There are some outdated backstage dependencies on these plugins that are causing some other versions to be resolved when installing this plugin.
This has a knock-on effect of some transient dependencies that vulnerabilities being installed and being detected by certain tools.
In this specific instance its the dependency of "@backstage/backend-common@npm:^0.20.1": that is requesting mysql2@npm:^2.2.5 which resolves to mysql2@npm:2.3.3 and that package has a critical vulnerability warning.
These plugins need to be updated to the latest backstage dependencies.
There are some outdated backstage dependencies on these plugins that are causing some other versions to be resolved when installing this plugin.
This has a knock-on effect of some transient dependencies that vulnerabilities being installed and being detected by certain tools.
In this specific instance its the dependency of "@backstage/backend-common@npm:^0.20.1": that is requesting
mysql2@npm:^2.2.5which resolves tomysql2@npm:2.3.3and that package has a critical vulnerability warning.These plugins need to be updated to the latest backstage dependencies.