DataDog
diff --git a/‎.circleci/config.continue.yml.j2‎
Lines changed: 10 additions & 1 deletion b/‎.circleci/config.continue.yml.j2‎
Lines changed: 10 additions & 1 deletion
diff --git a/‎.github/CODEOWNERS‎
Lines changed: 1 addition & 0 deletions b/‎.github/CODEOWNERS‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/bug_report.yaml‎
Lines changed: 60 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/bug_report.yaml‎
Lines changed: 60 additions & 0 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 5 additions & 5 deletions b/‎.github/ISSUE_TEMPLATE/config.yml‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎.github/ISSUE_TEMPLATE/feature_request.yaml‎
Lines changed: 49 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/feature_request.yaml‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎.github/workflows/README.md‎
Lines changed: 12 additions & 11 deletions b/‎.github/workflows/README.md‎
Lines changed: 12 additions & 11 deletions
diff --git a/‎.github/workflows/analyze-changes.yaml‎
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/analyze-changes.yaml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/create-next-milestone.yaml‎
Lines changed: 0 additions & 22 deletions b/‎.github/workflows/create-next-milestone.yaml‎
Lines changed: 0 additions & 22 deletions
diff --git a/‎.github/workflows/update-docker-build-image.yaml‎
Lines changed: 74 additions & 0 deletions b/‎.github/workflows/update-docker-build-image.yaml‎
Lines changed: 74 additions & 0 deletions
diff --git a/‎SECURITY.md‎
Lines changed: 9 additions & 3 deletions b/‎SECURITY.md‎
Lines changed: 9 additions & 3 deletions
@@ -36,7 +36,7 @@ instrumentation_modules: &instrumentation_modules "dd-java-agent/instrumentation
 debugger_modules: &debugger_modules "dd-java-agent/agent-debugger|dd-java-agent/agent-bootstrap|dd-java-agent/agent-builder|internal-api|communication|dd-trace-core"
 profiling_modules: &profiling_modules "dd-java-agent/agent-profiling"
 
-default_system_tests_commit: &default_system_tests_commit c6e54d143cfdf97b2f0a815f22f53247c119f635
+default_system_tests_commit: &default_system_tests_commit 2cb5033072c1813eccdce332153a378607e73d85
 
 parameters:
  nightly:
@@ -422,6 +422,7 @@ jobs:
  -PgitBaseRef=origin/{{ pr_base_ref }}
 {% endif %}
  -PrunBuildSrcTests
+ -PskipSpotless
  -PtaskPartitionCount=${CIRCLE_NODE_TOTAL} -PtaskPartition=${CIRCLE_NODE_INDEX}
  << pipeline.parameters.gradle_flags >>
  --max-workers=8
@@ -1107,12 +1108,20 @@ build_test_jobs: &build_test_jobs
  gradleTarget: ":profilingCheck"
  cacheType: profiling
 
+ - check:
+ requires:
+ - ok_to_test
+ name: check_debugger
+ gradleTarget: ":debuggerCheck"
+ cacheType: base
+
  - fan_in:
  requires:
  - check_base
  - check_inst
  - check_smoke
  - check_profiling
+ - check_debugger
  name: check
  stage: check
 
 
@@ -29,6 +29,7 @@ dd-java-agent/instrumentation/testng/ @DataDog/ci-app-libraries-java
 dd-java-agent/instrumentation/gradle-3.0/ @DataDog/ci-app-libraries-java
 dd-java-agent/instrumentation/gradle-8.3/ @DataDog/ci-app-libraries-java
 dd-java-agent/instrumentation/maven-3.2.1/ @DataDog/ci-app-libraries-java
+dd-java-agent/instrumentation/weaver/ @DataDog/ci-app-libraries-java
 dd-smoke-tests/gradle/ @DataDog/ci-app-libraries-java
 dd-smoke-tests/maven/ @DataDog/ci-app-libraries-java
 **/civisibility/ @DataDog/ci-app-libraries-java
 
@@ -0,0 +1,60 @@
+name: "Bug Report (Low Priority)"
+description: "Create a public Bug Report. Note that these may not be addressed as it depeonds on capacity and that looking up account information will be difficult."
+labels: "type: bug"
+body:
+ - type: input
+ attributes:
+ label: Tracer Version(s)
+ description: "Version(s) of the tracer affected by this bug"
+ placeholder: "1.44.0"
+ validations:
+ required: true
+
+ - type: input
+ attributes:
+ label: Java Version(s)
+ description: "Version(s) of Java (`java --version`) that you've encountered this bug with"
+ placeholder: 21.0.4
+ validations:
+ required: true
+
+ - type: dropdown
+ attributes:
+ label: JVM Vendor
+ description: "Which JVM vendor does your application use"
+ options:
+ - Oracle JDK
+ - Alibaba Dragonwell
+ - Amazon Corretto
+ - Azul Zing / Zulu
+ - BellSoft Liberica JDK
+ - Eclipse Adoptium / Temurin
+ - Eclipse OpenJ9
+ - IBM SDK / Semeru
+ - Oracle GraalVM
+ - RedHat JDK
+ - SapMachine
+ - Other (please specify in comments)
+ validations:
+ required: true
+
+ - type: textarea
+ attributes:
+ label: Bug Report
+ description: Please add a clear and concise description of the bug here
+ validations:
+ required: true
+
+ - type: textarea
+ attributes:
+ label: Expected Behavior
+ description: What is the expected behavior
+ validations:
+ required: true
+
+ - type: textarea
+ attributes:
+ label: Reproduction Code
+ description: Please add code here to help us reproduce the problem
+ validations:
+ required: false
@@ -1,8 +1,8 @@
-blank_issues_enabled: true
+blank_issues_enabled: false
 contact_links:
- - name: Bug Report
+ - name: Bug Report (High Priority)
  url: https://help.datadoghq.com/hc/en-us/requests/new?tf_1260824651490=pt_product_type:apm&tf_1900004146284=pt_apm_language:java
- about: This option creates an expedited Bug Report via the helpdesk (no login required). This will allow us to look up your account and allows you to provide additional information in private.
- - name: Feature Request
+ about: Create an expedited Bug Report via the helpdesk (no login required). This will allow us to look up your account and allows you to provide additional information in private.
+ - name: Feature Request (High Priority)
  url: https://help.datadoghq.com/hc/en-us/requests/new?tf_1260824651490=pt_product_type:apm&tf_1900004146284=pt_apm_language:java&tf_1260825272270=pt_apm_category_feature_request
- about: This option creates an expedited Feature Request via the helpdesk (no login required). This helps with prioritization and allows you to provide additional information in private.
+ about: Create an expedited Feature Request via the helpdesk (no login required). This helps with prioritization and allows you to provide additional information in private.
@@ -0,0 +1,49 @@
+name: Feature Request (Low Priority)
+description: Create a public Feature Request. Note that these may not be addressed as it depeonds on capacity and that looking up account information will be difficult.
+labels: "type: feature request"
+body:
+ - type: input
+ attributes:
+ label: Library Name
+ description: "If your feature request is to add instrumentation support for a library please provide the name here"
+ placeholder: "spring-boot"
+ validations:
+ required: false
+
+ - type: input
+ attributes:
+ label: Library Version(s)
+ description: "If your feature request is to add instrumentation support for a library please provide the version you use"
+ placeholder: "1.2"
+ validations:
+ required: false
+
+ - type: textarea
+ attributes:
+ label: Describe the feature you'd like
+ description: A clear and concise description of what you want to happen.
+ validations:
+ required: true
+
+ - type: textarea
+ attributes:
+ label: Is your feature request related to a problem?
+ description: |
+ Please add a clear and concise description of your problem.
+ E.g. I'm unable to instrument my database queries...
+ validations:
+ required: false
+
+ - type: textarea
+ attributes:
+ label: Describe alternatives you've considered
+ description: A clear and concise description of any alternative solutions or features you've considered
+ validations:
+ required: false
+
+ - type: textarea
+ attributes:
+ label: Additional context
+ description: Add any other context or screenshots about the feature request here
+ validations:
+ required: false
@@ -28,15 +28,6 @@ _Action:_ Check the pull request complies with [the contribution guidelines](htt
 
 _Recovery:_ Manually verify the guideline compliance.
 
-### create-next-milestone [🔗](create-next-milestone.yaml)
-
-_Trigger:_ When closing a milestone.
-
-_Action:_ Create a new milestone by incrementing minor version.
-
-_Comment:_ Disabled as also covered by increment-milestone-on-tag.
-This will be removed after some testing. 
-
 ### draft-release-notes-on-tag [🔗](draft-release-notes-on-tag.yaml)
 
 _Trigger:_ When creating a tag, or manually (providing a tag)
@@ -62,6 +53,16 @@ _Recovery:_ Manually [close the related milestone and create a new one](https://
 
 _Notes:_ This action will not apply to release candidate versions using `-RC` tags.
 
+### update-docker-build-image [🔗](update-docker-build-image.yaml)
+
+_Trigger:_ Quarterly released, loosely [a day after the new image tag is created](https://github.com/DataDog/dd-trace-java-docker-build/blob/master/.github/workflows/docker-tag.yml).
+
+_Action:_ Update the Docker build image used in CircleCI and GitLab CI with the latest tag.
+
+_Recovery:_ Download artifacts and upload them manually to the related _download release_.
+
+_Notes:_ Manually trigger the action again given the desired image tag as input.
+
 ### update-download-releases [🔗](update-download-releases.yaml)
 
 _Trigger:_ When a release is published.
@@ -103,7 +104,7 @@ _Recovery:_ Manually trigger the action again.
 
 ## Code Quality and Security
 
-### analyze-changes [🔗](analyze-changes-with-github-codeql.yaml)
+### analyze-changes [🔗](analyze-changes.yaml)
 
 _Trigger:_ When pushing commits to `master` or any pull request targeting `master`.
 
@@ -121,7 +122,7 @@ _Trigger:_ When creating a PR commits to `master` or a `release/*` branch with a
 
 _Action:_ Notify the PR author through comments that about the Git Submodule update.
 
-### update-gradle-dependencies [🔗](update-gradle-dependencies.yml)
+### update-gradle-dependencies [🔗](update-gradle-dependencies.yaml)
 
 _Trigger:_ Every week or manually.
 
 
@@ -51,7 +51,7 @@ jobs:
  submodules: 'recursive'
 
  - name: Cache Gradle dependencies
- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
+ uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
  with:
  path: |
  ~/.gradle/caches
@@ -113,7 +113,7 @@ jobs:
  submodules: 'recursive'
 
  - name: Cache Gradle dependencies
- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
+ uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
  with:
  path: |
  ~/.gradle/caches
 
@@ -0,0 +1,74 @@
+name: Update Docker Build Image
+
+on:
+ schedule:
+ # A day after creating the tag from https://github.com/DataDog/dd-trace-java-docker-build/blob/master/.github/workflows/docker-tag.yml
+ - cron: '0 0 1 2,5,8,11 *'
+ workflow_dispatch:
+ inputs:
+ tag:
+ description: 'The tag to use for the Docker build image'
+ required: true
+ default: 'vYY.MM-base'
+ 
+jobs:
+ update-docker-build-image:
+ runs-on: ubuntu-latest
+ permissions:
+ contents: write # Required to commit and push changes to a new branch
+ pull-requests: write # Required to create a pull request
+ steps:
+ - name: Checkout the repository
+ uses: actions/checkout@v2
+ - name: Download ghcommit CLI
+ run: |
+ curl https://github.com/planetscale/ghcommit/releases/download/v0.1.48/ghcommit_linux_amd64 -o /usr/local/bin/ghcommit -L
+ chmod +x /usr/local/bin/ghcommit
+ - name: Pick a branch name
+ id: define-branch
+ run: echo "branch=ci/update-docker-build-image-$(date +'%Y%m%d')" >> $GITHUB_OUTPUT
+ - name: Create branch
+ run: |
+ git checkout -b ${{ steps.define-branch.outputs.branch }}
+ git push -u origin ${{ steps.define-branch.outputs.branch }} --force
+ - name: Define the Docker build image tage to use
+ id: define-tag
+ run: |
+ if [ -n "${{ github.event.inputs.tag }}" ]; then
+ TAG=${{ github.event.inputs.tag }}
+ else
+ CURRENT_MONTH=$(date +%m)
+ CURRENT_YEAR=$(date +%y)
+ case $CURRENT_MONTH in
+ 01) TAG_DATE="$(($CURRENT_YEAR - 1)).10" ;;
+ 02|03|04) TAG_DATE="${CURRENT_YEAR}.01" ;;
+ 05|06|07) TAG_DATE="${CURRENT_YEAR}.04" ;;
+ 08|09|10) TAG_DATE="${CURRENT_YEAR}.07" ;;
+ 11|12) TAG_DATE="${CURRENT_YEAR}.10" ;;
+ esac
+ TAG="v${TAG_DATE}-base"
+ fi
+ echo "tag=${TAG}" >> "$GITHUB_OUTPUT"
+ echo "::notice::Using Docker build image tag: ${TAG}"
+ - name: Update the Docker build image in CircleCI config
+ run: |
+ sed -i 's|DOCKER_IMAGE_VERSION=.*|DOCKER_IMAGE_VERSION="${{ steps.define-tag.outputs.tag }}"|' .circleci/render_config.py
+ - name: Update the Docker build image in GitLab CI config
+ run: |
+ sed -i 's|image: ghcr.io/datadog/dd-trace-java-docker-build:.*|image: ghcr.io/datadog/dd-trace-java-docker-build:${{ steps.define-tag.outputs.tag }}|' .gitlab-ci.yml
+ - name: Commit and push changes
+ env:
+ GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+ run: |
+ ghcommit --repository ${{ github.repository }} --branch ${{ steps.define-branch.outputs.branch }} --add .circleci/render_config.py --add .gitlab-ci.yml --message "feat(ci): Update Docker build image"
+ - name: Create pull request
+ env:
+ GH_TOKEN: ${{ github.token }}
+ run: |
+ gh pr create --title "Update Docker build image" \
+ --base master \
+ --head ${{ steps.define-branch.outputs.branch }} \
+ --label "comp: tooling" \
+ --label "type: enhancement" \
+ --label "tag: no release notes" \
+ --body "This PR updates the Docker build image to ${{ steps.define-tag.outputs.tag }}."
@@ -1,5 +1,11 @@
-# Security
+# Security Policy
 
-## Security Vulnerabilities
+This document outlines the security policy for the Datadog Java client library (aka Java tracer) and what to do if you discover a security vulnerability in the project.
+Most notably, please do not share the details in a public forum (such as in a discussion, issue, or pull request) but instead reach out to us with the details.
+This gives us an opportunity to release a fix for others to benefit from by the time details are made public.
 
-If you have found a security issue, please contact the security team directly at security@datadoghq.com.
+## Reporting a Vulnerability
+
+If you discover a vulnerability in the Datadog Java client library (or any Datadog product for that matter) please submit details to the following email address:
+
+* [security@datadoghq.com](mailto:security@datadoghq.com)