information so users can discover them. All of this metadata goes in the package’s pubspec: a file named pubspec.yaml that’s written in the YAML language.

Supported fields

A pubspec can have the following fields:

Required for every package. Learn more.
Required for packages that are hosted on the site. Learn more.
Required for packages that are hosted on the site. Learn more.
Optional. URL pointing to the package’s homepage (or source code repository). Learn more.
Optional. URL pointing to the package’s source code repository. Learn more.
Optional. URL pointing to an issue tracker for the package. Learn more.
Optional. URL pointing to documentation for the package. Learn more.
Can be omitted if your package has no dependencies. Learn more.
Can be omitted if your package has no dev dependencies. Learn more.
Can be omitted if you do not need to override any dependencies. Learn more.
Required as of Dart 2. Learn more.
Optional. Used to put a package’s executables on your PATH. Learn more.
Optional. Specify where to publish a package. Learn more.

Pub ignores all other fields,

If you add a custom field, give it a unique name that won’t clash with future pubspec fields. For example, instead of adding bugs, you might add a field named my_pkg_bugs.


A simple but complete pubspec looks something like the following:

name: newtify
version: 1.2.3
description: >-
  Have you been turned into a newt?  Would you like to be?
  This package can help. It has all of the
  newt-transmogrification functionality you have been looking
  sdk: '>=2.10.0 <3.0.0'
  efts: ^2.0.4
  transmogrify: ^0.4.0
  test: '>=1.15.0 <2.0.0'


This section has more information about most of the pubspec fields.


Every package needs a name. It’s how other packages refer to yours, and how it appears to the world, should you publish it.

The name should be all lowercase, with underscores to separate words, just_like_this. Use only basic Latin letters and Arabic digits: [a-z0-9_]. Also, make sure the name is a valid Dart identifier—that it doesn’t start with digits and isn’t a reserved word.

Try to pick a name that is clear, terse, and not already in use. A quick search of packages on the site to make sure that nothing else is using your name is recommended.


Every package has a version. A version number is required to host your package on the site, but can be omitted for local-only packages. If you omit it, your package is implicitly versioned 0.0.0.

Versioning is necessary for reusing code while letting it evolve quickly. A version number is three numbers separated by dots, like 0.2.43. It can also optionally have a build ( +1, +2, +hotfix.oopsie) or prerelease (-dev.4, -alpha.12, -beta.7, -rc.5) suffix.

Each time you publish your package, you publish it at a specific version. Once that’s been done, consider it hermetically sealed: you can’t touch it anymore. To make more changes, you’ll need a new version.

When you select a version, follow semantic versioning.


This is optional for your own personal packages, but if you intend to publish your package you must provide a description, which should be in English. The description should be relatively short—60 to 180 characters—and tell a casual reader what they might want to know about your package.

Think of the description as the sales pitch for your package. Users see it when they browse for packages. The description is plain text: no markdown or HTML.


Deprecated. Use a verified publisher instead.

You might see an author or authors section in old pubspecs. These optional fields were a way to describe the author(s) of your package and to provide contact information. Each author could be either a single name (Natalie Weizenbaum) or a name and an email address (Natalie Weizenbaum <>). However, these values weren’t verified.

The site no longer displays package authors, and (as of Dart 2.7) the pub publish command displays a warning if your pubspec has an author or authors section.


This should be a URL pointing to the website for your package. For hosted packages, this URL is linked from the package’s page. While providing a homepage is optional, please provide it or repository (or both). It helps users understand where your package is coming from.


The optional repository field should contain the URL for your package’s source code repository — for example,<user>/<repository>. If you publish your package to the site, then your package’s page displays the repository URL. While providing a repository is optional, please provide it or homepage (or both). It helps users understand where your package is coming from.

Issue tracker

The optional issue_tracker field should contain a URL for the package’s issue tracker, where existing bugs can be viewed and new bugs can be filed. The site attempts to display a link to each package’s issue tracker, using the value of this field. If issue_tracker is missing but repository is present and points to GitHub, then the site uses the default issue tracker (<user>/<repository>/issues).


Some packages have a site that hosts documentation, separate from the main homepage and from the Pub-generated API reference. If your package has additional documentation, add a documentation: field with that URL; pub shows a link to this documentation on your package’s page.


Dependencies are the pubspec’s raison d’être. In this section you list each package that your package needs in order to work.

Dependencies fall into one of two types. Regular dependencies are listed under dependencies:—these are packages that anyone using your package will also need. Dependencies that are only needed in the development phase of the package itself are listed under dev_dependencies.

During the development process, you might need to temporarily override a dependency. You can do so using dependency_overrides.

For more information, see Package dependencies.


A package may expose one or more of its scripts as executables that can be run directly from the command line. To make a script publicly available, list it under the executables field. Entries are listed as key/value pairs:

<name-of-executable>: <Dart-script-from-bin>

For example, the following pubspec entry lists two scripts:

  slidy: main

Once the package is activated using pub global activate, typing slidy executes bin/main.dart. Typing fvm executes bin/fvm.dart. If you don’t specify the value, it is inferred from the key.

For more information, see pub global.


The default uses the site. Specify none to prevent a package from being published. This setting can be used to specify a custom pub package server to publish.

publish_to: none

SDK constraints

A package can indicate which versions of its dependencies it supports, but packages have another implicit dependency: the Dart platform itself. The Dart platform evolves over time, and a package might only work with certain versions of the platform.

A package can specify those versions using an SDK constraint. This constraint goes inside a separate top-level environment field in the pubspec and uses the same version constraint syntax as dependencies.

For example, the following constraint says that this package works with any Dart SDK that’s version 2.10.0 or higher:

  sdk: '>=2.10.0 <3.0.0'

Pub tries to find the latest version of a package whose SDK constraint works with the version of the Dart SDK that you have installed.

As of Dart 2.12, omitting the SDK constraint is an error. When the pubspec has no SDK constraint, pub get fails with a message like the following:

pubspec.yaml has no lower-bound SDK constraint.
You should edit pubspec.yaml to contain an SDK constraint:

  sdk: '>=2.10.0 <3.0.0'

Flutter SDK constraints

As of Dart 1.19.0, pub supports Flutter SDK constraints under the environment: field:

  sdk: '>=1.19.0 <3.0.0'
  flutter: ^0.1.2

A Flutter SDK constraint is satisfied only if pub is running in the context of the flutter executable, and the Flutter SDK’s version file matches the given version constraint. Otherwise, the package will not be selected.

To publish a package with a Flutter SDK constraint, you must specify a Dart SDK constraint with a minimum version of at least 1.19.0, to ensure that older versions of pub won’t accidentally install packages that need Flutter.