From d01ab1e3f217d6f8734492e94c2219e578f25d12 Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Thu, 22 Jan 2026 10:26:08 +0000
Subject: [PATCH] fix: plugins/catalog-graphql/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
- https://snyk.io/vuln/SNYK-JS-LODASHES-15053836
---
 plugins/catalog-graphql/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/plugins/catalog-graphql/package.json b/plugins/catalog-graphql/package.json
index 0b4bebc0f7c87f..80ed207c59bd0a 100644
--- a/plugins/catalog-graphql/package.json
+++ b/plugins/catalog-graphql/package.json
@@ -36,9 +36,9 @@
   "dependencies": {
     "@apollo/client": "^3.0.0",
     "@apollo/server": "^4.0.0",
-    "@backstage/catalog-model": "workspace:^",
+    "@backstage/catalog-model": "0.1.1",
     "@backstage/config": "workspace:^",
-    "@backstage/types": "workspace:^",
+    "@backstage/types": "0.1.1",
     "graphql": "^16.0.0",
     "graphql-modules": "^2.0.0",
     "graphql-tag": "^2.11.0",