Updates dependencies as necessary to ensure a remediated version of go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is used. Verified by running cat go.sum | grep -i otelhttp which returned go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0 h1:KfYpVmrjI7JuToy5k8XV3nkapjWx48k4E4JOtVstzQI=
Motivation for the change:
Ensure that we are unaffected by CVE-2023-45142
[!NOTE]
We may not actually be affected by this CVE as doing a go mod vendor results in this package not being vendored (although it does show up in the go.sum), likely meaning we don't use it. That being said, I don't think it hurts to perform these updates.
Description of the change:
cat go.sum | grep -i otelhttp
which returnedgo.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0 h1:KfYpVmrjI7JuToy5k8XV3nkapjWx48k4E4JOtVstzQI=
Motivation for the change: