From 7dc309c5affbb990e49ca73489ce54a335f5eea4 Mon Sep 17 00:00:00 2001
From: Justin Richer <github@justin.richer.org>
Date: Wed, 7 Feb 2018 09:03:09 -0500
Subject: [PATCH] Update CHANGELOG.md

---
 CHANGELOG.md | 35 ++++++++++++++++++++---------------
 1 file changed, 20 insertions(+), 15 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index ea08bd561..c2bb3c65f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,22 +1,27 @@
 Unreleased:
-	- Added changelog
-	- Set default redirect URI resolver strict matching to true
-	- Fixed XSS vulnerability on redirect URI display on approval page
+- Added changelog
+- Set default redirect URI resolver strict matching to true
+- Fixed XSS vulnerability on redirect URI display on approval page
+- Removed MITRE from copyright
+- Disallow unsigned JWTs on client authentication
+- Upgraded Nimbus revision
+- Added French translation
+- Added hooks for custom JWT claims
 
 *1.3.1*:
-	- Added End Session endpoint
-	- Fixed discovery endpoint
-	- Downgrade MySQL connector dependency version from developer preview to GA release
+- Added End Session endpoint
+- Fixed discovery endpoint
+- Downgrade MySQL connector dependency version from developer preview to GA release
 
 *1.3.0*:
-	- Added device flow support
-	- Added PKCE support
-	- Modularized UI to allow better overlay and extensions
-	- Modularized data import/export API
-	- Added software statements to dynamic client registration
-	- Added assertion processing framework
-	- Removed ID tokens from storage
-	- Removed structured scopes
+- Added device flow support
+- Added PKCE support
+- Modularized UI to allow better overlay and extensions
+- Modularized data import/export API
+- Added software statements to dynamic client registration
+- Added assertion processing framework
+- Removed ID tokens from storage
+- Removed structured scopes
 
 *1.2.6*: 
-	- Added string HEART compliance mode
+- Added strict HEART compliance mode