Prelude
Application Security Management (ASM) has added Django support for blocking malicious users using one click within Datadog.
Note
One click blocking for ASM is currently in beta.
Deprecation Notes
- dbapi:
ddtrace.ext.mongo.ROWSis deprecated. Useddtrace.ext.db.ROWCOUNTinstead.
New Features
- starlette: Add http.route tag to
starlette.requestspans. - fastapi: Add http.route tag to
fastapi.requestspans. - ASM: Add support for one click blocking of user ids with the Django framework using Remote Configuration Management.
- ASM: This introduces the "suspicious request blocking" feature for Django and Flask.
Known Issues
- ASM: There is a known issue with the flask support for any rule blocking on
server.request.path_params. The request will be correctly blocked but the client application will be receiving and processing the suspicious request. Possible workaround: useserver.request.uri.rawinstead, if you want the request to be blocked before entering the flask application.
Bug Fixes
-
dbapi: The dbapi integration no longer assumes that a cursor object will have a rowcount as not all database drivers implement rowcount.
-
elasticsearch: Omit large
elasticsearch.bodytag values that are
greater than 25000 characters to prevent traces from being too large to send. -
aws_lambda: This fix resolves an issue where existing signals were wrapped multiple times.
-
profiling: Handles a race condition on process shutdown that would cause an error about a module not being started to occasionally appear in the logs.
-
Fix for KeyError exceptions when when ASM_FEATURES (1-click activation) disabled all ASM products. This could cause 1-click activation to work incorrectly in some cases.