Skip to content

chore(deps): [release-1.9] bump basic-ftp to 5.3.1#5051

Open
alizard0 wants to merge 1 commit into
redhat-developer:release-1.9from
alizard0:RHIDP-15174
Open

chore(deps): [release-1.9] bump basic-ftp to 5.3.1#5051
alizard0 wants to merge 1 commit into
redhat-developer:release-1.9from
alizard0:RHIDP-15174

Conversation

@alizard0

@alizard0 alizard0 commented Jul 3, 2026

Copy link
Copy Markdown
Member

It bumps basic-ftp to 5.3.1 to fix CVE-2026-44240
https://redhat.atlassian.net/browse/RHIDP-15174

Running yarn install in /Users/alizardo/Documents/engineering/github/rhdh ...
CVE-2026-44240 basic-ftp
  patch: 5.3.1
  affected: < 5.3.1
root@1.9.7 /Users/alizardo/Documents/engineering/github/rhdh
└─┬ @internal/plugin-dynamic-plugins-info-backend@0.1.0 -> ./plugins/dynamic-plugins-info-backend
  └─┬ @backstage/backend-dynamic-feature-service@0.7.6
    └─┬ @backstage/backend-openapi-utils@0.6.3
      └─┬ mockttp@3.15.3
        └─┬ pac-proxy-agent@7.0.2
          └─┬ get-uri@6.0.3
            └── basic-ftp@5.3.0
Upgrading dependency with yarn up -R ...
root@1.9.7 /Users/alizardo/Documents/engineering/github/rhdh
└─┬ @internal/plugin-dynamic-plugins-info-backend@0.1.0 -> ./plugins/dynamic-plugins-info-backend
  └─┬ @backstage/backend-dynamic-feature-service@0.7.6
    └─┬ @backstage/backend-openapi-utils@0.6.3
      └─┬ mockttp@3.15.3
        └─┬ pac-proxy-agent@7.0.2
          └─┬ get-uri@6.0.3
            └── basic-ftp@5.3.1
Running yarn install in /Users/alizardo/Documents/engineering/github/rhdh/dynamic-plugins ...
CVE-2026-44240 basic-ftp
  patch: 5.3.1
  affected: < 5.3.1
dynamic-plugins-root@1.9.7 /Users/alizardo/Documents/engineering/github/rhdh/dynamic-plugins
└─┬ backstage-community-plugin-ocm-backend@5.12.2 -> ./wrappers/backstage-community-plugin-ocm-backend-dynamic
  └─┬ @backstage-community/plugin-ocm-backend@5.12.2
    └─┬ @backstage/backend-openapi-utils@0.6.4
      └─┬ mockttp@3.17.1
        └─┬ pac-proxy-agent@7.2.0
          └─┬ get-uri@6.0.5
            └── basic-ftp@5.3.0
Upgrading dependency with yarn up -R ...
dynamic-plugins-root@1.9.7 /Users/alizardo/Documents/engineering/github/rhdh/dynamic-plugins
└─┬ backstage-community-plugin-ocm-backend@5.12.2 -> ./wrappers/backstage-community-plugin-ocm-backend-dynamic
  └─┬ @backstage-community/plugin-ocm-backend@5.12.2
    └─┬ @backstage/backend-openapi-utils@0.6.4
      └─┬ mockttp@3.17.1
        └─┬ pac-proxy-agent@7.2.0
          └─┬ get-uri@6.0.5
            └── basic-ftp@5.3.1

@openshift-ci openshift-ci Bot requested review from jrichter1 and nickboldt July 3, 2026 16:55
@sonarqubecloud

sonarqubecloud Bot commented Jul 3, 2026

Copy link
Copy Markdown

@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

Image was built and published successfully. It is available at:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant