datadog-agent icon indicating copy to clipboard operation
datadog-agent copied to clipboard

Published 20 hours ago verified publisher icon DataDog

Bump github.com/DataDog/go-libddwaf/v3 from 3.3.0 to 3.4.0

Open dependabot[bot] opened this issue 1 year ago • 1 comments

Bumps github.com/DataDog/go-libddwaf/v3 from 3.3.0 to 3.4.0.

Release notes

Sourced from github.com/DataDog/go-libddwaf/v3's releases.

v3.4.0

What's Changed

New Contributors

Full Changelog: https://github.com/DataDog/go-libddwaf/compare/v3.3.0...v3.4.0

Commits
  • c26efc5 feat: WAF Run Scope support for RASP Metrics (#109)
  • 8cab7e7 Don't ignore errors during loading libddwaf shared library (#107)
  • 0ca2830 chore: upgrade libddwaf 1.18.0 -> 1.19.1 (#108)
  • 5eb76be feat(lib): use memfd on linux instead of dumping libddwaf.so in /tmp (#106)
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Sep 16 '24 20:09 dependabot[bot]

Regression Detector

Regression Detector Results

Run ID: 1b90ce64-cc42-413a-a958-f38b863e8b4b Metrics dashboard Target profiles

Baseline: f78e4b2f9772aeadf9fa3197b774dfe6e3d8a345 Comparison: fb597fd427d2a23b3ce283226befb574b6d1d4fb

Performance changes are noted in the perf column of each table:

  • ✅ = significantly better comparison variant performance
  • ❌ = significantly worse comparison variant performance
  • ➖ = no significant change in performance

No significant changes in experiment optimization goals

Confidence level: 90.00% Effect size tolerance: |Δ mean %| ≥ 5.00%

There were no significant changes in experiment optimization goals at this confidence level and effect size tolerance.

Fine details of change detection per experiment

perf experiment goal Δ mean % Δ mean % CI trials links
uds_dogstatsd_to_api_cpu % cpu utilization +1.35 [+0.58, +2.12] 1 Logs
file_tree memory utilization +0.67 [+0.56, +0.78] 1 Logs
otel_to_otel_logs ingress throughput +0.64 [-0.19, +1.47] 1 Logs
idle memory utilization +0.20 [+0.16, +0.25] 1 Logs
uds_dogstatsd_to_api ingress throughput +0.00 [-0.00, +0.00] 1 Logs
tcp_dd_logs_filter_exclude ingress throughput -0.00 [-0.01, +0.01] 1 Logs
pycheck_lots_of_tags % cpu utilization -0.22 [-2.86, +2.42] 1 Logs
basic_py_check % cpu utilization -0.44 [-3.24, +2.35] 1 Logs
tcp_syslog_to_blackhole ingress throughput -0.57 [-0.62, -0.52] 1 Logs

Bounds Checks

perf experiment bounds_check_name replicates_passed
idle memory_usage 10/10

Explanation

A regression test is an A/B test of target performance in a repeatable rig, where "performance" is measured as "comparison variant minus baseline variant" for an optimization goal (e.g., ingress throughput). Due to intrinsic variability in measuring that goal, we can only estimate its mean value for each experiment; we report uncertainty in that value as a 90.00% confidence interval denoted "Δ mean % CI".

For each experiment, we decide whether a change in performance is a "regression" -- a change worth investigating further -- if all of the following criteria are true:

  1. Its estimated |Δ mean %| ≥ 5.00%, indicating the change is big enough to merit a closer look.

  2. Its 90.00% confidence interval "Δ mean % CI" does not contain zero, indicating that if our statistical model is accurate, there is at least a 90.00% chance there is a difference in performance between baseline and comparison variants.

  3. Its configuration does not mark it "erratic".

pr-commenter[bot] avatar Sep 17 '24 08:09 pr-commenter[bot]

@dependabot recreate

paulcacheux avatar Nov 03 '24 09:11 paulcacheux

A newer version of github.com/DataDog/go-libddwaf/v3 exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

dependabot[bot] avatar Feb 10 '25 20:02 dependabot[bot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot[bot] avatar Feb 12 '25 07:02 dependabot[bot]