Skip to content

ci(iast): fix flaky test #15749

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
avara1986 merged 1 commit into from
Dec 22, 2025
Merged

ci(iast): fix flaky test #15749

avara1986 merged 1 commit into from
Dec 22, 2025

Conversation

@avara1986
Copy link
Member

@avara1986 avara1986 commented Dec 22, 2025

The urlparse function was imported inside the async function view_iast_ssrf_secure, which caused a race condition in multiprocess mode where:

  • The IAST validator wrapper for urlparse is set up at module startup
  • But importing inside a function can bypass or inconsistently apply the wrapper
  • This caused the secure mark to not be applied reliably, leading to false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

@avara1986 avara1986 added the changelog/no-changelog A changelog entry is not required for this PR. label Dec 22, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Dec 22, 2025

CODEOWNERS have been resolved as:

ddtrace/appsec/_iast/taint_sinks/_base.py                               @DataDog/asm-python
tests/appsec/integrations/fastapi_tests/app.py                          @DataDog/asm-python

github-advanced-security[bot]
github-advanced-security bot found potential problems Dec 22, 2025
View reviewed changes
@avara1986 avara1986 marked this pull request as ready for review December 22, 2025 14:29
@avara1986 avara1986 requested a review from a team as a code owner December 22, 2025 14:29
@pr-commenter
Copy link

pr-commenter bot commented Dec 22, 2025

Performance SLOs

Comparing candidate avara1986/APPSEC-60297_reduce_flakyness (341f33e) with baseline main (f8b72bc)

📈 Performance Regressions (3 suites)
📈 iastaspects - 118/118

✅ add_aspect

Time: ✅ 17.898µs (SLO: <20.000µs 📉 -10.5%) vs baseline: 📈 +20.2%

Memory: ✅ 42.939MB (SLO: <43.250MB 🟡 -0.7%) vs baseline: +4.6%

✅ add_inplace_aspect

Time: ✅ 14.846µs (SLO: <20.000µs 📉 -25.8%) vs baseline: -0.3%

Memory: ✅ 42.979MB (SLO: <43.250MB 🟡 -0.6%) vs baseline: +4.7%

✅ add_inplace_noaspect

Time: ✅ 0.339µs (SLO: <10.000µs 📉 -96.6%) vs baseline: +0.7%

Memory: ✅ 42.998MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +5.0%

✅ add_noaspect

Time: ✅ 0.548µs (SLO: <10.000µs 📉 -94.5%) vs baseline: +1.0%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ bytearray_aspect

Time: ✅ 17.958µs (SLO: <30.000µs 📉 -40.1%) vs baseline: ~same

Memory: ✅ 43.057MB (SLO: <43.500MB 🟡 -1.0%) vs baseline: +5.1%

✅ bytearray_extend_aspect

Time: ✅ 23.902µs (SLO: <30.000µs 📉 -20.3%) vs baseline: ~same

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ bytearray_extend_noaspect

Time: ✅ 2.746µs (SLO: <10.000µs 📉 -72.5%) vs baseline: ~same

Memory: ✅ 42.920MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +5.0%

✅ bytearray_noaspect

Time: ✅ 1.468µs (SLO: <10.000µs 📉 -85.3%) vs baseline: -0.1%

Memory: ✅ 42.959MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.7%

✅ bytes_aspect

Time: ✅ 16.633µs (SLO: <20.000µs 📉 -16.8%) vs baseline: -0.1%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.8%

✅ bytes_noaspect

Time: ✅ 1.425µs (SLO: <10.000µs 📉 -85.8%) vs baseline: +1.4%

Memory: ✅ 43.018MB (SLO: <43.500MB 🟡 -1.1%) vs baseline: +5.0%

✅ bytesio_aspect

Time: ✅ 55.366µs (SLO: <70.000µs 📉 -20.9%) vs baseline: -0.2%

Memory: ✅ 42.998MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +5.0%

✅ bytesio_noaspect

Time: ✅ 3.288µs (SLO: <10.000µs 📉 -67.1%) vs baseline: -0.3%

Memory: ✅ 43.037MB (SLO: <43.500MB 🟡 -1.1%) vs baseline: +4.8%

✅ capitalize_aspect

Time: ✅ 14.688µs (SLO: <20.000µs 📉 -26.6%) vs baseline: +0.1%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.8%

✅ capitalize_noaspect

Time: ✅ 2.584µs (SLO: <10.000µs 📉 -74.2%) vs baseline: -1.3%

Memory: ✅ 42.920MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.6%

✅ casefold_aspect

Time: ✅ 14.657µs (SLO: <20.000µs 📉 -26.7%) vs baseline: +0.1%

Memory: ✅ 42.959MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ casefold_noaspect

Time: ✅ 3.157µs (SLO: <10.000µs 📉 -68.4%) vs baseline: -0.9%

Memory: ✅ 42.939MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.7%

✅ decode_aspect

Time: ✅ 15.496µs (SLO: <30.000µs 📉 -48.3%) vs baseline: -0.9%

Memory: ✅ 43.096MB (SLO: <43.500MB 🟡 -0.9%) vs baseline: +5.2%

✅ decode_noaspect

Time: ✅ 1.626µs (SLO: <10.000µs 📉 -83.7%) vs baseline: +1.1%

Memory: ✅ 43.116MB (SLO: <43.500MB 🟡 -0.9%) vs baseline: +5.1%

✅ encode_aspect

Time: ✅ 18.165µs (SLO: <30.000µs 📉 -39.4%) vs baseline: 📈 +22.7%

Memory: ✅ 42.998MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.8%

✅ encode_noaspect

Time: ✅ 1.503µs (SLO: <10.000µs 📉 -85.0%) vs baseline: -0.9%

Memory: ✅ 43.037MB (SLO: <43.500MB 🟡 -1.1%) vs baseline: +5.0%

✅ format_aspect

Time: ✅ 170.949µs (SLO: <200.000µs 📉 -14.5%) vs baseline: -0.1%

Memory: ✅ 43.057MB (SLO: <43.250MB 🟡 -0.4%) vs baseline: +4.6%

✅ format_map_aspect

Time: ✅ 191.015µs (SLO: <200.000µs -4.5%) vs baseline: ~same

Memory: ✅ 43.155MB (SLO: <43.500MB 🟡 -0.8%) vs baseline: +4.9%

✅ format_map_noaspect

Time: ✅ 3.793µs (SLO: <10.000µs 📉 -62.1%) vs baseline: ~same

Memory: ✅ 42.939MB (SLO: <43.250MB 🟡 -0.7%) vs baseline: +4.7%

✅ format_noaspect

Time: ✅ 3.182µs (SLO: <10.000µs 📉 -68.2%) vs baseline: -0.2%

Memory: ✅ 42.959MB (SLO: <43.250MB 🟡 -0.7%) vs baseline: +4.5%

✅ index_aspect

Time: ✅ 15.272µs (SLO: <20.000µs 📉 -23.6%) vs baseline: -0.5%

Memory: ✅ 42.959MB (SLO: <43.250MB 🟡 -0.7%) vs baseline: +4.9%

✅ index_noaspect

Time: ✅ 0.466µs (SLO: <10.000µs 📉 -95.3%) vs baseline: -0.4%

Memory: ✅ 43.077MB (SLO: <43.500MB 🟡 -1.0%) vs baseline: +5.0%

✅ join_aspect

Time: ✅ 17.079µs (SLO: <20.000µs 📉 -14.6%) vs baseline: -0.5%

Memory: ✅ 42.900MB (SLO: <43.500MB 🟡 -1.4%) vs baseline: +4.7%

✅ join_noaspect

Time: ✅ 1.544µs (SLO: <10.000µs 📉 -84.6%) vs baseline: -1.9%

Memory: ✅ 42.959MB (SLO: <43.250MB 🟡 -0.7%) vs baseline: +4.8%

✅ ljust_aspect

Time: ✅ 20.693µs (SLO: <30.000µs 📉 -31.0%) vs baseline: -0.6%

Memory: ✅ 43.096MB (SLO: <43.250MB 🟡 -0.4%) vs baseline: +5.0%

✅ ljust_noaspect

Time: ✅ 2.723µs (SLO: <10.000µs 📉 -72.8%) vs baseline: ~same

Memory: ✅ 43.018MB (SLO: <43.250MB 🟡 -0.5%) vs baseline: +5.0%

✅ lower_aspect

Time: ✅ 17.906µs (SLO: <30.000µs 📉 -40.3%) vs baseline: -0.1%

Memory: ✅ 42.959MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +5.0%

✅ lower_noaspect

Time: ✅ 2.427µs (SLO: <10.000µs 📉 -75.7%) vs baseline: -0.5%

Memory: ✅ 42.979MB (SLO: <43.250MB 🟡 -0.6%) vs baseline: +4.9%

✅ lstrip_aspect

Time: ✅ 17.624µs (SLO: <20.000µs 📉 -11.9%) vs baseline: -0.5%

Memory: ✅ 42.959MB (SLO: <43.250MB 🟡 -0.7%) vs baseline: +4.8%

✅ lstrip_noaspect

Time: ✅ 1.859µs (SLO: <10.000µs 📉 -81.4%) vs baseline: ~same

Memory: ✅ 42.998MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ modulo_aspect

Time: ✅ 165.851µs (SLO: <200.000µs 📉 -17.1%) vs baseline: -0.3%

Memory: ✅ 43.155MB (SLO: <43.500MB 🟡 -0.8%) vs baseline: +5.1%

✅ modulo_aspect_for_bytearray_bytearray

Time: ✅ 179.848µs (SLO: <200.000µs 📉 -10.1%) vs baseline: +3.1%

Memory: ✅ 43.155MB (SLO: <43.500MB 🟡 -0.8%) vs baseline: +4.9%

✅ modulo_aspect_for_bytes

Time: ✅ 169.311µs (SLO: <200.000µs 📉 -15.3%) vs baseline: ~same

Memory: ✅ 43.155MB (SLO: <43.500MB 🟡 -0.8%) vs baseline: +5.0%

✅ modulo_aspect_for_bytes_bytearray

Time: ✅ 172.669µs (SLO: <200.000µs 📉 -13.7%) vs baseline: +0.6%

Memory: ✅ 43.116MB (SLO: <43.500MB 🟡 -0.9%) vs baseline: +4.7%

✅ modulo_noaspect

Time: ✅ 3.660µs (SLO: <10.000µs 📉 -63.4%) vs baseline: -0.4%

Memory: ✅ 42.959MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ replace_aspect

Time: ✅ 211.511µs (SLO: <300.000µs 📉 -29.5%) vs baseline: -0.1%

Memory: ✅ 43.155MB (SLO: <44.000MB 🟡 -1.9%) vs baseline: +4.8%

✅ replace_noaspect

Time: ✅ 2.906µs (SLO: <10.000µs 📉 -70.9%) vs baseline: -0.2%

Memory: ✅ 42.959MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.7%

✅ repr_aspect

Time: ✅ 1.412µs (SLO: <10.000µs 📉 -85.9%) vs baseline: -0.7%

Memory: ✅ 42.880MB (SLO: <43.500MB 🟡 -1.4%) vs baseline: +4.6%

✅ repr_noaspect

Time: ✅ 0.523µs (SLO: <10.000µs 📉 -94.8%) vs baseline: -0.4%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ rstrip_aspect

Time: ✅ 19.010µs (SLO: <30.000µs 📉 -36.6%) vs baseline: +0.2%

Memory: ✅ 43.037MB (SLO: <43.500MB 🟡 -1.1%) vs baseline: +4.8%

✅ rstrip_noaspect

Time: ✅ 2.026µs (SLO: <10.000µs 📉 -79.7%) vs baseline: +4.7%

Memory: ✅ 43.057MB (SLO: <43.500MB 🟡 -1.0%) vs baseline: +5.0%

✅ slice_aspect

Time: ✅ 15.855µs (SLO: <20.000µs 📉 -20.7%) vs baseline: ~same

Memory: ✅ 42.939MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.9%

✅ slice_noaspect

Time: ✅ 0.597µs (SLO: <10.000µs 📉 -94.0%) vs baseline: -0.5%

Memory: ✅ 42.920MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.7%

✅ stringio_aspect

Time: ✅ 54.028µs (SLO: <80.000µs 📉 -32.5%) vs baseline: +0.5%

Memory: ✅ 42.939MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.7%

✅ stringio_noaspect

Time: ✅ 3.677µs (SLO: <10.000µs 📉 -63.2%) vs baseline: +0.6%

Memory: ✅ 42.939MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.9%

✅ strip_aspect

Time: ✅ 17.587µs (SLO: <20.000µs 📉 -12.1%) vs baseline: -0.4%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.8%

✅ strip_noaspect

Time: ✅ 1.852µs (SLO: <10.000µs 📉 -81.5%) vs baseline: -1.6%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +5.0%

✅ swapcase_aspect

Time: ✅ 18.404µs (SLO: <30.000µs 📉 -38.7%) vs baseline: -0.2%

Memory: ✅ 42.920MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.7%

✅ swapcase_noaspect

Time: ✅ 2.841µs (SLO: <10.000µs 📉 -71.6%) vs baseline: +0.5%

Memory: ✅ 42.979MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.7%

✅ title_aspect

Time: ✅ 18.241µs (SLO: <30.000µs 📉 -39.2%) vs baseline: -0.3%

Memory: ✅ 42.920MB (SLO: <43.000MB 🟡 -0.2%) vs baseline: +4.7%

✅ title_noaspect

Time: ✅ 2.690µs (SLO: <10.000µs 📉 -73.1%) vs baseline: +0.2%

Memory: ✅ 43.018MB (SLO: <43.500MB 🟡 -1.1%) vs baseline: +4.8%

✅ translate_aspect

Time: ✅ 24.202µs (SLO: <30.000µs 📉 -19.3%) vs baseline: 📈 +18.8%

Memory: ✅ 42.998MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.9%

✅ translate_noaspect

Time: ✅ 4.319µs (SLO: <10.000µs 📉 -56.8%) vs baseline: -0.2%

Memory: ✅ 42.939MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.6%

✅ upper_aspect

Time: ✅ 17.916µs (SLO: <30.000µs 📉 -40.3%) vs baseline: -0.5%

Memory: ✅ 42.959MB (SLO: <43.500MB 🟡 -1.2%) vs baseline: +4.5%

✅ upper_noaspect

Time: ✅ 2.446µs (SLO: <10.000µs 📉 -75.5%) vs baseline: -0.3%

Memory: ✅ 42.939MB (SLO: <43.500MB 🟡 -1.3%) vs baseline: +4.7%

📈 iastaspectsospath - 24/24

✅ ospathbasename_aspect

Time: ✅ 5.169µs (SLO: <10.000µs 📉 -48.3%) vs baseline: 📈 +21.5%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.7%

✅ ospathbasename_noaspect

Time: ✅ 4.266µs (SLO: <10.000µs 📉 -57.3%) vs baseline: -1.0%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +4.9%

✅ ospathjoin_aspect

Time: ✅ 6.272µs (SLO: <10.000µs 📉 -37.3%) vs baseline: -0.2%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +4.8%

✅ ospathjoin_noaspect

Time: ✅ 6.308µs (SLO: <10.000µs 📉 -36.9%) vs baseline: +0.1%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +4.8%

✅ ospathnormcase_aspect

Time: ✅ 3.565µs (SLO: <10.000µs 📉 -64.3%) vs baseline: ~same

Memory: ✅ 41.445MB (SLO: <43.500MB -4.7%) vs baseline: +5.1%

✅ ospathnormcase_noaspect

Time: ✅ 3.578µs (SLO: <10.000µs 📉 -64.2%) vs baseline: -0.7%

Memory: ✅ 41.465MB (SLO: <43.500MB -4.7%) vs baseline: +4.8%

✅ ospathsplit_aspect

Time: ✅ 4.886µs (SLO: <10.000µs 📉 -51.1%) vs baseline: -1.0%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +5.0%

✅ ospathsplit_noaspect

Time: ✅ 4.951µs (SLO: <10.000µs 📉 -50.5%) vs baseline: -1.3%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +5.1%

✅ ospathsplitdrive_aspect

Time: ✅ 3.736µs (SLO: <10.000µs 📉 -62.6%) vs baseline: -0.3%

Memory: ✅ 41.366MB (SLO: <43.500MB -4.9%) vs baseline: +4.8%

✅ ospathsplitdrive_noaspect

Time: ✅ 0.744µs (SLO: <10.000µs 📉 -92.6%) vs baseline: +0.4%

Memory: ✅ 41.406MB (SLO: <43.500MB -4.8%) vs baseline: +4.9%

✅ ospathsplitext_aspect

Time: ✅ 4.636µs (SLO: <10.000µs 📉 -53.6%) vs baseline: +0.1%

Memory: ✅ 41.445MB (SLO: <43.500MB -4.7%) vs baseline: +5.0%

✅ ospathsplitext_noaspect

Time: ✅ 4.612µs (SLO: <10.000µs 📉 -53.9%) vs baseline: -0.2%

Memory: ✅ 41.406MB (SLO: <43.500MB -4.8%) vs baseline: +5.0%

📈 telemetryaddmetric - 30/30

✅ 1-count-metric-1-times

Time: ✅ 3.415µs (SLO: <20.000µs 📉 -82.9%) vs baseline: 📈 +15.0%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.8%

✅ 1-count-metrics-100-times

Time: ✅ 201.049µs (SLO: <220.000µs -8.6%) vs baseline: +0.4%

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.4%

✅ 1-distribution-metric-1-times

Time: ✅ 3.321µs (SLO: <20.000µs 📉 -83.4%) vs baseline: ~same

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.9%

✅ 1-distribution-metrics-100-times

Time: ✅ 216.143µs (SLO: <230.000µs -6.0%) vs baseline: +0.9%

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ 1-gauge-metric-1-times

Time: ✅ 2.183µs (SLO: <20.000µs 📉 -89.1%) vs baseline: +0.1%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.0%

✅ 1-gauge-metrics-100-times

Time: ✅ 136.404µs (SLO: <150.000µs -9.1%) vs baseline: -0.9%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.9%

✅ 1-rate-metric-1-times

Time: ✅ 3.139µs (SLO: <20.000µs 📉 -84.3%) vs baseline: -0.1%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.5%

✅ 1-rate-metrics-100-times

Time: ✅ 213.410µs (SLO: <250.000µs 📉 -14.6%) vs baseline: +0.4%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.9%

✅ 100-count-metrics-100-times

Time: ✅ 19.904ms (SLO: <22.000ms -9.5%) vs baseline: ~same

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.0%

✅ 100-distribution-metrics-100-times

Time: ✅ 2.225ms (SLO: <2.550ms 📉 -12.7%) vs baseline: -2.3%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.1%

✅ 100-gauge-metrics-100-times

Time: ✅ 1.403ms (SLO: <1.550ms -9.5%) vs baseline: +0.7%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.6%

✅ 100-rate-metrics-100-times

Time: ✅ 2.177ms (SLO: <2.550ms 📉 -14.6%) vs baseline: ~same

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.5%

✅ flush-1-metric

Time: ✅ 4.657µs (SLO: <20.000µs 📉 -76.7%) vs baseline: +0.4%

Memory: ✅ 35.173MB (SLO: <35.500MB 🟡 -0.9%) vs baseline: +4.7%

✅ flush-100-metrics

Time: ✅ 173.419µs (SLO: <250.000µs 📉 -30.6%) vs baseline: ~same

Memory: ✅ 35.252MB (SLO: <35.500MB 🟡 -0.7%) vs baseline: +4.7%

✅ flush-1000-metrics

Time: ✅ 2.158ms (SLO: <2.500ms 📉 -13.7%) vs baseline: -0.5%

Memory: ✅ 36.137MB (SLO: <36.500MB 🟡 -1.0%) vs baseline: +5.0%

🟡 Near SLO Breach (15 suites)
🟡 coreapiscenario - 10/10 (1 unstable)

⚠️ context_with_data_listeners

Time: ⚠️ 13.297µs (SLO: <20.000µs 📉 -33.5%) vs baseline: +0.8%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.7%

✅ context_with_data_no_listeners

Time: ✅ 3.268µs (SLO: <10.000µs 📉 -67.3%) vs baseline: +0.5%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +4.6%

✅ get_item_exists

Time: ✅ 0.577µs (SLO: <10.000µs 📉 -94.2%) vs baseline: +0.2%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.9%

✅ get_item_missing

Time: ✅ 0.639µs (SLO: <10.000µs 📉 -93.6%) vs baseline: +0.5%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.3%

✅ set_item

Time: ✅ 24.118µs (SLO: <30.000µs 📉 -19.6%) vs baseline: +0.2%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.0%

🟡 djangosimple - 30/30

✅ appsec

Time: ✅ 19.503ms (SLO: <22.300ms 📉 -12.5%) vs baseline: -0.2%

Memory: ✅ 68.278MB (SLO: <70.500MB -3.2%) vs baseline: +4.9%

✅ exception-replay-enabled

Time: ✅ 1.361ms (SLO: <1.450ms -6.1%) vs baseline: -0.2%

Memory: ✅ 66.259MB (SLO: <67.500MB 🟡 -1.8%) vs baseline: +4.7%

✅ iast

Time: ✅ 19.535ms (SLO: <22.250ms 📉 -12.2%) vs baseline: -0.4%

Memory: ✅ 68.246MB (SLO: <70.000MB -2.5%) vs baseline: +4.9%

✅ profiler

Time: ✅ 14.757ms (SLO: <16.550ms 📉 -10.8%) vs baseline: -0.8%

Memory: ✅ 56.068MB (SLO: <57.500MB -2.5%) vs baseline: +4.7%

✅ resource-renaming

Time: ✅ 19.472ms (SLO: <21.750ms 📉 -10.5%) vs baseline: ~same

Memory: ✅ 68.282MB (SLO: <70.500MB -3.1%) vs baseline: +4.7%

✅ span-code-origin

Time: ✅ 19.926ms (SLO: <28.200ms 📉 -29.3%) vs baseline: +1.1%

Memory: ✅ 68.363MB (SLO: <71.000MB -3.7%) vs baseline: +4.9%

✅ tracer

Time: ✅ 19.510ms (SLO: <21.750ms 📉 -10.3%) vs baseline: -0.3%

Memory: ✅ 68.277MB (SLO: <70.000MB -2.5%) vs baseline: +5.0%

✅ tracer-and-profiler

Time: ✅ 20.816ms (SLO: <23.500ms 📉 -11.4%) vs baseline: -0.2%

Memory: ✅ 69.373MB (SLO: <71.000MB -2.3%) vs baseline: +4.6%

✅ tracer-dont-create-db-spans

Time: ✅ 19.616ms (SLO: <21.500ms -8.8%) vs baseline: -0.1%

Memory: ✅ 68.429MB (SLO: <70.000MB -2.2%) vs baseline: +5.1%

✅ tracer-minimal

Time: ✅ 16.730ms (SLO: <17.500ms -4.4%) vs baseline: -0.5%

Memory: ✅ 68.105MB (SLO: <70.000MB -2.7%) vs baseline: +4.8%

✅ tracer-native

Time: ✅ 19.441ms (SLO: <21.750ms 📉 -10.6%) vs baseline: -0.3%

Memory: ✅ 68.250MB (SLO: <72.500MB -5.9%) vs baseline: +4.9%

✅ tracer-no-caches

Time: ✅ 17.572ms (SLO: <19.650ms 📉 -10.6%) vs baseline: -0.2%

Memory: ✅ 68.275MB (SLO: <70.000MB -2.5%) vs baseline: +5.1%

✅ tracer-no-databases

Time: ✅ 19.160ms (SLO: <20.100ms -4.7%) vs baseline: ~same

Memory: ✅ 68.026MB (SLO: <70.000MB -2.8%) vs baseline: +4.7%

✅ tracer-no-middleware

Time: ✅ 19.325ms (SLO: <21.500ms 📉 -10.1%) vs baseline: ~same

Memory: ✅ 68.359MB (SLO: <70.000MB -2.3%) vs baseline: +5.1%

✅ tracer-no-templates

Time: ✅ 19.577ms (SLO: <22.000ms 📉 -11.0%) vs baseline: +1.1%

Memory: ✅ 68.212MB (SLO: <70.500MB -3.2%) vs baseline: +4.9%

🟡 errortrackingdjangosimple - 6/6

✅ errortracking-enabled-all

Time: ✅ 16.314ms (SLO: <19.850ms 📉 -17.8%) vs baseline: -0.3%

Memory: ✅ 69.894MB (SLO: <70.000MB 🟡 -0.2%) vs baseline: +4.8%

✅ errortracking-enabled-user

Time: ✅ 16.303ms (SLO: <19.400ms 📉 -16.0%) vs baseline: ~same

Memory: ✅ 69.815MB (SLO: <70.000MB 🟡 -0.3%) vs baseline: +4.7%

✅ tracer-enabled

Time: ✅ 16.264ms (SLO: <19.450ms 📉 -16.4%) vs baseline: -0.2%

Memory: ✅ 69.855MB (SLO: <70.000MB 🟡 -0.2%) vs baseline: +4.9%

🟡 errortrackingflasksqli - 6/6

✅ errortracking-enabled-all

Time: ✅ 2.065ms (SLO: <2.300ms 📉 -10.2%) vs baseline: ~same

Memory: ✅ 55.876MB (SLO: <56.500MB 🟡 -1.1%) vs baseline: +4.8%

✅ errortracking-enabled-user

Time: ✅ 2.075ms (SLO: <2.250ms -7.8%) vs baseline: +0.1%

Memory: ✅ 55.935MB (SLO: <56.500MB 🟡 -1.0%) vs baseline: +4.8%

✅ tracer-enabled

Time: ✅ 2.065ms (SLO: <2.300ms 📉 -10.2%) vs baseline: ~same

Memory: ✅ 55.856MB (SLO: <56.500MB 🟡 -1.1%) vs baseline: +4.7%

🟡 flasksimple - 18/18

✅ appsec-get

Time: ✅ 3.381ms (SLO: <4.750ms 📉 -28.8%) vs baseline: ~same

Memory: ✅ 55.958MB (SLO: <66.500MB 📉 -15.9%) vs baseline: +4.9%

✅ appsec-post

Time: ✅ 2.856ms (SLO: <6.750ms 📉 -57.7%) vs baseline: ~same

Memory: ✅ 55.884MB (SLO: <66.500MB 📉 -16.0%) vs baseline: +4.8%

✅ appsec-telemetry

Time: ✅ 3.380ms (SLO: <4.750ms 📉 -28.8%) vs baseline: +0.6%

Memory: ✅ 55.799MB (SLO: <66.500MB 📉 -16.1%) vs baseline: +4.8%

✅ debugger

Time: ✅ 1.867ms (SLO: <2.000ms -6.7%) vs baseline: -0.2%

Memory: ✅ 47.818MB (SLO: <49.500MB -3.4%) vs baseline: +4.9%

✅ iast-get

Time: ✅ 1.856ms (SLO: <2.000ms -7.2%) vs baseline: ~same

Memory: ✅ 44.808MB (SLO: <49.000MB -8.6%) vs baseline: +4.8%

✅ profiler

Time: ✅ 1.863ms (SLO: <2.100ms 📉 -11.3%) vs baseline: +0.2%

Memory: ✅ 48.661MB (SLO: <50.000MB -2.7%) vs baseline: +4.7%

✅ resource-renaming

Time: ✅ 3.362ms (SLO: <3.650ms -7.9%) vs baseline: -0.2%

Memory: ✅ 55.953MB (SLO: <56.000MB 🟡 ~same) vs baseline: +5.1%

✅ tracer

Time: ✅ 3.370ms (SLO: <3.650ms -7.7%) vs baseline: ~same

Memory: ✅ 55.896MB (SLO: <56.500MB 🟡 -1.1%) vs baseline: +4.9%

✅ tracer-native

Time: ✅ 3.362ms (SLO: <3.650ms -7.9%) vs baseline: -0.4%

Memory: ✅ 55.891MB (SLO: <60.000MB -6.8%) vs baseline: +4.7%

🟡 flasksqli - 6/6

✅ appsec-enabled

Time: ✅ 2.056ms (SLO: <4.200ms 📉 -51.0%) vs baseline: -0.6%

Memory: ✅ 55.837MB (SLO: <66.000MB 📉 -15.4%) vs baseline: +4.7%

✅ iast-enabled

Time: ✅ 2.067ms (SLO: <2.800ms 📉 -26.2%) vs baseline: ~same

Memory: ✅ 55.896MB (SLO: <62.500MB 📉 -10.6%) vs baseline: +4.8%

✅ tracer-enabled

Time: ✅ 2.060ms (SLO: <2.250ms -8.4%) vs baseline: +0.2%

Memory: ✅ 55.935MB (SLO: <56.500MB 🟡 -1.0%) vs baseline: +4.9%

🟡 httppropagationextract - 60/60

✅ all_styles_all_headers

Time: ✅ 81.192µs (SLO: <100.000µs 📉 -18.8%) vs baseline: -0.5%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.7%

✅ b3_headers

Time: ✅ 14.366µs (SLO: <20.000µs 📉 -28.2%) vs baseline: -0.2%

Memory: ✅ 35.055MB (SLO: <35.500MB 🟡 -1.3%) vs baseline: +5.2%

✅ b3_single_headers

Time: ✅ 13.456µs (SLO: <20.000µs 📉 -32.7%) vs baseline: -0.5%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.4%

✅ datadog_tracecontext_tracestate_not_propagated_on_trace_id_no_match

Time: ✅ 63.926µs (SLO: <80.000µs 📉 -20.1%) vs baseline: -0.5%

Memory: ✅ 34.977MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.6%

✅ datadog_tracecontext_tracestate_propagated_on_trace_id_match

Time: ✅ 66.117µs (SLO: <80.000µs 📉 -17.4%) vs baseline: -0.2%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.1%

✅ empty_headers

Time: ✅ 1.625µs (SLO: <10.000µs 📉 -83.8%) vs baseline: +1.2%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.6%

✅ full_t_id_datadog_headers

Time: ✅ 22.796µs (SLO: <30.000µs 📉 -24.0%) vs baseline: ~same

Memory: ✅ 34.977MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.9%

✅ invalid_priority_header

Time: ✅ 6.539µs (SLO: <10.000µs 📉 -34.6%) vs baseline: ~same

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.7%

✅ invalid_span_id_header

Time: ✅ 6.478µs (SLO: <10.000µs 📉 -35.2%) vs baseline: -0.2%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.0%

✅ invalid_tags_header

Time: ✅ 6.470µs (SLO: <10.000µs 📉 -35.3%) vs baseline: -0.2%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.7%

✅ invalid_trace_id_header

Time: ✅ 6.541µs (SLO: <10.000µs 📉 -34.6%) vs baseline: ~same

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +5.1%

✅ large_header_no_matches

Time: ✅ 27.743µs (SLO: <30.000µs -7.5%) vs baseline: +0.2%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.7%

✅ large_valid_headers_all

Time: ✅ 28.654µs (SLO: <40.000µs 📉 -28.4%) vs baseline: -0.3%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.5%

✅ medium_header_no_matches

Time: ✅ 9.842µs (SLO: <20.000µs 📉 -50.8%) vs baseline: +0.2%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.6%

✅ medium_valid_headers_all

Time: ✅ 11.308µs (SLO: <20.000µs 📉 -43.5%) vs baseline: +0.4%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.7%

✅ none_propagation_style

Time: ✅ 1.728µs (SLO: <10.000µs 📉 -82.7%) vs baseline: +1.2%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.8%

✅ tracecontext_headers

Time: ✅ 34.720µs (SLO: <40.000µs 📉 -13.2%) vs baseline: +0.3%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.2%

✅ valid_headers_all

Time: ✅ 6.517µs (SLO: <10.000µs 📉 -34.8%) vs baseline: +0.3%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.1%

✅ valid_headers_basic

Time: ✅ 6.093µs (SLO: <10.000µs 📉 -39.1%) vs baseline: +0.5%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.7%

✅ wsgi_empty_headers

Time: ✅ 1.595µs (SLO: <10.000µs 📉 -84.0%) vs baseline: -0.3%

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.8%

✅ wsgi_invalid_priority_header

Time: ✅ 6.564µs (SLO: <10.000µs 📉 -34.4%) vs baseline: -0.7%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.4%

✅ wsgi_invalid_span_id_header

Time: ✅ 1.594µs (SLO: <10.000µs 📉 -84.1%) vs baseline: +0.1%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.6%

✅ wsgi_invalid_tags_header

Time: ✅ 6.523µs (SLO: <10.000µs 📉 -34.8%) vs baseline: -0.6%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.7%

✅ wsgi_invalid_trace_id_header

Time: ✅ 6.694µs (SLO: <10.000µs 📉 -33.1%) vs baseline: +1.5%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.9%

✅ wsgi_large_header_no_matches

Time: ✅ 28.655µs (SLO: <40.000µs 📉 -28.4%) vs baseline: -0.3%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.9%

✅ wsgi_large_valid_headers_all

Time: ✅ 29.866µs (SLO: <40.000µs 📉 -25.3%) vs baseline: ~same

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.9%

✅ wsgi_medium_header_no_matches

Time: ✅ 10.068µs (SLO: <20.000µs 📉 -49.7%) vs baseline: -0.3%

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.9%

✅ wsgi_medium_valid_headers_all

Time: ✅ 11.612µs (SLO: <20.000µs 📉 -41.9%) vs baseline: -0.7%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.6%

✅ wsgi_valid_headers_all

Time: ✅ 6.530µs (SLO: <10.000µs 📉 -34.7%) vs baseline: -0.5%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.0%

✅ wsgi_valid_headers_basic

Time: ✅ 6.082µs (SLO: <10.000µs 📉 -39.2%) vs baseline: -0.2%

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.7%

🟡 httppropagationinject - 16/16

✅ ids_only

Time: ✅ 22.030µs (SLO: <30.000µs 📉 -26.6%) vs baseline: +5.7%

Memory: ✅ 34.996MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.2%

✅ with_all

Time: ✅ 27.687µs (SLO: <40.000µs 📉 -30.8%) vs baseline: -1.0%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.0%

✅ with_dd_origin

Time: ✅ 24.633µs (SLO: <30.000µs 📉 -17.9%) vs baseline: -0.3%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.6%

✅ with_priority_and_origin

Time: ✅ 23.906µs (SLO: <40.000µs 📉 -40.2%) vs baseline: -0.5%

Memory: ✅ 35.036MB (SLO: <35.500MB 🟡 -1.3%) vs baseline: +5.0%

✅ with_sampling_priority

Time: ✅ 20.844µs (SLO: <30.000µs 📉 -30.5%) vs baseline: -0.1%

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +5.0%

✅ with_tags

Time: ✅ 26.010µs (SLO: <40.000µs 📉 -35.0%) vs baseline: ~same

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.2%

✅ with_tags_invalid

Time: ✅ 27.529µs (SLO: <40.000µs 📉 -31.2%) vs baseline: -0.4%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.2%

✅ with_tags_max_size

Time: ✅ 26.408µs (SLO: <40.000µs 📉 -34.0%) vs baseline: -0.1%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.4%

🟡 otelspan - 22/22

✅ add-event

Time: ✅ 40.242ms (SLO: <47.150ms 📉 -14.7%) vs baseline: ~same

Memory: ✅ 39.425MB (SLO: <47.000MB 📉 -16.1%) vs baseline: +4.7%

✅ add-metrics

Time: ✅ 260.927ms (SLO: <344.800ms 📉 -24.3%) vs baseline: +0.6%

Memory: ✅ 43.914MB (SLO: <47.500MB -7.5%) vs baseline: +5.0%

✅ add-tags

Time: ✅ 317.656ms (SLO: <321.000ms 🟡 -1.0%) vs baseline: -0.1%

Memory: ✅ 43.722MB (SLO: <47.500MB -8.0%) vs baseline: +4.6%

✅ get-context

Time: ✅ 80.492ms (SLO: <92.350ms 📉 -12.8%) vs baseline: +0.1%

Memory: ✅ 39.822MB (SLO: <46.500MB 📉 -14.4%) vs baseline: +4.8%

✅ is-recording

Time: ✅ 37.823ms (SLO: <44.500ms 📉 -15.0%) vs baseline: -0.3%

Memory: ✅ 39.477MB (SLO: <47.500MB 📉 -16.9%) vs baseline: +5.2%

✅ record-exception

Time: ✅ 58.919ms (SLO: <67.650ms 📉 -12.9%) vs baseline: +0.1%

Memory: ✅ 39.897MB (SLO: <47.000MB 📉 -15.1%) vs baseline: +4.6%

✅ set-status

Time: ✅ 44.355ms (SLO: <50.400ms 📉 -12.0%) vs baseline: +0.3%

Memory: ✅ 39.429MB (SLO: <47.000MB 📉 -16.1%) vs baseline: +4.4%

✅ start

Time: ✅ 38.009ms (SLO: <43.450ms 📉 -12.5%) vs baseline: +2.5%

Memory: ✅ 39.434MB (SLO: <47.000MB 📉 -16.1%) vs baseline: +4.6%

✅ start-finish

Time: ✅ 82.440ms (SLO: <88.000ms -6.3%) vs baseline: ~same

Memory: ✅ 37.395MB (SLO: <46.500MB 📉 -19.6%) vs baseline: +4.7%

✅ start-finish-telemetry

Time: ✅ 84.071ms (SLO: <89.000ms -5.5%) vs baseline: -0.2%

Memory: ✅ 37.336MB (SLO: <46.500MB 📉 -19.7%) vs baseline: +4.6%

✅ update-name

Time: ✅ 38.608ms (SLO: <45.150ms 📉 -14.5%) vs baseline: ~same

Memory: ✅ 39.674MB (SLO: <47.000MB 📉 -15.6%) vs baseline: +5.1%

🟡 ratelimiter - 12/12

✅ defaults

Time: ✅ 2.366µs (SLO: <10.000µs 📉 -76.3%) vs baseline: +0.9%

Memory: ✅ 35.193MB (SLO: <35.500MB 🟡 -0.9%) vs baseline: +5.2%

✅ high_rate_limit

Time: ✅ 2.438µs (SLO: <10.000µs 📉 -75.6%) vs baseline: +0.5%

Memory: ✅ 35.114MB (SLO: <35.500MB 🟡 -1.1%) vs baseline: +4.7%

✅ long_window

Time: ✅ 2.367µs (SLO: <10.000µs 📉 -76.3%) vs baseline: -0.5%

Memory: ✅ 35.173MB (SLO: <35.500MB 🟡 -0.9%) vs baseline: +5.2%

✅ low_rate_limit

Time: ✅ 2.357µs (SLO: <10.000µs 📉 -76.4%) vs baseline: +0.2%

Memory: ✅ 35.154MB (SLO: <35.500MB 🟡 -1.0%) vs baseline: +4.9%

✅ no_rate_limit

Time: ✅ 0.830µs (SLO: <10.000µs 📉 -91.7%) vs baseline: +0.8%

Memory: ✅ 35.193MB (SLO: <35.500MB 🟡 -0.9%) vs baseline: +5.0%

✅ short_window

Time: ✅ 2.490µs (SLO: <10.000µs 📉 -75.1%) vs baseline: +0.4%

Memory: ✅ 35.154MB (SLO: <35.500MB 🟡 -1.0%) vs baseline: +4.8%

🟡 recursivecomputation - 8/8

✅ deep

Time: ✅ 309.031ms (SLO: <320.950ms -3.7%) vs baseline: +0.4%

Memory: ✅ 36.058MB (SLO: <36.500MB 🟡 -1.2%) vs baseline: +5.3%

✅ deep-profiled

Time: ✅ 315.759ms (SLO: <359.150ms 📉 -12.1%) vs baseline: +0.1%

Memory: ✅ 39.852MB (SLO: <40.500MB 🟡 -1.6%) vs baseline: +5.1%

✅ medium

Time: ✅ 6.990ms (SLO: <7.400ms -5.5%) vs baseline: ~same

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ shallow

Time: ✅ 0.944ms (SLO: <1.050ms 📉 -10.1%) vs baseline: +0.8%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +4.9%

🟡 samplingrules - 8/8

✅ average_match

Time: ✅ 136.730µs (SLO: <290.000µs 📉 -52.9%) vs baseline: -0.2%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ high_match

Time: ✅ 172.253µs (SLO: <480.000µs 📉 -64.1%) vs baseline: -1.3%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.9%

✅ low_match

Time: ✅ 98.712µs (SLO: <120.000µs 📉 -17.7%) vs baseline: -0.5%

Memory: ✅ 603.791MB (SLO: <700.000MB 📉 -13.7%) vs baseline: +4.9%

✅ very_low_match

Time: ✅ 2.641ms (SLO: <8.500ms 📉 -68.9%) vs baseline: -0.8%

Memory: ✅ 71.214MB (SLO: <75.000MB -5.0%) vs baseline: +4.9%

🟡 sethttpmeta - 32/32

✅ all-disabled

Time: ✅ 10.570µs (SLO: <20.000µs 📉 -47.2%) vs baseline: -0.5%

Memory: ✅ 35.409MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +4.7%

✅ all-enabled

Time: ✅ 41.184µs (SLO: <50.000µs 📉 -17.6%) vs baseline: +1.7%

Memory: ✅ 35.468MB (SLO: <36.000MB 🟡 -1.5%) vs baseline: +4.7%

✅ collectipvariant_exists

Time: ✅ 41.067µs (SLO: <50.000µs 📉 -17.9%) vs baseline: -0.6%

Memory: ✅ 35.330MB (SLO: <36.000MB 🟡 -1.9%) vs baseline: +3.8%

✅ no-collectipvariant

Time: ✅ 40.328µs (SLO: <50.000µs 📉 -19.3%) vs baseline: -0.5%

Memory: ✅ 35.350MB (SLO: <36.000MB 🟡 -1.8%) vs baseline: +4.6%

✅ no-useragentvariant

Time: ✅ 39.116µs (SLO: <50.000µs 📉 -21.8%) vs baseline: +0.4%

Memory: ✅ 35.330MB (SLO: <36.000MB 🟡 -1.9%) vs baseline: +3.8%

✅ obfuscation-no-query

Time: ✅ 40.954µs (SLO: <50.000µs 📉 -18.1%) vs baseline: -0.5%

Memory: ✅ 35.409MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +4.5%

✅ obfuscation-regular-case-explicit-query

Time: ✅ 76.173µs (SLO: <90.000µs 📉 -15.4%) vs baseline: -0.3%

Memory: ✅ 35.704MB (SLO: <36.500MB -2.2%) vs baseline: +4.9%

✅ obfuscation-regular-case-implicit-query

Time: ✅ 76.755µs (SLO: <90.000µs 📉 -14.7%) vs baseline: ~same

Memory: ✅ 35.763MB (SLO: <36.500MB -2.0%) vs baseline: +5.0%

✅ obfuscation-send-querystring-disabled

Time: ✅ 154.347µs (SLO: <170.000µs -9.2%) vs baseline: ~same

Memory: ✅ 35.743MB (SLO: <36.500MB -2.1%) vs baseline: +5.2%

✅ obfuscation-worst-case-explicit-query

Time: ✅ 148.820µs (SLO: <160.000µs -7.0%) vs baseline: -0.2%

Memory: ✅ 35.665MB (SLO: <36.500MB -2.3%) vs baseline: +4.9%

✅ obfuscation-worst-case-implicit-query

Time: ✅ 155.673µs (SLO: <170.000µs -8.4%) vs baseline: +0.4%

Memory: ✅ 35.606MB (SLO: <36.500MB -2.5%) vs baseline: +4.6%

✅ useragentvariant_exists_1

Time: ✅ 39.834µs (SLO: <50.000µs 📉 -20.3%) vs baseline: ~same

Memory: ✅ 35.409MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +4.1%

✅ useragentvariant_exists_2

Time: ✅ 40.882µs (SLO: <50.000µs 📉 -18.2%) vs baseline: -0.7%

Memory: ✅ 35.330MB (SLO: <36.000MB 🟡 -1.9%) vs baseline: +4.0%

✅ useragentvariant_exists_3

Time: ✅ 40.260µs (SLO: <50.000µs 📉 -19.5%) vs baseline: -0.8%

Memory: ✅ 35.448MB (SLO: <36.000MB 🟡 -1.5%) vs baseline: +4.0%

✅ useragentvariant_not_exists_1

Time: ✅ 39.836µs (SLO: <50.000µs 📉 -20.3%) vs baseline: -0.2%

Memory: ✅ 35.488MB (SLO: <36.000MB 🟡 -1.4%) vs baseline: +5.3%

✅ useragentvariant_not_exists_2

Time: ✅ 39.877µs (SLO: <50.000µs 📉 -20.2%) vs baseline: -0.2%

Memory: ✅ 35.330MB (SLO: <36.000MB 🟡 -1.9%) vs baseline: +3.7%

🟡 span - 26/26

✅ add-event

Time: ✅ 18.133ms (SLO: <22.500ms 📉 -19.4%) vs baseline: -0.2%

Memory: ✅ 36.920MB (SLO: <53.000MB 📉 -30.3%) vs baseline: +5.0%

✅ add-metrics

Time: ✅ 87.927ms (SLO: <93.500ms -6.0%) vs baseline: -0.6%

Memory: ✅ 41.332MB (SLO: <53.000MB 📉 -22.0%) vs baseline: +5.5%

✅ add-tags

Time: ✅ 141.512ms (SLO: <155.000ms -8.7%) vs baseline: +0.1%

Memory: ✅ 41.184MB (SLO: <53.000MB 📉 -22.3%) vs baseline: +5.2%

✅ get-context

Time: ✅ 17.030ms (SLO: <20.500ms 📉 -16.9%) vs baseline: +0.2%

Memory: ✅ 36.735MB (SLO: <53.000MB 📉 -30.7%) vs baseline: +4.7%

✅ is-recording

Time: ✅ 17.242ms (SLO: <20.500ms 📉 -15.9%) vs baseline: -0.5%

Memory: ✅ 36.715MB (SLO: <53.000MB 📉 -30.7%) vs baseline: +4.7%

✅ record-exception

Time: ✅ 36.631ms (SLO: <40.000ms -8.4%) vs baseline: ~same

Memory: ✅ 37.458MB (SLO: <53.000MB 📉 -29.3%) vs baseline: +5.3%

✅ set-status

Time: ✅ 18.728ms (SLO: <22.000ms 📉 -14.9%) vs baseline: +0.3%

Memory: ✅ 36.853MB (SLO: <53.000MB 📉 -30.5%) vs baseline: +5.1%

✅ start

Time: ✅ 17.277ms (SLO: <20.500ms 📉 -15.7%) vs baseline: +1.9%

Memory: ✅ 36.697MB (SLO: <53.000MB 📉 -30.8%) vs baseline: +4.4%

✅ start-finish

Time: ✅ 51.067ms (SLO: <52.500ms -2.7%) vs baseline: +0.4%

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +5.3%

✅ start-finish-telemetry

Time: ✅ 52.233ms (SLO: <54.500ms -4.2%) vs baseline: +0.4%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +4.8%

✅ start-finish-traceid128

Time: ✅ 54.207ms (SLO: <57.000ms -4.9%) vs baseline: +0.4%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.6%

✅ start-traceid128

Time: ✅ 17.300ms (SLO: <22.500ms 📉 -23.1%) vs baseline: +0.5%

Memory: ✅ 36.740MB (SLO: <53.000MB 📉 -30.7%) vs baseline: +4.6%

✅ update-name

Time: ✅ 17.252ms (SLO: <22.000ms 📉 -21.6%) vs baseline: -0.6%

Memory: ✅ 36.889MB (SLO: <53.000MB 📉 -30.4%) vs baseline: +5.2%

🟡 tracer - 6/6

✅ large

Time: ✅ 29.154ms (SLO: <32.950ms 📉 -11.5%) vs baseline: +0.4%

Memory: ✅ 35.979MB (SLO: <36.500MB 🟡 -1.4%) vs baseline: +4.7%

✅ medium

Time: ✅ 2.878ms (SLO: <3.200ms 📉 -10.1%) vs baseline: +0.2%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.0%

✅ small

Time: ✅ 331.159µs (SLO: <370.000µs 📉 -10.5%) vs baseline: +1.7%

Memory: ✅ 34.760MB (SLO: <35.500MB -2.1%) vs baseline: +4.7%

⚠️ Unstable Tests (1 suite)
⚠️ packagesupdateimporteddependencies - 24/24 (1 unstable)

✅ import_many

Time: ✅ 155.198µs (SLO: <170.000µs -8.7%) vs baseline: +0.1%

Memory: ✅ 39.612MB (SLO: <43.000MB -7.9%) vs baseline: +4.6%

✅ import_many_cached

Time: ✅ 120.900µs (SLO: <130.000µs -7.0%) vs baseline: +0.4%

Memory: ✅ 39.634MB (SLO: <43.000MB -7.8%) vs baseline: +4.8%

✅ import_many_stdlib

Time: ✅ 0.757ms (SLO: <1.750ms 📉 -56.8%) vs baseline: -0.2%

Memory: ✅ 39.661MB (SLO: <43.000MB -7.8%) vs baseline: +5.1%

⚠️ import_many_stdlib_cached

Time: ⚠️ 0.173ms (SLO: <1.100ms 📉 -84.3%) vs baseline: -0.5%

Memory: ✅ 39.653MB (SLO: <43.000MB -7.8%) vs baseline: +5.2%

✅ import_many_unknown

Time: ✅ 829.930µs (SLO: <890.000µs -6.7%) vs baseline: -0.4%

Memory: ✅ 40.026MB (SLO: <43.000MB -6.9%) vs baseline: +5.2%

✅ import_many_unknown_cached

Time: ✅ 789.674µs (SLO: <870.000µs -9.2%) vs baseline: -0.7%

Memory: ✅ 40.024MB (SLO: <43.000MB -6.9%) vs baseline: +5.2%

✅ import_one

Time: ✅ 19.956µs (SLO: <30.000µs 📉 -33.5%) vs baseline: +0.8%

Memory: ✅ 39.672MB (SLO: <43.000MB -7.7%) vs baseline: +4.3%

✅ import_one_cache

Time: ✅ 6.305µs (SLO: <10.000µs 📉 -37.0%) vs baseline: ~same

Memory: ✅ 39.662MB (SLO: <43.000MB -7.8%) vs baseline: +4.8%

✅ import_one_stdlib

Time: ✅ 18.830µs (SLO: <20.000µs -5.8%) vs baseline: +0.1%

Memory: ✅ 39.800MB (SLO: <43.000MB -7.4%) vs baseline: +4.9%

✅ import_one_stdlib_cache

Time: ✅ 6.245µs (SLO: <10.000µs 📉 -37.5%) vs baseline: -0.8%

Memory: ✅ 39.716MB (SLO: <43.000MB -7.6%) vs baseline: +4.9%

✅ import_one_unknown

Time: ✅ 45.466µs (SLO: <50.000µs -9.1%) vs baseline: +0.4%

Memory: ✅ 39.817MB (SLO: <43.000MB -7.4%) vs baseline: +4.4%

✅ import_one_unknown_cache

Time: ✅ 6.296µs (SLO: <10.000µs 📉 -37.0%) vs baseline: ~same

Memory: ✅ 39.748MB (SLO: <43.000MB -7.6%) vs baseline: +5.1%

✅ All Tests Passing (5 suites)
iast_aspects - 40/40

✅ re_expand_aspect

Time: ✅ 37.391µs (SLO: <40.000µs -6.5%) vs baseline: +6.5%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +5.0%

✅ re_expand_noaspect

Time: ✅ 35.010µs (SLO: <40.000µs 📉 -12.5%) vs baseline: -0.4%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +4.6%

✅ re_findall_aspect

Time: ✅ 3.453µs (SLO: <10.000µs 📉 -65.5%) vs baseline: +1.4%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +4.9%

✅ re_findall_noaspect

Time: ✅ 3.279µs (SLO: <10.000µs 📉 -67.2%) vs baseline: +0.1%

Memory: ✅ 41.366MB (SLO: <43.500MB -4.9%) vs baseline: +4.7%

✅ re_finditer_aspect

Time: ✅ 4.515µs (SLO: <10.000µs 📉 -54.9%) vs baseline: -1.0%

Memory: ✅ 41.484MB (SLO: <43.500MB -4.6%) vs baseline: +4.9%

✅ re_finditer_noaspect

Time: ✅ 3.293µs (SLO: <10.000µs 📉 -67.1%) vs baseline: -0.8%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +4.9%

✅ re_fullmatch_aspect

Time: ✅ 2.799µs (SLO: <10.000µs 📉 -72.0%) vs baseline: -0.2%

Memory: ✅ 41.366MB (SLO: <43.500MB -4.9%) vs baseline: +4.7%

✅ re_fullmatch_noaspect

Time: ✅ 3.107µs (SLO: <10.000µs 📉 -68.9%) vs baseline: -0.3%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.8%

✅ re_group_aspect

Time: ✅ 4.863µs (SLO: <10.000µs 📉 -51.4%) vs baseline: +0.4%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +5.0%

✅ re_group_noaspect

Time: ✅ 4.869µs (SLO: <10.000µs 📉 -51.3%) vs baseline: -0.1%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.6%

✅ re_groups_aspect

Time: ✅ 4.984µs (SLO: <10.000µs 📉 -50.2%) vs baseline: +0.5%

Memory: ✅ 41.445MB (SLO: <43.500MB -4.7%) vs baseline: +5.2%

✅ re_groups_noaspect

Time: ✅ 4.975µs (SLO: <10.000µs 📉 -50.3%) vs baseline: -0.2%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +5.0%

✅ re_match_aspect

Time: ✅ 2.876µs (SLO: <10.000µs 📉 -71.2%) vs baseline: +1.4%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.6%

✅ re_match_noaspect

Time: ✅ 3.108µs (SLO: <10.000µs 📉 -68.9%) vs baseline: +0.5%

Memory: ✅ 41.445MB (SLO: <43.500MB -4.7%) vs baseline: +5.1%

✅ re_search_aspect

Time: ✅ 2.658µs (SLO: <10.000µs 📉 -73.4%) vs baseline: -1.3%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +4.9%

✅ re_search_noaspect

Time: ✅ 2.908µs (SLO: <10.000µs 📉 -70.9%) vs baseline: -0.1%

Memory: ✅ 41.425MB (SLO: <43.500MB -4.8%) vs baseline: +5.1%

✅ re_sub_aspect

Time: ✅ 3.578µs (SLO: <10.000µs 📉 -64.2%) vs baseline: +0.4%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.8%

✅ re_sub_noaspect

Time: ✅ 3.959µs (SLO: <10.000µs 📉 -60.4%) vs baseline: +0.4%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.7%

✅ re_subn_aspect

Time: ✅ 3.963µs (SLO: <10.000µs 📉 -60.4%) vs baseline: +5.4%

Memory: ✅ 41.406MB (SLO: <43.500MB -4.8%) vs baseline: +5.0%

✅ re_subn_noaspect

Time: ✅ 4.064µs (SLO: <10.000µs 📉 -59.4%) vs baseline: +0.3%

Memory: ✅ 41.406MB (SLO: <43.500MB -4.8%) vs baseline: +4.6%

iastaspectssplit - 12/12

✅ rsplit_aspect

Time: ✅ 1.586µs (SLO: <10.000µs 📉 -84.1%) vs baseline: +3.1%

Memory: ✅ 41.406MB (SLO: <43.500MB -4.8%) vs baseline: +4.8%

✅ rsplit_noaspect

Time: ✅ 1.606µs (SLO: <10.000µs 📉 -83.9%) vs baseline: -1.2%

Memory: ✅ 41.406MB (SLO: <43.500MB -4.8%) vs baseline: +5.0%

✅ split_aspect

Time: ✅ 1.546µs (SLO: <10.000µs 📉 -84.5%) vs baseline: -0.8%

Memory: ✅ 41.347MB (SLO: <43.500MB -5.0%) vs baseline: +4.8%

✅ split_noaspect

Time: ✅ 1.604µs (SLO: <10.000µs 📉 -84.0%) vs baseline: -1.1%

Memory: ✅ 41.386MB (SLO: <43.500MB -4.9%) vs baseline: +4.8%

✅ splitlines_aspect

Time: ✅ 1.491µs (SLO: <10.000µs 📉 -85.1%) vs baseline: -0.3%

Memory: ✅ 41.366MB (SLO: <43.500MB -4.9%) vs baseline: +4.9%

✅ splitlines_noaspect

Time: ✅ 1.523µs (SLO: <10.000µs 📉 -84.8%) vs baseline: -1.4%

Memory: ✅ 41.504MB (SLO: <43.500MB -4.6%) vs baseline: +5.2%

iastpropagation - 8/8

✅ no-propagation

Time: ✅ 48.979µs (SLO: <60.000µs 📉 -18.4%) vs baseline: -0.3%

Memory: ✅ 38.221MB (SLO: <42.000MB -9.0%) vs baseline: +4.5%

✅ propagation_enabled

Time: ✅ 137.282µs (SLO: <190.000µs 📉 -27.7%) vs baseline: ~same

Memory: ✅ 38.280MB (SLO: <42.000MB -8.9%) vs baseline: +4.7%

✅ propagation_enabled_100

Time: ✅ 1.577ms (SLO: <2.300ms 📉 -31.5%) vs baseline: -0.3%

Memory: ✅ 38.162MB (SLO: <42.000MB -9.1%) vs baseline: +4.4%

✅ propagation_enabled_1000

Time: ✅ 29.381ms (SLO: <34.550ms 📉 -15.0%) vs baseline: -0.9%

Memory: ✅ 38.181MB (SLO: <42.000MB -9.1%) vs baseline: +4.5%

otelsdkspan - 24/24

✅ add-event

Time: ✅ 40.584ms (SLO: <42.000ms -3.4%) vs baseline: +0.3%

Memory: ✅ 37.650MB (SLO: <39.000MB -3.5%) vs baseline: +4.7%

✅ add-link

Time: ✅ 36.518ms (SLO: <38.550ms -5.3%) vs baseline: -0.4%

Memory: ✅ 37.749MB (SLO: <39.000MB -3.2%) vs baseline: +4.7%

✅ add-metrics

Time: ✅ 222.522ms (SLO: <232.000ms -4.1%) vs baseline: +2.1%

Memory: ✅ 37.434MB (SLO: <39.000MB -4.0%) vs baseline: +3.9%

✅ add-tags

Time: ✅ 211.987ms (SLO: <221.600ms -4.3%) vs baseline: +0.1%

Memory: ✅ 37.788MB (SLO: <39.000MB -3.1%) vs baseline: +4.8%

✅ get-context

Time: ✅ 29.118ms (SLO: <31.300ms -7.0%) vs baseline: -0.7%

Memory: ✅ 37.473MB (SLO: <39.000MB -3.9%) vs baseline: +4.2%

✅ is-recording

Time: ✅ 29.030ms (SLO: <31.000ms -6.4%) vs baseline: -0.8%

Memory: ✅ 37.611MB (SLO: <39.000MB -3.6%) vs baseline: +4.9%

✅ record-exception

Time: ✅ 62.863ms (SLO: <65.850ms -4.5%) vs baseline: -0.3%

Memory: ✅ 37.749MB (SLO: <39.000MB -3.2%) vs baseline: +4.9%

✅ set-status

Time: ✅ 31.963ms (SLO: <34.150ms -6.4%) vs baseline: -0.3%

Memory: ✅ 37.473MB (SLO: <39.000MB -3.9%) vs baseline: +4.5%

✅ start

Time: ✅ 29.251ms (SLO: <30.150ms -3.0%) vs baseline: +0.4%

Memory: ✅ 37.650MB (SLO: <39.000MB -3.5%) vs baseline: +4.6%

✅ start-finish

Time: ✅ 33.935ms (SLO: <35.350ms -4.0%) vs baseline: -0.2%

Memory: ✅ 37.454MB (SLO: <39.000MB -4.0%) vs baseline: +4.2%

✅ start-finish-telemetry

Time: ✅ 33.863ms (SLO: <35.450ms -4.5%) vs baseline: -1.0%

Memory: ✅ 37.768MB (SLO: <39.000MB -3.2%) vs baseline: +5.2%

✅ update-name

Time: ✅ 31.045ms (SLO: <33.400ms -7.1%) vs baseline: +0.5%

Memory: ✅ 37.336MB (SLO: <39.000MB -4.3%) vs baseline: +3.4%

packagespackageforrootmodulemapping - 4/4

✅ cache_off

Time: ✅ 343.285ms (SLO: <354.300ms -3.1%) vs baseline: -1.0%

Memory: ✅ 40.850MB (SLO: <43.500MB -6.1%) vs baseline: +6.0%

✅ cache_on

Time: ✅ 0.385µs (SLO: <10.000µs 📉 -96.1%) vs baseline: ~same

Memory: ✅ 38.619MB (SLO: <43.000MB 📉 -10.2%) vs baseline: +5.1%

ℹ️ Scenarios Missing SLO Configuration (26 scenarios)

The following scenarios exist in candidate data but have no SLO thresholds configured:

  • coreapiscenario-core_dispatch_listeners
  • coreapiscenario-core_dispatch_no_listeners
  • coreapiscenario-core_dispatch_with_results_listeners
  • coreapiscenario-core_dispatch_with_results_no_listeners
  • djangosimple-baseline
  • errortrackingdjangosimple-baseline
  • errortrackingflasksqli-baseline
  • flasksimple-baseline
  • flasksqli-baseline
  • sethttpmeta-obfuscation-disabled
  • startup-baseline
  • startup-baseline_django
  • startup-baseline_flask
  • startup-ddtrace_run
  • startup-ddtrace_run_appsec
  • startup-ddtrace_run_profiling
  • startup-ddtrace_run_runtime_metrics
  • startup-ddtrace_run_send_span
  • startup-ddtrace_run_telemetry_disabled
  • startup-ddtrace_run_telemetry_enabled
  • startup-import_ddtrace
  • startup-import_ddtrace_auto
  • startup-import_ddtrace_auto_django
  • startup-import_ddtrace_auto_flask
  • startup-import_ddtrace_django
  • startup-import_ddtrace_flask

@avara1986 avara1986 merged commit 381404b into main Dec 22, 2025
579 of 580 checks passed
@avara1986 avara1986 deleted the avara1986/APPSEC-60297_reduce_flakyness branch December 22, 2025 15:01
dd-octo-sts bot pushed a commit that referenced this pull request Dec 22, 2025
@avara1986 @github-actions
ci(iast): fix flaky test (#15749)
abcaadd 
The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

(cherry picked from commit 381404b)
@dd-octo-sts dd-octo-sts bot mentioned this pull request Dec 22, 2025
Merged
dd-octo-sts bot pushed a commit that referenced this pull request Dec 22, 2025
@avara1986 @github-actions
ci(iast): fix flaky test (#15749)
e852b15 
The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

(cherry picked from commit 381404b)
@dd-octo-sts dd-octo-sts bot mentioned this pull request Dec 22, 2025
Merged
dd-octo-sts bot pushed a commit that referenced this pull request Dec 22, 2025
@avara1986 @github-actions
ci(iast): fix flaky test (#15749)
9f6be4f 
The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

(cherry picked from commit 381404b)
@dd-octo-sts dd-octo-sts bot mentioned this pull request Dec 22, 2025
Merged
avara1986 added a commit that referenced this pull request Dec 22, 2025
@avara1986
ci(iast): fix flaky test (#15749)
2e18fa2 
The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

(cherry picked from commit 381404b)
Signed-off-by: Alberto Vara <[email protected]>
avara1986 added a commit that referenced this pull request Dec 22, 2025
@avara1986
ci(iast): fix flaky test (#15749)
50beec5 
The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

(cherry picked from commit 381404b)
Signed-off-by: Alberto Vara <[email protected]>
avara1986 added a commit that referenced this pull request Dec 22, 2025
@avara1986
ci(iast): fix flaky test (#15749)
a126f36 
The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

(cherry picked from commit 381404b)
Signed-off-by: Alberto Vara <[email protected]>
avara1986 added a commit that referenced this pull request Dec 22, 2025
@dd-octo-sts @avara1986
ci(iast): fix flaky test [backport 4.1] (#15755)
ab2d73f 
Backport 381404b from #15749 to 4.1.

The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

Signed-off-by: Alberto Vara <[email protected]>
Co-authored-by: Alberto Vara <[email protected]>
avara1986 added a commit that referenced this pull request Dec 22, 2025
@dd-octo-sts @avara1986
ci(iast): fix flaky test [backport 3.19] (#15754)
714df9e 
Backport 381404b from #15749 to 3.19.

The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

Signed-off-by: Alberto Vara <[email protected]>
Co-authored-by: Alberto Vara <[email protected]>
avara1986 added a commit that referenced this pull request Dec 22, 2025
@dd-octo-sts @avara1986
ci(iast): fix flaky test [backport 4.0] (#15753)
bbb3aa0 
Backport 381404b from #15749 to 4.0.

The urlparse function was imported inside the async function
view_iast_ssrf_secure, which caused a race condition in multiprocess
mode where:
- The IAST validator wrapper for urlparse is set up at module startup
- But importing inside a function can bypass or inconsistently apply the
wrapper
- This caused the secure mark to not be applied reliably, leading to
false SSRF vulnerability reports

Flaky tests IDs: DD_1PGYGI DD_ONKXDT DD_U2V880 DD_954GJO DD_O236KS

Signed-off-by: Alberto Vara <[email protected]>
Co-authored-by: Alberto Vara <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@florentinl florentinl florentinl approved these changes

Assignees

No one assigned

Labels

backport 3.19 backport 4.0 backport 4.1 changelog/no-changelog A changelog entry is not required for this PR.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@avara1986 @florentinl