npm - dd-trace - Versions diffs - 5.58.0 → 5.59.0 - Mend

dd-trace 5.58.0 → 5.59.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (165) hide show

package/packages/dd-trace/src/appsec/recommended.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": "2.2",
   "metadata": {
-    "rules_version": "1.14.2"
+    "rules_version": "1.15.0"
   },
   "rules": [
     {
@@ -2985,7 +2985,7 @@
                 "address": "graphql.server.resolver"
               }
             ],
-            "regex": "\\b(?:(?:l(?:(?:utimes|chmod)(?:Sync)?|(?:stat|ink)Sync)|w(?:rite(?:(?:File|v)(?:Sync)?|Sync)|atchFile)|u(?:n(?:watchFile|linkSync)|times(?:Sync)?)|s(?:(?:ymlink|tat)Sync|pawn(?:File|Sync))|ex(?:ec(?:File(?:Sync)?|Sync)|istsSync)|a(?:ppendFile|ccess)(?:Sync)?|(?:Caveat|Inode)s|open(?:dir)?Sync|new\\s+Function|Availability|\\beval)\\s*\\(|m(?:ain(?:Module\\s*(?:\\W*\\s*(?:constructor|require)|\\[)|\\s*(?:\\W*\\s*(?:constructor|require)|\\[))|kd(?:temp(?:Sync)?|irSync)\\s*\\(|odule\\.exports\\s*=)|c(?:(?:(?:h(?:mod|own)|lose)Sync|reate(?:Write|Read)Stream|p(?:Sync)?)\\s*\\(|o(?:nstructor\\s*(?:\\W*\\s*_load|\\[)|pyFile(?:Sync)?\\s*\\())|f(?:(?:(?:s(?:(?:yncS)?|tatS)|datas(?:yncS)?)ync|ch(?:mod|own)(?:Sync)?)\\s*\\(|u(?:nction\\s*\\(\\s*\\)\\s*{|times(?:Sync)?\\s*\\())|r(?:e(?:(?:ad(?:(?:File|link|dir)?Sync|v(?:Sync)?)|nameSync)\\s*\\(|quire\\s*(?:\\W*\\s*main|\\[))|m(?:Sync)?\\s*\\()|process\\s*(?:\\W*\\s*(?:mainModule|binding)|\\[)|t(?:his\\.constructor|runcateSync\\s*\\()|_(?:\\$\\$ND_FUNC\\$\\$_|_js_function)|global\\s*(?:\\W*\\s*process|\\[)|String\\s*\\.\\s*fromCharCode|binding\\s*\\[)",
+            "regex": "\\b(?:(?:l(?:(?:utimes|chmod)(?:Sync)?|(?:stat|ink)Sync)|w(?:rite(?:(?:File|v)(?:Sync)?|Sync)|atchFile)|u(?:n(?:watchFile|linkSync)|times(?:Sync)?)|s(?:(?:ymlink|tat)Sync|pawn(?:File|Sync))|ex(?:ec(?:File(?:Sync)?|Sync)|istsSync)|a(?:ppendFile|ccess)(?:Sync)?|(?:Caveat|Inode)s|open(?:dir)?Sync|new\\s+Function|Availability|\\beval)\\s*\\(|m(?:ain(?:Module\\s*(?:\\W*\\s*(?:constructor|require)|\\[)|\\s*(?:\\W*\\s*(?:constructor|require)|\\[))|kd(?:temp(?:Sync)?|irSync)\\s*\\(|odule\\.exports\\s*=)|c(?:(?:(?:h(?:mod|own)|lose)Sync|reate(?:Write|Read)Stream|p(?:Sync)?)\\s*\\(|o(?:nstructor\\s*(?:\\W*\\s*_load|\\[)|pyFile(?:Sync)?\\s*\\())|f(?:(?:(?:s(?:(?:yncS)?|tatS)|datas(?:yncS)?)ync|ch(?:mod|own)(?:Sync)?)\\s*\\(|u(?:nction\\s*\\(\\s*\\)\\s*{|times(?:Sync)?\\s*\\())|r(?:e(?:(?:ad(?:(?:File|link|dir)?Sync|v(?:Sync)?)|nameSync)\\s*\\(|quire\\s*(?:\\W*\\s*main\\b|\\[))|m(?:Sync)?\\s*\\()|process\\s*(?:\\W*\\s*(?:mainModule|binding)|\\[)|t(?:his\\.constructor|runcateSync\\s*\\()|_(?:\\$\\$ND_FUNC\\$\\$_|_js_function)|global\\s*(?:\\W*\\s*process|\\[)|String\\s*\\.\\s*fromCharCode|binding\\s*\\[)",
             "options": {
               "case_sensitive": true,
               "min_length": 3
@@ -5656,6 +5656,52 @@
       ],
       "transformers": []
     },
+    {
+      "id": "dog-932-110",
+      "name": "Python: Subprocess-based command injection",
+      "tags": {
+        "type": "command_injection",
+        "category": "attack_attempt",
+        "confidence": "0",
+        "module": "waf"
+      },
+      "conditions": [
+        {
+          "parameters": {
+            "inputs": [
+              {
+                "address": "server.request.query"
+              },
+              {
+                "address": "server.request.body"
+              },
+              {
+                "address": "server.request.path_params"
+              },
+              {
+                "address": "server.request.headers.no_cookies"
+              },
+              {
+                "address": "grpc.server.request.message"
+              },
+              {
+                "address": "graphql.server.all_resolvers"
+              },
+              {
+                "address": "graphql.server.resolver"
+              }
+            ],
+            "regex": "(?s)\\bsubprocess\\b.*\\b(?:check_output|run|Popen|call|check_call)\\b",
+            "options": {
+              "case_sensitive": true,
+              "min_length": 14
+            }
+          },
+          "operator": "match_regex"
+        }
+      ],
+      "transformers": []
+    },
     {
       "id": "dog-934-001",
       "name": "XXE - XML file loads external entity",
@@ -9074,6 +9120,28 @@
       "evaluate": true,
       "output": true
     },
+    {
+      "id": "decode-auth-jwt",
+      "generator": "jwt_decode",
+      "min_version": "1.25.0",
+      "parameters": {
+        "mappings": [
+          {
+            "inputs": [
+              {
+                "address": "server.request.headers.no_cookies",
+                "key_path": [
+                  "authorization"
+                ]
+              }
+            ],
+            "output": "server.request.jwt"
+          }
+        ]
+      },
+      "evaluate": true,
+      "output": false
+    },
     {
       "id": "http-network-fingerprint",
       "generator": "http_network_fingerprint",
@@ -9918,6 +9986,24 @@
         "category": "payment"
       }
     },
+    {
+      "id": "c542c147-3883-43d6-a067-178e4a7bd65d",
+      "name": "Password",
+      "key": {
+        "operator": "match_regex",
+        "parameters": {
+          "regex": "\\bpass(?:[_-]?word|wd)?\\b|\\bpwd\\b",
+          "options": {
+            "case_sensitive": false,
+            "min_length": 3
+          }
+        }
+      },
+      "tags": {
+        "type": "password",
+        "category": "credentials"
+      }
+    },
     {
       "id": "18b608bd7a764bff5b2344c0",
       "name": "Phone number",

package/packages/dd-trace/src/appsec/reporter.js CHANGED Viewed

@@ -430,12 +430,12 @@ function isRaspAttack (events) {
   return events.some(e => e.rule?.tags?.module === 'rasp')
 }
-function isFingerprintDerivative (derivative) {
-  return derivative.startsWith('_dd.appsec.fp')
+function isFingerprintAttribute (attribute) {
+  return attribute.startsWith('_dd.appsec.fp')
 }
-function reportDerivatives (derivatives) {
-  if (!derivatives) return
+function reportAttributes (attributes) {
+  if (!attributes) return
   const req = storage('legacy').getStore()?.req
   const rootSpan = web.root(req)
@@ -443,8 +443,8 @@ function reportDerivatives (derivatives) {
   if (!rootSpan) return
   const tags = {}
-  for (let [tag, value] of Object.entries(derivatives)) {
-    if (!isFingerprintDerivative(tag)) {
+  for (let [tag, value] of Object.entries(attributes)) {
+    if (!isFingerprintAttribute(tag)) {
       const gzippedValue = zlib.gzipSync(JSON.stringify(value))
       value = gzippedValue.toString('base64')
     }
@@ -543,7 +543,7 @@ module.exports = {
   reportAttack,
   reportWafUpdate: incrementWafUpdatesMetric,
   reportRaspRuleSkipped: updateRaspRuleSkippedMetricTags,
-  reportDerivatives,
+  reportAttributes,
   finishRequest,
   mapHeaderAndTags,
   truncateRequestBody

package/packages/dd-trace/src/appsec/stack_trace.js CHANGED Viewed

@@ -9,36 +9,36 @@ const STACK_TRACE_NAMESPACES = {
   IAST: 'vulnerability'
 }
-function getCallSiteList (maxDepth = 100) {
+function prepareStackTrace (_, callsites) {
+  return callsites
+}
+function getCallSiteList (maxDepth = 100, constructorOpt) {
   const previousPrepareStackTrace = Error.prepareStackTrace
   const previousStackTraceLimit = Error.stackTraceLimit
-  let callsiteList
   // Since some frames will be discarded because they come from tracer codebase, a buffer is added
   // to the limit in order to get as close as `maxDepth` number of frames.
   Error.stackTraceLimit = maxDepth + LIBRARY_FRAMES_BUFFER
   try {
-    Error.prepareStackTrace = function (_, callsites) {
-      callsiteList = callsites
-    }
-    const e = new Error('message')
-    e.stack
+    Error.prepareStackTrace = prepareStackTrace
+    const obj = {}
+    Error.captureStackTrace(obj, constructorOpt)
+    return obj.stack
   } finally {
     Error.prepareStackTrace = previousPrepareStackTrace
     Error.stackTraceLimit = previousStackTraceLimit
   }
-  return callsiteList
 }
 function filterOutFramesFromLibrary (callSiteList) {
   return callSiteList.filter(callSite => !callSite.getFileName()?.startsWith(ddBasePath))
 }
-function getCallsiteFrames (maxDepth = 32, callSiteListGetter = getCallSiteList) {
+function getCallsiteFrames (maxDepth = 32, constructorOpt = getCallsiteFrames, callSiteListGetter = getCallSiteList) {
   if (maxDepth < 1) maxDepth = Infinity
-  const callSiteList = callSiteListGetter(maxDepth)
+  const callSiteList = callSiteListGetter(maxDepth, constructorOpt)
   const filteredFrames = filterOutFramesFromLibrary(callSiteList)
   const half = filteredFrames.length > maxDepth ? Math.round(maxDepth / 2) : Infinity

package/packages/dd-trace/src/appsec/telemetry/common.js CHANGED Viewed

@@ -1,4 +1,4 @@
-'use strinct'
+'use strict'
 const DD_TELEMETRY_REQUEST_METRICS = Symbol('_dd.appsec.telemetry.request.metrics')

package/packages/dd-trace/src/appsec/waf/waf_context_wrapper.js CHANGED Viewed

@@ -135,7 +135,7 @@ class WAFContextWrapper {
         this.setUserIdCache(userId, result)
       }
-      metrics.duration = result.totalRuntime / 1e3
+      metrics.duration = result.duration / 1e3
       metrics.blockTriggered = blockTriggered
       metrics.ruleTriggered = ruleTriggered
       metrics.wafTimeout = result.timeout
@@ -144,7 +144,7 @@ class WAFContextWrapper {
         Reporter.reportAttack(result.events)
       }
-      Reporter.reportDerivatives(result.derivatives)
+      Reporter.reportAttributes(result.attributes)
       return result
     } catch (err) {

package/packages/dd-trace/src/ci-visibility/dynamic-instrumentation/index.js CHANGED Viewed

@@ -62,7 +62,7 @@ class TestVisDynamicInstrumentation {
     log.debug('Starting Test Visibility - Dynamic Instrumentation client...')
-    const rcChannel = new MessageChannel() // mock channel
+    const probeChannel = new MessageChannel() // mock channel
     const configChannel = new MessageChannel() // mock channel
     this.worker = new Worker(
@@ -84,14 +84,14 @@ class TestVisDynamicInstrumentation {
         workerData: {
           config: this._config.serialize(),
           parentThreadId,
-          rcPort: rcChannel.port1,
+          probePort: probeChannel.port1,
           configPort: configChannel.port1,
           breakpointSetChannel: this.breakpointSetChannel.port1,
           breakpointHitChannel: this.breakpointHitChannel.port1,
           breakpointRemoveChannel: this.breakpointRemoveChannel.port1
         },
         transferList: [
-          rcChannel.port1,
+          probeChannel.port1,
           configChannel.port1,
           this.breakpointSetChannel.port1,
           this.breakpointHitChannel.port1,

package/packages/dd-trace/src/ci-visibility/early-flake-detection/get-known-tests.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const request = require('../../exporters/common/request')
 const id = require('../../id')
 const log = require('../../log')

package/packages/dd-trace/src/ci-visibility/exporters/git/git_metadata.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const fs = require('fs')
 const path = require('path')
@@ -287,7 +289,7 @@ function sendGitMetadata (url, { isEvpProxy, evpProxyPrefix }, configRepositoryU
     // Otherwise we unshallow and get commits to upload again
     log.debug('It is shallow clone, unshallowing...')
     if (!isFalse(getEnvironmentVariable('DD_CIVISIBILITY_GIT_UNSHALLOW_ENABLED'))) {
-      unshallowRepository()
+      unshallowRepository(false)
     }
     // The latest commits change after unshallowing

package/packages/dd-trace/src/ci-visibility/intelligent-test-runner/get-skippable-suites.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const request = require('../../exporters/common/request')
 const log = require('../../log')
 const { getEnvironmentVariable } = require('../../config-helper')

package/packages/dd-trace/src/ci-visibility/log-submission/log-submission-plugin.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const Plugin = require('../../plugins/plugin')
 const log = require('../../log')
 const { getEnvironmentVariable } = require('../../config-helper')

package/packages/dd-trace/src/ci-visibility/requests/get-library-configuration.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const request = require('../../exporters/common/request')
 const id = require('../../id')
 const log = require('../../log')

package/packages/dd-trace/src/ci-visibility/telemetry.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const telemetryMetrics = require('../telemetry/metrics')
 const ciVisibilityMetrics = telemetryMetrics.manager.namespace('civisibility')

package/packages/dd-trace/src/ci-visibility/test-api-manual/test-api-manual-plugin.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const CiPlugin = require('../../plugins/ci_plugin')
 const {
   TEST_STATUS,

package/packages/dd-trace/src/ci-visibility/test-management/get-test-management-tests.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const request = require('../../exporters/common/request')
 const id = require('../../id')
 const { getEnvironmentVariable } = require('../../config-helper')
@@ -9,7 +11,9 @@ function getTestManagementTests ({
   isGzipCompatible,
   repositoryUrl,
   commitMessage,
-  sha
+  sha,
+  commitHeadSha,
+  commitHeadMessage
 }, done) {
   const options = {
     path: '/api/v2/test/libraries/test-management/tests',
@@ -43,8 +47,8 @@ function getTestManagementTests ({
       type: 'ci_app_libraries_tests_request',
       attributes: {
         repository_url: repositoryUrl,
-        commit_message: commitMessage,
-        sha
+        commit_message: commitHeadMessage || commitMessage,
+        sha: commitHeadSha || sha
       }
     }
   })

package/packages/dd-trace/src/config.js CHANGED Viewed

@@ -516,6 +516,7 @@ class Config {
     defaults['dogstatsd.port'] = '8125'
     defaults.dsmEnabled = false
     defaults['dynamicInstrumentation.enabled'] = false
+    defaults['dynamicInstrumentation.probeFile'] = undefined
     defaults['dynamicInstrumentation.redactedIdentifiers'] = []
     defaults['dynamicInstrumentation.redactionExcludedIdentifiers'] = []
     defaults['dynamicInstrumentation.uploadIntervalSeconds'] = 1
@@ -707,6 +708,7 @@ class Config {
       DD_DOGSTATSD_HOST,
       DD_DOGSTATSD_PORT,
       DD_DYNAMIC_INSTRUMENTATION_ENABLED,
+      DD_DYNAMIC_INSTRUMENTATION_PROBE_FILE,
       DD_DYNAMIC_INSTRUMENTATION_REDACTED_IDENTIFIERS,
       DD_DYNAMIC_INSTRUMENTATION_REDACTION_EXCLUDED_IDENTIFIERS,
       DD_DYNAMIC_INSTRUMENTATION_UPLOAD_INTERVAL_SECONDS,
@@ -883,6 +885,7 @@ class Config {
     this._setString(env, 'dogstatsd.port', DD_DOGSTATSD_PORT)
     this._setBoolean(env, 'dsmEnabled', DD_DATA_STREAMS_ENABLED)
     this._setBoolean(env, 'dynamicInstrumentation.enabled', DD_DYNAMIC_INSTRUMENTATION_ENABLED)
+    this._setString(env, 'dynamicInstrumentation.probeFile', DD_DYNAMIC_INSTRUMENTATION_PROBE_FILE)
     this._setArray(env, 'dynamicInstrumentation.redactedIdentifiers', DD_DYNAMIC_INSTRUMENTATION_REDACTED_IDENTIFIERS)
     this._setArray(
       env,
@@ -1108,6 +1111,7 @@ class Config {
     }
     this._setBoolean(opts, 'dsmEnabled', options.dsmEnabled)
     this._setBoolean(opts, 'dynamicInstrumentation.enabled', options.dynamicInstrumentation?.enabled)
+    this._setString(opts, 'dynamicInstrumentation.probeFile', options.dynamicInstrumentation?.probeFile)
     this._setArray(
       opts,
       'dynamicInstrumentation.redactedIdentifiers',

package/packages/dd-trace/src/config_stable.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const os = require('os')
 const fs = require('fs')
 const { getEnvironmentVariable } = require('../../dd-trace/src/config-helper')

package/packages/dd-trace/src/datastreams/checkpointer.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const DataStreamsContext = require('./context')
 class DataStreamsCheckpointer {

package/packages/dd-trace/src/datastreams/context.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const { storage } = require('../../../datadog-core')
 const log = require('../log')

package/packages/dd-trace/src/datastreams/encoding.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 // encodes positive and negative numbers, using zig zag encoding to reduce the size of the variable length encoding.
 // uses high and low part to ensure those parts are under the limit for byte operations in javascript (32 bits)
 // maximum number possible to encode is MAX_SAFE_INTEGER/2 (using zig zag shifts the bits by 1 to the left)

package/packages/dd-trace/src/datastreams/fnv.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const FNV_64_PRIME = BigInt('0x100000001B3')
 const FNV1_64_INIT = BigInt('0xCBF29CE484222325')

package/packages/dd-trace/src/datastreams/pathway.js CHANGED Viewed

@@ -1,14 +1,15 @@
+'use strict'
 // encoding used here is sha256
 // other languages use FNV1
 // this inconsistency is ok because hashes do not need to be consistent across services
 const crypto = require('crypto')
 const { encodeVarint, decodeVarint } = require('./encoding')
-const LRUCache = require('lru-cache')
+const { LRUCache } = require('lru-cache')
 const log = require('../log')
 const pick = require('../../../datadog-core/src/utils/src/pick')
-const options = { max: 500 }
-const cache = new LRUCache(options)
+const cache = new LRUCache({ max: 500 })
 const CONTEXT_PROPAGATION_KEY = 'dd-pathway-ctx'
 const CONTEXT_PROPAGATION_KEY_BASE64 = 'dd-pathway-ctx-base64'
@@ -24,15 +25,16 @@ function computeHash (service, env, edgeTags, parentHash) {
   edgeTags.sort()
   const hashableEdgeTags = edgeTags.filter(item => item !== 'manual_checkpoint:true')
-  const key = `${service}${env}` + hashableEdgeTags.join('') + parentHash.toString()
-  if (cache.get(key)) {
-    return cache.get(key)
+  const key = `${service}${env}${hashableEdgeTags.join('')}${parentHash}`
+  let value = cache.get(key)
+  if (value) {
+    return value
   }
   const currentHash = shaHash(`${service}${env}` + hashableEdgeTags.join(''))
   const buf = Buffer.concat([currentHash, parentHash], 16)
-  const val = shaHash(buf.toString())
-  cache.set(key, val)
-  return val
+  value = shaHash(buf.toString())
+  cache.set(key, value)
+  return value
 }
 function encodePathwayContext (dataStreamsContext) {

package/packages/dd-trace/src/datastreams/processor.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const os = require('os')
 const pkg = require('../../../../package.json')
@@ -78,15 +80,14 @@ class StatsBucket {
     return this._backlogs
   }
-  forCheckpoint (checkpoint) {
-    const key = checkpoint.hash
-    if (!this._checkpoints.has(key)) {
-      this._checkpoints.set(
-        key, new StatsPoint(checkpoint.hash, checkpoint.parentHash, checkpoint.edgeTags)
-      )
+  forCheckpoint ({ hash, parentHash, edgeTags }) {
+    let checkpoint = this._checkpoints.get(hash)
+    if (!checkpoint) {
+      checkpoint = new StatsPoint(hash, parentHash, edgeTags)
+      this._checkpoints.set(hash, checkpoint)
     }
-    return this._checkpoints.get(key)
+    return checkpoint
   }
   /**

package/packages/dd-trace/src/datastreams/schemas/schema.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 class Schema {
   constructor (definition, id) {
     this.definition = definition

package/packages/dd-trace/src/datastreams/schemas/schema_builder.js CHANGED Viewed

@@ -1,4 +1,6 @@
-const LRUCache = require('lru-cache')
+'use strict'
+const { LRUCache } = require('lru-cache')
 const { fnv64 } = require('../fnv')
 const { Schema } = require('./schema')
@@ -13,22 +15,24 @@ class SchemaBuilder {
     this.properties = 0
   }
+  // TODO: This is only used in tests. Let's refactor the code and stop exposing the cache.
   static getCache () {
     return CACHE
   }
   static getSchemaDefinition (schema) {
-    const noNones = convertToJsonCompatible(schema)
-    const definition = jsonStringify(noNones)
+    const definition = toJSON(schema)
     const id = fnv64(Buffer.from(definition, 'utf8')).toString()
     return new Schema(definition, id)
   }
   static getSchema (schemaName, iterator, builder) {
-    if (!CACHE.has(schemaName)) {
-      CACHE.set(schemaName, (builder ?? new SchemaBuilder(iterator)).build())
+    let entry = CACHE.get(schemaName)
+    if (!entry) {
+      entry = (builder ?? new SchemaBuilder(iterator)).build()
+      CACHE.set(schemaName, entry)
     }
-    return CACHE.get(schemaName)
+    return entry
   }
   build () {
@@ -92,42 +96,47 @@ class OpenApiComponents {
   }
 }
-function convertToJsonCompatible (obj) {
-  if (Array.isArray(obj)) {
-    return obj.filter(item => item !== null).map(item => convertToJsonCompatible(item))
-  } else if (obj && typeof obj === 'object') {
-    const jsonObj = {}
-    for (const [key, value] of Object.entries(obj)) {
-      if (value !== null) {
-        jsonObj[key] = convertToJsonCompatible(value)
+// This adds a single whitespace between entries without adding newlines.
+// This differs from JSON.stringify and is used to align with the output
+// in other platforms.
+// TODO: Add tests to verify this behavior. A couple of cases are not
+// covered by the existing tests.
+function toJSON (value) {
+  // eslint-disable-next-line eslint-rules/eslint-safe-typeof-object
+  if (typeof value === 'object') {
+    if (value === null) {
+      return 'null'
+    }
+    if (Array.isArray(value)) {
+      let result = '['
+      for (let i = 0; i < value.length; i++) {
+        if (value[i] !== null) {
+          if (i !== 0) {
+            result += ', '
+          }
+          result += value[i] === undefined ? 'null' : toJSON(value[i])
+        }
       }
+      return `${result}]`
     }
-    return jsonObj
-  }
-  return obj
-}
-function convertKey (key) {
-  if (key === 'enumValues') {
-    return 'enum'
+    let result = '{'
+    for (const [key, objectValue] of Object.entries(value)) {
+      if (objectValue != null && typeof key === 'string') {
+        const converted = toJSON(objectValue)
+        if (converted !== undefined) {
+          if (result !== '{') {
+            result += ', '
+          }
+          result += `"${key}": ${converted}`
+        }
+      }
+    }
+    return `${result}}`
   }
-  return key
-}
-function jsonStringify (obj, indent = 2) {
-  // made to stringify json exactly similar to python / java in order for hashing to be the same
-  const jsonString = JSON.stringify(obj, (_, value) => value, indent)
-  return jsonString.replaceAll(/^ +/gm, ' ') // Replace leading spaces with single space
-    .replaceAll('\n', '') // Remove newlines
-    .replaceAll('{ ', '{') // Remove space after '{'
-    .replaceAll(' }', '}') // Remove space before '}'
-    .replaceAll('[ ', '[') // Remove space after '['
-    .replaceAll(' ]', ']') // Remove space before ']'
+  return JSON.stringify(value)
 }
 module.exports = {
   SchemaBuilder,
   OpenApiSchema,
-  convertToJsonCompatible,
-  convertKey
 }

package/packages/dd-trace/src/datastreams/schemas/schema_sampler.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const SAMPLE_INTERVAL_MILLIS = 30 * 1000
 class SchemaSampler {

package/packages/dd-trace/src/datastreams/writer.js CHANGED Viewed

@@ -1,3 +1,5 @@
+'use strict'
 const pkg = require('../../../../package.json')
 const log = require('../log')
 const request = require('../exporters/common/request')

package/packages/dd-trace/src/debugger/devtools_client/index.js CHANGED Viewed

@@ -40,11 +40,19 @@ const SUPPORT_ARRAY_BUFFER_RESIZE = NODE_MAJOR >= 20
 const oneSecondNs = 1_000_000_000n
 let globalSnapshotSamplingRateWindowStart = 0n
 let snapshotsSampledWithinTheLastSecond = 0
-// TODO: Is a limit of 256 snapshots ever going to be a problem?
-const snapshotProbeIndexBuffer = new ArrayBuffer(1, { maxByteLength: 256 })
-// TODO: Is a limit of 256 probes ever going to be a problem?
 // TODO: Change to const once we drop support for Node.js 18
-let snapshotProbeIndex = new Uint8Array(snapshotProbeIndexBuffer)
+let snapshotProbeIndexBuffer, snapshotProbeIndex
+if (SUPPORT_ARRAY_BUFFER_RESIZE) {
+  // TODO: Is a limit of 256 snapshots ever going to be a problem?
+  // eslint-disable-next-line n/no-unsupported-features/es-syntax
+  snapshotProbeIndexBuffer = new ArrayBuffer(1, { maxByteLength: 256 })
+  // TODO: Is a limit of 256 probes ever going to be a problem?
+  snapshotProbeIndex = new Uint8Array(snapshotProbeIndexBuffer)
+} else {
+  snapshotProbeIndex = new Uint8Array(1)
+}
 // WARNING: The code above the line `await session.post('Debugger.resume')` is highly optimized. Please edit with care!
 session.on('Debugger.paused', async ({ params }) => {

package/packages/dd-trace/src/debugger/devtools_client/inspector_promises_polyfill.js CHANGED Viewed

@@ -1,5 +1,7 @@
 'use strict'
+/* eslint n/no-unsupported-features/node-builtins: ['error', { ignores: ['inspector/promises'] }] */
 const { builtinModules } = require('node:module')
 if (builtinModules.includes('inspector/promises')) {