jedis组件修复 #93
Closed
jedis组件修复 #93
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* Upgrade to libddwaf 1.18.0 * Call libddwaf update when update actions
Add jacoco tasks to debuggerTest to perform jacoco verification for debugger tests
ArrayIndexOutOfBoundsException was thrown because size of the args and local vars were not correctly took into account. with Long/Double type it actually takes 2 slots into the local var tables. Add a protection against index out of bounds but also adjust local var array for long or double.
…roducts-v2 [DSM] - Tag every span with the product tag if it is enabled
Fix test names to be unique
Add log file if size is not too big
What Does This Do Add instrumentation to call XSS module: javax.servlet.jsp.JspWriter#print javax.servlet.jsp.JspWriter#println javax.servlet.jsp.JspWriter#write jakarta.servlet.jsp.JspWriter#print jakarta.servlet.jsp.JspWriter#println jakarta.servlet.jsp.JspWriter#write Add smoke tests Motivation Being able to report XSS vulnerabilities in JSP
unnecessary verbose debug log
Do not process errors for exception Debugging
Add support of boolean support characters as strings
* Fix log level and message for SymDB extraction * spotless
…g#6885) What Does This Do Add new default deployed vulnerability Give support for Tomcat and Jetty default applications checking display-name tags into web.xml application file Motivation The applications supplied by default with application servers are mostly not intended to be deployed in secure production environments as they may be vulnerable, or even if they are not, their discovery by an attacker could encourage them to seek security flaws in that service.
When having a value with a Set interface creates a SetValue to hold that Set instance Allow to call size() on it if it safe list for lists and maps
…g#7019) * Change debugger-bootstrap to be an optional compileOnly dependency to dd-trace-core, otherwise it gets added multiple times in the final packaged dd-java-agent library. The build already arranges for debugger-bootstrap to be on the boot-class-path, so this is the simplest way to avoid the duplicate classes. The only additional change is to only call `DebuggerContext.handleException` when the live debugger product is enabled to make it a truly optional dependency, otherwise we get a NoClassDefFoundError in dd-trace-ot (which isn't meant to include the debugger.) * fix tests - config flag is read on each exception --------- Co-authored-by: jean-philippe bempel <jean-philippe.bempel@datadoghq.com>
The root cause of parametric tests run not completing was not found. The R&P team recommend to use timeouts and retries.
…ic-tests Add parametric tests flakiness workaround
…moke-tests Mark Gradle and Maven smoke tests as flaky
修复 w3c traceid提取异常
What Does This Do Add new asm.keep tag to be able to set PrioritySampling.USER_KEEP with SamplingMechanism.APPSEC Motivation Current implementation is using manual.keep tag to force keep spans, this is not correct as is setting a SamplingMechanism.MANUAL (4) instead of SamplingMechanism.APPSEC(5)
* fix schema sampling logic * Capture serialization in DynamicMessages for Protobuf
…tests [Dynamic Instrumentation] Rename system tests run name
…ncies-20240623 Update Gradle dependencies
Release tests will be moved as submodules of the main project later
Move to Gradle version catalog
…og#7221) What Does This Do check rate limiter once per request only waf events are rate limited Motivation We need to propagate sampling decision on appsec event, not on request end
What Does This Do Add new boolean environment variable DD_EXPERIMENTAL_APPSEC_STANDALONE_ENABLED, when it's enabled: Libraries must add the numeric tag _dd.apm.enabled:0 to the metrics map of the service entry spans. _dd.apm.enabled is assumed to be 1 when absent, so it is backward compatible. Disable the generation of APM trace metrics by disabling the computation of the APM trace metrics and the computation agent-side of the APM trace metrics by pretending it was already done by the library (the trace payload sent to the agent must contain the HTTP header Datadog-Client-Computed-Stats: yes) Introduce a new propagated span tag _dd.p.appsec: 1 providing the knowledge to downstream services that the current distributed trace is containing at least one ASM event and must inherit from the given force-keep priority indeed. Ignore the force-keep priority in the absence of this propagated _dd.p.appsec span tag Use a new TimeSampler to only allow 1 APM trace per minute as standalone ASM is only interested in the traces containing ASM events. But the service catalog and the billing need a continuous ingestion of at least at 1 trace per minute to consider a service as being live and billable. In the absence of ASM events, no APM traces must be sent, so we need to let some regular APM traces go through, even in the absence of ASM events. If ASM standalone billing is enabled and here is no ASM events (No _dd.p.appsec) propagation should be stopped to downstream services Motivation ASM is a natural continuation of APM, leveraging concepts such as traces to build threat monitoring protection capabilities, or on telemetry to build vulnerability management. Though, some customers (primarily infrastructure-monitoring-only customers) only want ASM. We want to make this possible, still internally leveraging APM and provide the same service to ASM customers, while allowing them to not use APM
…#7243) clear lastParentId
…test (DataDog#7240) Add logs to tainted map 'garbage-collected entries are purged' flaky test
|
Hi! 👋 Looks like you updated a Git Submodule.
|
|
liurui seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account. You have signed the CLA already but the status is still pending? Let us recheck it. |
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: lrwh The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What Does This Do
Motivation
Additional Notes
Jira ticket: [PROJ-IDENT]