diff --git a/CHANGELOG.md b/CHANGELOG.md
index 181a6ef8..f16b4499 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -39,18 +39,26 @@
 - Fixed a bug where wrong dates where returned if the database used a different timezone than UTC.
 - Fixed a bug in `mytoken-migratedb` were empty databases could not be setup.
 
+### Security Fixes
+
+- Replaced the uuid library; the old library had a security flaw CVE-2021-3538
+
 ### Dependencies
 
-- Bump golang.org/x/term from 0.5.0 to 0.6.0
-- Bump github.com/valyala/fasthttp from 1.44.0 to 1.45.0
+- Bump golang.org/x/term from 0.5.0 to 0.8.0
+- Bump github.com/valyala/fasthttp from 1.44.0 to 1.47.0
 - Bump golang.org/x/net from 0.6.0 to 0.7.0
-- Bump golang.org/x/crypto from 0.6.0 to 0.7.0
-- Bump golang.org/x/oauth2 from 0.5.0 to 0.6.0
+- Bump golang.org/x/crypto from 0.6.0 to 0.9.0
+- Bump golang.org/x/oauth2 from 0.5.0 to 0.8.0
 - Bump golang.org/x/mod from 0.8.0 to 0.9.0
 - Bump github.com/gofiber/helmet/v2 from 2.2.24 to 2.2.25
 - Bump github.com/gofiber/template from 1.7.5 to 1.8.0
-- Bump github.com/gofiber/fiber/v2 from 2.42.0 to 2.43.0
+- Bump github.com/gofiber/fiber/v2 from 2.42.0 to 2.46.0
 - Bump github.com/pires/go-proxyproto from 0.6.2 to 0.7.0
+- Bump github.com/go-sql-driver/mysql from 1.7.0 to 1.7.1
+- Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2
+- Bump github.com/coreos/go-oidc/v3 from 3.5.0 to 3.6.0
+- Replaced github.com/satori/go.uuid with github.com/gofrs/uuid
 
 ## mytoken 0.7.2