Skip to content

Bump ddtrace from 1.5.2 to 1.8.0 in /emmet-api #71

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump ddtrace from 1.5.2 to 1.8.0 in /emmet-api #71

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 20, 2023

Bumps ddtrace from 1.5.2 to 1.8.0.

Release notes

Sourced from ddtrace's releases.

1.8.0

Upgrade Notes

  • ASM: libddwaf upgraded to version 1.6.1 using a new library loading mechanism
  • profiling: upgrades the profiler to support the v2.4 backend API for profile uploads, using a new request format.

Deprecation Notes

  • DD_REMOTECONFIG_POLL_SECONDS environment variable is deprecated and will be removed in v2.0. Please use DD_REMOTE_CONFIG_POLL_INTERVAL_SECONDS instead.

Known Issues

  • profiling: There is currently a known performance regression issue with the profiler's code provenance feature. Note that this feature is disabled by default and will only be enabled if DD_PROFILING_ENABLE_CODE_PROVENANCE is set to true.
  • remote config: There is a known issue with remote configuration management (RCM) when paired with gevent which can cause child processes to deadlock. If you are experiencing issues, we recommend disabling RCM with DD_REMOTE_CONFIGURATION_ENABLED=false. Note, this will disable one click activation for ASM.

New Features

  • CI Visibility: Add support for CI provider buddy.works
  • The component tag has been added for all auto-instrumented spans. The value of the component tag is equal to the name of the integration that produced the span.
  • tracing: Adds support for IPv6 agent hostnames for DD_AGENT_HOST.
  • elasticsearch: Update elasticsearch integration to add support for opensearch-py. See the elasticsearch documentation for more information.
  • ASM: one click activation enabled by default using Remote Configuration Management (RCM). Set DD_REMOTE_CONFIGURATION_ENABLED=false to disable this feature.
  • ASM: New Application Security Events Tracking API, starting with the functions track_user_login_success_event and
    track_user_login_failure_event for tracking user logins (it will also internally call set_user) and track_custom_event for any custom events. You can find these functions in the ddtrace.appsec.trace_utils module. Calling these functions will create new tags under the appsec.events namespace (appsec.events.user.login for logins) allowing you to track these events with Datadog. In the future this will be used to provide protection against account takeover attacks (ATO). Public documentation will be online soon.
  • celery: Enhances context tags containing dictionaries so that their contents are sent as individual tags (issue #4771).
  • tornado: Support custom error codes: https://ddtrace.readthedocs.io/en/stable/advanced_usage.html#custom-error-codes.
  • CI Visibility: Support reliably linking tests to the pipeline that executed them.
  • tracing: Add support for enabling collecting of HTTP request client IP addresses as the http.client_ip span tag. You can set the DD_TRACE_CLIENT_IP_ENABLED environment variable to true to enable. This feature is disabled by default.

Bug Fixes

  • This fix improves a cryptic error message encountered during some pip install ddtrace runs under pip versions <18.
  • dynamic instrumentation: remove unnecessary log line from application start up
  • This fix removes unintended url parts in the http.url tag.
  • botocore: Before this change, the botocore integration stripped newlines from the JSON string encoded in the data blob of Amazon Kinesis records. This change includes a terminating newline if it is present in the decoded data.
  • profiling: This fix resolves an issue in Python 3.11 where a PyFrameObject strong reference count was not properly decremented in the stack collector.
  • telemetry: This fix resolves an issue when we try to fetch platform.libc_ver() on an unsupported system.
  • Fix for ValueError when @ is not present in network location but other part of the url.
  • remote config: ensure proper validation of responses from the agent.
  • pylons: This fix resolves an issue where str.decode could cause critical unicode decode errors when ASM is enabled. ASM is disabled by default.
  • profiler: Handles potential AttributeErrors which would arise while collecting frames during stack unwinding in Python 3.11.
  • lib-injection: Use package versions published to PyPI to install the
    library. Formerly the published image was installing the package from source using the tagged commit SHA which resulted in slow and potentially failing installs.

Other Changes

  • profiler: CPU overhead reduction.

1.8.0rc4

Bug Fixes

... (truncated)

Changelog

Sourced from ddtrace's changelog.

Changelog

0.44.0+

Changelogs are now managed automatically by reno and located at https://ddtrace.readthedocs.io/en/stable/release_notes.html.

0.43.0 (5/10/2020)

  • fix(django): avoid mixing str and non-str args for uri helper
  • fix(asgi): tag 500-level responses as errors
  • fix(asgi): set http status when exception raised
  • fix(rediscluster): support rediscluster==2.1.0
  • fix(asyncio): enable patch by default
  • fix(asyncio): patch base event loop class
  • fix(vertica): use strings in __all__
  • feat(core): backport contextvars
  • fix(sanic): fix patching for sanic async http server (#1659)
  • fix(flask): make template patching idempotent
  • fix(core): Do not rate limit log lines when in debug
  • fix(profiling): Fix a potential deadlock on profiler restart after fork()

0.42.0 (14/09/2020)

  • feat(django): add database_service_name config option
  • feat: add global service name configuration for dbapi integrations
  • fix(falcon): set span error for 5xx responses
  • fix(core): always store span_type as str on span
  • feat(pymongo): trace tcp connections
  • fix(logging): cast span_id and trace_id as string when adding to the record.
  • fix(gevent): patch ssl modules on import
  • feat(core): add trace_utils module
  • fix(core): expose http setting on global config
  • feat(core): consolidate fork checks

0.41.2 (25/08/2020)

  • Fix for an issue introduced by patching classes in the MRO of a Django View class (#1625).

0.41.1 (25/08/2020)

  • reintroduce wrapt for patching Django view methods. (#1622)

... (truncated)

Commits
  • 55525ba chore(profiler): remove resolved known issue for profiler on Python 3.11 [bac...
  • 2385771 fix(lib-injection): wait and publish release tag of image [backport #4931, #5...
  • 4950e58 fix(profiler): handle non-frame objects while stack-unwinding [backport 1.8] ...
  • fd6de8d chore(asm): add known issue for RCM Gevent workers [backport 1.8] (#5094)
  • 2fb4587 fix(asm): fix unicode decode errors in pylons [backport #5029 to 1.8] (#5058)
  • 9c1a663 test(lib-injection): fix the version of tests used [backport #5062 to 1.8] (#...
  • 3e39c6c fix(rcm): ensure proper validation of responses from the agent [backport #497...
  • dbddf76 chore(asm): fix ddwaf errors found in 1.8.0rc1 [backport #4975 to 1.8] (#4991)
  • 4fffa77 feat(asm): add the DD_TRACE_CLIENT_IP_ENABLED env var to fetch request IPs wi...
  • 8cf9dd9 chore(asm): update release note for New Application Security Events Tracking ...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump ddtrace from 1.5.2 to 1.8.0 in /emmet-api
405f61a 
Bumps [ddtrace](https://github.com/DataDog/dd-trace-py) from 1.5.2 to 1.8.0.
- [Release notes](https://github.com/DataDog/dd-trace-py/releases)
- [Changelog](https://github.com/DataDog/dd-trace-py/blob/1.x/CHANGELOG.md)
- [Commits](DataDog/dd-trace-py@v1.5.2...v1.8.0)

---
updated-dependencies:
- dependency-name: ddtrace
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 20, 2023
@dependabot dependabot bot mentioned this pull request Feb 20, 2023
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Mar 6, 2023

Superseded by #75.

@dependabot dependabot bot closed this Mar 6, 2023
@dependabot dependabot bot deleted the dependabot/pip/emmet-api/ddtrace-1.8.0 branch March 6, 2023 14:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant