Skip to content

🍒 10711 - Missing http.response.headers.content-type span tag on blocking responses#10884

Open
jandro996 wants to merge 1 commit intorelease/v1.60.xfrom
alejandro.gonzalez/backport-pr-10711
Open

🍒 10711 - Missing http.response.headers.content-type span tag on blocking responses#10884
jandro996 wants to merge 1 commit intorelease/v1.60.xfrom
alejandro.gonzalez/backport-pr-10711

Conversation

@jandro996
Copy link
Member

@jandro996 jandro996 commented Mar 18, 2026

Backport #10711 to release/v1.60.x

@jandro996
Missing http.response.headers.content-type span tag on blocking respo…
8b3df9f 
…nses (#10711)

fix(appsec): record blocking response content-type centrally in GatewayBridge

When a WAF blocking action fires, the normal response-header IG callbacks are
bypassed, so http.response.headers.content-type never reaches the span.

Instead of patching every framework's blocking handler, intercept the blocking
flow result in GatewayBridge.maybePublishRequestData / maybePublishResponseData,
compute the deterministic content-type from RequestBlockingAction + accept header,
store it on AppSecRequestContext, and write it as a span tag in onRequestEnded().

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

Merge branch 'master' into alejandro.gonzalez/APPSEC-61447-bug-blocking

Fix and more tests

Fix and more tests

Fix and more tests

Merge branch 'master' into alejandro.gonzalez/APPSEC-61447-bug-blocking

Merge branch 'master' into alejandro.gonzalez/APPSEC-61447-bug-blocking

Co-authored-by: devflow.devflow-routing-intake <devflow.devflow-routing-intake@kubernetes.us1.ddbuild.io>
@jandro996 jandro996 added type: bug Bug report and fix comp: asm waf Application Security Management (WAF) labels Mar 18, 2026
@jandro996 jandro996 marked this pull request as ready for review March 18, 2026 11:38
@jandro996 jandro996 requested a review from a team as a code owner March 18, 2026 11:38
chatgpt-codex-connector[bot]
chatgpt-codex-connector bot reviewed Mar 18, 2026
View reviewed changes
Copy link

@chatgpt-codex-connector chatgpt-codex-connector bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 8b3df9ff81

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

@pr-commenter
Copy link

pr-commenter bot commented Mar 18, 2026

Kafka / consumer-benchmark

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch release/v1.60.x alejandro.gonzalez/backport-pr-10711
git_commit_date 1773830748 1773833721
git_commit_sha 571c573 8b3df9f
See matching parameters
Baseline Candidate
ci_job_date 1773834687 1773834687
ci_job_id 1516751547 1516751547
ci_pipeline_id 103241056 103241056
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
jdkVersion 11.0.25 11.0.25
jmhVersion 1.36 1.36
jvm /usr/lib/jvm/java-11-openjdk-amd64/bin/java /usr/lib/jvm/java-11-openjdk-amd64/bin/java
jvmArgs -Dfile.encoding=UTF-8 -Djava.io.tmpdir=/go/src/github.com/DataDog/apm-reliability/dd-trace-java/platform/src/consumer-benchmark/build/tmp/jmh -Duser.country=US -Duser.language=en -Duser.variant -Dfile.encoding=UTF-8 -Djava.io.tmpdir=/go/src/github.com/DataDog/apm-reliability/dd-trace-java/platform/src/consumer-benchmark/build/tmp/jmh -Duser.country=US -Duser.language=en -Duser.variant
vmName OpenJDK 64-Bit Server VM OpenJDK 64-Bit Server VM
vmVersion 11.0.25+9-post-Ubuntu-1ubuntu122.04 11.0.25+9-post-Ubuntu-1ubuntu122.04

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 3 metrics, 0 unstable metrics.

See unchanged results
scenario Δ mean throughput
scenario:not-instrumented/KafkaConsumerBenchmark.benchConsume same
scenario:only-tracing-dsm-disabled-benchmarks/KafkaConsumerBenchmark.benchConsume same
scenario:only-tracing-dsm-enabled-benchmarks/KafkaConsumerBenchmark.benchConsume same

@jandro996 jandro996 requested a review from PerfectSlayer March 18, 2026 12:22
@pr-commenter
Copy link

pr-commenter bot commented Mar 18, 2026

Benchmarks

Startup

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master alejandro.gonzalez/backport-pr-10711
git_commit_date 1772492986 1773833721
git_commit_sha 0f5d84f 8b3df9f
release_version 1.60.0~0f5d84f2c4 1.61.0-SNAPSHOT~8b3df9ff81
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1773835423 1773835423
ci_job_id 1516751537 1516751537
ci_pipeline_id 103241056 103241056
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-0-jwtzpqyu 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-0-jwtzpqyu 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module Agent Agent
parent None None

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 60 metrics, 11 unstable metrics.

Startup time reports for petclinic 
gantt
    title petclinic - global startup overhead: candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.072 s) : 0, 1071583
Total [baseline] (10.855 s) : 0, 10854932
Agent [candidate] (1.065 s) : 0, 1064726
Total [candidate] (10.959 s) : 0, 10959045
section appsec
Agent [baseline] (1.245 s) : 0, 1245235
Total [baseline] (11.179 s) : 0, 11178537
Agent [candidate] (1.233 s) : 0, 1233475
Total [candidate] (11.041 s) : 0, 11041040
section iast
Agent [baseline] (1.23 s) : 0, 1229718
Total [baseline] (11.141 s) : 0, 11141152
Agent [candidate] (1.231 s) : 0, 1230780
Total [candidate] (11.081 s) : 0, 11081198
section profiling
Agent [baseline] (1.189 s) : 0, 1188615
Total [baseline] (10.877 s) : 0, 10876663
Agent [candidate] (1.19 s) : 0, 1189602
Total [candidate] (10.957 s) : 0, 10957475
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.072 s -
Agent appsec 1.245 s 173.651 ms (16.2%)
Agent iast 1.23 s 158.135 ms (14.8%)
Agent profiling 1.189 s 117.032 ms (10.9%)
Total tracing 10.855 s -
Total appsec 11.179 s 323.606 ms (3.0%)
Total iast 11.141 s 286.221 ms (2.6%)
Total profiling 10.877 s 21.732 ms (0.2%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.065 s -
Agent appsec 1.233 s 168.748 ms (15.8%)
Agent iast 1.231 s 166.054 ms (15.6%)
Agent profiling 1.19 s 124.876 ms (11.7%)
Total tracing 10.959 s -
Total appsec 11.041 s 81.995 ms (0.7%)
Total iast 11.081 s 122.153 ms (1.1%)
Total profiling 10.957 s -1.57 ms (-0.0%) 
gantt
    title petclinic - break down per module: candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.194 ms) : 0, 1194
crashtracking [candidate] (1.178 ms) : 0, 1178
BytebuddyAgent [baseline] (632.062 ms) : 0, 632062
BytebuddyAgent [candidate] (626.656 ms) : 0, 626656
AgentMeter [baseline] (29.347 ms) : 0, 29347
AgentMeter [candidate] (29.133 ms) : 0, 29133
GlobalTracer [baseline] (258.026 ms) : 0, 258026
GlobalTracer [candidate] (257.614 ms) : 0, 257614
AppSec [baseline] (33.104 ms) : 0, 33104
AppSec [candidate] (32.859 ms) : 0, 32859
Debugger [baseline] (63.958 ms) : 0, 63958
Debugger [candidate] (66.858 ms) : 0, 66858
Remote Config [baseline] (627.918 µs) : 0, 628
Remote Config [candidate] (599.176 µs) : 0, 599
Telemetry [baseline] (11.66 ms) : 0, 11660
Telemetry [candidate] (9.833 ms) : 0, 9833
Flare Poller [baseline] (5.391 ms) : 0, 5391
Flare Poller [candidate] (3.785 ms) : 0, 3785
section appsec
crashtracking [baseline] (1.202 ms) : 0, 1202
crashtracking [candidate] (1.184 ms) : 0, 1184
BytebuddyAgent [baseline] (661.026 ms) : 0, 661026
BytebuddyAgent [candidate] (654.209 ms) : 0, 654209
AgentMeter [baseline] (12.052 ms) : 0, 12052
AgentMeter [candidate] (11.943 ms) : 0, 11943
GlobalTracer [baseline] (259.691 ms) : 0, 259691
GlobalTracer [candidate] (257.555 ms) : 0, 257555
AppSec [baseline] (168.095 ms) : 0, 168095
AppSec [candidate] (167.48 ms) : 0, 167480
Debugger [baseline] (67.697 ms) : 0, 67697
Debugger [candidate] (66.319 ms) : 0, 66319
Remote Config [baseline] (744.423 µs) : 0, 744
Remote Config [candidate] (678.462 µs) : 0, 678
Telemetry [baseline] (9.46 ms) : 0, 9460
Telemetry [candidate] (9.22 ms) : 0, 9220
Flare Poller [baseline] (3.739 ms) : 0, 3739
Flare Poller [candidate] (3.647 ms) : 0, 3647
IAST [baseline] (25.384 ms) : 0, 25384
IAST [candidate] (25.263 ms) : 0, 25263
section iast
crashtracking [baseline] (1.192 ms) : 0, 1192
crashtracking [candidate] (1.187 ms) : 0, 1187
BytebuddyAgent [baseline] (794.145 ms) : 0, 794145
BytebuddyAgent [candidate] (794.855 ms) : 0, 794855
AgentMeter [baseline] (11.294 ms) : 0, 11294
AgentMeter [candidate] (11.314 ms) : 0, 11314
GlobalTracer [baseline] (246.704 ms) : 0, 246704
GlobalTracer [candidate] (247.074 ms) : 0, 247074
AppSec [baseline] (33.162 ms) : 0, 33162
AppSec [candidate] (34.09 ms) : 0, 34090
Debugger [baseline] (67.649 ms) : 0, 67649
Debugger [candidate] (66.449 ms) : 0, 66449
Remote Config [baseline] (527.572 µs) : 0, 528
Remote Config [candidate] (531.363 µs) : 0, 531
Telemetry [baseline] (8.633 ms) : 0, 8633
Telemetry [candidate] (8.635 ms) : 0, 8635
Flare Poller [baseline] (3.488 ms) : 0, 3488
Flare Poller [candidate] (3.48 ms) : 0, 3480
IAST [baseline] (26.957 ms) : 0, 26957
IAST [candidate] (27.146 ms) : 0, 27146
section profiling
ProfilingAgent [baseline] (98.949 ms) : 0, 98949
ProfilingAgent [candidate] (99.075 ms) : 0, 99075
crashtracking [baseline] (1.158 ms) : 0, 1158
crashtracking [candidate] (1.157 ms) : 0, 1157
BytebuddyAgent [baseline] (680.955 ms) : 0, 680955
BytebuddyAgent [candidate] (681.026 ms) : 0, 681026
AgentMeter [baseline] (8.548 ms) : 0, 8548
AgentMeter [candidate] (8.598 ms) : 0, 8598
GlobalTracer [baseline] (215.431 ms) : 0, 215431
GlobalTracer [candidate] (216.0 ms) : 0, 216000
AppSec [baseline] (32.429 ms) : 0, 32429
AppSec [candidate] (32.52 ms) : 0, 32520
Debugger [baseline] (67.179 ms) : 0, 67179
Debugger [candidate] (67.266 ms) : 0, 67266
Remote Config [baseline] (621.197 µs) : 0, 621
Remote Config [candidate] (643.5 µs) : 0, 644
Telemetry [baseline] (8.871 ms) : 0, 8871
Telemetry [candidate] (8.796 ms) : 0, 8796
Flare Poller [baseline] (3.697 ms) : 0, 3697
Flare Poller [candidate] (3.715 ms) : 0, 3715
Profiling [baseline] (99.525 ms) : 0, 99525
Profiling [candidate] (99.648 ms) : 0, 99648
Loading
Startup time reports for insecure-bank 
gantt
    title insecure-bank - global startup overhead: candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.065 s) : 0, 1065098
Total [baseline] (8.754 s) : 0, 8753660
Agent [candidate] (1.065 s) : 0, 1064705
Total [candidate] (8.735 s) : 0, 8734781
section iast
Agent [baseline] (1.231 s) : 0, 1230798
Total [baseline] (9.386 s) : 0, 9386272
Agent [candidate] (1.232 s) : 0, 1231864
Total [candidate] (9.394 s) : 0, 9393842
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.065 s -
Agent iast 1.231 s 165.699 ms (15.6%)
Total tracing 8.754 s -
Total iast 9.386 s 632.612 ms (7.2%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.065 s -
Agent iast 1.232 s 167.159 ms (15.7%)
Total tracing 8.735 s -
Total iast 9.394 s 659.061 ms (7.5%) 
gantt
    title insecure-bank - break down per module: candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.188 ms) : 0, 1188
crashtracking [candidate] (1.193 ms) : 0, 1193
BytebuddyAgent [baseline] (627.399 ms) : 0, 627399
BytebuddyAgent [candidate] (627.484 ms) : 0, 627484
AgentMeter [baseline] (28.992 ms) : 0, 28992
AgentMeter [candidate] (29.029 ms) : 0, 29029
GlobalTracer [baseline] (257.145 ms) : 0, 257145
GlobalTracer [candidate] (257.426 ms) : 0, 257426
AppSec [baseline] (33.051 ms) : 0, 33051
AppSec [candidate] (33.037 ms) : 0, 33037
Debugger [baseline] (63.008 ms) : 0, 63008
Debugger [candidate] (63.015 ms) : 0, 63015
Remote Config [baseline] (618.921 µs) : 0, 619
Remote Config [candidate] (624.639 µs) : 0, 625
Telemetry [baseline] (12.975 ms) : 0, 12975
Telemetry [candidate] (11.479 ms) : 0, 11479
Flare Poller [baseline] (4.607 ms) : 0, 4607
Flare Poller [candidate] (5.316 ms) : 0, 5316
section iast
crashtracking [baseline] (1.191 ms) : 0, 1191
crashtracking [candidate] (1.197 ms) : 0, 1197
BytebuddyAgent [baseline] (795.683 ms) : 0, 795683
BytebuddyAgent [candidate] (796.905 ms) : 0, 796905
AgentMeter [baseline] (11.323 ms) : 0, 11323
AgentMeter [candidate] (11.311 ms) : 0, 11311
GlobalTracer [baseline] (247.062 ms) : 0, 247062
GlobalTracer [candidate] (247.32 ms) : 0, 247320
AppSec [baseline] (32.381 ms) : 0, 32381
AppSec [candidate] (33.745 ms) : 0, 33745
Debugger [baseline] (67.4 ms) : 0, 67400
Debugger [candidate] (65.812 ms) : 0, 65812
Remote Config [baseline] (529.483 µs) : 0, 529
Remote Config [candidate] (526.1 µs) : 0, 526
Telemetry [baseline] (8.65 ms) : 0, 8650
Telemetry [candidate] (8.578 ms) : 0, 8578
Flare Poller [baseline] (3.491 ms) : 0, 3491
Flare Poller [candidate] (3.442 ms) : 0, 3442
IAST [baseline] (27.046 ms) : 0, 27046
IAST [candidate] (26.965 ms) : 0, 26965
Loading

Load

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master alejandro.gonzalez/backport-pr-10711
git_commit_date 1772492986 1773833721
git_commit_sha 0f5d84f 8b3df9f
release_version 1.60.0~0f5d84f2c4 1.61.0-SNAPSHOT~8b3df9ff81
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1773836001 1773836001
ci_job_id 1516751539 1516751539
ci_pipeline_id 103241056 103241056
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-1-6e83l1cy 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-1-6e83l1cy 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 1 performance improvements and 0 performance regressions! Performance is the same for 19 metrics, 16 unstable metrics.

scenario Δ mean agg_http_req_duration_p50 Δ mean agg_http_req_duration_p95 Δ mean throughput candidate mean agg_http_req_duration_p50 candidate mean agg_http_req_duration_p95 candidate mean throughput baseline mean agg_http_req_duration_p50 baseline mean agg_http_req_duration_p95 baseline mean throughput
scenario:load:insecure-bank:profiling:high_load better
[-183.493µs; -60.378µs] or [-10.455%; -3.440%]		 unstable
[-1172.459µs; -270.677µs] or [-21.646%; -4.997%]		 unstable
[-8.962op/s; +519.712op/s] or [-0.447%; +25.940%]		 1.633ms 4.695ms 2258.906op/s 1.755ms 5.417ms 2003.531op/s
Request duration reports for petclinic 
gantt
    title petclinic - request duration [CI 0.99] : candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4
    dateFormat X
    axisFormat %s
section baseline
no_agent (18.229 ms) : 18041, 18417
.   : milestone, 18229,
appsec (18.675 ms) : 18482, 18867
.   : milestone, 18675,
code_origins (18.101 ms) : 17920, 18283
.   : milestone, 18101,
iast (18.348 ms) : 18164, 18533
.   : milestone, 18348,
profiling (18.827 ms) : 18639, 19015
.   : milestone, 18827,
tracing (18.445 ms) : 18261, 18630
.   : milestone, 18445,
section candidate
no_agent (18.09 ms) : 17907, 18273
.   : milestone, 18090,
appsec (18.417 ms) : 18228, 18605
.   : milestone, 18417,
code_origins (17.624 ms) : 17449, 17799
.   : milestone, 17624,
iast (18.028 ms) : 17848, 18207
.   : milestone, 18028,
profiling (18.706 ms) : 18526, 18887
.   : milestone, 18706,
tracing (17.934 ms) : 17758, 18110
.   : milestone, 17934,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 18.229 ms [18.041 ms, 18.417 ms] -
appsec 18.675 ms [18.482 ms, 18.867 ms] 445.778 µs (2.4%)
code_origins 18.101 ms [17.92 ms, 18.283 ms] -127.733 µs (-0.7%)
iast 18.348 ms [18.164 ms, 18.533 ms] 119.57 µs (0.7%)
profiling 18.827 ms [18.639 ms, 19.015 ms] 598.133 µs (3.3%)
tracing 18.445 ms [18.261 ms, 18.63 ms] 216.565 µs (1.2%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 18.09 ms [17.907 ms, 18.273 ms] -
appsec 18.417 ms [18.228 ms, 18.605 ms] 326.421 µs (1.8%)
code_origins 17.624 ms [17.449 ms, 17.799 ms] -466.083 µs (-2.6%)
iast 18.028 ms [17.848 ms, 18.207 ms] -62.603 µs (-0.3%)
profiling 18.706 ms [18.526 ms, 18.887 ms] 616.097 µs (3.4%)
tracing 17.934 ms [17.758 ms, 18.11 ms] -155.898 µs (-0.9%)
Request duration reports for insecure-bank 
gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.181 ms) : 1169, 1193
.   : milestone, 1181,
iast (3.239 ms) : 3193, 3284
.   : milestone, 3239,
iast_FULL (6.075 ms) : 6012, 6138
.   : milestone, 6075,
iast_GLOBAL (3.559 ms) : 3506, 3611
.   : milestone, 3559,
profiling (2.261 ms) : 2239, 2283
.   : milestone, 2261,
tracing (1.799 ms) : 1784, 1814
.   : milestone, 1799,
section candidate
no_agent (1.193 ms) : 1181, 1205
.   : milestone, 1193,
iast (3.263 ms) : 3220, 3306
.   : milestone, 3263,
iast_FULL (5.868 ms) : 5810, 5927
.   : milestone, 5868,
iast_GLOBAL (3.502 ms) : 3443, 3560
.   : milestone, 3502,
profiling (1.998 ms) : 1979, 2016
.   : milestone, 1998,
tracing (1.808 ms) : 1793, 1823
.   : milestone, 1808,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 1.181 ms [1.169 ms, 1.193 ms] -
iast 3.239 ms [3.193 ms, 3.284 ms] 2.058 ms (174.2%)
iast_FULL 6.075 ms [6.012 ms, 6.138 ms] 4.895 ms (414.5%)
iast_GLOBAL 3.559 ms [3.506 ms, 3.611 ms] 2.378 ms (201.3%)
profiling 2.261 ms [2.239 ms, 2.283 ms] 1.08 ms (91.5%)
tracing 1.799 ms [1.784 ms, 1.814 ms] 618.183 µs (52.3%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 1.193 ms [1.181 ms, 1.205 ms] -
iast 3.263 ms [3.22 ms, 3.306 ms] 2.07 ms (173.6%)
iast_FULL 5.868 ms [5.81 ms, 5.927 ms] 4.676 ms (392.0%)
iast_GLOBAL 3.502 ms [3.443 ms, 3.56 ms] 2.309 ms (193.5%)
profiling 1.998 ms [1.979 ms, 2.016 ms] 804.824 µs (67.5%)
tracing 1.808 ms [1.793 ms, 1.823 ms] 615.327 µs (51.6%)

Dacapo

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master alejandro.gonzalez/backport-pr-10711
git_commit_date 1772492986 1773833721
git_commit_sha 0f5d84f 8b3df9f
release_version 1.60.0~0f5d84f2c4 1.61.0-SNAPSHOT~8b3df9ff81
See matching parameters
Baseline Candidate
application biojava biojava
ci_job_date 1773835775 1773835775
ci_job_id 1516751541 1516751541
ci_pipeline_id 103241056 103241056
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-0-nfi5rllz 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-0-nfi5rllz 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 11 metrics, 1 unstable metrics.

Execution time for tomcat 
gantt
    title tomcat - execution time [CI 0.99] : candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.468 ms) : 1457, 1480
.   : milestone, 1468,
appsec (3.77 ms) : 3549, 3992
.   : milestone, 3770,
iast (2.243 ms) : 2175, 2312
.   : milestone, 2243,
iast_GLOBAL (2.293 ms) : 2223, 2362
.   : milestone, 2293,
profiling (2.061 ms) : 2007, 2115
.   : milestone, 2061,
tracing (2.05 ms) : 1997, 2104
.   : milestone, 2050,
section candidate
no_agent (1.473 ms) : 1461, 1484
.   : milestone, 1473,
appsec (3.778 ms) : 3557, 3998
.   : milestone, 3778,
iast (2.254 ms) : 2184, 2323
.   : milestone, 2254,
iast_GLOBAL (2.288 ms) : 2219, 2358
.   : milestone, 2288,
profiling (2.103 ms) : 2046, 2160
.   : milestone, 2103,
tracing (2.04 ms) : 1987, 2093
.   : milestone, 2040,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.468 ms [1.457 ms, 1.48 ms] -
appsec 3.77 ms [3.549 ms, 3.992 ms] 2.302 ms (156.8%)
iast 2.243 ms [2.175 ms, 2.312 ms] 775.103 µs (52.8%)
iast_GLOBAL 2.293 ms [2.223 ms, 2.362 ms] 824.547 µs (56.2%)
profiling 2.061 ms [2.007 ms, 2.115 ms] 592.829 µs (40.4%)
tracing 2.05 ms [1.997 ms, 2.104 ms] 582.108 µs (39.6%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.473 ms [1.461 ms, 1.484 ms] -
appsec 3.778 ms [3.557 ms, 3.998 ms] 2.305 ms (156.5%)
iast 2.254 ms [2.184 ms, 2.323 ms] 781.046 µs (53.0%)
iast_GLOBAL 2.288 ms [2.219 ms, 2.358 ms] 815.511 µs (55.4%)
profiling 2.103 ms [2.046 ms, 2.16 ms] 630.247 µs (42.8%)
tracing 2.04 ms [1.987 ms, 2.093 ms] 567.018 µs (38.5%)
Execution time for biojava 
gantt
    title biojava - execution time [CI 0.99] : candidate=1.61.0-SNAPSHOT~8b3df9ff81, baseline=1.60.0~0f5d84f2c4
    dateFormat X
    axisFormat %s
section baseline
no_agent (14.948 s) : 14948000, 14948000
.   : milestone, 14948000,
appsec (14.9 s) : 14900000, 14900000
.   : milestone, 14900000,
iast (17.955 s) : 17955000, 17955000
.   : milestone, 17955000,
iast_GLOBAL (17.599 s) : 17599000, 17599000
.   : milestone, 17599000,
profiling (14.7 s) : 14700000, 14700000
.   : milestone, 14700000,
tracing (15.058 s) : 15058000, 15058000
.   : milestone, 15058000,
section candidate
no_agent (15.604 s) : 15604000, 15604000
.   : milestone, 15604000,
appsec (14.927 s) : 14927000, 14927000
.   : milestone, 14927000,
iast (17.972 s) : 17972000, 17972000
.   : milestone, 17972000,
iast_GLOBAL (17.825 s) : 17825000, 17825000
.   : milestone, 17825000,
profiling (14.729 s) : 14729000, 14729000
.   : milestone, 14729000,
tracing (15.008 s) : 15008000, 15008000
.   : milestone, 15008000,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 14.948 s [14.948 s, 14.948 s] -
appsec 14.9 s [14.9 s, 14.9 s] -48.0 ms (-0.3%)
iast 17.955 s [17.955 s, 17.955 s] 3.007 s (20.1%)
iast_GLOBAL 17.599 s [17.599 s, 17.599 s] 2.651 s (17.7%)
profiling 14.7 s [14.7 s, 14.7 s] -248.0 ms (-1.7%)
tracing 15.058 s [15.058 s, 15.058 s] 110.0 ms (0.7%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 15.604 s [15.604 s, 15.604 s] -
appsec 14.927 s [14.927 s, 14.927 s] -677.0 ms (-4.3%)
iast 17.972 s [17.972 s, 17.972 s] 2.368 s (15.2%)
iast_GLOBAL 17.825 s [17.825 s, 17.825 s] 2.221 s (14.2%)
profiling 14.729 s [14.729 s, 14.729 s] -875.0 ms (-5.6%)
tracing 15.008 s [15.008 s, 15.008 s] -596.0 ms (-3.8%)

@jandro996 jandro996 added this to the 1.60.2 milestone Mar 18, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

@PerfectSlayer PerfectSlayer PerfectSlayer approved these changes

@manuel-alvarez-alvarez manuel-alvarez-alvarez Awaiting requested review from manuel-alvarez-alvarez manuel-alvarez-alvarez is a code owner automatically assigned from DataDog/asm-java

@daniel-romano-DD daniel-romano-DD Awaiting requested review from daniel-romano-DD daniel-romano-DD is a code owner automatically assigned from DataDog/asm-java

Assignees

No one assigned

Labels

comp: asm waf Application Security Management (WAF) type: bug Bug report and fix

Projects

None yet

Milestone

1.60.2

Development

Successfully merging this pull request may close these issues.

2 participants

@jandro996 @PerfectSlayer