Skip to content

Fix NullPointerException in ApplicationModuleImpl #9879

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 30, 2025
Merged

Fix NullPointerException in ApplicationModuleImpl #9879

merged 2 commits into from
Oct 30, 2025

Conversation

@jandro996
Copy link
Member

@jandro996 jandro996 commented Oct 29, 2025
edited by atlassian bot
Loading

What Does This Do

  • Added a guard in InsecureJspFolderVisitor.preVisitDirectory to keep walking when a directory lacks a name, preventing the previous NullPointerException.

  • Introduced a regression test that instantiates the visitor and verifies it safely handles the filesystem root path.

Motivation

Error tracking bug detected

Additional Notes

stacktrace

java.lang.RuntimeException
  at com.datadog.iast.sink.ApplicationModuleImpl.findInsecureJspPaths(ApplicationModuleImpl.java:399)
  at com.datadog.iast.sink.ApplicationModuleImpl.checkInsecureJSPLayout(ApplicationModuleImpl.java:354)
  at com.datadog.iast.sink.ApplicationModuleImpl.onRealPath(ApplicationModuleImpl.java:136)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:791)
  at (redacted: 27 frames)
  at java.base/java.lang.Thread.run(Unknown Source)
Caused by: java.lang.NullPointerException
  at com.datadog.iast.sink.ApplicationModuleImpl$InsecureJspFolderVisitor.preVisitDirectory(ApplicationModuleImpl.java:419)
  at com.datadog.iast.sink.ApplicationModuleImpl$InsecureJspFolderVisitor.preVisitDirectory(ApplicationModuleImpl.java:414)
  at java.base/java.nio.file.Files.walkFileTree(Unknown Source)
  at com.datadog.iast.sink.ApplicationModuleImpl.findInsecureJspPaths(ApplicationModuleImpl.java:396)
  ... 31 more

Contributor Checklist

Jira ticket: APPSEC-59849

@jandro996 jandro996 added type: bug Bug report and fix comp: asm iast Application Security Management (IAST) labels Oct 29, 2025
@datadog-official
Copy link

datadog-official bot commented Oct 29, 2025
edited
Loading

🎯 Code Coverage
Patch Coverage: 100.00%
Total Coverage: 88.24% (+28.54%)

View detailed report

This comment will be updated automatically if new data arrives.
🔗 Commit SHA: a7a1623 | Docs | Datadog PR Page | Was this helpful? Give us feedback!

@pr-commenter
Copy link

pr-commenter bot commented Oct 29, 2025

Benchmarks

Startup

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master alejandro.gonzalez/Fix-NullPointerException-in-ApplicationModuleImpl
git_commit_date 1761727111 1761741411
git_commit_sha 949ee8c a7a1623
release_version 1.55.0-SNAPSHOT~949ee8ce67 1.55.0-SNAPSHOT~a7a1623a7b
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1761743162 1761743162
ci_job_id 1204077493 1204077493
ci_pipeline_id 80599591 80599591
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-1-xn8z1yk1 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-1-xn8z1yk1 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module Agent Agent
parent None None

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 53 metrics, 12 unstable metrics.

Startup time reports for petclinic 
gantt
    title petclinic - global startup overhead: candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.039 s) : 0, 1039390
Total [baseline] (10.85 s) : 0, 10850473
Agent [candidate] (1.03 s) : 0, 1029683
Total [candidate] (10.906 s) : 0, 10905539
section appsec
Agent [baseline] (1.212 s) : 0, 1211993
Total [baseline] (10.908 s) : 0, 10908353
Agent [candidate] (1.205 s) : 0, 1204783
Total [candidate] (10.964 s) : 0, 10963766
section iast
Agent [baseline] (1.181 s) : 0, 1180946
Total [baseline] (11.221 s) : 0, 11220887
Agent [candidate] (1.178 s) : 0, 1177522
Total [candidate] (11.251 s) : 0, 11251029
section profiling
Agent [baseline] (1.176 s) : 0, 1176319
Total [baseline] (11.048 s) : 0, 11048362
Agent [candidate] (1.184 s) : 0, 1183737
Total [candidate] (10.938 s) : 0, 10937804
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.039 s -
Agent appsec 1.212 s 172.603 ms (16.6%)
Agent iast 1.181 s 141.556 ms (13.6%)
Agent profiling 1.176 s 136.929 ms (13.2%)
Total tracing 10.85 s -
Total appsec 10.908 s 57.88 ms (0.5%)
Total iast 11.221 s 370.414 ms (3.4%)
Total profiling 11.048 s 197.889 ms (1.8%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.03 s -
Agent appsec 1.205 s 175.1 ms (17.0%)
Agent iast 1.178 s 147.839 ms (14.4%)
Agent profiling 1.184 s 154.054 ms (15.0%)
Total tracing 10.906 s -
Total appsec 10.964 s 58.228 ms (0.5%)
Total iast 11.251 s 345.49 ms (3.2%)
Total profiling 10.938 s 32.265 ms (0.3%) 
gantt
    title petclinic - break down per module: candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.479 ms) : 0, 1479
crashtracking [candidate] (1.479 ms) : 0, 1479
BytebuddyAgent [baseline] (708.616 ms) : 0, 708616
BytebuddyAgent [candidate] (701.796 ms) : 0, 701796
GlobalTracer [baseline] (247.047 ms) : 0, 247047
GlobalTracer [candidate] (245.297 ms) : 0, 245297
AppSec [baseline] (32.724 ms) : 0, 32724
AppSec [candidate] (32.209 ms) : 0, 32209
Debugger [baseline] (6.456 ms) : 0, 6456
Debugger [candidate] (6.398 ms) : 0, 6398
Remote Config [baseline] (683.329 µs) : 0, 683
Remote Config [candidate] (673.833 µs) : 0, 674
Telemetry [baseline] (15.317 ms) : 0, 15317
Telemetry [candidate] (13.703 ms) : 0, 13703
Flare Poller [baseline] (5.782 ms) : 0, 5782
Flare Poller [candidate] (7.011 ms) : 0, 7011
section appsec
crashtracking [baseline] (1.488 ms) : 0, 1488
crashtracking [candidate] (1.471 ms) : 0, 1471
BytebuddyAgent [baseline] (733.048 ms) : 0, 733048
BytebuddyAgent [candidate] (727.307 ms) : 0, 727307
GlobalTracer [baseline] (237.66 ms) : 0, 237660
GlobalTracer [candidate] (236.357 ms) : 0, 236357
AppSec [baseline] (174.395 ms) : 0, 174395
AppSec [candidate] (174.603 ms) : 0, 174603
Debugger [baseline] (5.884 ms) : 0, 5884
Debugger [candidate] (5.981 ms) : 0, 5981
Remote Config [baseline] (626.141 µs) : 0, 626
Remote Config [candidate] (613.908 µs) : 0, 614
Telemetry [baseline] (8.347 ms) : 0, 8347
Telemetry [candidate] (8.449 ms) : 0, 8449
Flare Poller [baseline] (3.928 ms) : 0, 3928
Flare Poller [candidate] (3.958 ms) : 0, 3958
IAST [baseline] (25.239 ms) : 0, 25239
IAST [candidate] (24.975 ms) : 0, 24975
section iast
crashtracking [baseline] (1.495 ms) : 0, 1495
crashtracking [candidate] (1.491 ms) : 0, 1491
BytebuddyAgent [baseline] (839.59 ms) : 0, 839590
BytebuddyAgent [candidate] (836.844 ms) : 0, 836844
GlobalTracer [baseline] (236.841 ms) : 0, 236841
GlobalTracer [candidate] (236.11 ms) : 0, 236110
AppSec [baseline] (28.753 ms) : 0, 28753
AppSec [candidate] (31.467 ms) : 0, 31467
Debugger [baseline] (6.19 ms) : 0, 6190
Debugger [candidate] (6.176 ms) : 0, 6176
Remote Config [baseline] (605.291 µs) : 0, 605
Remote Config [candidate] (601.784 µs) : 0, 602
Telemetry [baseline] (8.469 ms) : 0, 8469
Telemetry [candidate] (8.637 ms) : 0, 8637
Flare Poller [baseline] (4.116 ms) : 0, 4116
Flare Poller [candidate] (4.242 ms) : 0, 4242
IAST [baseline] (33.161 ms) : 0, 33161
IAST [candidate] (30.081 ms) : 0, 30081
section profiling
ProfilingAgent [baseline] (109.691 ms) : 0, 109691
ProfilingAgent [candidate] (110.45 ms) : 0, 110450
crashtracking [baseline] (1.473 ms) : 0, 1473
crashtracking [candidate] (1.474 ms) : 0, 1474
BytebuddyAgent [baseline] (728.032 ms) : 0, 728032
BytebuddyAgent [candidate] (732.351 ms) : 0, 732351
GlobalTracer [baseline] (221.384 ms) : 0, 221384
GlobalTracer [candidate] (223.025 ms) : 0, 223025
AppSec [baseline] (32.392 ms) : 0, 32392
AppSec [candidate] (32.525 ms) : 0, 32525
Debugger [baseline] (12.171 ms) : 0, 12171
Debugger [candidate] (12.253 ms) : 0, 12253
Remote Config [baseline] (1.519 ms) : 0, 1519
Remote Config [candidate] (689.559 µs) : 0, 690
Telemetry [baseline] (9.927 ms) : 0, 9927
Telemetry [candidate] (10.653 ms) : 0, 10653
Flare Poller [baseline] (4.121 ms) : 0, 4121
Flare Poller [candidate] (4.163 ms) : 0, 4163
Profiling [baseline] (110.348 ms) : 0, 110348
Profiling [candidate] (111.107 ms) : 0, 111107
Loading
Startup time reports for insecure-bank 
gantt
    title insecure-bank - global startup overhead: candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.036 s) : 0, 1035593
Total [baseline] (8.691 s) : 0, 8690580
Agent [candidate] (1.037 s) : 0, 1037229
Total [candidate] (8.657 s) : 0, 8657176
section iast
Agent [baseline] (1.178 s) : 0, 1178157
Total [baseline] (9.387 s) : 0, 9386610
Agent [candidate] (1.171 s) : 0, 1170778
Total [candidate] (9.368 s) : 0, 9367944
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.036 s -
Agent iast 1.178 s 142.563 ms (13.8%)
Total tracing 8.691 s -
Total iast 9.387 s 696.029 ms (8.0%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.037 s -
Agent iast 1.171 s 133.549 ms (12.9%)
Total tracing 8.657 s -
Total iast 9.368 s 710.768 ms (8.2%) 
gantt
    title insecure-bank - break down per module: candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.484 ms) : 0, 1484
crashtracking [candidate] (1.486 ms) : 0, 1486
BytebuddyAgent [baseline] (706.33 ms) : 0, 706330
BytebuddyAgent [candidate] (707.409 ms) : 0, 707409
GlobalTracer [baseline] (245.832 ms) : 0, 245832
GlobalTracer [candidate] (246.601 ms) : 0, 246601
AppSec [baseline] (32.497 ms) : 0, 32497
AppSec [candidate] (32.526 ms) : 0, 32526
Debugger [baseline] (6.416 ms) : 0, 6416
Debugger [candidate] (6.447 ms) : 0, 6447
Remote Config [baseline] (690.387 µs) : 0, 690
Remote Config [candidate] (690.407 µs) : 0, 690
Telemetry [baseline] (14.552 ms) : 0, 14552
Telemetry [candidate] (15.092 ms) : 0, 15092
Flare Poller [baseline] (6.513 ms) : 0, 6513
Flare Poller [candidate] (5.72 ms) : 0, 5720
section iast
crashtracking [baseline] (1.485 ms) : 0, 1485
crashtracking [candidate] (1.482 ms) : 0, 1482
BytebuddyAgent [baseline] (836.963 ms) : 0, 836963
BytebuddyAgent [candidate] (831.48 ms) : 0, 831480
GlobalTracer [baseline] (236.468 ms) : 0, 236468
GlobalTracer [candidate] (235.632 ms) : 0, 235632
AppSec [baseline] (29.067 ms) : 0, 29067
AppSec [candidate] (27.994 ms) : 0, 27994
Debugger [baseline] (6.171 ms) : 0, 6171
Debugger [candidate] (6.09 ms) : 0, 6090
Remote Config [baseline] (609.055 µs) : 0, 609
Remote Config [candidate] (603.853 µs) : 0, 604
Telemetry [baseline] (8.623 ms) : 0, 8623
Telemetry [candidate] (8.425 ms) : 0, 8425
Flare Poller [baseline] (4.178 ms) : 0, 4178
Flare Poller [candidate] (4.115 ms) : 0, 4115
IAST [baseline] (32.968 ms) : 0, 32968
IAST [candidate] (33.502 ms) : 0, 33502
Loading

Load

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master alejandro.gonzalez/Fix-NullPointerException-in-ApplicationModuleImpl
git_commit_date 1761727111 1761741411
git_commit_sha 949ee8c a7a1623
release_version 1.55.0-SNAPSHOT~949ee8ce67 1.55.0-SNAPSHOT~a7a1623a7b
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1761743648 1761743648
ci_job_id 1204077494 1204077494
ci_pipeline_id 80599591 80599591
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-1-la452awt 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-1-la452awt 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 1 performance improvements and 0 performance regressions! Performance is the same for 11 metrics, 12 unstable metrics.

scenario Δ mean http_req_duration Δ mean throughput candidate mean http_req_duration candidate mean throughput baseline mean http_req_duration baseline mean throughput
scenario:load:petclinic:appsec:high_load better
[-1011.451µs; -574.373µs] or [-4.955%; -2.814%]		 unstable
[-14.595op/s; +33.033op/s] or [-6.380%; +14.439%]		 19.618ms 238.000op/s 20.411ms 228.781op/s
Request duration reports for insecure-bank 
gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.208 ms) : 1195, 1220
.   : milestone, 1208,
iast (3.265 ms) : 3220, 3311
.   : milestone, 3265,
iast_FULL (6.074 ms) : 6012, 6136
.   : milestone, 6074,
iast_GLOBAL (3.617 ms) : 3567, 3668
.   : milestone, 3617,
profiling (1.966 ms) : 1948, 1983
.   : milestone, 1966,
tracing (1.804 ms) : 1789, 1820
.   : milestone, 1804,
section candidate
no_agent (1.201 ms) : 1189, 1213
.   : milestone, 1201,
iast (3.211 ms) : 3169, 3254
.   : milestone, 3211,
iast_FULL (6.07 ms) : 6008, 6132
.   : milestone, 6070,
iast_GLOBAL (3.711 ms) : 3645, 3776
.   : milestone, 3711,
profiling (1.966 ms) : 1949, 1983
.   : milestone, 1966,
tracing (1.792 ms) : 1778, 1806
.   : milestone, 1792,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 1.208 ms [1.195 ms, 1.22 ms] -
iast 3.265 ms [3.22 ms, 3.311 ms] 2.058 ms (170.4%)
iast_FULL 6.074 ms [6.012 ms, 6.136 ms] 4.866 ms (402.9%)
iast_GLOBAL 3.617 ms [3.567 ms, 3.668 ms] 2.41 ms (199.5%)
profiling 1.966 ms [1.948 ms, 1.983 ms] 757.937 µs (62.8%)
tracing 1.804 ms [1.789 ms, 1.82 ms] 596.609 µs (49.4%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 1.201 ms [1.189 ms, 1.213 ms] -
iast 3.211 ms [3.169 ms, 3.254 ms] 2.011 ms (167.4%)
iast_FULL 6.07 ms [6.008 ms, 6.132 ms] 4.869 ms (405.5%)
iast_GLOBAL 3.711 ms [3.645 ms, 3.776 ms] 2.51 ms (209.0%)
profiling 1.966 ms [1.949 ms, 1.983 ms] 764.953 µs (63.7%)
tracing 1.792 ms [1.778 ms, 1.806 ms] 590.931 µs (49.2%)
Request duration reports for petclinic 
gantt
    title petclinic - request duration [CI 0.99] : candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67
    dateFormat X
    axisFormat %s
section baseline
no_agent (18.133 ms) : 17946, 18321
.   : milestone, 18133,
appsec (20.411 ms) : 20206, 20616
.   : milestone, 20411,
code_origins (17.491 ms) : 17316, 17666
.   : milestone, 17491,
iast (18.455 ms) : 18270, 18640
.   : milestone, 18455,
profiling (19.109 ms) : 18914, 19304
.   : milestone, 19109,
tracing (18.611 ms) : 18424, 18798
.   : milestone, 18611,
section candidate
no_agent (18.176 ms) : 17987, 18365
.   : milestone, 18176,
appsec (19.618 ms) : 19417, 19819
.   : milestone, 19618,
code_origins (17.393 ms) : 17222, 17563
.   : milestone, 17393,
iast (18.247 ms) : 18062, 18432
.   : milestone, 18247,
profiling (19.518 ms) : 19322, 19714
.   : milestone, 19518,
tracing (18.376 ms) : 18192, 18559
.   : milestone, 18376,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 18.133 ms [17.946 ms, 18.321 ms] -
appsec 20.411 ms [20.206 ms, 20.616 ms] 2.278 ms (12.6%)
code_origins 17.491 ms [17.316 ms, 17.666 ms] -641.94 µs (-3.5%)
iast 18.455 ms [18.27 ms, 18.64 ms] 321.566 µs (1.8%)
profiling 19.109 ms [18.914 ms, 19.304 ms] 975.948 µs (5.4%)
tracing 18.611 ms [18.424 ms, 18.798 ms] 477.438 µs (2.6%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 18.176 ms [17.987 ms, 18.365 ms] -
appsec 19.618 ms [19.417 ms, 19.819 ms] 1.442 ms (7.9%)
code_origins 17.393 ms [17.222 ms, 17.563 ms] -783.325 µs (-4.3%)
iast 18.247 ms [18.062 ms, 18.432 ms] 71.134 µs (0.4%)
profiling 19.518 ms [19.322 ms, 19.714 ms] 1.342 ms (7.4%)
tracing 18.376 ms [18.192 ms, 18.559 ms] 199.942 µs (1.1%)

Dacapo

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master alejandro.gonzalez/Fix-NullPointerException-in-ApplicationModuleImpl
git_commit_date 1761727111 1761741411
git_commit_sha 949ee8c a7a1623
release_version 1.55.0-SNAPSHOT~949ee8ce67 1.55.0-SNAPSHOT~a7a1623a7b
See matching parameters
Baseline Candidate
application biojava biojava
ci_job_date 1761743356 1761743356
ci_job_id 1204077495 1204077495
ci_pipeline_id 80599591 80599591
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-0-0eum0s25 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-0-0eum0s25 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 10 metrics, 2 unstable metrics.

Execution time for tomcat 
gantt
    title tomcat - execution time [CI 0.99] : candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.471 ms) : 1460, 1483
.   : milestone, 1471,
appsec (2.494 ms) : 2441, 2547
.   : milestone, 2494,
iast (2.2 ms) : 2137, 2263
.   : milestone, 2200,
iast_GLOBAL (2.242 ms) : 2178, 2307
.   : milestone, 2242,
profiling (2.052 ms) : 2001, 2104
.   : milestone, 2052,
tracing (2.035 ms) : 1986, 2085
.   : milestone, 2035,
section candidate
no_agent (1.473 ms) : 1462, 1485
.   : milestone, 1473,
appsec (3.666 ms) : 3453, 3879
.   : milestone, 3666,
iast (2.205 ms) : 2141, 2268
.   : milestone, 2205,
iast_GLOBAL (2.247 ms) : 2184, 2311
.   : milestone, 2247,
profiling (2.469 ms) : 2308, 2631
.   : milestone, 2469,
tracing (2.028 ms) : 1978, 2078
.   : milestone, 2028,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.471 ms [1.46 ms, 1.483 ms] -
appsec 2.494 ms [2.441 ms, 2.547 ms] 1.023 ms (69.5%)
iast 2.2 ms [2.137 ms, 2.263 ms] 728.72 µs (49.5%)
iast_GLOBAL 2.242 ms [2.178 ms, 2.307 ms] 771.332 µs (52.4%)
profiling 2.052 ms [2.001 ms, 2.104 ms] 581.148 µs (39.5%)
tracing 2.035 ms [1.986 ms, 2.085 ms] 564.292 µs (38.4%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.473 ms [1.462 ms, 1.485 ms] -
appsec 3.666 ms [3.453 ms, 3.879 ms] 2.193 ms (148.8%)
iast 2.205 ms [2.141 ms, 2.268 ms] 731.212 µs (49.6%)
iast_GLOBAL 2.247 ms [2.184 ms, 2.311 ms] 773.829 µs (52.5%)
profiling 2.469 ms [2.308 ms, 2.631 ms] 996.142 µs (67.6%)
tracing 2.028 ms [1.978 ms, 2.078 ms] 554.825 µs (37.7%)
Execution time for biojava 
gantt
    title biojava - execution time [CI 0.99] : candidate=1.55.0-SNAPSHOT~a7a1623a7b, baseline=1.55.0-SNAPSHOT~949ee8ce67
    dateFormat X
    axisFormat %s
section baseline
no_agent (14.817 s) : 14817000, 14817000
.   : milestone, 14817000,
appsec (14.963 s) : 14963000, 14963000
.   : milestone, 14963000,
iast (18.566 s) : 18566000, 18566000
.   : milestone, 18566000,
iast_GLOBAL (17.97 s) : 17970000, 17970000
.   : milestone, 17970000,
profiling (15.393 s) : 15393000, 15393000
.   : milestone, 15393000,
tracing (15.477 s) : 15477000, 15477000
.   : milestone, 15477000,
section candidate
no_agent (15.521 s) : 15521000, 15521000
.   : milestone, 15521000,
appsec (14.925 s) : 14925000, 14925000
.   : milestone, 14925000,
iast (18.565 s) : 18565000, 18565000
.   : milestone, 18565000,
iast_GLOBAL (18.312 s) : 18312000, 18312000
.   : milestone, 18312000,
profiling (15.343 s) : 15343000, 15343000
.   : milestone, 15343000,
tracing (15.562 s) : 15562000, 15562000
.   : milestone, 15562000,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 14.817 s [14.817 s, 14.817 s] -
appsec 14.963 s [14.963 s, 14.963 s] 146.0 ms (1.0%)
iast 18.566 s [18.566 s, 18.566 s] 3.749 s (25.3%)
iast_GLOBAL 17.97 s [17.97 s, 17.97 s] 3.153 s (21.3%)
profiling 15.393 s [15.393 s, 15.393 s] 576.0 ms (3.9%)
tracing 15.477 s [15.477 s, 15.477 s] 660.0 ms (4.5%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 15.521 s [15.521 s, 15.521 s] -
appsec 14.925 s [14.925 s, 14.925 s] -596.0 ms (-3.8%)
iast 18.565 s [18.565 s, 18.565 s] 3.044 s (19.6%)
iast_GLOBAL 18.312 s [18.312 s, 18.312 s] 2.791 s (18.0%)
profiling 15.343 s [15.343 s, 15.343 s] -178.0 ms (-1.1%)
tracing 15.562 s [15.562 s, 15.562 s] 41.0 ms (0.3%)

@jandro996 jandro996 marked this pull request as ready for review October 29, 2025 14:21
@jandro996 jandro996 requested a review from a team as a code owner October 29, 2025 14:21
@jandro996 jandro996 merged commit 74cc32f into master Oct 30, 2025
543 checks passed
@jandro996 jandro996 deleted the alejandro.gonzalez/Fix-NullPointerException-in-ApplicationModuleImpl branch October 30, 2025 13:31
@github-actions github-actions bot added this to the 1.55.0 milestone Oct 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@manuel-alvarez-alvarez manuel-alvarez-alvarez manuel-alvarez-alvarez approved these changes

@smola smola Awaiting requested review from smola smola is a code owner automatically assigned from DataDog/asm-java

@sezen-datadog sezen-datadog Awaiting requested review from sezen-datadog sezen-datadog is a code owner automatically assigned from DataDog/asm-java

Assignees

No one assigned

Labels

comp: asm iast Application Security Management (IAST) type: bug Bug report and fix

Projects

None yet

Milestone

1.55.0

Development

Successfully merging this pull request may close these issues.

3 participants

@jandro996 @manuel-alvarez-alvarez