From a7f11ab97bca629317117095a50b6b528124f701 Mon Sep 17 00:00:00 2001
From: Poovamraj T T <poovamraj@gmail.com>
Date: Wed, 11 Jan 2023 17:50:18 +0100
Subject: [PATCH] Release 2.8.1 (#628)

---
 CHANGELOG.md | 6 ++++++
 README.md    | 7 ++++++-
 2 files changed, 12 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 27421d01..982770a0 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,11 @@
 # Change Log
 
+## [2.8.1](https://github.com/auth0/Auth0.Android/tree/2.8.1) (2023-01-11)
+[Full Changelog](https://github.com/auth0/Auth0.Android/compare/2.8.0...2.8.1)
+
+This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices.
+Please review [the README note for additional details.](https://github.com/auth0/Auth0.Android/blob/main/README.md)
+
 ## [2.8.0](https://github.com/auth0/Auth0.Android/tree/2.8.0) (2022-07-05)
 [Full Changelog](https://github.com/auth0/Auth0.Android/compare/2.7.0...2.8.0)
 
diff --git a/README.md b/README.md
index c5dba233..b67ced25 100644
--- a/README.md
+++ b/README.md
@@ -1,3 +1,8 @@
+> **Note**
+> As part of our ongoing commitment to best security practices, we have rotated the signing keys used to sign previous releases of this SDK. As a result, new patch builds have been released using the new signing key. Please upgrade at your earliest convenience.
+>
+> While this change won't affect most developers, if you have implemented a dependency signature validation step in your build process, you may notice a warning that past releases can't be verified. This is expected, and a result of the key rotation process. Updating to the latest version will resolve this for you.
+
 ![Auth0.Android](https://cdn.auth0.com/website/sdks/banners/auth0-android-banner.png)
 
 [![Maven Central](https://img.shields.io/maven-central/v/com.auth0.android/auth0.svg?style=flat-square)](https://search.maven.org/artifact/com.auth0.android/auth0)
@@ -44,7 +49,7 @@ To install Auth0.Android with [Gradle](https://gradle.org/), simply add the foll
 
 ```gradle
 dependencies {
-    implementation 'com.auth0.android:auth0:2.8.0'
+    implementation 'com.auth0.android:auth0:2.8.1'
 }
 ```