Skip to content

Bump ddtrace from 2.1.7 to 2.5.2 #70

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump ddtrace from 2.1.7 to 2.5.2 #70

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jan 31, 2024

Bumps ddtrace from 2.1.7 to 2.5.2.

Release notes

Sourced from ddtrace's releases.

2.5.2

Bug Fixes

  • profiling: handle a potential system error that may be raised when running a Celery-based application with CPython 3.11.
  • Pin importlib_metadata to 6.5.0 to avoid its issue 455 (python/importlib_metadata#455).
  • tracing: Ensures hostnames are reported in statsd metrics if DD_TRACE_REPORT_HOSTNAME=True (default value is False).

2.5.1

Bug Fixes

  • ASM: This fix resolves an issue where an exception would be logged while parsing an empty body JSON request.
  • Fixed an incompatible version requirements for one of the internal dependencies that could have caused an exception to be raised at runtime with Python 3.12.
  • Fix an incomplete support for pkg_resources that could have caused an exception on start-up.
  • Fixed an issue that could have caused an exception as a result of a concurrent access to some internal value cache.
  • Vulnerability Management for Code-level (IAST): Fix an unhandled ValueError in ast_function thrown in some cases (i.e. Numpy arrays when converted to bool).

2.5.0

New Features

  • aiohttp: add split_by_domain config to split service name by domain
  • CI Visibility: Adds code coverage lines covered tag for pytest and unittest.
  • aiohttp: Adds http.route tag to aiohttp.request spans.
  • bottle: Adds http.route tag to bottle.request spans.
  • falcon: Adds http.route tag to falcon.request spans.
  • molten: Adds http.route tag to molten.request spans.
  • Adds distributed tracing for confluent-kafka integration. Distributed tracing connects Kafka consumer spans with Kafka producer spans within the same trace if a message is valid. To enable distributed tracing, set the configuration: DD_KAFKA_DISTRIBUTED_TRACING_ENABLED=True for both the consumer and producer service.
  • ASM: This introduces (experimental) api security support for fastAPI. Flask and Django were already supported in 2.4.0. Support schema computation on all addresses (requests and responses) and scanner support for pii, credentials and payment data.
  • CI Visibility: introduces a CI visibility-specific logger (enabled for the pytest plugin), enabled by setting the DD_CIVISIBILITY_LOG_LEVEL environment variable (with the same level names as Python logging levels).
  • CI Visibility: allows for waiting for the git metadata upload to complete before deciding whether or not to enable coverage (based on API response).
  • Further lazy loads telemetry_writer so that it is not running when explicitly disabled. Users must explicitly set "DD_INSTRUMENTATION_TELEMETRY_ENABLED=false".
  • tracer: Add support for remotely configuring trace tags.

Bug Fixes

  • loguru: Ensures log correlation is enabled when the root logger is initialized. Previously, log correlation was only enabled when a new sink was added.
  • Fix compatibility with other tools that try to infer the type of a Python object at runtime.
  • tracing: Fixes a bug that prevents span links from being visualized in the Datadog UI.
  • tracing: Resolves span encoding errors raised when span links do not contain expected types
  • ASM: This fix resolves an issue where custom event boolean properties were not reported as true and false like other tracers but as True and False.
  • Vulnerability Management for Code-level (IAST): Ensure that Cookies vulnerabilities report only the cookie name.
  • langchain: This fix resolves an get_openai_token_cost_for_model import error in langhcain version 0.0.351 or later.
  • ASM: This fix resolves an issue where IAST could cause circular dependency at startup.
  • tracing: Ensures all fields in ddtrace.context.Context are picklable.
  • pytest: This fix resolves an issue where the --no-cov flag did not take precedence over the --cov flag when deciding whether to report code coverage on spans.
  • rq: Fixed a bug where the RQ integration would emit a warning when setting job.status span tag.
  • IAST: Don't split AST Assign nodes since it's not needed for propagation to work.
  • Fix an issue that caused an exception to be raised when trying to access resource files via pkg_resources.
  • Fix for an import issue that caused the pytest plugin to fail to properly initialize a test session and exit with an import exception.

... (truncated)

Commits
  • de3b9e4 fix(trace_stats): ensures stats respect the report_hostname configuration [ba...
  • 947e7ea ci: temporarily disable opentelemetry tests on 3.7 because they are broken [b...
  • a55c4e7 fix: pin importlib to 6.5.0 [backport 2.5] (#8196)
  • 77d5262 fix(profiling): handle SystemError in class name extraction [backport 2.5] (#...
  • 64ba71c fix: incomplete pkg_resources support [backport 2.5] (#8180)
  • 5705913 fix(asm): avoid logging exception on flask empty body [backport 2.5] (#8171)
  • 75461c9 fix(internal): make caching thread-safe [backport 2.5] (#8163)
  • 355b59c ci(ci_visibility): increase parallelism for pytest suite [backport 2.5] (#8173)
  • cc67127 fix(setup): bytecode constraint for Python 3.12 [backport 2.5] (#8159)
  • fcff223 fix(iast): handle value error thrown by numpy [backport 2.5] (#8164)
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump ddtrace from 2.1.7 to 2.5.2
6326149 
Bumps [ddtrace](https://github.com/DataDog/dd-trace-py) from 2.1.7 to 2.5.2.
- [Release notes](https://github.com/DataDog/dd-trace-py/releases)
- [Changelog](https://github.com/DataDog/dd-trace-py/blob/main/CHANGELOG.md)
- [Commits](DataDog/dd-trace-py@v2.1.7...v2.5.2)

---
updated-dependencies:
- dependency-name: ddtrace
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 31, 2024
@dependabot dependabot bot mentioned this pull request Jan 31, 2024
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Feb 7, 2024

Superseded by #71.

@dependabot dependabot bot closed this Feb 7, 2024
@dependabot dependabot bot deleted the dependabot/pip/ddtrace-2.5.2 branch February 7, 2024 20:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants