RubyGems - datadog - Versions diffs - 2.14.0 → 2.16.0 - Mend

datadog 2.14.0 → 2.16.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (149) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +67 -1
data/ext/datadog_profiling_native_extension/collectors_thread_context.c +7 -6
data/ext/datadog_profiling_native_extension/datadog_ruby_common.c +1 -4
data/ext/datadog_profiling_native_extension/datadog_ruby_common.h +10 -0
data/ext/datadog_profiling_native_extension/encoded_profile.c +69 -0
data/ext/datadog_profiling_native_extension/encoded_profile.h +7 -0
data/ext/datadog_profiling_native_extension/extconf.rb +3 -0
data/ext/datadog_profiling_native_extension/heap_recorder.c +8 -1
data/ext/datadog_profiling_native_extension/http_transport.c +25 -32
data/ext/datadog_profiling_native_extension/profiling.c +2 -0
data/ext/datadog_profiling_native_extension/stack_recorder.c +22 -21
data/ext/libdatadog_api/crashtracker.c +1 -9
data/ext/libdatadog_api/crashtracker.h +5 -0
data/ext/libdatadog_api/datadog_ruby_common.c +1 -4
data/ext/libdatadog_api/datadog_ruby_common.h +10 -0
data/ext/libdatadog_api/init.c +15 -0
data/ext/libdatadog_api/library_config.c +122 -0
data/ext/libdatadog_api/library_config.h +19 -0
data/ext/libdatadog_api/process_discovery.c +117 -0
data/ext/libdatadog_api/process_discovery.h +5 -0
data/lib/datadog/appsec/actions_handler.rb +3 -2
data/lib/datadog/appsec/assets/waf_rules/README.md +50 -5
data/lib/datadog/appsec/assets/waf_rules/processors.json +239 -10
data/lib/datadog/appsec/assets/waf_rules/scanners.json +926 -17
data/lib/datadog/appsec/autoload.rb +1 -1
data/lib/datadog/appsec/component.rb +29 -20
data/lib/datadog/appsec/compressed_json.rb +40 -0
data/lib/datadog/appsec/configuration/settings.rb +31 -18
data/lib/datadog/appsec/context.rb +1 -1
data/lib/datadog/appsec/contrib/active_record/instrumentation.rb +10 -12
data/lib/datadog/appsec/contrib/active_record/integration.rb +2 -2
data/lib/datadog/appsec/contrib/active_record/patcher.rb +22 -22
data/lib/datadog/appsec/contrib/devise/data_extractor.rb +2 -3
data/lib/datadog/appsec/contrib/devise/ext.rb +1 -0
data/lib/datadog/appsec/contrib/devise/integration.rb +1 -1
data/lib/datadog/appsec/contrib/devise/patcher.rb +3 -5
data/lib/datadog/appsec/contrib/devise/tracking_middleware.rb +17 -4
data/lib/datadog/appsec/contrib/excon/integration.rb +1 -1
data/lib/datadog/appsec/contrib/excon/ssrf_detection_middleware.rb +9 -10
data/lib/datadog/appsec/contrib/faraday/integration.rb +1 -1
data/lib/datadog/appsec/contrib/faraday/ssrf_detection_middleware.rb +8 -9
data/lib/datadog/appsec/contrib/graphql/gateway/watcher.rb +8 -9
data/lib/datadog/appsec/contrib/graphql/integration.rb +1 -1
data/lib/datadog/appsec/contrib/rack/gateway/watcher.rb +22 -32
data/lib/datadog/appsec/contrib/rack/integration.rb +1 -1
data/lib/datadog/appsec/contrib/rack/request_middleware.rb +16 -16
data/lib/datadog/appsec/contrib/rails/gateway/watcher.rb +11 -13
data/lib/datadog/appsec/contrib/rails/integration.rb +1 -1
data/lib/datadog/appsec/contrib/rails/patcher.rb +21 -21
data/lib/datadog/appsec/contrib/rest_client/integration.rb +1 -1
data/lib/datadog/appsec/contrib/rest_client/request_ssrf_detection_patch.rb +10 -11
data/lib/datadog/appsec/contrib/sinatra/gateway/watcher.rb +17 -23
data/lib/datadog/appsec/contrib/sinatra/integration.rb +1 -1
data/lib/datadog/appsec/event.rb +95 -134
data/lib/datadog/appsec/instrumentation/gateway/argument.rb +5 -2
data/lib/datadog/appsec/metrics/telemetry.rb +1 -1
data/lib/datadog/appsec/monitor/gateway/watcher.rb +42 -12
data/lib/datadog/appsec/processor/rule_loader.rb +26 -28
data/lib/datadog/appsec/processor/rule_merger.rb +5 -5
data/lib/datadog/appsec/processor.rb +1 -1
data/lib/datadog/appsec/remote.rb +16 -11
data/lib/datadog/appsec/response.rb +6 -6
data/lib/datadog/appsec/security_engine/runner.rb +1 -1
data/lib/datadog/appsec/security_event.rb +39 -0
data/lib/datadog/appsec.rb +1 -1
data/lib/datadog/core/configuration/agentless_settings_resolver.rb +176 -0
data/lib/datadog/core/configuration/components.rb +19 -10
data/lib/datadog/core/configuration/option.rb +61 -25
data/lib/datadog/core/configuration/settings.rb +10 -0
data/lib/datadog/core/configuration/stable_config.rb +23 -0
data/lib/datadog/core/configuration.rb +24 -0
data/lib/datadog/core/crashtracking/component.rb +1 -9
data/lib/datadog/core/diagnostics/environment_logger.rb +1 -1
data/lib/datadog/core/environment/git.rb +1 -0
data/lib/datadog/core/environment/variable_helpers.rb +1 -1
data/lib/datadog/core/metrics/client.rb +8 -7
data/lib/datadog/core/process_discovery.rb +32 -0
data/lib/datadog/core/remote/client.rb +7 -0
data/lib/datadog/core/runtime/metrics.rb +1 -1
data/lib/datadog/core/telemetry/component.rb +60 -50
data/lib/datadog/core/telemetry/emitter.rb +17 -11
data/lib/datadog/core/telemetry/event.rb +7 -4
data/lib/datadog/core/telemetry/http/adapters/net.rb +12 -97
data/lib/datadog/core/telemetry/metric.rb +5 -5
data/lib/datadog/core/telemetry/request.rb +4 -4
data/lib/datadog/core/telemetry/transport/http/api.rb +43 -0
data/lib/datadog/core/telemetry/transport/http/client.rb +49 -0
data/lib/datadog/core/telemetry/transport/http/telemetry.rb +92 -0
data/lib/datadog/core/telemetry/transport/http.rb +63 -0
data/lib/datadog/core/telemetry/transport/telemetry.rb +52 -0
data/lib/datadog/core/telemetry/worker.rb +45 -0
data/lib/datadog/core/utils/time.rb +12 -0
data/lib/datadog/core/workers/async.rb +20 -2
data/lib/datadog/core/workers/interval_loop.rb +12 -1
data/lib/datadog/core/workers/runtime_metrics.rb +2 -2
data/lib/datadog/core.rb +8 -0
data/lib/datadog/di/boot.rb +34 -0
data/lib/datadog/di/probe_notification_builder.rb +1 -1
data/lib/datadog/di/remote.rb +2 -0
data/lib/datadog/di/transport/http/diagnostics.rb +0 -1
data/lib/datadog/di/transport/http/input.rb +0 -1
data/lib/datadog/di/transport/http.rb +0 -6
data/lib/datadog/di.rb +5 -32
data/lib/datadog/error_tracking/collector.rb +87 -0
data/lib/datadog/error_tracking/component.rb +167 -0
data/lib/datadog/error_tracking/configuration/settings.rb +63 -0
data/lib/datadog/error_tracking/configuration.rb +11 -0
data/lib/datadog/error_tracking/ext.rb +18 -0
data/lib/datadog/error_tracking/extensions.rb +16 -0
data/lib/datadog/error_tracking/filters.rb +77 -0
data/lib/datadog/error_tracking.rb +18 -0
data/lib/datadog/kit/identity.rb +1 -1
data/lib/datadog/profiling/collectors/info.rb +3 -0
data/lib/datadog/profiling/encoded_profile.rb +11 -0
data/lib/datadog/profiling/exporter.rb +3 -4
data/lib/datadog/profiling/ext.rb +0 -1
data/lib/datadog/profiling/flush.rb +4 -7
data/lib/datadog/profiling/http_transport.rb +10 -59
data/lib/datadog/profiling/stack_recorder.rb +4 -4
data/lib/datadog/profiling.rb +1 -0
data/lib/datadog/tracing/analytics.rb +1 -1
data/lib/datadog/tracing/contrib/active_record/integration.rb +1 -1
data/lib/datadog/tracing/contrib/karafka/distributed/propagation.rb +2 -0
data/lib/datadog/tracing/contrib/karafka/monitor.rb +1 -1
data/lib/datadog/tracing/contrib/mongodb/configuration/settings.rb +8 -0
data/lib/datadog/tracing/contrib/mongodb/ext.rb +1 -0
data/lib/datadog/tracing/contrib/mongodb/subscribers.rb +18 -1
data/lib/datadog/tracing/contrib/opensearch/configuration/settings.rb +17 -0
data/lib/datadog/tracing/contrib/opensearch/ext.rb +9 -0
data/lib/datadog/tracing/contrib/opensearch/patcher.rb +5 -1
data/lib/datadog/tracing/contrib/rack/request_queue.rb +1 -1
data/lib/datadog/tracing/contrib/sidekiq/server_tracer.rb +1 -1
data/lib/datadog/tracing/distributed/b3_multi.rb +1 -1
data/lib/datadog/tracing/distributed/b3_single.rb +1 -1
data/lib/datadog/tracing/distributed/datadog.rb +2 -2
data/lib/datadog/tracing/sampling/rate_sampler.rb +2 -1
data/lib/datadog/tracing/span_event.rb +1 -1
data/lib/datadog/tracing/span_operation.rb +38 -14
data/lib/datadog/tracing/trace_operation.rb +15 -7
data/lib/datadog/tracing/tracer.rb +7 -3
data/lib/datadog/tracing/utils.rb +1 -1
data/lib/datadog/version.rb +1 -1
data/lib/datadog.rb +2 -3
metadata +40 -10
data/lib/datadog/core/telemetry/http/env.rb +0 -20
data/lib/datadog/core/telemetry/http/ext.rb +0 -28
data/lib/datadog/core/telemetry/http/response.rb +0 -70
data/lib/datadog/core/telemetry/http/transport.rb +0 -90

data/lib/datadog/appsec/contrib/rack/gateway/watcher.rb CHANGED Viewed

@@ -1,8 +1,9 @@
 # frozen_string_literal: true
 require_relative '../ext'
-require_relative '../../../instrumentation/gateway'
 require_relative '../../../event'
+require_relative '../../../security_event'
+require_relative '../../../instrumentation/gateway'
 module Datadog
   module AppSec
@@ -23,7 +24,7 @@ module Datadog
               def watch_request(gateway = Instrumentation.gateway)
                 gateway.watch('rack.request', :appsec) do |stack, gateway_request|
-                  context = gateway_request.env[Datadog::AppSec::Ext::CONTEXT_KEY]
+                  context = gateway_request.env[AppSec::Ext::CONTEXT_KEY]
                   persistent_data = {
                     'server.request.cookies' => gateway_request.cookies,
@@ -37,18 +38,15 @@ module Datadog
                   result = context.run_waf(persistent_data, {}, Datadog.configuration.appsec.waf_timeout)
-                  if result.match?
-                    Datadog::AppSec::Event.tag_and_keep!(context, result)
-                    context.events << {
-                      waf_result: result,
-                      trace: context.trace,
-                      span: context.span,
-                      request: gateway_request,
-                      actions: result.actions
-                    }
+                  if result.match? || !result.derivatives.empty?
+                    context.events.push(
+                      AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+                    )
+                  end
-                    Datadog::AppSec::ActionsHandler.handle(result.actions)
+                  if result.match?
+                    AppSec::Event.tag_and_keep!(context, result)
+                    AppSec::ActionsHandler.handle(result.actions)
                   end
                   stack.call(gateway_request.request)
@@ -68,17 +66,13 @@ module Datadog
                   result = context.run_waf(persistent_data, {}, Datadog.configuration.appsec.waf_timeout)
                   if result.match?
-                    Datadog::AppSec::Event.tag_and_keep!(context, result)
+                    AppSec::Event.tag_and_keep!(context, result)
-                    context.events << {
-                      waf_result: result,
-                      trace: context.trace,
-                      span: context.span,
-                      response: gateway_response,
-                      actions: result.actions
-                    }
+                    context.events.push(
+                      AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+                    )
-                    Datadog::AppSec::ActionsHandler.handle(result.actions)
+                    AppSec::ActionsHandler.handle(result.actions)
                   end
                   stack.call(gateway_response.response)
@@ -87,7 +81,7 @@ module Datadog
               def watch_request_body(gateway = Instrumentation.gateway)
                 gateway.watch('rack.request.body', :appsec) do |stack, gateway_request|
-                  context = gateway_request.env[Datadog::AppSec::Ext::CONTEXT_KEY]
+                  context = gateway_request.env[AppSec::Ext::CONTEXT_KEY]
                   persistent_data = {
                     'server.request.body' => gateway_request.form_hash
@@ -96,17 +90,13 @@ module Datadog
                   result = context.run_waf(persistent_data, {}, Datadog.configuration.appsec.waf_timeout)
                   if result.match?
-                    Datadog::AppSec::Event.tag_and_keep!(context, result)
+                    AppSec::Event.tag_and_keep!(context, result)
-                    context.events << {
-                      waf_result: result,
-                      trace: context.trace,
-                      span: context.span,
-                      request: gateway_request,
-                      actions: result.actions
-                    }
+                    context.events.push(
+                      AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+                    )
-                    Datadog::AppSec::ActionsHandler.handle(result.actions)
+                    AppSec::ActionsHandler.handle(result.actions)
                   end
                   stack.call(gateway_request.request)

data/lib/datadog/appsec/contrib/rack/integration.rb CHANGED Viewed

@@ -19,7 +19,7 @@ module Datadog
           register_as :rack, auto_patch: false
           def self.version
-            Gem.loaded_specs['rack'] && Gem.loaded_specs['rack'].version
+            Gem.loaded_specs['rack']&.version
           end
           def self.loaded?

data/lib/datadog/appsec/contrib/rack/request_middleware.rb CHANGED Viewed

@@ -4,9 +4,12 @@ require 'json'
 require_relative 'gateway/request'
 require_relative 'gateway/response'
-require_relative '../../instrumentation/gateway'
-require_relative '../../processor'
+require_relative '../../event'
 require_relative '../../response'
+require_relative '../../processor'
+require_relative '../../security_event'
+require_relative '../../instrumentation/gateway'
 require_relative '../../../tracing/client_ip'
 require_relative '../../../tracing/contrib/rack/header_collection'
@@ -36,7 +39,7 @@ module Datadog
             @rack_headers = {}
           end
-          # rubocop:disable Metrics/AbcSize,Metrics/MethodLength
+          # rubocop:disable Metrics/MethodLength
           def call(env)
             return @app.call(env) unless Datadog::AppSec.enabled?
@@ -97,20 +100,13 @@ module Datadog
               http_response = AppSec::Response.from_interrupt_params(interrupt_params, env['HTTP_ACCEPT']).to_rack
             end
-            if AppSec.api_security_enabled?
-              ctx.events << {
-                trace: ctx.trace,
-                span: ctx.span,
-                waf_result: ctx.extract_schema,
-              }
-            end
-            ctx.events.each do |e|
-              e[:response] ||= gateway_response
-              e[:request]  ||= gateway_request
+            if AppSec.perform_api_security_check?
+              ctx.events.push(
+                AppSec::SecurityEvent.new(ctx.extract_schema, trace: ctx.trace, span: ctx.span)
+              )
             end
-            AppSec::Event.record(ctx.span, *ctx.events)
+            AppSec::Event.record(ctx, request: gateway_request, response: gateway_response)
             http_response
           ensure
@@ -119,7 +115,7 @@ module Datadog
               Datadog::AppSec::Context.deactivate
             end
           end
-          # rubocop:enable Metrics/AbcSize,Metrics/MethodLength
+          # rubocop:enable Metrics/MethodLength
           private
@@ -143,6 +139,7 @@ module Datadog
             Datadog::Tracing.active_span
           end
+          # standard:disable Metrics/MethodLength
           def add_appsec_tags(processor, context)
             span = context.span
             trace = context.trace
@@ -177,7 +174,9 @@ module Datadog
               end
             end
           end
+          # standard:enable Metrics/MethodLength
+          # standard:disable Metrics/MethodLength
           def add_request_tags(context, env)
             span = context.span
@@ -200,6 +199,7 @@ module Datadog
               )
             end
           end
+          # standard:enable Metrics/MethodLength
           def to_rack_header(header)
             @rack_headers[header] ||= Datadog::Tracing::Contrib::Rack::Header.to_rack_header(header)

data/lib/datadog/appsec/contrib/rails/gateway/watcher.rb CHANGED Viewed

@@ -1,7 +1,8 @@
 # frozen_string_literal: true
-require_relative '../../../instrumentation/gateway'
 require_relative '../../../event'
+require_relative '../../../security_event'
+require_relative '../../../instrumentation/gateway'
 module Datadog
   module AppSec
@@ -19,7 +20,7 @@ module Datadog
               def watch_request_action(gateway = Instrumentation.gateway)
                 gateway.watch('rails.request.action', :appsec) do |stack, gateway_request|
-                  context = gateway_request.env[Datadog::AppSec::Ext::CONTEXT_KEY]
+                  context = gateway_request.env[AppSec::Ext::CONTEXT_KEY]
                   persistent_data = {
                     'server.request.body' => gateway_request.parsed_body,
@@ -28,18 +29,15 @@ module Datadog
                   result = context.run_waf(persistent_data, {}, Datadog.configuration.appsec.waf_timeout)
-                  if result.match?
-                    Datadog::AppSec::Event.tag_and_keep!(context, result)
-                    context.events << {
-                      waf_result: result,
-                      trace: context.trace,
-                      span: context.span,
-                      request: gateway_request,
-                      actions: result.actions
-                    }
+                  if result.match? || !result.derivatives.empty?
+                    context.events.push(
+                      AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+                    )
+                  end
-                    Datadog::AppSec::ActionsHandler.handle(result.actions)
+                  if result.match?
+                    AppSec::Event.tag_and_keep!(context, result)
+                    AppSec::ActionsHandler.handle(result.actions)
                   end
                   stack.call(gateway_request.request)

data/lib/datadog/appsec/contrib/rails/integration.rb CHANGED Viewed

@@ -18,7 +18,7 @@ module Datadog
           register_as :rails, auto_patch: false
           def self.version
-            Gem.loaded_specs['railties'] && Gem.loaded_specs['railties'].version
+            Gem.loaded_specs['railties']&.version
           end
           def self.loaded?

data/lib/datadog/appsec/contrib/rails/patcher.rb CHANGED Viewed

@@ -96,27 +96,27 @@ module Datadog
             # find tracer middleware reference in Rails::Configuration::MiddlewareStackProxy
             app.middleware.instance_variable_get(:@operations).each do |operation|
               args = case operation
-                     when Array
-                       # rails 5.2
-                       _op, args = operation
-                       args
-                     when Proc
-                       if operation.binding.local_variables.include?(:args)
-                         # rails 6.0, 6.1
-                         operation.binding.local_variable_get(:args)
-                       else
-                         # rails 7.0 uses ... to pass args
-                         args_getter = Class.new do
-                           def method_missing(_op, *args) # rubocop:disable Style/MissingRespondToMissing
-                             args
-                           end
-                         end.new
-                         operation.call(args_getter)
-                       end
-                     else
-                       # unknown, pass through
-                       []
-                     end
+              when Array
+                # rails 5.2
+                _op, args = operation
+                args
+              when Proc
+                if operation.binding.local_variables.include?(:args)
+                  # rails 6.0, 6.1
+                  operation.binding.local_variable_get(:args)
+                else
+                  # rails 7.0 uses ... to pass args
+                  args_getter = Class.new do
+                    def method_missing(_op, *args) # standard:disable Style/MissingRespondToMissing
+                      args
+                    end
+                  end.new
+                  operation.call(args_getter)
+                end
+              else
+                # unknown, pass through
+                []
+              end
               found = true if args.include?(middleware)
             end

data/lib/datadog/appsec/contrib/rest_client/integration.rb CHANGED Viewed

@@ -20,7 +20,7 @@ module Datadog
           end
           def self.version
-            Gem.loaded_specs['rest-client'] && Gem.loaded_specs['rest-client'].version
+            Gem.loaded_specs['rest-client']&.version
           end
           def self.loaded?

data/lib/datadog/appsec/contrib/rest_client/request_ssrf_detection_patch.rb CHANGED Viewed

@@ -1,6 +1,9 @@
 # rubocop:disable Naming/FileName
 # frozen_string_literal: true
+require_relative '../../event'
+require_relative '../../security_event'
 module Datadog
   module AppSec
     module Contrib
@@ -12,24 +15,20 @@ module Datadog
             context = AppSec.active_context
-            ephemeral_data = { 'server.io.net.url' => url }
+            ephemeral_data = {'server.io.net.url' => url}
             result = context.run_rasp(Ext::RASP_SSRF, {}, ephemeral_data, Datadog.configuration.appsec.waf_timeout)
             if result.match?
-              Datadog::AppSec::Event.tag_and_keep!(context, result)
+              AppSec::Event.tag_and_keep!(context, result)
-              context.events << {
-                waf_result: result,
-                trace: context.trace,
-                span: context.span,
-                request_url: url,
-                actions: result.actions
-              }
+              context.events.push(
+                AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+              )
-              ActionsHandler.handle(result.actions)
+              AppSec::ActionsHandler.handle(result.actions)
             end
-            super(&block)
+            super
           end
         end
       end

data/lib/datadog/appsec/contrib/sinatra/gateway/watcher.rb CHANGED Viewed

@@ -1,7 +1,8 @@
 # frozen_string_literal: true
-require_relative '../../../instrumentation/gateway'
 require_relative '../../../event'
+require_relative '../../../security_event'
+require_relative '../../../instrumentation/gateway'
 module Datadog
   module AppSec
@@ -20,7 +21,7 @@ module Datadog
               def watch_request_dispatch(gateway = Instrumentation.gateway)
                 gateway.watch('sinatra.request.dispatch', :appsec) do |stack, gateway_request|
-                  context = gateway_request.env[Datadog::AppSec::Ext::CONTEXT_KEY]
+                  context = gateway_request.env[AppSec::Ext::CONTEXT_KEY]
                   persistent_data = {
                     'server.request.body' => gateway_request.form_hash
@@ -28,18 +29,15 @@ module Datadog
                   result = context.run_waf(persistent_data, {}, Datadog.configuration.appsec.waf_timeout)
-                  if result.match?
-                    Datadog::AppSec::Event.tag_and_keep!(context, result)
-                    context.events << {
-                      waf_result: result,
-                      trace: context.trace,
-                      span: context.span,
-                      request: gateway_request,
-                      actions: result.actions
-                    }
+                  if result.match? || !result.derivatives.empty?
+                    context.events.push(
+                      AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+                    )
+                  end
-                    Datadog::AppSec::ActionsHandler.handle(result.actions)
+                  if result.match?
+                    AppSec::Event.tag_and_keep!(context, result)
+                    AppSec::ActionsHandler.handle(result.actions)
                   end
                   stack.call(gateway_request.request)
@@ -48,7 +46,7 @@ module Datadog
               def watch_request_routed(gateway = Instrumentation.gateway)
                 gateway.watch('sinatra.request.routed', :appsec) do |stack, (gateway_request, gateway_route_params)|
-                  context = gateway_request.env[Datadog::AppSec::Ext::CONTEXT_KEY]
+                  context = gateway_request.env[AppSec::Ext::CONTEXT_KEY]
                   persistent_data = {
                     'server.request.path_params' => gateway_route_params.params
@@ -57,17 +55,13 @@ module Datadog
                   result = context.run_waf(persistent_data, {}, Datadog.configuration.appsec.waf_timeout)
                   if result.match?
-                    Datadog::AppSec::Event.tag_and_keep!(context, result)
+                    AppSec::Event.tag_and_keep!(context, result)
-                    context.events << {
-                      waf_result: result,
-                      trace: context.trace,
-                      span: context.span,
-                      request: gateway_request,
-                      actions: result.actions
-                    }
+                    context.events.push(
+                      AppSec::SecurityEvent.new(result, trace: context.trace, span: context.span)
+                    )
-                    Datadog::AppSec::ActionsHandler.handle(result.actions)
+                    AppSec::ActionsHandler.handle(result.actions)
                   end
                   stack.call(gateway_request.request)

data/lib/datadog/appsec/contrib/sinatra/integration.rb CHANGED Viewed

@@ -18,7 +18,7 @@ module Datadog
           register_as :sinatra
           def self.version
-            Gem.loaded_specs['sinatra'] && Gem.loaded_specs['sinatra'].version
+            Gem.loaded_specs['sinatra']&.version
           end
           def self.loaded?