Skip to content

Bump ddtrace from 1.5.2 to 1.6.4 in /emmet-api #56

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump ddtrace from 1.5.2 to 1.6.4 in /emmet-api #56

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jan 2, 2023

Bumps ddtrace from 1.5.2 to 1.6.4.

Release notes

Sourced from ddtrace's releases.

1.6.4

Deprecation Notes

  • aws: The boto, botocore and aiobotocore integrations no longer include all API parameters by default. To retain the deprecated behavior, set the environment variable DD_AWS_TAG_ALL_PARAMS=1. The deprecated behavior and environment variable will be removed in v2.0.0.

Bug Fixes

  • aws: We are reducing the number of API parameters that the boto, botocore and aiobotocore integrations collect as span tags by default. This change limits span tags to a narrow set of parameters for specific AWS APIs using standard tag names. To opt out of the new default behavior and collect no API parameters, set the environment variable DD_AWS_TAG_NO_PARAMS=1. To retain the deprecated behavior and collect all API parameters, set the environment variable DD_AWS_TAG_ALL_PARAMS=1.
  • dynamic instrumentation: remove unnecessary log line from application start up
  • botocore: Before this change, the botocore integration stripped newlines from the JSON string encoded in the data blob of Amazon Kinesis records. This change includes a terminating newline if it is present in the decoded data.
  • telemetry: This fix resolves an issue when we try to fetch platform.libc_ver() on an unsupported system.
  • tracing: This fix resolves an issue where the DD_SERVICE_MAPPING mapped service names were not used when updating span metadata with the DD_VERSION set version string.
  • wsgi: This fix resolves an issue where BaseException raised in a WSGI application caused spans to not be submitted.

1.6.3

Bug Fixes

  • httpx: Fixes an incompatibility from httpx==0.23.1 when the URL.raw property is not available.

1.6.2

Bug Fixes

  • ASM: Do not raise exceptions when failing to parse XML request body.

1.6.1

Bug Fixes

  • ASGI: response headers are correctly processed instead of ignored
  • ASM: fix a Flask body read problem on some corner case where not passing the content length makes wsgi.input.read() blocks.
  • ASM: Remove forbiddenfruit as dependency and rollback wrapt changes where forbiddenfruit was called (fixes #4484).
  • IAST: Patch builtins only when IAST is enabled.
  • ASM: Fix error in the agent response payload when the user disabled ASM in a dashboard using 1-click Remote Configuration.

1.6.0

Prelude

Initial library support has been added for Python 3.11. Continuous Profiler and Dynamic Instrumentation are not yet compatible and must be disabled in order to use the library with Python 3.11. Support for Continuous Profiler and Dynamic Instrumentation will be added in a future release. To track the status, see the Support Python 3.11 issue on GitHub.

Application Security Management (ASM) has added support for preventing attacks by blocking malicious IPs using one click within Datadog.

NOTE: One click activation for ASM is currently in beta.

Dynamic instrumentation allows instrumenting a running service dynamically to extract runtime information that could be useful for, e.g., debugging purposes, or to add extra metrics without having to make code changes and re-deploy the service. See https://ddtrace.readthedocs.io/en/stable/configuration.html for more details.

New Features

  • ASM: add support for one click activation using Remote Configuration Management (RCM). Set DD_REMOTE_CONFIGURATION_ENABLED=true to enable this feature.
  • ASM: ip address collection will be enabled if not explicitly disabled and appsec is enabled.
  • tracing: HTTP query string tagged by default in http.url tag (sensitive query strings will be obfuscated).

... (truncated)

Commits
  • 0f3cc70 chore(dynamic instrumentation): remove unnecessary log line from application ...
  • 4181619 fix(tracing): fix usage of mapped_service when creating a new span (backport ...
  • 9358ef8 fix(internal): catch possible OSError when calling platform.libc_ver() (backp...
  • 5a7debf fix(botocore): keep newlines in json data for kinesis records [backport #4700...
  • 1c9d59d fix(tests): pin attrs<22.2.0 for Python 3.6 in integration tests [backport #4...
  • 359d9f5 fix(starlette framework tests): unpin sqlalchemy [backport #4801 to 1.6] (#4806)
  • 23e3215 chore(internal): remove side-effects from origin [backport #4435 to 1.6] (#4811)
  • 0cad73a fix(aws): limit api params as span tags [backport #4781 to 1.6] (#4793)
  • c5c5bec chore(packaging): support version parsing in packaging v22 [backport #4752 to...
  • 1ae84a1 ci(encoders): fix encoders framework test [backport #4750 to 1.6] (#4754)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump ddtrace from 1.5.2 to 1.6.4 in /emmet-api
521081a 
Bumps [ddtrace](https://github.com/DataDog/dd-trace-py) from 1.5.2 to 1.6.4.
- [Release notes](https://github.com/DataDog/dd-trace-py/releases)
- [Changelog](https://github.com/DataDog/dd-trace-py/blob/1.x/CHANGELOG.md)
- [Commits](DataDog/dd-trace-py@v1.5.2...v1.6.4)

---
updated-dependencies:
- dependency-name: ddtrace
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 2, 2023
@dependabot dependabot bot mentioned this pull request Jan 2, 2023
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Jan 16, 2023

Superseded by #61.

@dependabot dependabot bot closed this Jan 16, 2023
@dependabot dependabot bot deleted the dependabot/pip/emmet-api/ddtrace-1.6.4 branch January 16, 2023 13:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant