Bump ddtrace from 2.1.7 to 2.2.0

[dependabot]

Bumps ddtrace from 2.1.7 to 2.2.0.

Release notes

Sourced from ddtrace's releases.

2.2.0

New Features

• CI Visibility: adds ITR support for unittest

• CI Visibility: adds start/end line support for pytest test spans

• CI Visibility: adds start/end line source file data to unittest test spans

• aiohttp: This introduces basic tracing of streaming responses that stay open long after the on_prepare signal has been sent.

• CI Visibility: introduce pytest hooks for modifying the module, suite, and test naming logic

• CI Visibility: add support for AWS Codepipeline to CI env var gathering

• datastreams: this change adds message payload size metrics and aggregations for Kafka.

• structlog: Wraps get_logger function in order to add datadog injection processor regardless of configuration

• openai: This adds support for openai v1.

• Source Code: filters Git repo URLs from env vars and setuptools

• logbook: This introduces log correlation for the logbook library. Refer to logbook-docs <ddtrace.contrib.logbook> for more details.

• loguru: This introduces log correlation for the loguru library. Refer to loguru-docs <ddtrace.contrib.loguru> for more details.

• openai: This adds support for tagging function call arguments when using OpenAI's function calling feature.

• Adds ARM64 support for Single-Step instrumentation

• structlog: This introduces log correlation for the structlog library. Refer to structlog-docs <ddtrace.contrib.structlog> for more details.

• celery: Adds Python 3.11 and 3.12 support for the celery integration.

• CI Visibility: adds full test suite level visibility for unittest

• ASM: Add support for automatic user login events in Flask when using flask_login.

• tracer: This introduces collection of inferred service names. The agent version v7.46.0 contains a new field "extra_services" in the remote config client, that allows clients to list any additional services that are used within tracer spans. Knowing all service names used by a tracer instance help the UI give better feedback to the user.

• tracer: Adds support for DD_TRACE_METHODS. This feature enables the
  specification of custom methods to be instrumented by the tracer when using ddtrace-run. See the configuration documentation for more information: https://ddtrace.readthedocs.io/en/v2.1.0/configuration.html.

• openai: This introduces official tracing support for Azure OpenAI services, specifically for completions, chat completions, and embeddings using models deployed on Azure OpenAI endpoints.

• elasticsearch: This introduces tracing for Elasticsearch 8 and the async Elasticsearch client.

• Vulnerability Management for Code-level (IAST): Server-Side Request Forgery (SSRF) vulnerability detection, which will be displayed on your DataDog Vulnerability Explorer dashboard. See the Application Vulnerability Management documentation for more information about this feature.

• Vulnerability Management for Code-level (IAST): Weak randomness vulnerability detection.

• pymemcache: add DD_TRACE_MEMCACHED_COMMAND_ENABLED environment variable for configuring the collection of memcached commands. This feature is disabled by default.

• wsgi: This change introduces the keyword argument app_is_iterator to the DDWSGIMiddleware constructor. It's provided as a workaround for an issue where the Datadog WSGI middleware would fail to handle WSGI apps that are not their own iterators. This condition can arise when a Django app attempts to send its "request finished" signal, in which case it may cause connection leaks. Standard methods of distinguishing an iterable from its iterator, such as checking for the presence of iter and next dunder methods, don't work in this case for unknown reasons. Instead of adding brittle special-case detection logic to the middleware, this new argument allows users to indicate when this is the case.

Known Issues

• ASM: fix a body read problem on some corner case where passing empty content length makes wsgi.input.read() blocks.

Upgrade Notes

• The wrapt and psutil packages are vendored to help users avoid building these packages if wheels were not available for a given platform. This reverses a change released in v2.0.0.
• pymemcache: The memcached.query span tag will no longer be set by the integration. This command includes keys that can potentially contain sensitive information. If you require this span tag, you can retain the existing functionality by setting DD_TRACE_MEMCACHED_COMMAND_ENABLED=true. This span tag can be redacted using DD_APM_REPLACE_TAGS in your Agent configuration.

Bug Fixes

• Application Security Management (ASM): fix a body read error when Transfer-Encoding: chunked header is sent
• CI Visibility: fixes an issue where class-based test methods with the same name across classes would be considered duplicates, and cause one (or more) tests to be dropped from results, by adding --ddtrace-include-class-name as an optional flag (defaulting to false) to prepend the class name to the test name.

... (truncated)

Commits

• db48b01 chore: fix inconsistency in release process by updating 2.2 from 2.x (#7589)
• e38aad9 feat(iast): vulnerability deduplication (#7582)
• c68ae58 chore(test): change teardown to teardown_module (#7584)
• c0b6911 refactor(rcm): remove code duplication in subscriber service (#7535)
• a45b659 fix(ci_visibility): only enable coverage if test skipping is enabled (#7564)
• eb220c9 feat(openai): add support for openai v1 (#7513)
• b4eb548 feat(logbook): add logbook integration (#7448)
• 0109310 fix(loguru): moves injection of trace values to extra field (#7536)
• d279c28 chore: com2ann tracer.py (#7556)
• 458361a chore(aiohttp): add support for StreamResponse (#7551)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Thank you for your pull request! We could not find a changelog entry for this change. For details on how to document a change, see the contributing guide.

[github-actions]

Thank you for your pull request! We could not find a changelog entry for this change. For details on how to document a change, see the contributing guide.

[github-actions]

Thank you for your pull request! We could not find a changelog entry for this change. For details on how to document a change, see the contributing guide.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (ab90c77) 86.58% compared to head (0885961) 86.57%.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #9103      +/-   ##
==========================================
- Coverage   86.58%   86.57%   -0.02%     
==========================================
  Files         179      179              
  Lines       26539    26539              
==========================================
- Hits        22980    22976       -4     
- Misses       3559     3563       +4     

Flag	Coverage Δ
integration	83.44% <ø> (-0.02%)	⬇️
unit	64.95% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[emmyoop]

This breaks our windows tests. Tracked in #9095.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.