chore(deps): [release-1.4] Bump path-to-regexp to v0.1.12 to fix CVE-2024-52798 (#2614)

JessicaJHee · web-flow · commit cd6ad4680aeb · 2025-01-13T16:39:50.000Z
Signed-off-by: Jessica He &lt;jhe@redhat.com&gt;
diff --git a/.changeset/sour-masks-study.md b/.changeset/sour-masks-study.md
@@ -0,0 +1,6 @@
+---
+"@janus-idp/backstage-plugin-audit-log-node": patch
+"@janus-idp/backstage-plugin-kiali-backend": patch
+---
+
+Bump path-to-regexp to v0.1.12 to fix CVE-2024-52798
diff --git a/plugins/audit-log-node/package.json b/plugins/audit-log-node/package.json
@@ -39,7 +39,7 @@
     "@backstage/errors": "1.2.4",
     "@backstage/types": "1.1.1",
     "@types/lodash": "4.17.5",
-    "express": "4.19.2",
+    "express": "4.21.2",
     "jest-express": "1.12.0",
     "prettier": "3.3.3"
   },
diff --git a/plugins/kiali-backend/package.json b/plugins/kiali-backend/package.json
@@ -50,7 +50,7 @@
     "@backstage/errors": "^1.2.4",
     "@backstage/plugin-auth-node": "^0.5.3",
     "axios": "^1.7.4",
-    "express": "^4.18.2",
+    "express": "^4.21.2",
     "moment": "^2.29.4",
     "yn": "^4.0.0"
   },
diff --git a/yarn.lock b/yarn.lock
