From fbae4b9e231606fde30498370f961ac3c1622eee Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Fri, 6 Feb 2026 07:23:35 +0000
Subject: [PATCH] fix: plugins/catalog-graphql/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-APOLLOSERVER-15208673
---
 plugins/catalog-graphql/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/plugins/catalog-graphql/package.json b/plugins/catalog-graphql/package.json
index 0b4bebc0f7c87f..51df2d58fd59d6 100644
--- a/plugins/catalog-graphql/package.json
+++ b/plugins/catalog-graphql/package.json
@@ -35,7 +35,7 @@
   },
   "dependencies": {
     "@apollo/client": "^3.0.0",
-    "@apollo/server": "^4.0.0",
+    "@apollo/server": "^5.4.0",
     "@backstage/catalog-model": "workspace:^",
     "@backstage/config": "workspace:^",
     "@backstage/types": "workspace:^",