On our path toward graduation, the OpenTelemetry project is currently undergoing a security audit sponsored by the CNCF, facilitated by OSTIF, and performed by 7ASecurity. During this process, we have received a few ideas about things that we could do better, like using specific compiler flags when preparing our OpenTelemetry Collector binaries. On 31 May 2024, we received a more serious report: a malicious user could cause a denial of service (DoS) when using a specially crafted HTTP or gRPC...| OpenTelemetry