From 5f8c4d965118323d9e8f19967f49d74d51a61a26 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 23 Jan 2026 22:54:57 +0000 Subject: [PATCH] fix: packages/backend-app-api/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-TAR-15038581 - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-14908844 - https://snyk.io/vuln/SNYK-JS-BACKSTAGEBACKENDPLUGINAPI-15054291 - https://snyk.io/vuln/SNYK-JS-LODASH-15053838 - https://snyk.io/vuln/SNYK-JS-LODASHES-15053836 - https://snyk.io/vuln/SNYK-JS-DIFF-14917201 --- packages/backend-app-api/package.json | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/packages/backend-app-api/package.json b/packages/backend-app-api/package.json index 6f8a5cf9e8907a..fe2e0062a4dae1 100644 --- a/packages/backend-app-api/package.json +++ b/packages/backend-app-api/package.json @@ -32,15 +32,15 @@ "start": "backstage-cli package start" }, "dependencies": { - "@backstage/backend-common": "workspace:^", - "@backstage/backend-plugin-api": "workspace:^", - "@backstage/backend-tasks": "workspace:^", + "@backstage/backend-common": "0.24.1", + "@backstage/backend-plugin-api": "1.6.1", + "@backstage/backend-tasks": "0.6.1", "@backstage/cli-common": "workspace:^", "@backstage/config": "workspace:^", - "@backstage/config-loader": "workspace:^", + "@backstage/config-loader": "0.6.10", "@backstage/errors": "workspace:^", - "@backstage/plugin-auth-node": "workspace:^", - "@backstage/plugin-permission-node": "workspace:^", + "@backstage/plugin-auth-node": "0.1.0", + "@backstage/plugin-permission-node": "0.1.0", "@backstage/types": "workspace:^", "@manypkg/get-packages": "^1.1.3", "@types/cors": "^2.8.6", @@ -51,7 +51,7 @@ "express-promise-router": "^4.1.0", "fs-extra": "10.1.0", "helmet": "^6.0.0", - "lodash": "^4.17.21", + "lodash": "^4.17.23", "logform": "^2.3.2", "minimatch": "^5.0.0", "minimist": "^1.2.5",