go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is vulnerable to Denial of Service (DoS). The vulnerability exists in ServeHTTP
function in http.go
due to increased memory allocations in metrics instruments causing an application crash.
github.com/open-telemetry/opentelemetry-go-contrib/commit/4700605c95230010289f1915aca62a82c60cad3e
github.com/open-telemetry/opentelemetry-go-contrib/pull/3182
github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-5r5m-65gx-7vrh
github.com/open-telemetry/opentelemetry-go/blob/v1.12.0/semconv/internal/v2/http.go#L159