Bump @backstage/backend-common from 0.22.0 to 0.24.1 in /plugins/cad-backend

[dependabot]

Bumps @backstage/backend-common from 0.22.0 to 0.24.1.

Changelog

Sourced from @​backstage/backend-common's changelog.

@​backstage/backend-common

0.25.0-next.0

Minor Changes

• d425fc4: BREAKING: The return values from createBackendPlugin, createBackendModule, and createServiceFactory are now simply BackendFeature and ServiceFactory, instead of the previously deprecated form of a function that returns them. For this reason, createServiceFactory also no longer accepts the callback form where you provide direct options to the service. This also affects all coreServices.* service refs.

  This may in particular affect tests; if you were effectively doing createBackendModule({...})() (note the parentheses), you can now remove those extra parentheses at the end. You may encounter cases of this in your packages/backend/src/index.ts too, where you add plugins, modules, and services. If you were using createServiceFactory with a function as its argument for the purpose of passing in options, this pattern has been deprecated for a while and is no longer supported. You may want to explore the new multiton patterns to achieve your goals, or moving settings to app-config.

  As part of this change, the IdentityFactoryOptions type was removed, and can no longer be used to tweak that service. The identity service was also deprecated some time ago, and you will want to migrate to the new auth system if you still rely on it.

Patch Changes

• 8ba77ed: The legacyPlugin and makeLegacyPlugin helpers now provide their own shim implementation of the identity and token manager services, as these services are being removed from the new backend system.
• d425fc4: Modules, plugins, and services are now BackendFeature, not a function that returns a feature.
• 2e9ec14: Add pg-format as a dependency
• 19ff127: Internal refactor to re-declare the token manager service which was removed from @backstage/backend-plugin-api, but is still supported in this package for backwards compatibility.
• 66dbf0a: Allow the cache service to accept the human duration format for TTL
• 0b2a402: Updates to the config schema to match reality
• Updated dependencies
  • @​backstage/backend-plugin-api@​0.9.0-next.0
  • @​backstage/plugin-auth-node@​0.5.2-next.0
  • @​backstage/backend-dev-utils@​0.1.5
  • @​backstage/cli-common@​0.1.14
  • @​backstage/config@​1.2.0
  • @​backstage/config-loader@​1.9.0
  • @​backstage/errors@​1.2.4
  • @​backstage/integration@​1.14.0
  • @​backstage/integration-aws-node@​0.1.12
  • @​backstage/types@​1.1.1

0.24.0

Minor Changes

• 389f5a4: BREAKING: Removed the following Url Reader deprecated exports:

  • UrlReader: Use UrlReaderService from @backstage/backend-plugin-api instead;
  • AzureUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • BitbucketUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • BitbucketCloudUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • BitbucketServerUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • GithubUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • GitlabUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • GerritUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • GiteaUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • HarnessUrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • AwsS3UrlReader: Import from @backstage/backend-defaults/urlReader instead;
  • FetchUrlReader: Import from @backstage/backend-defaults/urlReader instead;

... (truncated)

Commits

• 2b59ff4 Merge pull request #5556 from backstage/dependabot/npm_and_yarn/octokit/auth-...
• e70ec93 Merge pull request #5553 from backstage/freben/composability-readmes
• 38ca051 The default @octokit/rest dependency was bumped to "^18.5.3".
• 1268d64 chore(deps): bump winston from 3.2.1 to 3.3.3
• b99ac3f Minor composability etc docs changes
• 658de01 scripts/api-extractor: disable all inline warnings
• 0eda63f scripts/api-extractor: disable inline compilation warnings
• a904d8b packages: add api-reports for all included packages
• 034998d Version Packages
• afeb0ef Merge pull request #5046 from backstage/dependabot/npm_and_yarn/helmet-4.4.1
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by patriko, a new releaser for @​backstage/backend-common since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[nephio-prow]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign efiacor for approval by writing /assign @efiacor in a comment. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[nephio-prow]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a nephio-project member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[kmadejek-samsung]

Manual bumping of Backstage modules is not recommended and can lead to build and/or application errors. We should disable Dependabot recommendations for all @backstage packages.

The Backstage CLI has a command to bump all @backstage packages and dependencies you're using to the latest versions (...) The reason for bumping all @backstage packages at once is to maintain the dependencies that they have between each other. By default the bump command will upgrade @backstage packages to the latest main release line which is released monthly.

https://backstage.io/docs/getting-started/keeping-backstage-updated/#updating-backstage-versions-with-backstage-cli

[kmadejek-samsung]

@dependabot close

[dependabot]

Sorry, only users with push access can use that command.

[radoslawc]

/close

[nephio-prow]

@radoslawc: Closed this PR.

In response to this:

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.