fix(deps): fix SNYK-JS-FASTXMLPARSER-5668858

Fixes SNYK-JS-FASTXMLPARSER-5668858 by upgrading aws-sdk dependencies to their latest version. The upgrade of `fast-xml-parser` to version 4.2.4 (or higher) was included in release v3.347.1 of the aws-sdk. Latest release is v3.350.0, however, not for all packages. The previous version's requirement would have allowed to use a newer version of the aws-sdk to fix it locally to a backstage project setup. This change will enforce a version including the fix. Closes: #18164 Signed-off-by: Patrick Jungermann <Patrick.Jungermann@gmail.com>
2023-06-12 21:55:02 +02:00
parent 5b381397e5
commit 5f2c38c70f
8 changed files with 740 additions and 730 deletions
@@ -0,0 +1,10 @@
+---
+'@backstage/plugin-events-backend-module-aws-sqs': patch
+'@backstage/plugin-catalog-backend-module-aws': patch
+'@backstage/integration-aws-node': patch
+'@backstage/plugin-kubernetes-backend': patch
+'@backstage/backend-common': patch
+'@backstage/plugin-techdocs-node': patch
+---
+
+Fix SNYK-JS-FASTXMLPARSER-5668858 (`fast-xml-parser`) by upgrading aws-sdk to at least the current latest version.
@@ -46,10 +46,10 @@
    "test:kubernetes": "backstage-cli package test -t KubernetesContainerRunner --no-watch"
  },
  "dependencies": {
-    "@aws-sdk/abort-controller": "^3.310.0",
-    "@aws-sdk/client-s3": "^3.310.0",
-    "@aws-sdk/credential-providers": "^3.310.0",
-    "@aws-sdk/types": "^3.310.0",
+    "@aws-sdk/abort-controller": "^3.347.0",
+    "@aws-sdk/client-s3": "^3.350.0",
+    "@aws-sdk/credential-providers": "^3.350.0",
+    "@aws-sdk/types": "^3.347.0",
    "@backstage/backend-app-api": "workspace:^",
    "@backstage/backend-dev-utils": "workspace:^",
    "@backstage/backend-plugin-api": "workspace:^",
@@ -114,7 +114,7 @@
    }
  },
  "devDependencies": {
-    "@aws-sdk/util-stream-node": "^3.310.0",
+    "@aws-sdk/util-stream-node": "^3.350.0",
    "@backstage/backend-test-utils": "workspace:^",
    "@backstage/cli": "workspace:^",
    "@types/archiver": "^5.1.0",
@@ -32,10 +32,10 @@
    "clean": "backstage-cli package clean"
  },
  "dependencies": {
-    "@aws-sdk/client-sts": "^3.310.0",
-    "@aws-sdk/credential-provider-node": "^3.310.0",
-    "@aws-sdk/credential-providers": "^3.310.0",
-    "@aws-sdk/types": "^3.310.0",
+    "@aws-sdk/client-sts": "^3.350.0",
+    "@aws-sdk/credential-provider-node": "^3.350.0",
+    "@aws-sdk/credential-providers": "^3.350.0",
+    "@aws-sdk/types": "^3.347.0",
    "@aws-sdk/util-arn-parser": "^3.310.0",
    "@backstage/config": "workspace:^",
    "@backstage/errors": "workspace:^"
@@ -45,12 +45,12 @@
    "clean": "backstage-cli package clean"
  },
  "dependencies": {
-    "@aws-sdk/client-eks": "^3.310.0",
-    "@aws-sdk/client-organizations": "^3.310.0",
-    "@aws-sdk/client-s3": "^3.310.0",
-    "@aws-sdk/credential-providers": "^3.310.0",
-    "@aws-sdk/middleware-endpoint": "^3.310.0",
-    "@aws-sdk/types": "^3.310.0",
+    "@aws-sdk/client-eks": "^3.350.0",
+    "@aws-sdk/client-organizations": "^3.350.0",
+    "@aws-sdk/client-s3": "^3.350.0",
+    "@aws-sdk/credential-providers": "^3.350.0",
+    "@aws-sdk/middleware-endpoint": "^3.347.0",
+    "@aws-sdk/types": "^3.347.0",
    "@backstage/backend-common": "workspace:^",
    "@backstage/backend-plugin-api": "workspace:^",
    "@backstage/backend-tasks": "workspace:^",
@@ -69,7 +69,7 @@
    "winston": "^3.2.1"
  },
  "devDependencies": {
-    "@aws-sdk/util-stream-node": "^3.310.0",
+    "@aws-sdk/util-stream-node": "^3.350.0",
    "@backstage/backend-test-utils": "workspace:^",
    "@backstage/cli": "workspace:^",
    "@types/lodash": "^4.14.151",
@@ -35,7 +35,7 @@
    "postpack": "backstage-cli package postpack"
  },
  "dependencies": {
-    "@aws-sdk/client-sqs": "^3.310.0",
+    "@aws-sdk/client-sqs": "^3.350.0",
    "@backstage/backend-common": "workspace:^",
    "@backstage/backend-plugin-api": "workspace:^",
    "@backstage/backend-tasks": "workspace:^",
@@ -46,7 +46,7 @@
    "winston": "^3.2.1"
  },
  "devDependencies": {
-    "@aws-sdk/types": "^3.310.0",
+    "@aws-sdk/types": "^3.347.0",
    "@backstage/backend-common": "workspace:^",
    "@backstage/backend-test-utils": "workspace:^",
    "@backstage/cli": "workspace:^",
@@ -50,8 +50,8 @@
  },
  "dependencies": {
    "@aws-crypto/sha256-js": "^3.0.0",
-    "@aws-sdk/credential-providers": "^3.310.0",
-    "@aws-sdk/signature-v4": "^3.310.0",
+    "@aws-sdk/credential-providers": "^3.350.0",
+    "@aws-sdk/signature-v4": "^3.347.0",
    "@azure/identity": "^2.0.4",
    "@backstage/backend-common": "workspace:^",
    "@backstage/backend-plugin-api": "workspace:^",
@@ -39,11 +39,11 @@
    "url": "https://github.com/backstage/backstage/issues"
  },
  "dependencies": {
-    "@aws-sdk/client-s3": "^3.310.0",
-    "@aws-sdk/credential-providers": "^3.310.0",
-    "@aws-sdk/lib-storage": "^3.310.0",
-    "@aws-sdk/node-http-handler": "^3.310.0",
-    "@aws-sdk/types": "^3.310.0",
+    "@aws-sdk/client-s3": "^3.350.0",
+    "@aws-sdk/credential-providers": "^3.350.0",
+    "@aws-sdk/lib-storage": "^3.350.0",
+    "@aws-sdk/node-http-handler": "^3.350.0",
+    "@aws-sdk/types": "^3.347.0",
    "@azure/identity": "^2.1.0",
    "@azure/storage-blob": "^12.5.0",
    "@backstage/backend-common": "workspace:^",