dd-trace 2.17.0 → 2.18.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. package/package.json +1 -1
  2. package/packages/datadog-instrumentations/src/restify.js +1 -0
  3. package/packages/dd-trace/src/appsec/recommended.json +60 -46
  4. package/packages/dd-trace/src/plugins/tracing.js +1 -0
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "dd-trace",
3
- "version": "2.17.0",
3
+ "version": "2.18.0",
4
4
  "description": "Datadog APM tracing client for JavaScript",
5
5
  "main": "index.js",
6
6
  "typings": "index.d.ts",
package/packages/datadog-instrumentations/src/restify.js CHANGED
@@ -54,6 +54,7 @@ function wrapFn (fn) {
54
54
  errorChannel.publish({ req, error })
55
55
  nextChannel.publish({ req })
56
56
  exitChannel.publish({ req })
57
+ throw error
57
58
  }
58
59
  }
59
60
  }
package/packages/dd-trace/src/appsec/recommended.json CHANGED
@@ -1,9 +1,34 @@
1
1
  {
2
2
  "version": "2.2",
3
3
  "metadata": {
4
- "rules_version": "1.4.0"
4
+ "rules_version": "1.4.2"
5
5
  },
6
6
  "rules": [
7
+ {
8
+ "id": "blk-001-001",
9
+ "name": "Block IP Addresses",
10
+ "tags": {
11
+ "type": "block_ip",
12
+ "category": "security_response"
13
+ },
14
+ "conditions": [
15
+ {
16
+ "parameters": {
17
+ "inputs": [
18
+ {
19
+ "address": "http.client_ip"
20
+ }
21
+ ],
22
+ "data": "blocked_ips"
23
+ },
24
+ "operator": "ip_match"
25
+ }
26
+ ],
27
+ "transformers": [],
28
+ "on_match": [
29
+ "block"
30
+ ]
31
+ },
7
32
  {
8
33
  "id": "crs-913-110",
9
34
  "name": "Acunetix",
@@ -2828,51 +2853,6 @@
2828
2853
  ],
2829
2854
  "transformers": []
2830
2855
  },
2831
- {
2832
- "id": "crs-941-100",
2833
- "name": "XSS Attack Detected via libinjection",
2834
- "tags": {
2835
- "type": "xss",
2836
- "crs_id": "941100",
2837
- "category": "attack_attempt"
2838
- },
2839
- "conditions": [
2840
- {
2841
- "parameters": {
2842
- "inputs": [
2843
- {
2844
- "address": "server.request.headers.no_cookies",
2845
- "key_path": [
2846
- "user-agent"
2847
- ]
2848
- },
2849
- {
2850
- "address": "server.request.headers.no_cookies",
2851
- "key_path": [
2852
- "referer"
2853
- ]
2854
- },
2855
- {
2856
- "address": "server.request.query"
2857
- },
2858
- {
2859
- "address": "server.request.body"
2860
- },
2861
- {
2862
- "address": "server.request.path_params"
2863
- },
2864
- {
2865
- "address": "grpc.server.request.message"
2866
- }
2867
- ]
2868
- },
2869
- "operator": "is_xss"
2870
- }
2871
- ],
2872
- "transformers": [
2873
- "removeNulls"
2874
- ]
2875
- },
2876
2856
  {
2877
2857
  "id": "crs-941-110",
2878
2858
  "name": "XSS Filter - Category 1: Script Tag Vector",
@@ -4338,6 +4318,40 @@
4338
4318
  "keys_only"
4339
4319
  ]
4340
4320
  },
4321
+ {
4322
+ "id": "dog-000-007",
4323
+ "name": "Server side template injection: Velocity & Freemarker",
4324
+ "tags": {
4325
+ "type": "java_code_injection",
4326
+ "category": "attack_attempt"
4327
+ },
4328
+ "conditions": [
4329
+ {
4330
+ "parameters": {
4331
+ "inputs": [
4332
+ {
4333
+ "address": "server.request.query"
4334
+ },
4335
+ {
4336
+ "address": "server.request.body"
4337
+ },
4338
+ {
4339
+ "address": "server.request.path_params"
4340
+ },
4341
+ {
4342
+ "address": "server.request.headers.no_cookies"
4343
+ },
4344
+ {
4345
+ "address": "grpc.server.request.message"
4346
+ }
4347
+ ],
4348
+ "regex": "#(?:set|foreach|macro|parse|if)\\(.*\\)|<#assign.*>"
4349
+ },
4350
+ "operator": "match_regex"
4351
+ }
4352
+ ],
4353
+ "transformers": []
4354
+ },
4341
4355
  {
4342
4356
  "id": "nfd-000-001",
4343
4357
  "name": "Detect common directory discovery scans",
package/packages/dd-trace/src/plugins/tracing.js CHANGED
@@ -64,6 +64,7 @@ class TracingPlugin extends Plugin {
64
64
  }
65
65
 
66
66
  const span = this.tracer.startSpan(name, {
67
+ childOf,
67
68
  tags: {
68
69
  'service.name': service,
69
70
  'resource.name': resource,