From 6a5ea2ac4149a4ee0a98987a0038696611b63a3e Mon Sep 17 00:00:00 2001 From: Tyler Yahn Date: Fri, 25 Mar 2022 13:18:27 -0700 Subject: [PATCH] Update changelog --- CHANGELOG.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 3dc9db7ca1b..8f9f190d1c2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -8,6 +8,11 @@ This project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.htm ## [Unreleased] +### Security + +- Upgrade `go.opentelemetry.io/proto/otlp` from `v0.12.0` to `v0.12.1`. + This includes an indirect upgrade of `github.com/grpc-ecosystem/grpc-gateway` which resolves [a vulnerability](https://nvd.nist.gov/vuln/detail/CVE-2019-11254) from `gopkg.in/yaml.v2` in version `v2.2.3`. (#2724, #TBD) + ## [1.6.0/0.28.0] - 2022-03-23 ### ⚠️ Notice ⚠️