diff --git a/packages/backup/package.json b/packages/backup/package.json
index 55a4222c5..8dd2f001f 100644
--- a/packages/backup/package.json
+++ b/packages/backup/package.json
@@ -14,7 +14,7 @@
   },
   "dependencies": {
     "basic-ftp": "^5.2.0",
-    "dotenv": "^16.6.1"
+    "dotenv": "^17.3.1"
   },
   "devDependencies": {
     "@types/bun": "latest",
diff --git a/packages/backup/pnpm-lock.yaml b/packages/backup/pnpm-lock.yaml
index a7f5095b6..8b45a6c86 100644
--- a/packages/backup/pnpm-lock.yaml
+++ b/packages/backup/pnpm-lock.yaml
@@ -12,8 +12,8 @@ importers:
         specifier: ^5.2.0
         version: 5.2.0
       dotenv:
-        specifier: ^16.6.1
-        version: 16.6.1
+        specifier: ^17.3.1
+        version: 17.3.1
     devDependencies:
       '@types/bun':
         specifier: latest
@@ -37,8 +37,8 @@ packages:
   bun-types@1.3.9:
     resolution: {integrity: sha512-+UBWWOakIP4Tswh0Bt0QD0alpTY8cb5hvgiYeWCMet9YukHbzuruIEeXC2D7nMJPB12kbh8C7XJykSexEqGKJg==}
 
-  dotenv@16.6.1:
-    resolution: {integrity: sha512-uBq4egWHTcTt33a72vpSG0z3HnPuIl6NqYcTrKEg2azoEyl2hpW0zqlxysq2pK9HlDIHyHyakeYaYnSAwd8bow==}
+  dotenv@17.3.1:
+    resolution: {integrity: sha512-IO8C/dzEb6O3F9/twg6ZLXz164a2fhTnEWb95H23Dm4OuN+92NmEAlTrupP9VW6Jm3sO26tQlqyvyi4CsnY9GA==}
     engines: {node: '>=12'}
 
   typescript@5.9.3:
@@ -65,7 +65,7 @@ snapshots:
     dependencies:
       '@types/node': 25.3.3
 
-  dotenv@16.6.1: {}
+  dotenv@17.3.1: {}
 
   typescript@5.9.3: {}