I think it is quite a common issue, if you have multiple packages/app in you monorepo that may depend on the same packge dependency (for as common example mongodb), it is reasonable to have only single version thought the project (though there maybe need for exeptions sometimes). But eventually you may add this dep to new package, and it will install newer version, but you may not notice this and forget to update the rest.

What is the best way to approach this issue? I thought about using hook, to check lockfile after resolution. Another approach would be declare such dep in the root of the project, so everyone will use it, but even if all your packages/apps (which is rare case) depend on this, this still doesn't seem a nice, clean and lean solution.