From f6f09781997e71cd3c942a241741e36749c6d94a Mon Sep 17 00:00:00 2001
From: Joe Lanman <joelanman@gmail.com>
Date: Fri, 12 Nov 2021 12:53:07 +0000
Subject: [PATCH 1/2] update version numbers to 11

---
 VERSION.txt       | 2 +-
 package-lock.json | 4 ++--
 package.json      | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/VERSION.txt b/VERSION.txt
index a13e7b9c87..275283a18f 100644
--- a/VERSION.txt
+++ b/VERSION.txt
@@ -1 +1 @@
-10.0.0
+11.0.0
diff --git a/package-lock.json b/package-lock.json
index 06b9119925..1d6326e5d3 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "govuk-prototype-kit",
-  "version": "10.0.0",
+  "version": "11.0.0",
   "lockfileVersion": 2,
   "requires": true,
   "packages": {
     "": {
       "name": "govuk-prototype-kit",
-      "version": "10.0.0",
+      "version": "11.0.0",
       "dependencies": {
         "acorn": "^8.5.0",
         "ansi-colors": "^4.1.1",
diff --git a/package.json b/package.json
index c51212c975..180522c691 100644
--- a/package.json
+++ b/package.json
@@ -1,7 +1,7 @@
 {
   "name": "govuk-prototype-kit",
   "description": "Rapidly create HTML prototypes of GOV.UK services",
-  "version": "10.0.0",
+  "version": "11.0.0",
   "private": true,
   "engines": {
     "node": ">=12.0.0 <17.0.0"

From 8a2f2a74887a955eb03807df4a7e63ed9b1264fc Mon Sep 17 00:00:00 2001
From: Joe Lanman <joelanman@gmail.com>
Date: Fri, 12 Nov 2021 13:25:57 +0000
Subject: [PATCH 2/2] update changelog

---
 CHANGELOG.md | 17 +++++++++++++++--
 1 file changed, 15 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index f40f580486..42daf3f2ec 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,8 +1,21 @@
-# Unreleased
+# 11.0.0 (Fix release)
 
 ## Fixes
 
-- [Pull request #1143: Add a package-lock.json file](https://github.com/alphagov/govuk-prototype-kit/pull/1143)
+We’ve recently experienced 2 security incidents involving common NPM packages used by the Prototype Kit. We’re sorry for the inconvenience this has caused.
+
+We’ve added new measures (a package-lock.json file) to help prevent this in the future. 
+
+To protect your service from any similar threats in future, please upgrade to this new version of the Kit.
+
+[Install the Prototype Kit](https://govuk-prototype-kit.herokuapp.com/docs/install)
+
+For any existing prototypes, follow the guide to [update the kit](https://govuk-prototype-kit.herokuapp.com/docs/updating-the-kit).
+
+## Pull requests
+
+[Pull request #1143: Add a package-lock.json file](https://github.com/alphagov/govuk-prototype-kit/pull/1143).
+
 
 # 10.0.0 (Breaking release)