From 5b6ea957a14b9548e38b10be6b83ec88a7c0d80b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 12 Mar 2026 15:09:42 +0000
Subject: [PATCH] fix: app/packages/backend/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-FILETYPE-15456217
- https://snyk.io/vuln/SNYK-JS-TAR-15456201
- https://snyk.io/vuln/SNYK-JS-AJV-15274295
- https://snyk.io/vuln/SNYK-JS-QS-15268416
- https://snyk.io/vuln/SNYK-JS-TOOTALLNATEONCE-15250612
- https://snyk.io/vuln/SNYK-JS-BACKSTAGEBACKENDPLUGINAPI-15054291
---
 app/packages/backend/package.json | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/app/packages/backend/package.json b/app/packages/backend/package.json
index 9fce44e43..7dc44d90c 100644
--- a/app/packages/backend/package.json
+++ b/app/packages/backend/package.json
@@ -16,7 +16,7 @@
     "build-image": "docker build ../.. -f Dockerfile --tag backstage"
   },
   "dependencies": {
-    "@backstage/backend-common": "^0.20.0",
+    "@backstage/backend-common": "^0.24.1",
     "@backstage/backend-tasks": "^0.5.13",
     "@backstage/catalog-client": "^1.5.1",
     "@backstage/catalog-model": "^1.4.3",
@@ -29,7 +29,7 @@
     "@backstage/plugin-catalog-backend-module-scaffolder-entity-model": "^0.1.5",
     "@backstage/plugin-kubernetes-backend": "^0.14.0",
     "@backstage/plugin-permission-common": "^0.7.11",
-    "@backstage/plugin-permission-node": "^0.7.19",
+    "@backstage/plugin-permission-node": "^0.9.0",
     "@backstage/plugin-proxy-backend": "^0.4.6",
     "@backstage/plugin-scaffolder-backend": "^1.19.2",
     "@backstage/plugin-search-backend": "^1.4.8",
@@ -38,15 +38,15 @@
     "@backstage/plugin-search-backend-module-techdocs": "^0.1.12",
     "@backstage/plugin-search-backend-node": "^1.2.12",
     "@backstage/plugin-sonarqube-backend": "^0.2.10",
-    "@backstage/plugin-techdocs-backend": "^1.9.1",
+    "@backstage/plugin-techdocs-backend": "^2.1.2",
     "@backstage/plugin-todo-backend": "^0.3.6",
-    "@roadiehq/backstage-plugin-argo-cd-backend": "^2.13.0",
+    "@roadiehq/backstage-plugin-argo-cd-backend": "^4.3.1",
     "app": "link:../app",
     "better-sqlite3": "^9.0.0",
     "dockerode": "^3.3.1",
     "express": "^4.17.1",
     "express-promise-router": "^4.1.0",
-    "node-gyp": "^9.0.0",
+    "node-gyp": "^11.0.0",
     "pg": "^8.11.3",
     "winston": "^3.2.1",
     "express-prom-bundle": "^7.0.0",