From ca979e9969b34485f87efc33bc2d8547c5f9cf68 Mon Sep 17 00:00:00 2001
From: Florian Bruhin <me@the-compiler.org>
Date: Fri, 19 Mar 2021 15:59:48 +0100
Subject: Update changelog

---
 doc/changelog.asciidoc | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/doc/changelog.asciidoc b/doc/changelog.asciidoc
index 9ada74f7e..4b9a27104 100644
--- a/doc/changelog.asciidoc
+++ b/doc/changelog.asciidoc
@@ -35,6 +35,18 @@ Added
 Changed
 ~~~~~~~
 
+- The `content.ssl_strict` setting got renamed to
+  `content.tls.certificate_errors`, with new values:
+  * `ask`: Prompt on overridable certificate errors (`ssl_strict = 'ask'`)
+  * `ask-block-thirdparty`: See below
+  * `block`: Block the page load (`ssl_strict = True`)
+  * `load-insecurely`: Load the page despite the error (`ssl_strict = False`)
+- The new `content.tls.certificate_errors` setting now also understands the
+  value `ask-block-thirdparty`, which asks for page loads but automatically blocks
+  resource loads on TLS errors. This behavior is consistent with what other
+  browsers do.
+- The prompt text shown on certificate errors has been improved to make it
+  clearer what kind of error occured exactly.
 - The completion now also shows bindings starting with `set-cmd-text` in its
   third column, such as `o` for `:open`.
 
-- 
cgit v1.2.3-54-g00ecf