DataDog/dd-trace-js v2.35.0

2.35.0

on GitHub

Features

• waf: Support RC custom rules (#3126)
• waf: Update blocking page and status from RC (#3195)
• iast: Detect SSRF vulnerabilities (#3115)
• iast: Detect Insecure cookie vulnerabilities (#3184)

Improvements

• profiling: Use process as default strategy for oom export (#3136)
• tracer: Service Naming API (#3161, #2941, #2961)
• tracer: Cache integrations - Service Naming (#3056)
• tracer: More beautiful debug logs (#3171)
• tracer: postgres: DBM full service fallback w/ prepared statements (#3186)
• tracer: Make HTTP clients fit in the plugin hierarchy (#3178)
• ci-visibility: Extract code coverage from cypress (#3159)
• ci-visibility: Change gitlab's pipeline URL extraction (#3183)
• ci-visibility: Test skipping logic for cypress (#3167)
• waf: Update AppSec blocking templates (#3181)
• waf: Update AppSec rules to 1.7.1 (#3185)
• iast: Detect SQL injection with sequelize (#3154)

Bug Fixes

• iast: Fix evidence redaction (#3160)
• iast: Fix path traversal vulnerability detection on close file (#3172)
• ci-visibility: Fix cucumber parallel mode (#3156)
• ci-visibility: Remove git.properties error log (#3179)
• ci-visibility: Fix playwright@1.30.0 (#3180)
• waf: Fix ASM_DD batch update (#3165)