From 65211f8eb8520bee650076bd61210805e383ea80 Mon Sep 17 00:00:00 2001
From: Rundeck CI <fdevans@gmail.com>
Date: Wed, 17 Jun 2026 13:57:02 -0700
Subject: [PATCH] Update OpenTelemetry to 1.62.0 (CVE-2026-45292)

Fixes an unbounded memory/CPU allocation vulnerability (CWE-770) in
OpenTelemetry baggage propagation, patched in 1.62.0.
---
 dependencies.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/dependencies.gradle b/dependencies.gradle
index 63d544851a9..2ad9536e1d1 100644
--- a/dependencies.gradle
+++ b/dependencies.gradle
@@ -82,7 +82,7 @@ ext {
             'junit.version'                 : '5.13.3',
             'junit-platform.version'        : '1.13.3',
             'mongodb.version'               : '5.5.2',
-            'opentelemetry.version'         : '1.55.0',
+            'opentelemetry.version'         : '1.62.0',
             'rxjava.version'                : '1.3.8',
             'rxjava2.version'               : '2.2.21',
             'rxjava3.version'               : '3.1.12',