-
Notifications
You must be signed in to change notification settings - Fork 398
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: add os.path.join aspect #9085
Conversation
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Datadog ReportBranch report: ✅ 0 Failed, 108609 Passed, 3174 Skipped, 7m 21.33s Total duration (35m 41.35s time saved) |
BenchmarksBenchmark execution time: 2024-04-25 10:37:34 Comparing candidate commit 350b59e in PR branch Found 18 performance improvements and 12 performance regressions! Performance is the same for 171 metrics, 9 unstable metrics. scenario:coreapiscenario-context_with_data_listeners_and_all_listeners
scenario:coreapiscenario-context_with_data_no_listeners
scenario:coreapiscenario-core_dispatch_listeners
scenario:coreapiscenario-core_dispatch_listeners_and_all_listeners
scenario:coreapiscenario-core_dispatch_only_all_listeners
scenario:coreapiscenario-core_dispatch_with_results_listeners_and_all_listeners
scenario:coreapiscenario-core_dispatch_with_results_no_listeners
scenario:coreapiscenario-core_dispatch_with_results_only_all_listeners
scenario:coreapiscenario-get_item_exists
scenario:coreapiscenario-get_item_missing
scenario:coreapiscenario-set_item
scenario:flasksimple-appsec-telemetry
scenario:flasksimple-tracer
scenario:httppropagationextract-full_t_id_datadog_headers
scenario:httppropagationextract-tracecontext_headers
scenario:httppropagationextract-wsgi_large_valid_headers_all
scenario:httppropagationextract-wsgi_medium_valid_headers_all
scenario:httppropagationextract-wsgi_valid_headers_all
scenario:httppropagationinject-with_dd_origin
scenario:httppropagationinject-with_priority_and_origin
scenario:httppropagationinject-with_tags_max_size
scenario:otelspan-start-finish
scenario:samplingrules-very_low_match
scenario:sethttpmeta-no-collectipvariant
scenario:sethttpmeta-obfuscation-no-query
scenario:sethttpmeta-obfuscation-send-querystring-disabled
scenario:sethttpmeta-obfuscation-worst-case-implicit-query
scenario:sethttpmeta-useragentvariant_not_exists_1
scenario:tracer-large
scenario:tracer-small
|
ddtrace/appsec/_iast/_taint_tracking/Aspects/AspectOsPathJoin.cpp
Outdated
Show resolved
Hide resolved
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #9085 +/- ##
===========================================
- Coverage 78.64% 6.65% -72.00%
===========================================
Files 1254 1230 -24
Lines 117809 116575 -1234
===========================================
- Hits 92653 7753 -84900
- Misses 25156 108822 +83666 ☔ View full report in Codecov by Sentry. |
Signed-off-by: Juanjo Alvarez <juanjo.alvarezmartinez@datadoghq.com>
…ataDog/dd-trace-py into juanjux/APPSEC-11370-ospathjoin-aspect
Reverting the following IAST PRs: #9113, #9114, #9085 They will be re-introduced in 2.10 after some investigation, but reverting for now to un-block the 2.9.0 release pipeline. ## Checklist - [x] Change(s) are motivated and described in the PR description - [x] Testing strategy is described if automated tests are not included in the PR - [x] Risks are described (performance impact, potential for breakage, maintainability) - [x] Change is maintainable (easy to change, telemetry, documentation) - [x] [Library release note guidelines](https://ddtrace.readthedocs.io/en/stable/releasenotes.html) are followed or label `changelog/no-changelog` is set - [x] Documentation is included (in-code, generated user docs, [public corp docs](https://github.com/DataDog/documentation/)) - [x] Backport labels are set (if [applicable](https://ddtrace.readthedocs.io/en/latest/contributing.html#backporting)) - [x] If this PR changes the public interface, I've notified `@DataDog/apm-tees`. ## Reviewer Checklist - [x] Title is accurate - [x] All changes are related to the pull request's stated goal - [x] Description motivates each change - [x] Avoids breaking [API](https://ddtrace.readthedocs.io/en/stable/versioning.html#interfaces) changes - [x] Testing strategy adequately addresses listed risks - [x] Change is maintainable (easy to change, telemetry, documentation) - [x] Release note makes sense to a user of the library - [x] Author has acknowledged and discussed the performance implications of this PR as reported in the benchmarks PR comment - [x] Backport labels are set in a manner that is consistent with the [release branch maintenance policy](https://ddtrace.readthedocs.io/en/latest/contributing.html#backporting)
Description
os.path.join()
.AstVisitor
. This is a placeholder until we add a new decorator-based way on a further PR.Checklist
changelog/no-changelog
is set@DataDog/apm-tees
.@DataDog/security-design-and-guidance
.Reviewer Checklist