From 2685d601d5801f7ad7ac6f04551a929f229394c5 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 9 Feb 2026 01:46:24 +0000
Subject: [PATCH] fix: plugins/catalog-graphql/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-APOLLOSERVER-15208673
- https://snyk.io/vuln/SNYK-JS-WEBPACK-15235959
- https://snyk.io/vuln/SNYK-JS-WEBPACK-15235969
---
 plugins/catalog-graphql/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/plugins/catalog-graphql/package.json b/plugins/catalog-graphql/package.json
index 0b4bebc0f7c87f..e17244499f1463 100644
--- a/plugins/catalog-graphql/package.json
+++ b/plugins/catalog-graphql/package.json
@@ -35,10 +35,10 @@
   },
   "dependencies": {
     "@apollo/client": "^3.0.0",
-    "@apollo/server": "^4.0.0",
+    "@apollo/server": "^5.4.0",
     "@backstage/catalog-model": "workspace:^",
     "@backstage/config": "workspace:^",
-    "@backstage/types": "workspace:^",
+    "@backstage/types": "0.1.1",
     "graphql": "^16.0.0",
     "graphql-modules": "^2.0.0",
     "graphql-tag": "^2.11.0",