VULN UPGRADE: certifi (major → 2025.11.12) [opentelemetry/python-microservice]

[campaigner-prod]

Summary: High-severity security update — 1 package upgraded (MAJOR changes included)

Manifests changed:

• opentelemetry/python-microservice (pip)

Updates

Package	From	To	Type	Vulnerabilities Fixed
certifi	2020.6.20	2025.11.12	major	1 HIGH, 1 MODERATE, 2 UNKNOWN

---

Warning

Major Version Upgrade

This update includes major version changes that may contain breaking changes. Please:

• Review the changelog/release notes for breaking changes
• Test thoroughly in a staging environment
• Update any code that depends on changed APIs
• Ensure all tests pass before merging

Security Details

🚨 Critical & High Severity (1 fixed)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
certifi	GHSA-xqr8-7jwr-rhp7	HIGH	Removal of e-Tugra root certificate	2020.6.20	2023.7.22

ℹ️ Other Vulnerabilities (3)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
certifi	GHSA-43fp-rhv2-5gv8	MODERATE	Certifi removing TrustCor root certificate	2020.6.20	2022.12.07
certifi	PYSEC-2023-135	unknown	-	2020.6.20	2023.7.22
certifi	PYSEC-2022-42986	unknown	-	2020.6.20	2022.12.7

⚠️ Dependencies that have Reached EOL (1)

Dependency	Unsafe Version	EOL Date	New Version	Path
certifi	2020.6.20	-	2025.11.12	opentelemetry/python-microservice/requirements.txt

---

Review Checklist

Enhanced review recommended for this update:

• Review changes for compatibility with your code
• Check release notes for breaking changes
• Run integration tests to verify service behavior
• Test in staging environment before production
• Monitor key metrics after deployment

---

Update Mode: Vulnerability Remediation (High)

🤖 Generated by DataDog Automated Dependency Management System