diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3cf4144..0d098cb 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,9 @@ file. This change log follows the conventions of
 
 ## [Unreleased]
 
+### Fixed
+- Upgrade Amazonica to latest version, to make the S3 client side encryption respect specified endpoints. Otherwise it prevented the whole thing from working if we were using a S3-compatible service from another cloud provider.
+
 ## [0.7.2] - 2024-05-29
 ### Fixed
 - Keep the `:endpoint` and `:explicit-object-acl` in the AWSS3Bucket record. When we added those two options, we forgot to make them part as the record. The implementation worked because Clojure records double as Clojure maps when we assoc extra keys to them. But they should be proper record members.
diff --git a/project.clj b/project.clj
index 209a1e0..2398b1e 100644
--- a/project.clj
+++ b/project.clj
@@ -5,7 +5,7 @@
             :url "https://www.mozilla.org/en-US/MPL/2.0/"}
   :min-lein-version "2.9.8"
   :dependencies [[org.clojure/clojure "1.10.0"]
-                 [amazonica "0.3.166" :exclusions [com.amazonaws/aws-java-sdk
+                 [amazonica "0.3.167" :exclusions [com.amazonaws/aws-java-sdk
                                                    com.amazonaws/amazon-kinesis-client
                                                    com.amazonaws/dynamodb-streams-kinesis-adapter]]
                  [com.amazonaws/aws-java-sdk-core "1.12.712"]