1.30.0-RC1

Warning

This is a RELEASE CANDIDATE and is NOT intended for use in production.

Known Issues

• This release contains two critical bugs that may break applications in the following cases:
  • Some Spring Boot applications.
  • Applications with ASM enabled (DD_APPSEC_ENABLED=true).
• In both cases, it is strongly recommended to upgrade to v1.30.1 or later.

Components

Application Security Management (IAST)

• 🐛 Fix dynamic invoke for string concat in IBM J9 (#6634 - @manuel-alvarez-alvarez)
• Add application vulnerabilities to telemetry (#6624 - @manuel-alvarez-alvarez)
• Detect insecure auth protocol (#6614 - @jandro996)
• Fix insecure cookies false positives when unsetting cookies (#6586 - @jandro996)

Application Security Management (WAF)

• 🧪 Exclude WAF timeout from telemetry logs (#6618 - @smola)
• Add _dd.appsec.waf.timeouts tag (#6597 - @smola)

Database Monitoring

• Fix context store access with null key on DBM MySQL connection (#6616 - @mcculls)

Dynamic Instrumentation

• ✨ Add instrumentation of exception stacktraces (#6609 - @jpbempel)

Telemetry

• Add support for periodic submission of telemetry distribution series (#6643 - @nikita-tkachenko-datadog)
• Use intake telemetry client by default when running in agentless mode (#6607 - @nikita-tkachenko-datadog)

Tracer core

• ✨ Add scheduledWithFixedDelay method (#6587 - @jpbempel)
• 🧹 Introduce concept of an InstrumenterGroup (#6575 - @mcculls)
• 🐛 Fixes to trace agent service rates feedback - e.g. MAX TPS support (#6628 - @dougqh)
• 🐛 Switching to case insensitive matching (#6613 - @dougqh)

Instrumentations

JDBC instrumentation

• Fix context store access with null key on DBM MySQL connection (#6616 - @mcculls)

All other instrumentations

• Align apache http client 5 instrumentation names (#6596 - @amarziali)