search

Rurusetto / rurusetto

A wiki that contain all osu! rulesets
http://rulesets.info
MIT License
40 stars 12 forks source link

Update ddtrace requirement from ~=2.7.0 to ~=2.8.3 #593

Closed dependabot[bot] closed 4 months ago

dependabot[bot] commented 5 months ago

Updates the requirements on ddtrace to permit the latest version.

Release notes

Sourced from ddtrace's releases.

2.8.3

Bug Fixes

  • Code Security: This fix solves an issue with fstrings where formatting was not applied to int parameters.
  • logging: This fix resolves an issue where tracer.get_log_correlation_context() incorrectly returned a 128-bit trace_id even with DD_TRACE_128_BIT_TRACEID_LOGGING_ENABLED set to False (the default), breaking log correlation. It now returns a 64-bit trace_id.
  • profiling: Fixes a defect where the deprecated path to the Datadog span type was used by the profiler.
Changelog

Sourced from ddtrace's changelog.

2.8.3

Bug Fixes

  • Code Security: This fix solves an issue with fstrings where formatting was not applied to int parameters
  • logging: This fix resolves an issue where tracer.get_log_correlation_context() incorrectly returned a 128-bit trace_id even with DD_TRACE_128_BIT_TRACEID_LOGGING_ENABLED set to False (the default), breaking log correlation. It now returns a 64-bit trace_id.
  • profiling: Fixes a defect where the deprecated path to the Datadog span type was used by the profiler.

2.6.12

Bug Fixes

  • Code Security: This fix solves an issue with fstrings where formatting was not applied to int parameters

2.8.2

Bug Fixes

  • tracing: This fix resolves an issue where sampling rules were not matching correctly on float values that had a 0 decimal value. Sampling rules now evaluate such values as integers.

  • langchain: This fix resolves an issue where the LangChain integration always attempted to patch LangChain partner
    libraries, even if they were not available.

  • langchain: This fix resolves an issue where tracing Chain.invoke() instead of Chain.__call__() resulted in the an ArgumentError due to an argument name change for inputs between the two methods.

  • langchain: This fix adds error handling for checking if a traced LLM or chat model is an OpenAI instance, as the langchain_community package does not allow automatic submodule importing.

  • internal: This fix resolves an error regarding the remote config module with payloads missing a lib_config entry

  • profiling: fix a bug that caused the HTTP exporter to crash when attempting to serialize tags.

  • grpc: Resolves segfaults raised when grpc.aio interceptors are registered

  • Code Security: Ensure that when tainting the headers of a Flask application, iterating over the headers (i.e., with headers.items()) does not duplicate them.

2.7.9

... (truncated)

Commits
  • cfcc77a refactor: compress the packages index [backport #9047 to 2.8] (#9076)
  • 336afa8 chore(rcm): include more details with invalid payload [backport 2.8] (#9105)
  • f268bbc fix(iast): fstring int formatting [backport 2.8] (#9107)
  • 7e34237 ci: native arm64 build [backport 2.8] (#9101)
  • d85fcbd ci: add timeout to django framework tests [backport 2.8] (#9081)
  • dfc5939 chore(rcm): fix agent payload field default value [backport 2.8] (#9090)
  • a1f1aa9 fix(logging): make get_log_correlation_context return 64-bit trace id [backpo...
  • ef8ea1d fix(profiling): fix deprecated ddtrace usage [backport 2.8] (#9079)
  • 7cfbb03 fix(iast): fix api_set_ranges return type [backport 2.8] (#9072)
  • 7de9217 fix(sampling): sample floats with zero decimal [backport 2.8] (#9038)
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 4 months ago

Superseded by #596.