Skip to content

chore(deps): bump ddtrace from 2.4.1 to 2.5.0 #15253

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore(deps): bump ddtrace from 2.4.1 to 2.5.0 #15253

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 23, 2024

Bumps ddtrace from 2.4.1 to 2.5.0.

Release notes

Sourced from ddtrace's releases.

2.5.0

New Features

  • aiohttp: add split_by_domain config to split service name by domain
  • CI Visibility: Adds code coverage lines covered tag for pytest and unittest.
  • aiohttp: Adds http.route tag to aiohttp.request spans.
  • bottle: Adds http.route tag to bottle.request spans.
  • falcon: Adds http.route tag to falcon.request spans.
  • molten: Adds http.route tag to molten.request spans.
  • Adds distributed tracing for confluent-kafka integration. Distributed tracing connects Kafka consumer spans with Kafka producer spans within the same trace if a message is valid. To enable distributed tracing, set the configuration: DD_KAFKA_DISTRIBUTED_TRACING_ENABLED=True for both the consumer and producer service.
  • ASM: This introduces (experimental) api security support for fastAPI. Flask and Django were already supported in 2.4.0. Support schema computation on all addresses (requests and responses) and scanner support for pii, credentials and payment data.
  • CI Visibility: introduces a CI visibility-specific logger (enabled for the pytest plugin), enabled by setting the DD_CIVISIBILITY_LOG_LEVEL environment variable (with the same level names as Python logging levels).
  • CI Visibility: allows for waiting for the git metadata upload to complete before deciding whether or not to enable coverage (based on API response).
  • Further lazy loads telemetry_writer so that it is not running when explicitly disabled. Users must explicitly set "DD_INSTRUMENTATION_TELEMETRY_ENABLED=false".
  • tracer: Add support for remotely configuring trace tags.

Bug Fixes

  • loguru: Ensures log correlation is enabled when the root logger is initialized. Previously, log correlation was only enabled when a new sink was added.

  • Fix compatibility with other tools that try to infer the type of a Python object at runtime.

  • tracing: Fixes a bug that prevents span links from being visualized in the Datadog UI.

  • tracing: Resolves span encoding errors raised when span links do not contain expected types

  • ASM: This fix resolves an issue where custom event boolean properties were not reported as true and false like other tracers but as True and False.

  • Vulnerability Management for Code-level (IAST): Ensure that Cookies vulnerabilities report only the cookie name.

  • langchain: This fix resolves an get_openai_token_cost_for_model import error in langhcain version 0.0.351 or later.

  • ASM: This fix resolves an issue where IAST could cause circular dependency at startup.

  • tracing: Ensures all fields in ddtrace.context.Context are picklable.

  • pytest: This fix resolves an issue where the --no-cov flag did not take precedence over the --cov flag when deciding whether to report code coverage on spans.

  • rq: Fixed a bug where the RQ integration would emit a warning when setting job.status span tag.

  • IAST: Don't split AST Assign nodes since it's not needed for propagation to work.

  • Fix an issue that caused an exception to be raised when trying to access resource files via pkg_resources.

  • Fix for an import issue that caused the pytest plugin to fail to properly initialize a test session and exit with an import exception.

  • opentelemetry: Ensures that span links are serialized in a json-compatible representation.

  • otel: Ensures all otel sampling decisions are consistent with Datadog Spans. This prevents otel spans in a distrbuted trace from being sampled differently than Datadog spans in the same trace.

  • tracing: Fix an issue where remote configuration values would not be reverted when unset in the UI.

  • openai: This fix resolves an issue where an internal OpenAI method SyncAPIClient._process_response
    was not being patched correctly and led to to an AttributeError while patching.

  • tracing: Ensures span links are serialized with the expected traceflag when DD_TRACE_API_VERSION=v0.4

2.5.0rc2

New Features

  • aiohttp: add split_by_domain config to split service name by domain
  • CI Visibility: Adds code coverage lines covered tag for pytest and unittest.
  • aiohttp: Adds http.route tag to aiohttp.request spans.
  • bottle: Adds http.route tag to bottle.request spans.
  • falcon: Adds http.route tag to falcon.request spans.
  • molten: Adds http.route tag to molten.request spans.

... (truncated)

Commits
  • 2901112 fix(span_links): set highest order bit in traceflag encoding [backport 2.5] (...
  • ea1187a fix(openai): add version gate to patch _process_response [backport 2.5] (#8148)
  • c4184e8 fix(tracing): enable settings to be unset (#8126) [backport 2.5] (#8142)
  • 4f77b89 fix(otel): ensure booleans have json compatible representation [backport 2.5]...
  • 1a9f1ce fix(otel): support tag flattening [AIT-9352] [backport 2.5] (#8093)
  • 2e77b53 fix(internal): support for pkg_resources [backport 2.5] (#8121)
  • 822e0b4 ci: skip some test_stack.py tests on 3.12 [backport 2.5] (#8085)
  • 0e31149 fix: avoid changing the AST assign node since it's not needed for propagation...
  • 08140f9 fix(ci): pin versions of sphinx dependencies to unlock ci [backport 2.5] (#8107)
  • ce1cbf4 fix(internal): support for namespace packages [backport 2.5] (#8087)
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump ddtrace from 2.4.1 to 2.5.0
36c95fb 
Bumps [ddtrace](https://github.com/DataDog/dd-trace-py) from 2.4.1 to 2.5.0.
- [Release notes](https://github.com/DataDog/dd-trace-py/releases)
- [Changelog](https://github.com/DataDog/dd-trace-py/blob/main/CHANGELOG.md)
- [Commits](DataDog/dd-trace-py@v2.4.1...v2.5.0)

---
updated-dependencies:
- dependency-name: ddtrace
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner January 23, 2024 10:15
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 23, 2024
@pypi-combine-prs pypi-combine-prs bot mentioned this pull request Jan 23, 2024
Merged
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 23, 2024

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/pip/ddtrace-2.5.0 branch January 23, 2024 14:57
@kairoaraujo kairoaraujo mentioned this pull request Jan 26, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants