From 73b1fc9fbfc22235d35f4a730c1c00faee18dbef Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 8 Feb 2026 00:52:46 +0000
Subject: [PATCH] fix: plugins/graphql-backend/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-APOLLOSERVER-15208673
- https://snyk.io/vuln/SNYK-JS-WEBPACK-15235959
- https://snyk.io/vuln/SNYK-JS-WEBPACK-15235969
---
 plugins/graphql-backend/package.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/plugins/graphql-backend/package.json b/plugins/graphql-backend/package.json
index b672929c87142a..2ffad526b5c7fa 100644
--- a/plugins/graphql-backend/package.json
+++ b/plugins/graphql-backend/package.json
@@ -33,10 +33,10 @@
     "clean": "backstage-cli package clean"
   },
   "dependencies": {
-    "@apollo/server": "^4.0.0",
-    "@backstage/backend-common": "workspace:^",
-    "@backstage/config": "workspace:^",
-    "@backstage/plugin-catalog-graphql": "workspace:^",
+    "@apollo/server": "^5.4.0",
+    "@backstage/backend-common": "0.24.1",
+    "@backstage/config": "0.1.1",
+    "@backstage/plugin-catalog-graphql": "0.1.1",
     "@graphql-tools/schema": "^9.0.0",
     "@types/express": "^4.17.6",
     "express": "^4.17.1",