From d7e445249c7b8a94dc7379e7952f81541f0e3564 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 14 Jul 2025 07:28:29 +0000
Subject: [PATCH] fix: app/packages/backend/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TARFS-9535930
- https://snyk.io/vuln/SNYK-JS-MYSQL2-6591085
- https://snyk.io/vuln/SNYK-JS-MYSQL2-6670046
- https://snyk.io/vuln/SNYK-JS-MYSQL2-6861580
- https://snyk.io/vuln/SNYK-JS-TARFS-10293725
- https://snyk.io/vuln/SNYK-JS-MYSQL2-6591084
- https://snyk.io/vuln/SNYK-JS-MYSQL2-6591300
- https://snyk.io/vuln/SNYK-JS-TAR-6476909
- https://snyk.io/vuln/SNYK-JS-FASTXMLPARSER-7573289
- https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-9789073
---
 app/packages/backend/package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/app/packages/backend/package.json b/app/packages/backend/package.json
index 60e68d816..cda0aeec3 100644
--- a/app/packages/backend/package.json
+++ b/app/packages/backend/package.json
@@ -16,7 +16,7 @@
     "build-image": "docker build ../.. -f Dockerfile --tag backstage"
   },
   "dependencies": {
-    "@backstage/backend-common": "^0.20.0",
+    "@backstage/backend-common": "^0.24.1",
     "@backstage/backend-tasks": "^0.5.13",
     "@backstage/catalog-client": "^1.5.1",
     "@backstage/catalog-model": "^1.4.3",
@@ -43,10 +43,10 @@
     "@roadiehq/backstage-plugin-argo-cd-backend": "^2.13.0",
     "app": "link:../app",
     "better-sqlite3": "^9.0.0",
-    "dockerode": "^3.3.1",
+    "dockerode": "^4.0.5",
     "express": "^4.17.1",
     "express-promise-router": "^4.1.0",
-    "node-gyp": "^9.0.0",
+    "node-gyp": "^10.0.0",
     "pg": "^8.11.3",
     "winston": "^3.2.1",
     "express-prom-bundle": "^7.0.0",