Standalone ASM configuration and span tags #4291
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Overall package sizeSelf size: 6.72 MB Dependency sizes
🤖 This report was automatically generated by heaviest-objects-in-the-universe |
iunanua
commented
May 10, 2024
iunanua
commented
May 10, 2024
CarlesDD
reviewed
May 13, 2024
simon-id
reviewed
May 13, 2024
BenchmarksBenchmark execution time: 2024-06-18 08:20:11 Comparing candidate commit 7dc9981 in PR branch Found 2 performance improvements and 0 performance regressions! Performance is the same for 258 metrics, 6 unstable metrics. scenario:plugin-graphql-with-depth-and-collapse-on-18
scenario:plugin-graphql-with-depth-on-max-18
|
iunanua
force-pushed
the
igor/standalone-asm-config-and-tags
branch
2 times, most recently
from
ff3519d
to
2bb1295
Compare
iunanua
force-pushed
the
igor/standalone-asm-config-and-tags
branch
from
2bb1295
to
5d6210d
Compare
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #4291 +/- ##
===========================================
- Coverage 80.42% 69.19% -11.24%
===========================================
Files 3 1 -2
Lines 373 198 -175
Branches 33 33
===========================================
- Hits 300 137 -163
+ Misses 73 61 -12 ☔ View full report in Codecov by Sentry. |
iunanua
commented
May 20, 2024
iunanua
commented
May 20, 2024
iunanua
changed the title
CarlesDD
reviewed
May 21, 2024
There was a problem hiding this comment.
Missing type for experimental.appsec.standalone.enabled in index.d.ts and test.ts
uurien
reviewed
May 21, 2024
uurien
reviewed
May 21, 2024
packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js
Outdated
Show resolved
Hide resolved
uurien
reviewed
May 21, 2024
Co-authored-by: Ugaitz Urien <[email protected]>
uurien
reviewed
Jun 12, 2024
uurien
previously approved these changes
Jun 12, 2024
uurien
previously approved these changes
Jun 13, 2024
simon-id
reviewed
Jun 17, 2024
simon-id
reviewed
Jun 17, 2024
simon-id
approved these changes
Jun 18, 2024
uurien
approved these changes
Jun 18, 2024
simon-id
reviewed
Jun 18, 2024
| @@ -180,6 +181,7 @@ class Tracer extends NoopProxy { | |||
| if (!this._tracingInitialized) { | |||
| this._tracer = new DatadogTracer(config) | |||
| this.appsec = new AppsecSdk(this._tracer, config) | |||
| appsecStandalone.configure(config) | |||
There was a problem hiding this comment.
maybe we could move this configure() somewhere in appsec territory ? it's not super important but if we can do it in a clean way it could be nice
There was a problem hiding this comment.
I need it in proxy.js to replace the default PrioritySampler via DatadogTracer constructor, something you could see in the next standalone PR.
Also standalone is not related with AppsecSdk so I'd prefer not to mix the two features.
6 tasks
tlhunter
pushed a commit
that referenced
this pull request
Jun 20, 2024
* DD_APM_TRACING_ENABLED and span _dd.apm.enabled tag * clean up * Use MANUAL_KEEP const * Add _dd.p.appsec tag on standalone ASM events * Include apmTracingEnabled checks * Appsec Reporter tests * Appsec sdk track_event test * Use numeric value for _dd.p.appsec * Include appsec standalone config in .ts files * Clean up null and undefined values * Remove not needed config properties * standalone module * Clean up * standalone proxy test * Update packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * appsec reporter test * Use standalone singletone in vulnerability-reporter * continue applying ratelimiter on appsec standalone events * Update packages/dd-trace/src/appsec/reporter.js Co-authored-by: simon-id <[email protected]> * Add _dd.apm.enabled:0 in root spans with remote parent * Use a method to add the tag * Remove apmTracingEnabled config property * Add _dd.p.appsec tag in trace tags * Some tests * Set _dd.apm.enabled in root span * configure standalone if _tracingInitialized * Use dd-trace:span:start channel * Clean up * use a meta tag * hasSubscribers check * test description * Check span context has tags before using them and check if config has changed * clean up * Clean up * Clean up * clean up * Update packages/dd-trace/test/appsec/sdk/track_event.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * Update packages/dd-trace/test/appsec/standalone.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * protect sample method * Use assert instead expect * unsubscribe after test * suggestions --------- Co-authored-by: Ugaitz Urien <[email protected]> Co-authored-by: simon-id <[email protected]>
tlhunter
pushed a commit
that referenced
this pull request
Jun 20, 2024
* DD_APM_TRACING_ENABLED and span _dd.apm.enabled tag * clean up * Use MANUAL_KEEP const * Add _dd.p.appsec tag on standalone ASM events * Include apmTracingEnabled checks * Appsec Reporter tests * Appsec sdk track_event test * Use numeric value for _dd.p.appsec * Include appsec standalone config in .ts files * Clean up null and undefined values * Remove not needed config properties * standalone module * Clean up * standalone proxy test * Update packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * appsec reporter test * Use standalone singletone in vulnerability-reporter * continue applying ratelimiter on appsec standalone events * Update packages/dd-trace/src/appsec/reporter.js Co-authored-by: simon-id <[email protected]> * Add _dd.apm.enabled:0 in root spans with remote parent * Use a method to add the tag * Remove apmTracingEnabled config property * Add _dd.p.appsec tag in trace tags * Some tests * Set _dd.apm.enabled in root span * configure standalone if _tracingInitialized * Use dd-trace:span:start channel * Clean up * use a meta tag * hasSubscribers check * test description * Check span context has tags before using them and check if config has changed * clean up * Clean up * Clean up * clean up * Update packages/dd-trace/test/appsec/sdk/track_event.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * Update packages/dd-trace/test/appsec/standalone.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * protect sample method * Use assert instead expect * unsubscribe after test * suggestions --------- Co-authored-by: Ugaitz Urien <[email protected]> Co-authored-by: simon-id <[email protected]>
juan-fernandez
pushed a commit
that referenced
this pull request
Jul 10, 2024
* DD_APM_TRACING_ENABLED and span _dd.apm.enabled tag * clean up * Use MANUAL_KEEP const * Add _dd.p.appsec tag on standalone ASM events * Include apmTracingEnabled checks * Appsec Reporter tests * Appsec sdk track_event test * Use numeric value for _dd.p.appsec * Include appsec standalone config in .ts files * Clean up null and undefined values * Remove not needed config properties * standalone module * Clean up * standalone proxy test * Update packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * appsec reporter test * Use standalone singletone in vulnerability-reporter * continue applying ratelimiter on appsec standalone events * Update packages/dd-trace/src/appsec/reporter.js Co-authored-by: simon-id <[email protected]> * Add _dd.apm.enabled:0 in root spans with remote parent * Use a method to add the tag * Remove apmTracingEnabled config property * Add _dd.p.appsec tag in trace tags * Some tests * Set _dd.apm.enabled in root span * configure standalone if _tracingInitialized * Use dd-trace:span:start channel * Clean up * use a meta tag * hasSubscribers check * test description * Check span context has tags before using them and check if config has changed * clean up * Clean up * Clean up * clean up * Update packages/dd-trace/test/appsec/sdk/track_event.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * Update packages/dd-trace/test/appsec/standalone.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * protect sample method * Use assert instead expect * unsubscribe after test * suggestions --------- Co-authored-by: Ugaitz Urien <[email protected]> Co-authored-by: simon-id <[email protected]>
juan-fernandez
pushed a commit
that referenced
this pull request
Jul 10, 2024
* DD_APM_TRACING_ENABLED and span _dd.apm.enabled tag * clean up * Use MANUAL_KEEP const * Add _dd.p.appsec tag on standalone ASM events * Include apmTracingEnabled checks * Appsec Reporter tests * Appsec sdk track_event test * Use numeric value for _dd.p.appsec * Include appsec standalone config in .ts files * Clean up null and undefined values * Remove not needed config properties * standalone module * Clean up * standalone proxy test * Update packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * appsec reporter test * Use standalone singletone in vulnerability-reporter * continue applying ratelimiter on appsec standalone events * Update packages/dd-trace/src/appsec/reporter.js Co-authored-by: simon-id <[email protected]> * Add _dd.apm.enabled:0 in root spans with remote parent * Use a method to add the tag * Remove apmTracingEnabled config property * Add _dd.p.appsec tag in trace tags * Some tests * Set _dd.apm.enabled in root span * configure standalone if _tracingInitialized * Use dd-trace:span:start channel * Clean up * use a meta tag * hasSubscribers check * test description * Check span context has tags before using them and check if config has changed * clean up * Clean up * Clean up * clean up * Update packages/dd-trace/test/appsec/sdk/track_event.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * Update packages/dd-trace/test/appsec/standalone.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * protect sample method * Use assert instead expect * unsubscribe after test * suggestions --------- Co-authored-by: Ugaitz Urien <[email protected]> Co-authored-by: simon-id <[email protected]>
juan-fernandez
pushed a commit
that referenced
this pull request
Jul 11, 2024
* DD_APM_TRACING_ENABLED and span _dd.apm.enabled tag * clean up * Use MANUAL_KEEP const * Add _dd.p.appsec tag on standalone ASM events * Include apmTracingEnabled checks * Appsec Reporter tests * Appsec sdk track_event test * Use numeric value for _dd.p.appsec * Include appsec standalone config in .ts files * Clean up null and undefined values * Remove not needed config properties * standalone module * Clean up * standalone proxy test * Update packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * appsec reporter test * Use standalone singletone in vulnerability-reporter * continue applying ratelimiter on appsec standalone events * Update packages/dd-trace/src/appsec/reporter.js Co-authored-by: simon-id <[email protected]> * Add _dd.apm.enabled:0 in root spans with remote parent * Use a method to add the tag * Remove apmTracingEnabled config property * Add _dd.p.appsec tag in trace tags * Some tests * Set _dd.apm.enabled in root span * configure standalone if _tracingInitialized * Use dd-trace:span:start channel * Clean up * use a meta tag * hasSubscribers check * test description * Check span context has tags before using them and check if config has changed * clean up * Clean up * Clean up * clean up * Update packages/dd-trace/test/appsec/sdk/track_event.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * Update packages/dd-trace/test/appsec/standalone.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * protect sample method * Use assert instead expect * unsubscribe after test * suggestions --------- Co-authored-by: Ugaitz Urien <[email protected]> Co-authored-by: simon-id <[email protected]>
juan-fernandez
pushed a commit
that referenced
this pull request
Jul 11, 2024
* DD_APM_TRACING_ENABLED and span _dd.apm.enabled tag * clean up * Use MANUAL_KEEP const * Add _dd.p.appsec tag on standalone ASM events * Include apmTracingEnabled checks * Appsec Reporter tests * Appsec sdk track_event test * Use numeric value for _dd.p.appsec * Include appsec standalone config in .ts files * Clean up null and undefined values * Remove not needed config properties * standalone module * Clean up * standalone proxy test * Update packages/dd-trace/test/appsec/iast/vulnerability-reporter.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * appsec reporter test * Use standalone singletone in vulnerability-reporter * continue applying ratelimiter on appsec standalone events * Update packages/dd-trace/src/appsec/reporter.js Co-authored-by: simon-id <[email protected]> * Add _dd.apm.enabled:0 in root spans with remote parent * Use a method to add the tag * Remove apmTracingEnabled config property * Add _dd.p.appsec tag in trace tags * Some tests * Set _dd.apm.enabled in root span * configure standalone if _tracingInitialized * Use dd-trace:span:start channel * Clean up * use a meta tag * hasSubscribers check * test description * Check span context has tags before using them and check if config has changed * clean up * Clean up * Clean up * clean up * Update packages/dd-trace/test/appsec/sdk/track_event.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * Update packages/dd-trace/test/appsec/standalone.spec.js Co-authored-by: Ugaitz Urien <[email protected]> * protect sample method * Use assert instead expect * unsubscribe after test * suggestions --------- Co-authored-by: Ugaitz Urien <[email protected]> Co-authored-by: simon-id <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What does this PR do?
DD_EXPERIMENTAL_APPSEC_STANDALONE_ENABLEDenv var andexperimental.appsec.standalone.enabledconfig optiondd-trace:span:startchannel and add the_dd.apm.enabled:0tag in root spans and child spans with remote parent._dd.p.appsectrace tag whether an appsec or iast event occurs.Motivation
This is the first part to support Standalone ASM billing. We have divided the feature into two PRs in order to facilitate the review.
Note for APM reviewers:
opentracing/span.jsmodified to include thefieldsparam indd-trace:span:starteventsproxy.jsmodified to configure standalone module when initializing the tracer.Plugin Checklist
Additional Notes