ddtrace 1.5.0 → 1.5.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +43 -1
- data/LICENSE-3rdparty.csv +1 -0
- data/lib/datadog/appsec/assets/waf_rules/recommended.json +1169 -275
- data/lib/datadog/appsec/assets/waf_rules/risky.json +78 -78
- data/lib/datadog/appsec/assets/waf_rules/strict.json +278 -88
- data/lib/datadog/appsec/contrib/rack/gateway/watcher.rb +25 -18
- data/lib/datadog/appsec/contrib/rack/reactive/request.rb +11 -11
- data/lib/datadog/appsec/contrib/rack/reactive/request_body.rb +11 -11
- data/lib/datadog/appsec/contrib/rack/reactive/response.rb +11 -11
- data/lib/datadog/appsec/contrib/rack/request.rb +3 -0
- data/lib/datadog/appsec/contrib/rack/request_middleware.rb +42 -19
- data/lib/datadog/appsec/contrib/rails/gateway/watcher.rb +7 -6
- data/lib/datadog/appsec/contrib/rails/reactive/action.rb +11 -11
- data/lib/datadog/appsec/contrib/rails/request.rb +3 -0
- data/lib/datadog/appsec/contrib/sinatra/gateway/watcher.rb +14 -12
- data/lib/datadog/appsec/contrib/sinatra/reactive/routed.rb +11 -11
- data/lib/datadog/appsec/event.rb +2 -12
- data/lib/datadog/appsec/instrumentation/gateway.rb +16 -2
- data/lib/datadog/appsec/processor.rb +18 -2
- data/lib/datadog/core/configuration/settings.rb +19 -5
- data/lib/datadog/tracing/client_ip.rb +11 -0
- data/lib/datadog/tracing/configuration/ext.rb +2 -1
- data/lib/datadog/tracing/contrib/rack/middlewares.rb +3 -1
- data/lib/datadog/tracing/contrib/utils/quantization/http.rb +14 -6
- data/lib/ddtrace/transport/traces.rb +2 -0
- data/lib/ddtrace/version.rb +1 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 5417d6aa2797b38bfe55167afa723cb2479bd3b7fae3ad3ee16020844084a48e
|
|
4
|
+
data.tar.gz: 3c63a3c9dcce6c180349814da8113ba8e9b6b3334f2a4ab13ceeef4cc006c70c
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: e82cadb7da0c30c4f22791fab2f1ef356cf33378756673a74fa2dbcf447a25530421f86d809a86dcab5ccd31d332bca5759a589e9dfdaebc47d3b3d8f201c662
|
|
7
|
+
data.tar.gz: b36eafe691e5808bc179e693549e7aa7747d400502d0d21f500dac0129c726a4b433498c6b41896fd3351a382ddede220540d8c0a14b12bf240d320d037ae786
|
data/CHANGELOG.md
CHANGED
|
@@ -2,6 +2,36 @@
|
|
|
2
2
|
|
|
3
3
|
## [Unreleased]
|
|
4
4
|
|
|
5
|
+
## [1.5.2] - 2022-10-27
|
|
6
|
+
|
|
7
|
+
### Deprecation notice
|
|
8
|
+
|
|
9
|
+
- `DD_TRACE_CLIENT_IP_HEADER_DISABLED` was changed to `DD_TRACE_CLIENT_IP_ENABLED`. Although the former still works we encourage usage of the latter instead.
|
|
10
|
+
|
|
11
|
+
### Changed
|
|
12
|
+
|
|
13
|
+
- `http.client_ip` tag collection is made opt-in for APM. Note that `http.client_ip` is always collected when ASM is enabled as part of the security service provided ([#2321][], [#2331][])
|
|
14
|
+
|
|
15
|
+
### Fixed
|
|
16
|
+
|
|
17
|
+
- Handle REQUEST_URI with base url ([#2328][], [#2330][])
|
|
18
|
+
|
|
19
|
+
## [1.5.1] - 2022-10-19
|
|
20
|
+
|
|
21
|
+
### Changed
|
|
22
|
+
|
|
23
|
+
* Update libddwaf to 1.5.1 ([#2306][])
|
|
24
|
+
* Improve libddwaf extension memory management ([#2306][])
|
|
25
|
+
|
|
26
|
+
### Fixed
|
|
27
|
+
|
|
28
|
+
* Fix `URI::InvalidURIError` ([#2310][], [#2318][]) ([@yujideveloper][])
|
|
29
|
+
* Handle URLs with invalid characters ([#2311][], [#2319][])
|
|
30
|
+
* Fix missing appsec.event tag ([#2306][])
|
|
31
|
+
* Fix missing Rack and Rails request body parsing for AppSec analysis ([#2306][])
|
|
32
|
+
* Fix unneeded AppSec call in a Rack context when AppSec is disabled ([#2306][])
|
|
33
|
+
* Fix spurious AppSec instrumentation ([#2306][])
|
|
34
|
+
|
|
5
35
|
## [1.5.0] - 2022-09-29
|
|
6
36
|
|
|
7
37
|
### Deprecation notice
|
|
@@ -2129,7 +2159,9 @@ Release notes: https://github.com/DataDog/dd-trace-rb/releases/tag/v0.3.1
|
|
|
2129
2159
|
|
|
2130
2160
|
Git diff: https://github.com/DataDog/dd-trace-rb/compare/v0.3.0...v0.3.1
|
|
2131
2161
|
|
|
2132
|
-
[Unreleased]: https://github.com/DataDog/dd-trace-rb/compare/v1.
|
|
2162
|
+
[Unreleased]: https://github.com/DataDog/dd-trace-rb/compare/v1.5.2...master
|
|
2163
|
+
[1.5.2]: https://github.com/DataDog/dd-trace-rb/compare/v1.5.1...v1.5.2
|
|
2164
|
+
[1.5.1]: https://github.com/DataDog/dd-trace-rb/compare/v1.5.0...v1.5.1
|
|
2133
2165
|
[1.5.0]: https://github.com/DataDog/dd-trace-rb/compare/v1.4.2...v1.5.0
|
|
2134
2166
|
[1.4.1]: https://github.com/DataDog/dd-trace-rb/compare/v1.4.1...v1.4.2
|
|
2135
2167
|
[1.4.1]: https://github.com/DataDog/dd-trace-rb/compare/v1.4.0...v1.4.1
|
|
@@ -3030,6 +3062,15 @@ Git diff: https://github.com/DataDog/dd-trace-rb/compare/v0.3.0...v0.3.1
|
|
|
3030
3062
|
[#2289]: https://github.com/DataDog/dd-trace-rb/issues/2289
|
|
3031
3063
|
[#2293]: https://github.com/DataDog/dd-trace-rb/issues/2293
|
|
3032
3064
|
[#2296]: https://github.com/DataDog/dd-trace-rb/issues/2296
|
|
3065
|
+
[#2306]: https://github.com/DataDog/dd-trace-rb/issues/2306
|
|
3066
|
+
[#2310]: https://github.com/DataDog/dd-trace-rb/issues/2310
|
|
3067
|
+
[#2311]: https://github.com/DataDog/dd-trace-rb/issues/2311
|
|
3068
|
+
[#2318]: https://github.com/DataDog/dd-trace-rb/issues/2318
|
|
3069
|
+
[#2319]: https://github.com/DataDog/dd-trace-rb/issues/2319
|
|
3070
|
+
[#2321]: https://github.com/DataDog/dd-trace-rb/issues/2321
|
|
3071
|
+
[#2328]: https://github.com/DataDog/dd-trace-rb/issues/2328
|
|
3072
|
+
[#2330]: https://github.com/DataDog/dd-trace-rb/issues/2330
|
|
3073
|
+
[#2331]: https://github.com/DataDog/dd-trace-rb/issues/2331
|
|
3033
3074
|
[@AdrianLC]: https://github.com/AdrianLC
|
|
3034
3075
|
[@Azure7111]: https://github.com/Azure7111
|
|
3035
3076
|
[@BabyGroot]: https://github.com/BabyGroot
|
|
@@ -3171,5 +3212,6 @@ Git diff: https://github.com/DataDog/dd-trace-rb/compare/v0.3.0...v0.3.1
|
|
|
3171
3212
|
[@vramaiah]: https://github.com/vramaiah
|
|
3172
3213
|
[@walterking]: https://github.com/walterking
|
|
3173
3214
|
[@y-yagi]: https://github.com/y-yagi
|
|
3215
|
+
[@yujideveloper]: https://github.com/yujideveloper
|
|
3174
3216
|
[@yukimurasawa]: https://github.com/yukimurasawa
|
|
3175
3217
|
[@zachmccormick]: https://github.com/zachmccormick
|
data/LICENSE-3rdparty.csv
CHANGED
|
@@ -1,6 +1,7 @@
|
|
|
1
1
|
Component,Origin,License,Copyright
|
|
2
2
|
lib/datadog/core/vendor/multipart-post,https://github.com/socketry/multipart-post,MIT,"Copyright (c) 2007-2013 Nick Sieger."
|
|
3
3
|
lib/datadog/tracing/contrib/active_record/vendor,https://github.com/rails/rails/,MIT,"Copyright (c) 2005-2018 David Heinemeier Hansson"
|
|
4
|
+
lib/datadog/tracing/contrib/utils/quantization/http.rb,https://github.com/ruby/uri,BSD-2-Clause,"Copyright (C) 1993-2013 Yukihiro Matsumoto. All rights reserved."
|
|
4
5
|
ext/ddtrace_profiling_native_extension/private_vm_api_access,https://github.com/ruby/ruby,BSD-2-Clause,"Copyright (C) 1993-2013 Yukihiro Matsumoto. All rights reserved."
|
|
5
6
|
msgpack,https://rubygems.org/gems/msgpack,Apache-2.0,"Copyright (c) 2008-2015 Sadayuki Furuhashi"
|
|
6
7
|
debase-ruby_core_source,https://rubygems.org/gems/debase-ruby_core_source,MIT for gem and BSD-2-Clause for Ruby sources,"Copyright (c) 2012 Gabriel Horner. Files from Ruby sources are Copyright (C) 1993-2013 Yukihiro Matsumoto. All rights reserved."
|