diff --git a/NEWS.md b/NEWS.md
index 80fe23d39f..65049cdfa6 100644
--- a/NEWS.md
+++ b/NEWS.md
@@ -1,3 +1,45 @@
+# 1.7.1
+
+# CLI changes
+
+- Make the default background color more suitable for bright backgrounds. @mjarosie @taoky @nicowilliams @itchyny #2904
+- Allow passing the inline jq script after `--`. @emanuele6 #2919
+- Restrict systems operations on OpenBSD and remove unused `mkstemp`. @klemensn #2934
+- Fix possible uninitialised value dereference if `jq_init()` fails. @emanuele6 @nicowilliams #2935
+
+## Language changes
+
+- CVE-2023-50246: Fix heap-buffer-overflow when converting number with certain exponents to a string. @emanuele6 #TBD
+- CVE-TBD: Fix stack-buffer-overflow if comparing nan with payload. @emanuele6 #TBD
+- Simplify `paths/0` and `paths/1`. @asheiduk @emanuele6 #2946
+- Reject `U+001F` in string literals. @torsten-schenk @itchyny @wader #2911
+- Remove unused nref accumulator in `block_bind_library`. @emanuele6 #2914
+- Remove a bunch of unused variables, and useless assignments. @emanuele6 #2914
+- main.c: Remove unused EXIT_STATUS_EXACT option. @emanuele6 #2915
+- Actually use the number correctly casted from double to int as index. @emanuele6 #2916
+- src/builtin.c: remove unnecessary jv_copy-s in type_error/type_error2. @emanuele6 #2937
+- Remove undefined behavior caught by LLVM 10 UBSAN. @Gaelan @emanuele6 #2926
+- Convert decnum to binary64 (double) instead of decimal64. This makes jq behave like the JSON specification suggests and more similar to other languages. @wader @leonid-s-usov #2949
+- Fix memory leaks on invalid input for `setpath/2`, `ltrimstr/1` and `rtrimstr/1` . @emanuele6 #2970 #2977
+
+## Documentation changes
+
+- Generate links in the man page. @emanuele6 #2931
+- Standardize arch types to AMD64 & ARM64 from index page download dropdown. @owenthereal #2884
+
+## libjq
+
+- Add extern C for C++. @rockwotj #2953
+
+## Build and test changes
+
+- Fix incorrect syntax for checksum file. @kamontat @wader #2899
+- Remove `-dirty` version suffix for windows release build. @itchyny #2888
+- Make use of `od` in tests more compatible. @nabijaczleweli @emanuele6 @nicowilliams #2922
+- Add dependabot. @yeikel #2889
+- Extend fuzzing setup to fuzz parser and and JSON serializer. @DavidKorczynski @emanuele6 #2952
+- Keep releasing executables with legacy names. @itchyny #2951
+
 # 1.7
 
 After a five year hiatus we're back with a GitHub organization, with new admins and new maintainers who have brought a great deal of energy to make a long-awaited and long-needed new release.  We're very grateful for all the new owners, admins, and maintainers.  Special thanks go to Owen Ou (@owenthereal) for pushing to set up a new GitHub organization for jq, Stephen Dolan (@stedolan) for transferring the jq repository to the new organization, @itchyny for doing a great deal of work to get the release done, Mattias Wadman (@wader) and Emanuele Torre (@emanuele6) for many PRs and code reviews.  Many others also contributed PRs, issues, and code reviews as well, and you can find their contributions in the Git log and on the [closed issues and PRs page](https://github.com/jqlang/jq/issues?q=is%3Aclosed+sort%3Aupdated-desc).