fix(iast): wrong memory address in subprocess in mcp servers #15514

avara1986 · 2025-12-04T15:33:13Z

IAST-enabled applications using Gunicorn/Uvicorn workers were experiencing segmentation faults (~33% crash rate on MCP streaming requests) due to memory corruption when processes fork.

Root Cause

C++ global singletons (taint_engine_context, initializer) initialized at module load
Taint maps storing PyObject pointers by memory address
Child processes after fork inherited stale pointers from parent process memory
Accessing these stale pointers → use-after-free → SIGSEGV crash

Solution

Implemented pthread_atfork handler that automatically resets C++ global state in child processes after every fork:
Added comprehensive null-check wrappers around all native functions to prevent crashes when native state is
Fixed test regression issues where context slots weren't being freed:

ASAN Verification

AddressSanitizer (ASAN) is a fast memory error detector that catches use-after-free, buffer overflows, and other memory corruption bugs at runtime.

1. Runtime Environment (No Recompilation Required)

The simplest way to test is using LD_PRELOAD with the system's libasan:

# Find your system's ASAN library
ASAN_LIB=$(gcc -print-file-name=libasan.so)

# Run tests with ASAN enabled
LD_PRELOAD=$ASAN_LIB \
ASAN_OPTIONS="detect_leaks=0:symbolize=1:abort_on_error=0" \
python3 -m pytest tests/appsec/iast/test_fork_handler_regression.py -v

ASAN_OPTIONS explained:

detect_leaks=0 - Disable leak detection (Python has many false positives)
symbolize=1 - Show human-readable stack traces
abort_on_error=0 - Continue after first error (collect all errors)

2. Build with ASAN (Optional, for deeper analysis)

For more thorough testing, compile the native extension with ASAN:

# Set compilation flags
export CFLAGS="-fsanitize=address -fno-omit-frame-pointer -g"
export CXXFLAGS="-fsanitize=address -fno-omit-frame-pointer -g"
export LDFLAGS="-fsanitize=address"

# Rebuild the extension
pip install --no-build-isolation --force-reinstall -e .

# Run tests (LD_PRELOAD not needed when compiled with ASAN)
ASAN_OPTIONS="detect_leaks=0:symbolize=1:abort_on_error=0" \
python3 -m pytest tests/appsec/iast/test_fork_handler_regression.py -v

Minimal Reproduction Test

This script demonstrates the fork safety fix and can be used to verify ASAN finds no errors:

#!/usr/bin/env python3
"""Minimal fork safety reproduction test for ASAN verification."""
import os
from ddtrace.appsec._iast._taint_tracking import OriginType
from ddtrace.appsec._iast._taint_tracking._native import initialize_native_state
from ddtrace.appsec._iast._taint_tracking._taint_objects import taint_pyobject
from ddtrace.appsec._iast._taint_tracking._context import (
    start_request_context,
    debug_context_array_free_slots_number,
    debug_num_tainted_objects
)

def main():
    print(f"[Parent PID {os.getpid()}] Initializing IAST...")

    # Initialize native state
    initialize_native_state()

    # Create context and tainted objects in parent
    ctx_id = start_request_context()
    print(f"[Parent] Context created: {ctx_id}")

    # Create some tainted objects (populates native maps)
    for i in range(10):
        taint_pyobject(f"data_{i}", "source", f"value_{i}", OriginType.PARAMETER)

    tainted_count = debug_num_tainted_objects(ctx_id)
    print(f"[Parent] Tainted objects: {tainted_count}")

    # Fork
    pid = os.fork()

    if pid == 0:
        # Child process
        print(f"[Child PID {os.getpid()}] Started after fork")

        # Verify pthread_atfork reset worked
        free_slots = debug_context_array_free_slots_number()
        print(f"[Child] Free slots: {free_slots}")

        if free_slots > 0:
            print("[Child] ✅ Context slots were reset (pthread_atfork worked!)")
            os._exit(0)  # Success
        else:
            print("[Child] ❌ Context slots NOT reset")
            os._exit(1)  # Failure
    else:
        # Parent waits for child
        _, status = os.waitpid(pid, 0)
        exit_code = os.WEXITSTATUS(status)

        if exit_code == 0:
            print(f"[Parent] ✅ Child exited cleanly - Fork safety verified!")
            return 0
        else:
            print(f"[Parent] ❌ Child failed with exit code {exit_code}")
            return 1

if __name__ == "__main__":
    exit(main())

Run with ASAN:

# Save the script as test_fork_asan.py
# Run with ASAN enabled
LD_PRELOAD=$(gcc -print-file-name=libasan.so) \
ASAN_OPTIONS="detect_leaks=0:symbolize=1:abort_on_error=0" \
python3 test_fork_asan.py

Expected output (success):

[Parent PID 12345] Initializing IAST...
[Parent] Context created: 0
[Parent] Tainted objects: 10
[Child PID 12346] Started after fork
[Child] Free slots: 2
[Child] ✅ Context slots were reset (pthread_atfork worked!)
[Parent] ✅ Child exited cleanly - Fork safety verified!

What ASAN would report WITHOUT this fix:

==12346==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000040
==12346==The signal is caused by a READ memory access.
    #0 0x7f... in get_tainted_object_map_by_ctx_id
    #1 0x7f... in debug_context_array_free_slots_number

github-actions · 2025-12-04T15:33:54Z

CODEOWNERS have been resolved as:

ddtrace/appsec/_iast/_taint_tracking/api/safe_context.cpp               @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/api/safe_context.h                 @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/api/safe_initializer.cpp           @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/api/safe_initializer.h             @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/api/utils.h                        @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/tests/test_safe_wrappers.cpp       @DataDog/asm-python
releasenotes/notes/fix-iast-fork-worker-crashes-44a1f14516fb44a2.yaml   @DataDog/apm-python
tests/appsec/iast/test_safe_wrappers_and_initialization.py              @DataDog/asm-python
.gitlab/benchmarks/bp-runner.microbenchmarks.fail-on-breach.yml         @DataDog/python-guild @DataDog/apm-core-python
ddtrace/appsec/_iast/__init__.py                                        @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/CMakeLists.txt                     @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/__init__.py                        @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_extend.cpp          @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_extend.h            @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_format.cpp          @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_format.h            @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_index.cpp           @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_index.h             @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_join.cpp            @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_join.h              @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_modulo.cpp          @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_modulo.h            @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_operator_add.cpp    @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_operator_add.h      @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_slice.cpp           @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_slice.h             @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_split.cpp           @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_split.h             @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_str.cpp             @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspect_str.h               @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspects_os_path.cpp        @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/aspects_os_path.h          @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/helpers.cpp                @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/aspects/helpers.h                  @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/context/taint_engine_context.cpp   @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/context/taint_engine_context.h     @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/native.cpp                         @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/taint_tracking/taint_range.cpp     @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/taint_tracking/taint_range.h       @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/taint_tracking/tainted_object.cpp  @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/tainted_ops/tainted_ops.cpp        @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/tests/test_helpers.cpp             @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/tests/test_index_aspect.cpp        @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/tests/test_modulo_aspect.cpp       @DataDog/asm-python
ddtrace/appsec/_iast/_taint_tracking/tests/test_taint_engine_context.cpp  @DataDog/asm-python
ddtrace/internal/settings/asm.py                                        @DataDog/asm-python
tests/appsec/iast/aspects/conftest.py                                   @DataDog/asm-python
tests/appsec/iast/aspects/test_aspect_helpers.py                        @DataDog/asm-python
tests/appsec/iast/conftest.py                                           @DataDog/asm-python
tests/appsec/iast/fixtures/integration/main_configure.py                @DataDog/asm-python
tests/appsec/iast/taint_tracking/conftest.py                            @DataDog/asm-python
tests/appsec/iast/taint_tracking/test_native_taint_range.py             @DataDog/asm-python
tests/appsec/iast/test_fork_handler_regression.py                       @DataDog/asm-python
tests/appsec/iast_memcheck/test_iast_mem_check.py                       @DataDog/asm-python
tests/appsec/integrations/django_tests/django_app/views.py              @DataDog/asm-python
tests/appsec/integrations/django_tests/test_iast_django_testagent.py    @DataDog/asm-python
tests/appsec/integrations/fastapi_tests/test_fastapi_appsec_iast.py     @DataDog/asm-python
tests/appsec/integrations/fastapi_tests/test_iast_mcp_testagent.py      @DataDog/asm-python
tests/appsec/integrations/flask_tests/test_iast_flask.py                @DataDog/asm-python
tests/appsec/integrations/packages_tests/conftest.py                    @DataDog/asm-python

github-actions · 2025-12-04T16:07:05Z

Bootstrap import analysis

Comparison of import times between this PR and base.

Summary

The average import time from this PR is: 246 ± 2 ms.

The average import time from base is: 249 ± 2 ms.

The import time difference between this PR and base is: -2.66 ± 0.08 ms.

Import time breakdown

The following import paths have shrunk:

ddtrace.auto 2.667 ms (1.08%)

ddtrace 1.376 ms (0.56%)

ddtrace._logger 0.672 ms (0.27%)

ddtrace.internal.telemetry 0.672 ms (0.27%)

ddtrace.internal.telemetry.writer 0.672 ms (0.27%)

ddtrace.internal.utils.version 0.672 ms (0.27%)

ddtrace.version 0.672 ms (0.27%)

ddtrace.internal._unpatched 0.059 ms (0.02%)

json 0.029 ms (0.01%)

json.decoder 0.029 ms (0.01%)

re 0.029 ms (0.01%)

enum 0.029 ms (0.01%)

types 0.029 ms (0.01%)

subprocess 0.029 ms (0.01%)

contextlib 0.029 ms (0.01%)

ddtrace.bootstrap.sitecustomize 1.291 ms (0.52%)

ddtrace.bootstrap.preload 1.291 ms (0.52%)

ddtrace.internal.remoteconfig.client 0.634 ms (0.26%)

pr-commenter · 2025-12-04T16:33:18Z

Performance SLOs

Comparing candidate avara1986/APPSEC-60135_iast_potencial_error (f396595) with baseline main (874de50)

📈 Performance Regressions (3 suites)

📈 iastaspects - 118/118 (1 unstable)

✅ add_aspect

Time: ✅ 0.327µs (SLO: <10.000µs 📉 -96.7%) vs baseline: 📉 -18.2%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.3%

✅ add_inplace_aspect

Time: ✅ 0.333µs (SLO: <10.000µs 📉 -96.7%) vs baseline: 📉 -17.6%

Memory: ✅ 38.398MB (SLO: <41.500MB -7.5%) vs baseline: ~same

✅ add_inplace_noaspect

Time: ✅ 0.318µs (SLO: <10.000µs 📉 -96.8%) vs baseline: +1.1%

Memory: ✅ 38.339MB (SLO: <41.500MB -7.6%) vs baseline: -0.1%

✅ add_noaspect

Time: ✅ 0.276µs (SLO: <10.000µs 📉 -97.2%) vs baseline: -1.1%

Memory: ✅ 38.299MB (SLO: <41.500MB -7.7%) vs baseline: -0.5%

✅ bytearray_aspect

Time: ✅ 1.310µs (SLO: <10.000µs 📉 -86.9%) vs baseline: -2.9%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.9%

✅ bytearray_extend_aspect

Time: ✅ 1.459µs (SLO: <10.000µs 📉 -85.4%) vs baseline: -3.3%

Memory: ✅ 38.358MB (SLO: <41.500MB -7.6%) vs baseline: -0.4%

✅ bytearray_extend_noaspect

Time: ✅ 0.618µs (SLO: <10.000µs 📉 -93.8%) vs baseline: +0.9%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.2%

✅ bytearray_noaspect

Time: ✅ 0.481µs (SLO: <10.000µs 📉 -95.2%) vs baseline: -0.4%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.2%

✅ bytes_aspect

Time: ✅ 1.271µs (SLO: <10.000µs 📉 -87.3%) vs baseline: -0.2%

Memory: ✅ 38.122MB (SLO: <41.500MB -8.1%) vs baseline: -0.6%

✅ bytes_noaspect

Time: ✅ 0.491µs (SLO: <10.000µs 📉 -95.1%) vs baseline: -0.8%

Memory: ✅ 38.378MB (SLO: <41.500MB -7.5%) vs baseline: ~same

✅ bytesio_aspect

Time: ✅ 1.310µs (SLO: <10.000µs 📉 -86.9%) vs baseline: -1.0%

Memory: ✅ 38.398MB (SLO: <41.500MB -7.5%) vs baseline: -0.3%

✅ bytesio_noaspect

Time: ✅ 0.501µs (SLO: <10.000µs 📉 -95.0%) vs baseline: +2.0%

Memory: ✅ 38.339MB (SLO: <41.500MB -7.6%) vs baseline: -0.1%

✅ capitalize_aspect

Time: ✅ 0.734µs (SLO: <10.000µs 📉 -92.7%) vs baseline: -0.9%

Memory: ✅ 38.280MB (SLO: <41.500MB -7.8%) vs baseline: -0.2%

✅ capitalize_noaspect

Time: ✅ 0.434µs (SLO: <10.000µs 📉 -95.7%) vs baseline: +0.4%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.6%

✅ casefold_aspect

Time: ✅ 0.731µs (SLO: <10.000µs 📉 -92.7%) vs baseline: -1.4%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.8%

✅ casefold_noaspect

Time: ✅ 0.368µs (SLO: <10.000µs 📉 -96.3%) vs baseline: +0.3%

Memory: ✅ 38.280MB (SLO: <41.500MB -7.8%) vs baseline: -0.3%

✅ decode_aspect

Time: ✅ 0.719µs (SLO: <10.000µs 📉 -92.8%) vs baseline: -1.0%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.5%

✅ decode_noaspect

Time: ✅ 0.420µs (SLO: <10.000µs 📉 -95.8%) vs baseline: -0.8%

Memory: ✅ 38.319MB (SLO: <41.500MB -7.7%) vs baseline: -0.4%

✅ encode_aspect

Time: ✅ 0.710µs (SLO: <10.000µs 📉 -92.9%) vs baseline: -0.1%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.6%

✅ encode_noaspect

Time: ✅ 0.400µs (SLO: <10.000µs 📉 -96.0%) vs baseline: -0.7%

Memory: ✅ 38.280MB (SLO: <41.500MB -7.8%) vs baseline: -0.4%

✅ format_aspect

Time: ✅ 3.369µs (SLO: <10.000µs 📉 -66.3%) vs baseline: -1.5%

Memory: ✅ 38.319MB (SLO: <41.500MB -7.7%) vs baseline: -1.1%

✅ format_map_aspect

Time: ✅ 3.649µs (SLO: <10.000µs 📉 -63.5%) vs baseline: +1.6%

Memory: ✅ 38.299MB (SLO: <41.500MB -7.7%) vs baseline: -0.2%

✅ format_map_noaspect

Time: ✅ 0.774µs (SLO: <10.000µs 📉 -92.3%) vs baseline: ~same

Memory: ✅ 38.476MB (SLO: <41.500MB -7.3%) vs baseline: +0.2%

✅ format_noaspect

Time: ✅ 0.598µs (SLO: <10.000µs 📉 -94.0%) vs baseline: -0.2%

Memory: ✅ 38.280MB (SLO: <41.500MB -7.8%) vs baseline: -0.2%

✅ index_aspect

Time: ✅ 0.343µs (SLO: <10.000µs 📉 -96.6%) vs baseline: -3.4%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.5%

✅ index_noaspect

Time: ✅ 0.280µs (SLO: <10.000µs 📉 -97.2%) vs baseline: +0.8%

Memory: ✅ 38.358MB (SLO: <41.500MB -7.6%) vs baseline: -0.3%

✅ join_aspect

Time: ✅ 1.245µs (SLO: <10.000µs 📉 -87.5%) vs baseline: -6.6%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.3%

✅ join_noaspect

Time: ✅ 0.488µs (SLO: <10.000µs 📉 -95.1%) vs baseline: -0.1%

Memory: ✅ 38.378MB (SLO: <41.500MB -7.5%) vs baseline: ~same

✅ ljust_aspect

Time: ✅ 2.588µs (SLO: <20.000µs 📉 -87.1%) vs baseline: +0.7%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.3%

✅ ljust_noaspect

Time: ✅ 0.405µs (SLO: <10.000µs 📉 -95.9%) vs baseline: +0.6%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.5%

✅ lower_aspect

Time: ✅ 2.277µs (SLO: <10.000µs 📉 -77.2%) vs baseline: +2.4%

Memory: ✅ 38.339MB (SLO: <41.500MB -7.6%) vs baseline: ~same

✅ lower_noaspect

Time: ✅ 0.367µs (SLO: <10.000µs 📉 -96.3%) vs baseline: +0.3%

Memory: ✅ 38.280MB (SLO: <41.500MB -7.8%) vs baseline: -0.3%

✅ lstrip_aspect

Time: ✅ 2.220µs (SLO: <20.000µs 📉 -88.9%) vs baseline: -1.2%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.6%

✅ lstrip_noaspect

Time: ✅ 0.386µs (SLO: <10.000µs 📉 -96.1%) vs baseline: +2.1%

Memory: ✅ 38.299MB (SLO: <41.500MB -7.7%) vs baseline: -0.4%

✅ modulo_aspect

Time: ✅ 0.928µs (SLO: <10.000µs 📉 -90.7%) vs baseline: -8.0%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.4%

✅ modulo_aspect_for_bytearray_bytearray

Time: ✅ 1.416µs (SLO: <10.000µs 📉 -85.8%) vs baseline: -9.0%

Memory: ✅ 38.299MB (SLO: <41.500MB -7.7%) vs baseline: -0.4%

✅ modulo_aspect_for_bytes

Time: ✅ 0.910µs (SLO: <10.000µs 📉 -90.9%) vs baseline: -6.8%

Memory: ✅ 38.221MB (SLO: <41.500MB -7.9%) vs baseline: -0.1%

✅ modulo_aspect_for_bytes_bytearray

Time: ✅ 1.125µs (SLO: <10.000µs 📉 -88.8%) vs baseline: -8.4%

Memory: ✅ 38.221MB (SLO: <41.500MB -7.9%) vs baseline: -0.6%

✅ modulo_noaspect

Time: ✅ 0.623µs (SLO: <10.000µs 📉 -93.8%) vs baseline: -0.3%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.5%

✅ replace_aspect

Time: ✅ 4.932µs (SLO: <10.000µs 📉 -50.7%) vs baseline: +0.7%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.5%

✅ replace_noaspect

Time: ✅ 0.462µs (SLO: <10.000µs 📉 -95.4%) vs baseline: ~same

Memory: ✅ 38.280MB (SLO: <41.500MB -7.8%) vs baseline: ~same

✅ repr_aspect

Time: ✅ 0.904µs (SLO: <10.000µs 📉 -91.0%) vs baseline: -0.7%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.2%

✅ repr_noaspect

Time: ✅ 0.424µs (SLO: <10.000µs 📉 -95.8%) vs baseline: +1.7%

Memory: ✅ 38.516MB (SLO: <41.500MB -7.2%) vs baseline: +0.6%

✅ rstrip_aspect

Time: ✅ 1.904µs (SLO: <20.000µs 📉 -90.5%) vs baseline: -0.3%

Memory: ✅ 38.398MB (SLO: <41.500MB -7.5%) vs baseline: -0.5%

✅ rstrip_noaspect

Time: ✅ 0.379µs (SLO: <10.000µs 📉 -96.2%) vs baseline: -0.2%

Memory: ✅ 38.260MB (SLO: <41.500MB -7.8%) vs baseline: -0.4%

⚠️ slice_aspect

Time: ⚠️ 0.936µs (SLO: <20.000µs 📉 -95.3%) vs baseline: 📈 +90.0%

Memory: ✅ 106.660MB (SLO: <110.500MB -3.5%) vs baseline: 📈 +177.4%

✅ slice_noaspect

Time: ✅ 0.449µs (SLO: <10.000µs 📉 -95.5%) vs baseline: +0.1%

Memory: ✅ 38.476MB (SLO: <41.500MB -7.3%) vs baseline: +0.2%

✅ stringio_aspect

Time: ✅ 1.521µs (SLO: <10.000µs 📉 -84.8%) vs baseline: -0.9%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.4%

✅ stringio_noaspect

Time: ✅ 0.714µs (SLO: <10.000µs 📉 -92.9%) vs baseline: -0.9%

Memory: ✅ 38.142MB (SLO: <41.500MB -8.1%) vs baseline: -0.7%

✅ strip_aspect

Time: ✅ 2.209µs (SLO: <20.000µs 📉 -89.0%) vs baseline: -1.4%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.4%

✅ strip_noaspect

Time: ✅ 0.385µs (SLO: <10.000µs 📉 -96.2%) vs baseline: +0.8%

Memory: ✅ 38.181MB (SLO: <41.500MB -8.0%) vs baseline: -0.8%

✅ swapcase_aspect

Time: ✅ 2.455µs (SLO: <10.000µs 📉 -75.4%) vs baseline: -0.5%

Memory: ✅ 38.240MB (SLO: <41.500MB -7.9%) vs baseline: -0.2%

✅ swapcase_noaspect

Time: ✅ 0.537µs (SLO: <10.000µs 📉 -94.6%) vs baseline: -0.9%

Memory: ✅ 38.339MB (SLO: <41.500MB -7.6%) vs baseline: -0.2%

✅ title_aspect

Time: ✅ 2.402µs (SLO: <10.000µs 📉 -76.0%) vs baseline: +1.2%

Memory: ✅ 38.221MB (SLO: <41.500MB -7.9%) vs baseline: -0.7%

✅ title_noaspect

Time: ✅ 0.501µs (SLO: <10.000µs 📉 -95.0%) vs baseline: -0.6%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.4%

✅ translate_aspect

Time: ✅ 3.263µs (SLO: <10.000µs 📉 -67.4%) vs baseline: -1.2%

Memory: ✅ 38.457MB (SLO: <41.500MB -7.3%) vs baseline: ~same

✅ translate_noaspect

Time: ✅ 1.045µs (SLO: <10.000µs 📉 -89.5%) vs baseline: +0.9%

Memory: ✅ 38.201MB (SLO: <41.500MB -7.9%) vs baseline: -0.6%

✅ upper_aspect

Time: ✅ 2.303µs (SLO: <10.000µs 📉 -77.0%) vs baseline: +2.9%

Memory: ✅ 38.299MB (SLO: <41.500MB -7.7%) vs baseline: -0.3%

✅ upper_noaspect

Time: ✅ 0.367µs (SLO: <10.000µs 📉 -96.3%) vs baseline: ~same

Memory: ✅ 38.378MB (SLO: <41.500MB -7.5%) vs baseline: +0.3%

📈 iastaspectsospath - 24/24

✅ ospathbasename_aspect

Time: ✅ 5.177µs (SLO: <10.000µs 📉 -48.2%) vs baseline: 📈 +27.0%

Memory: ✅ 38.614MB (SLO: <41.000MB -5.8%) vs baseline: +0.5%

✅ ospathbasename_noaspect

Time: ✅ 1.091µs (SLO: <10.000µs 📉 -89.1%) vs baseline: -0.4%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: ~same

✅ ospathjoin_aspect

Time: ✅ 5.982µs (SLO: <10.000µs 📉 -40.2%) vs baseline: -2.5%

Memory: ✅ 38.594MB (SLO: <41.000MB -5.9%) vs baseline: +0.8%

✅ ospathjoin_noaspect

Time: ✅ 2.287µs (SLO: <10.000µs 📉 -77.1%) vs baseline: ~same

Memory: ✅ 38.574MB (SLO: <41.000MB -5.9%) vs baseline: +0.5%

✅ ospathnormcase_aspect

Time: ✅ 3.459µs (SLO: <10.000µs 📉 -65.4%) vs baseline: +0.6%

Memory: ✅ 38.594MB (SLO: <41.000MB -5.9%) vs baseline: +0.7%

✅ ospathnormcase_noaspect

Time: ✅ 0.574µs (SLO: <10.000µs 📉 -94.3%) vs baseline: +0.7%

Memory: ✅ 38.437MB (SLO: <41.000MB -6.3%) vs baseline: +0.2%

✅ ospathsplit_aspect

Time: ✅ 4.766µs (SLO: <10.000µs 📉 -52.3%) vs baseline: +0.8%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: ~same

✅ ospathsplit_noaspect

Time: ✅ 1.591µs (SLO: <10.000µs 📉 -84.1%) vs baseline: -0.1%

Memory: ✅ 38.594MB (SLO: <41.000MB -5.9%) vs baseline: +0.6%

✅ ospathsplitdrive_aspect

Time: ✅ 3.700µs (SLO: <10.000µs 📉 -63.0%) vs baseline: +1.3%

Memory: ✅ 38.555MB (SLO: <41.000MB -6.0%) vs baseline: +0.7%

✅ ospathsplitdrive_noaspect

Time: ✅ 0.710µs (SLO: <10.000µs 📉 -92.9%) vs baseline: +2.3%

Memory: ✅ 38.633MB (SLO: <41.000MB -5.8%) vs baseline: +0.9%

✅ ospathsplitext_aspect

Time: ✅ 4.579µs (SLO: <10.000µs 📉 -54.2%) vs baseline: +1.2%

Memory: ✅ 38.653MB (SLO: <41.000MB -5.7%) vs baseline: +0.8%

✅ ospathsplitext_noaspect

Time: ✅ 1.391µs (SLO: <10.000µs 📉 -86.1%) vs baseline: +1.3%

Memory: ✅ 38.476MB (SLO: <41.000MB -6.2%) vs baseline: +0.3%

📈 telemetryaddmetric - 30/30

✅ 1-count-metric-1-times

Time: ✅ 3.378µs (SLO: <20.000µs 📉 -83.1%) vs baseline: 📈 +15.4%

Memory: ✅ 35.114MB (SLO: <35.500MB 🟡 -1.1%) vs baseline: +5.9%

✅ 1-count-metrics-100-times

Time: ✅ 200.383µs (SLO: <220.000µs -8.9%) vs baseline: -0.3%

Memory: ✅ 35.114MB (SLO: <35.500MB 🟡 -1.1%) vs baseline: +4.8%

✅ 1-distribution-metric-1-times

Time: ✅ 3.281µs (SLO: <20.000µs 📉 -83.6%) vs baseline: -1.0%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.6%

✅ 1-distribution-metrics-100-times

Time: ✅ 217.023µs (SLO: <230.000µs -5.6%) vs baseline: +0.2%

Memory: ✅ 35.095MB (SLO: <35.500MB 🟡 -1.1%) vs baseline: +5.0%

✅ 1-gauge-metric-1-times

Time: ✅ 2.185µs (SLO: <20.000µs 📉 -89.1%) vs baseline: ~same

Memory: ✅ 35.114MB (SLO: <35.500MB 🟡 -1.1%) vs baseline: +5.3%

✅ 1-gauge-metrics-100-times

Time: ✅ 135.588µs (SLO: <150.000µs -9.6%) vs baseline: -0.7%

Memory: ✅ 34.996MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +4.7%

✅ 1-rate-metric-1-times

Time: ✅ 3.100µs (SLO: <20.000µs 📉 -84.5%) vs baseline: +1.2%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.2%

✅ 1-rate-metrics-100-times

Time: ✅ 214.367µs (SLO: <250.000µs 📉 -14.3%) vs baseline: +0.2%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +5.0%

✅ 100-count-metrics-100-times

Time: ✅ 20.406ms (SLO: <22.000ms -7.2%) vs baseline: +0.2%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +4.8%

✅ 100-distribution-metrics-100-times

Time: ✅ 2.298ms (SLO: <2.550ms -9.9%) vs baseline: +1.3%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +4.0%

✅ 100-gauge-metrics-100-times

Time: ✅ 1.414ms (SLO: <1.550ms -8.7%) vs baseline: +1.2%

Memory: ✅ 34.682MB (SLO: <35.500MB -2.3%) vs baseline: +4.9%

✅ 100-rate-metrics-100-times

Time: ✅ 2.229ms (SLO: <2.550ms 📉 -12.6%) vs baseline: +1.0%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.5%

✅ flush-1-metric

Time: ✅ 4.653µs (SLO: <20.000µs 📉 -76.7%) vs baseline: -0.8%

Memory: ✅ 35.134MB (SLO: <35.500MB 🟡 -1.0%) vs baseline: +5.1%

✅ flush-100-metrics

Time: ✅ 174.567µs (SLO: <250.000µs 📉 -30.2%) vs baseline: -0.5%

Memory: ✅ 35.232MB (SLO: <35.500MB 🟡 -0.8%) vs baseline: +5.0%

✅ flush-1000-metrics

Time: ✅ 2.190ms (SLO: <2.500ms 📉 -12.4%) vs baseline: +0.6%

Memory: ✅ 35.999MB (SLO: <36.500MB 🟡 -1.4%) vs baseline: +5.2%

🟡 Near SLO Breach (16 suites)

🟡 coreapiscenario - 10/10 (1 unstable)

⚠️ context_with_data_listeners

Time: ⚠️ 13.220µs (SLO: <20.000µs 📉 -33.9%) vs baseline: +0.4%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.9%

✅ context_with_data_no_listeners

Time: ✅ 3.265µs (SLO: <10.000µs 📉 -67.4%) vs baseline: +0.5%

Memory: ✅ 34.741MB (SLO: <35.500MB -2.1%) vs baseline: +4.6%

✅ get_item_exists

Time: ✅ 0.581µs (SLO: <10.000µs 📉 -94.2%) vs baseline: +0.4%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +5.3%

✅ get_item_missing

Time: ✅ 0.639µs (SLO: <10.000µs 📉 -93.6%) vs baseline: +0.3%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.4%

✅ set_item

Time: ✅ 24.442µs (SLO: <30.000µs 📉 -18.5%) vs baseline: ~same

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +5.2%

🟡 djangosimple - 30/30

✅ appsec

Time: ✅ 19.596ms (SLO: <22.300ms 📉 -12.1%) vs baseline: ~same

Memory: ✅ 68.164MB (SLO: <70.500MB -3.3%) vs baseline: +4.9%

✅ exception-replay-enabled

Time: ✅ 1.366ms (SLO: <1.450ms -5.8%) vs baseline: +0.5%

Memory: ✅ 66.259MB (SLO: <67.500MB 🟡 -1.8%) vs baseline: +5.0%

✅ iast

Time: ✅ 19.594ms (SLO: <22.250ms 📉 -11.9%) vs baseline: +0.2%

Memory: ✅ 68.164MB (SLO: <70.000MB -2.6%) vs baseline: +4.8%

✅ profiler

Time: ✅ 15.457ms (SLO: <16.550ms -6.6%) vs baseline: -0.2%

Memory: ✅ 56.417MB (SLO: <57.500MB 🟡 -1.9%) vs baseline: +5.1%

✅ resource-renaming

Time: ✅ 19.519ms (SLO: <21.750ms 📉 -10.3%) vs baseline: ~same

Memory: ✅ 68.144MB (SLO: <70.500MB -3.3%) vs baseline: +4.8%

✅ span-code-origin

Time: ✅ 19.883ms (SLO: <28.200ms 📉 -29.5%) vs baseline: +0.4%

Memory: ✅ 68.171MB (SLO: <71.000MB -4.0%) vs baseline: +4.8%

✅ tracer

Time: ✅ 19.643ms (SLO: <21.750ms -9.7%) vs baseline: -0.2%

Memory: ✅ 68.243MB (SLO: <70.000MB -2.5%) vs baseline: +5.0%

✅ tracer-and-profiler

Time: ✅ 21.753ms (SLO: <23.500ms -7.4%) vs baseline: +0.1%

Memory: ✅ 69.344MB (SLO: <71.000MB -2.3%) vs baseline: +5.0%

✅ tracer-dont-create-db-spans

Time: ✅ 19.752ms (SLO: <21.500ms -8.1%) vs baseline: +0.5%

Memory: ✅ 68.243MB (SLO: <70.000MB -2.5%) vs baseline: +4.9%

✅ tracer-minimal

Time: ✅ 16.781ms (SLO: <17.500ms -4.1%) vs baseline: ~same

Memory: ✅ 67.849MB (SLO: <70.000MB -3.1%) vs baseline: +4.8%

✅ tracer-native

Time: ✅ 19.493ms (SLO: <21.750ms 📉 -10.4%) vs baseline: +0.5%

Memory: ✅ 68.125MB (SLO: <72.500MB -6.0%) vs baseline: +4.6%

✅ tracer-no-caches

Time: ✅ 17.610ms (SLO: <19.650ms 📉 -10.4%) vs baseline: -0.2%

Memory: ✅ 67.948MB (SLO: <70.000MB -2.9%) vs baseline: +4.8%

✅ tracer-no-databases

Time: ✅ 19.203ms (SLO: <20.100ms -4.5%) vs baseline: +0.5%

Memory: ✅ 67.830MB (SLO: <70.000MB -3.1%) vs baseline: +4.9%

✅ tracer-no-middleware

Time: ✅ 19.407ms (SLO: <21.500ms -9.7%) vs baseline: +0.6%

Memory: ✅ 67.908MB (SLO: <70.000MB -3.0%) vs baseline: +4.7%

✅ tracer-no-templates

Time: ✅ 19.588ms (SLO: <22.000ms 📉 -11.0%) vs baseline: +1.2%

Memory: ✅ 68.240MB (SLO: <70.500MB -3.2%) vs baseline: +5.0%

🟡 errortrackingdjangosimple - 6/6

✅ errortracking-enabled-all

Time: ✅ 16.321ms (SLO: <19.850ms 📉 -17.8%) vs baseline: -0.2%

Memory: ✅ 69.835MB (SLO: <70.000MB 🟡 -0.2%) vs baseline: +4.8%

✅ errortracking-enabled-user

Time: ✅ 16.335ms (SLO: <19.400ms 📉 -15.8%) vs baseline: ~same

Memory: ✅ 69.835MB (SLO: <70.000MB 🟡 -0.2%) vs baseline: +4.9%

✅ tracer-enabled

Time: ✅ 16.346ms (SLO: <19.450ms 📉 -16.0%) vs baseline: -0.1%

Memory: ✅ 69.829MB (SLO: <70.000MB 🟡 -0.2%) vs baseline: +4.9%

🟡 errortrackingflasksqli - 6/6

✅ errortracking-enabled-all

Time: ✅ 2.066ms (SLO: <2.300ms 📉 -10.2%) vs baseline: ~same

Memory: ✅ 55.699MB (SLO: <56.500MB 🟡 -1.4%) vs baseline: +4.9%

✅ errortracking-enabled-user

Time: ✅ 2.072ms (SLO: <2.250ms -7.9%) vs baseline: -0.1%

Memory: ✅ 55.778MB (SLO: <56.500MB 🟡 -1.3%) vs baseline: +4.9%

✅ tracer-enabled

Time: ✅ 2.061ms (SLO: <2.300ms 📉 -10.4%) vs baseline: ~same

Memory: ✅ 55.660MB (SLO: <56.500MB 🟡 -1.5%) vs baseline: +4.7%

🟡 flasksimple - 18/18

✅ appsec-get

Time: ✅ 3.369ms (SLO: <4.750ms 📉 -29.1%) vs baseline: -0.2%

Memory: ✅ 55.428MB (SLO: <66.500MB 📉 -16.7%) vs baseline: +4.9%

✅ appsec-post

Time: ✅ 2.861ms (SLO: <6.750ms 📉 -57.6%) vs baseline: +0.3%

Memory: ✅ 55.507MB (SLO: <66.500MB 📉 -16.5%) vs baseline: +4.7%

✅ appsec-telemetry

Time: ✅ 3.401ms (SLO: <4.750ms 📉 -28.4%) vs baseline: +0.9%

Memory: ✅ 55.432MB (SLO: <66.500MB 📉 -16.6%) vs baseline: +5.1%

✅ debugger

Time: ✅ 1.869ms (SLO: <2.000ms -6.5%) vs baseline: +0.2%

Memory: ✅ 47.946MB (SLO: <49.500MB -3.1%) vs baseline: +4.8%

✅ iast-get

Time: ✅ 1.857ms (SLO: <2.000ms -7.2%) vs baseline: ~same

Memory: ✅ 44.682MB (SLO: <49.000MB -8.8%) vs baseline: +5.1%

✅ profiler

Time: ✅ 1.909ms (SLO: <2.100ms -9.1%) vs baseline: ~same

Memory: ✅ 48.870MB (SLO: <50.000MB -2.3%) vs baseline: +5.0%

✅ resource-renaming

Time: ✅ 3.347ms (SLO: <3.650ms -8.3%) vs baseline: -0.5%

Memory: ✅ 55.490MB (SLO: <56.000MB 🟡 -0.9%) vs baseline: +4.9%

✅ tracer

Time: ✅ 3.371ms (SLO: <3.650ms -7.6%) vs baseline: ~same

Memory: ✅ 55.474MB (SLO: <56.500MB 🟡 -1.8%) vs baseline: +4.8%

✅ tracer-native

Time: ✅ 3.370ms (SLO: <3.650ms -7.7%) vs baseline: +0.3%

Memory: ✅ 55.427MB (SLO: <60.000MB -7.6%) vs baseline: +4.8%

🟡 flasksqli - 6/6

✅ appsec-enabled

Time: ✅ 2.055ms (SLO: <4.200ms 📉 -51.1%) vs baseline: ~same

Memory: ✅ 55.817MB (SLO: <66.000MB 📉 -15.4%) vs baseline: +5.0%

✅ iast-enabled

Time: ✅ 2.068ms (SLO: <2.800ms 📉 -26.2%) vs baseline: +0.3%

Memory: ✅ 55.778MB (SLO: <62.500MB 📉 -10.8%) vs baseline: +4.8%

✅ tracer-enabled

Time: ✅ 2.056ms (SLO: <2.250ms -8.6%) vs baseline: ~same

Memory: ✅ 55.817MB (SLO: <56.500MB 🟡 -1.2%) vs baseline: +5.0%

🟡 httppropagationextract - 60/60

✅ all_styles_all_headers

Time: ✅ 81.059µs (SLO: <100.000µs 📉 -18.9%) vs baseline: +0.3%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.7%

✅ b3_headers

Time: ✅ 14.265µs (SLO: <20.000µs 📉 -28.7%) vs baseline: +0.5%

Memory: ✅ 34.760MB (SLO: <35.500MB -2.1%) vs baseline: +4.9%

✅ b3_single_headers

Time: ✅ 13.292µs (SLO: <20.000µs 📉 -33.5%) vs baseline: -0.5%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.1%

✅ datadog_tracecontext_tracestate_not_propagated_on_trace_id_no_match

Time: ✅ 64.188µs (SLO: <80.000µs 📉 -19.8%) vs baseline: +0.9%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.6%

✅ datadog_tracecontext_tracestate_propagated_on_trace_id_match

Time: ✅ 66.161µs (SLO: <80.000µs 📉 -17.3%) vs baseline: +0.4%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.0%

✅ empty_headers

Time: ✅ 1.637µs (SLO: <10.000µs 📉 -83.6%) vs baseline: +1.7%

Memory: ✅ 34.741MB (SLO: <35.500MB -2.1%) vs baseline: +4.3%

✅ full_t_id_datadog_headers

Time: ✅ 22.617µs (SLO: <30.000µs 📉 -24.6%) vs baseline: +0.7%

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ invalid_priority_header

Time: ✅ 6.537µs (SLO: <10.000µs 📉 -34.6%) vs baseline: -0.2%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +4.9%

✅ invalid_span_id_header

Time: ✅ 6.541µs (SLO: <10.000µs 📉 -34.6%) vs baseline: +0.4%

Memory: ✅ 34.937MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.2%

✅ invalid_tags_header

Time: ✅ 6.560µs (SLO: <10.000µs 📉 -34.4%) vs baseline: +0.3%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ invalid_trace_id_header

Time: ✅ 6.542µs (SLO: <10.000µs 📉 -34.6%) vs baseline: +0.2%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.8%

✅ large_header_no_matches

Time: ✅ 27.513µs (SLO: <30.000µs -8.3%) vs baseline: -0.5%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +5.2%

✅ large_valid_headers_all

Time: ✅ 28.770µs (SLO: <40.000µs 📉 -28.1%) vs baseline: +0.2%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.9%

✅ medium_header_no_matches

Time: ✅ 9.877µs (SLO: <20.000µs 📉 -50.6%) vs baseline: -0.6%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.0%

✅ medium_valid_headers_all

Time: ✅ 11.300µs (SLO: <20.000µs 📉 -43.5%) vs baseline: -0.1%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.7%

✅ none_propagation_style

Time: ✅ 1.735µs (SLO: <10.000µs 📉 -82.6%) vs baseline: +0.5%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.6%

✅ tracecontext_headers

Time: ✅ 34.872µs (SLO: <40.000µs 📉 -12.8%) vs baseline: +0.2%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +5.1%

✅ valid_headers_all

Time: ✅ 6.518µs (SLO: <10.000µs 📉 -34.8%) vs baseline: +0.1%

Memory: ✅ 34.918MB (SLO: <35.500MB 🟡 -1.6%) vs baseline: +4.9%

✅ valid_headers_basic

Time: ✅ 6.099µs (SLO: <10.000µs 📉 -39.0%) vs baseline: ~same

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.7%

✅ wsgi_empty_headers

Time: ✅ 1.621µs (SLO: <10.000µs 📉 -83.8%) vs baseline: -0.4%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +5.0%

✅ wsgi_invalid_priority_header

Time: ✅ 6.605µs (SLO: <10.000µs 📉 -33.9%) vs baseline: +0.5%

Memory: ✅ 34.701MB (SLO: <35.500MB -2.2%) vs baseline: +4.6%

✅ wsgi_invalid_span_id_header

Time: ✅ 1.619µs (SLO: <10.000µs 📉 -83.8%) vs baseline: +1.1%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.9%

✅ wsgi_invalid_tags_header

Time: ✅ 6.561µs (SLO: <10.000µs 📉 -34.4%) vs baseline: -0.4%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +4.7%

✅ wsgi_invalid_trace_id_header

Time: ✅ 6.560µs (SLO: <10.000µs 📉 -34.4%) vs baseline: -0.9%

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ wsgi_large_header_no_matches

Time: ✅ 28.817µs (SLO: <40.000µs 📉 -28.0%) vs baseline: -0.3%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.8%

✅ wsgi_large_valid_headers_all

Time: ✅ 29.822µs (SLO: <40.000µs 📉 -25.4%) vs baseline: -0.2%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.8%

✅ wsgi_medium_header_no_matches

Time: ✅ 10.176µs (SLO: <20.000µs 📉 -49.1%) vs baseline: +1.0%

Memory: ✅ 34.760MB (SLO: <35.500MB -2.1%) vs baseline: +4.5%

✅ wsgi_medium_valid_headers_all

Time: ✅ 11.752µs (SLO: <20.000µs 📉 -41.2%) vs baseline: +0.9%

Memory: ✅ 34.780MB (SLO: <35.500MB -2.0%) vs baseline: +4.7%

✅ wsgi_valid_headers_all

Time: ✅ 6.569µs (SLO: <10.000µs 📉 -34.3%) vs baseline: -0.3%

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.8%

✅ wsgi_valid_headers_basic

Time: ✅ 6.122µs (SLO: <10.000µs 📉 -38.8%) vs baseline: -0.3%

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.6%

🟡 httppropagationinject - 16/16

✅ ids_only

Time: ✅ 22.174µs (SLO: <30.000µs 📉 -26.1%) vs baseline: +5.5%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.0%

✅ with_all

Time: ✅ 28.034µs (SLO: <40.000µs 📉 -29.9%) vs baseline: ~same

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.3%

✅ with_dd_origin

Time: ✅ 25.133µs (SLO: <30.000µs 📉 -16.2%) vs baseline: +0.8%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.1%

✅ with_priority_and_origin

Time: ✅ 24.386µs (SLO: <40.000µs 📉 -39.0%) vs baseline: +0.4%

Memory: ✅ 34.741MB (SLO: <35.500MB -2.1%) vs baseline: +4.8%

✅ with_sampling_priority

Time: ✅ 21.305µs (SLO: <30.000µs 📉 -29.0%) vs baseline: +0.9%

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.1%

✅ with_tags

Time: ✅ 26.143µs (SLO: <40.000µs 📉 -34.6%) vs baseline: ~same

Memory: ✅ 34.839MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.7%

✅ with_tags_invalid

Time: ✅ 27.525µs (SLO: <40.000µs 📉 -31.2%) vs baseline: -0.9%

Memory: ✅ 34.859MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.3%

✅ with_tags_max_size

Time: ✅ 26.832µs (SLO: <40.000µs 📉 -32.9%) vs baseline: +0.6%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +5.2%

🟡 otelspan - 22/22

✅ add-event

Time: ✅ 39.669ms (SLO: <47.150ms 📉 -15.9%) vs baseline: +0.4%

Memory: ✅ 39.521MB (SLO: <47.000MB 📉 -15.9%) vs baseline: +5.0%

✅ add-metrics

Time: ✅ 261.516ms (SLO: <344.800ms 📉 -24.2%) vs baseline: +0.8%

Memory: ✅ 43.691MB (SLO: <47.500MB -8.0%) vs baseline: +4.8%

✅ add-tags

Time: ✅ 317.879ms (SLO: <321.000ms 🟡 -1.0%) vs baseline: +0.5%

Memory: ✅ 43.697MB (SLO: <47.500MB -8.0%) vs baseline: +4.8%

✅ get-context

Time: ✅ 79.753ms (SLO: <92.350ms 📉 -13.6%) vs baseline: ~same

Memory: ✅ 39.675MB (SLO: <46.500MB 📉 -14.7%) vs baseline: +4.6%

✅ is-recording

Time: ✅ 37.250ms (SLO: <44.500ms 📉 -16.3%) vs baseline: ~same

Memory: ✅ 39.538MB (SLO: <47.500MB 📉 -16.8%) vs baseline: +5.0%

✅ record-exception

Time: ✅ 58.222ms (SLO: <67.650ms 📉 -13.9%) vs baseline: -0.3%

Memory: ✅ 39.758MB (SLO: <47.000MB 📉 -15.4%) vs baseline: +4.1%

✅ set-status

Time: ✅ 43.620ms (SLO: <50.400ms 📉 -13.5%) vs baseline: +0.2%

Memory: ✅ 39.464MB (SLO: <47.000MB 📉 -16.0%) vs baseline: +4.8%

✅ start

Time: ✅ 37.387ms (SLO: <43.450ms 📉 -14.0%) vs baseline: +2.5%

Memory: ✅ 39.584MB (SLO: <47.000MB 📉 -15.8%) vs baseline: +5.5%

✅ start-finish

Time: ✅ 82.039ms (SLO: <88.000ms -6.8%) vs baseline: +0.1%

Memory: ✅ 37.336MB (SLO: <46.500MB 📉 -19.7%) vs baseline: +5.0%

✅ start-finish-telemetry

Time: ✅ 83.557ms (SLO: <89.000ms -6.1%) vs baseline: -0.1%

Memory: ✅ 37.356MB (SLO: <46.500MB 📉 -19.7%) vs baseline: +4.7%

✅ update-name

Time: ✅ 37.970ms (SLO: <45.150ms 📉 -15.9%) vs baseline: -0.1%

Memory: ✅ 39.751MB (SLO: <47.000MB 📉 -15.4%) vs baseline: +5.1%

🟡 packagespackageforrootmodulemapping - 4/4

✅ cache_off

Time: ✅ 344.300ms (SLO: <354.300ms -2.8%) vs baseline: -0.8%

Memory: ✅ 41.113MB (SLO: <41.500MB 🟡 -0.9%) vs baseline: +3.4%

✅ cache_on

Time: ✅ 0.385µs (SLO: <10.000µs 📉 -96.1%) vs baseline: +0.6%

Memory: ✅ 41.017MB (SLO: <41.000MB ~same) vs baseline: +4.2%

🟡 ratelimiter - 12/12

✅ defaults

Time: ✅ 2.356µs (SLO: <10.000µs 📉 -76.4%) vs baseline: -0.3%

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.0%

✅ high_rate_limit

Time: ✅ 2.419µs (SLO: <10.000µs 📉 -75.8%) vs baseline: -0.6%

Memory: ✅ 35.016MB (SLO: <35.500MB 🟡 -1.4%) vs baseline: +4.4%

✅ long_window

Time: ✅ 2.340µs (SLO: <10.000µs 📉 -76.6%) vs baseline: -0.6%

Memory: ✅ 34.957MB (SLO: <35.500MB 🟡 -1.5%) vs baseline: +4.7%

✅ low_rate_limit

Time: ✅ 2.352µs (SLO: <10.000µs 📉 -76.5%) vs baseline: -0.6%

Memory: ✅ 35.114MB (SLO: <35.500MB 🟡 -1.1%) vs baseline: +5.2%

✅ no_rate_limit

Time: ✅ 0.837µs (SLO: <10.000µs 📉 -91.6%) vs baseline: -0.4%

Memory: ✅ 35.075MB (SLO: <35.500MB 🟡 -1.2%) vs baseline: +4.8%

✅ short_window

Time: ✅ 2.496µs (SLO: <10.000µs 📉 -75.0%) vs baseline: -0.7%

Memory: ✅ 34.898MB (SLO: <35.500MB 🟡 -1.7%) vs baseline: +4.4%

🟡 recursivecomputation - 8/8

✅ deep

Time: ✅ 309.611ms (SLO: <320.950ms -3.5%) vs baseline: +0.2%

Memory: ✅ 35.861MB (SLO: <36.500MB 🟡 -1.7%) vs baseline: +4.6%

✅ deep-profiled

Time: ✅ 329.127ms (SLO: <359.150ms -8.4%) vs baseline: +0.1%

Memory: ✅ 39.813MB (SLO: <40.500MB 🟡 -1.7%) vs baseline: +4.9%

✅ medium

Time: ✅ 7.004ms (SLO: <7.400ms -5.3%) vs baseline: ~same

Memory: ✅ 34.819MB (SLO: <35.500MB 🟡 -1.9%) vs baseline: +4.9%

✅ shallow

Time: ✅ 0.949ms (SLO: <1.050ms -9.7%) vs baseline: +1.3%

Memory: ✅ 34.741MB (SLO: <35.500MB -2.1%) vs baseline: +4.9%

🟡 samplingrules - 8/8

✅ average_match

Time: ✅ 137.395µs (SLO: <290.000µs 📉 -52.6%) vs baseline: +0.6%

Memory: ✅ 34.800MB (SLO: <35.500MB 🟡 -2.0%) vs baseline: +5.0%

✅ high_match

Time: ✅ 175.082µs (SLO: <480.000µs 📉 -63.5%) vs baseline: +0.7%

Memory: ✅ 34.662MB (SLO: <35.500MB -2.4%) vs baseline: +4.7%

✅ low_match

Time: ✅ 99.297µs (SLO: <120.000µs 📉 -17.3%) vs baseline: +0.9%

Memory: ✅ 603.549MB (SLO: <700.000MB 📉 -13.8%) vs baseline: +4.9%

✅ very_low_match

Time: ✅ 2.644ms (SLO: <8.500ms 📉 -68.9%) vs baseline: -0.8%

Memory: ✅ 71.133MB (SLO: <75.000MB -5.2%) vs baseline: +5.1%

🟡 sethttpmeta - 32/32

✅ all-disabled

Time: ✅ 10.651µs (SLO: <20.000µs 📉 -46.7%) vs baseline: +1.1%

Memory: ✅ 35.586MB (SLO: <36.000MB 🟡 -1.1%) vs baseline: +4.6%

✅ all-enabled

Time: ✅ 41.049µs (SLO: <50.000µs 📉 -17.9%) vs baseline: +2.7%

Memory: ✅ 35.409MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +4.5%

✅ collectipvariant_exists

Time: ✅ 41.234µs (SLO: <50.000µs 📉 -17.5%) vs baseline: +0.6%

Memory: ✅ 35.448MB (SLO: <36.000MB 🟡 -1.5%) vs baseline: +4.6%

✅ no-collectipvariant

Time: ✅ 40.396µs (SLO: <50.000µs 📉 -19.2%) vs baseline: +0.5%

Memory: ✅ 35.527MB (SLO: <36.000MB 🟡 -1.3%) vs baseline: +4.3%

✅ no-useragentvariant

Time: ✅ 39.027µs (SLO: <50.000µs 📉 -21.9%) vs baseline: +0.3%

Memory: ✅ 35.448MB (SLO: <36.000MB 🟡 -1.5%) vs baseline: +4.2%

✅ obfuscation-no-query

Time: ✅ 40.841µs (SLO: <50.000µs 📉 -18.3%) vs baseline: +0.5%

Memory: ✅ 35.429MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +4.5%

✅ obfuscation-regular-case-explicit-query

Time: ✅ 75.818µs (SLO: <90.000µs 📉 -15.8%) vs baseline: -0.1%

Memory: ✅ 35.665MB (SLO: <36.500MB -2.3%) vs baseline: +4.9%

✅ obfuscation-regular-case-implicit-query

Time: ✅ 76.680µs (SLO: <90.000µs 📉 -14.8%) vs baseline: +0.3%

Memory: ✅ 35.606MB (SLO: <36.500MB -2.5%) vs baseline: +4.5%

✅ obfuscation-send-querystring-disabled

Time: ✅ 154.532µs (SLO: <170.000µs -9.1%) vs baseline: ~same

Memory: ✅ 35.645MB (SLO: <36.500MB -2.3%) vs baseline: +4.7%

✅ obfuscation-worst-case-explicit-query

Time: ✅ 148.876µs (SLO: <160.000µs -7.0%) vs baseline: -0.2%

Memory: ✅ 35.645MB (SLO: <36.500MB -2.3%) vs baseline: +4.6%

✅ obfuscation-worst-case-implicit-query

Time: ✅ 154.923µs (SLO: <170.000µs -8.9%) vs baseline: -0.2%

Memory: ✅ 35.763MB (SLO: <36.500MB -2.0%) vs baseline: +5.4%

✅ useragentvariant_exists_1

Time: ✅ 39.620µs (SLO: <50.000µs 📉 -20.8%) vs baseline: +0.3%

Memory: ✅ 35.409MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +3.7%

✅ useragentvariant_exists_2

Time: ✅ 40.923µs (SLO: <50.000µs 📉 -18.2%) vs baseline: +0.5%

Memory: ✅ 35.429MB (SLO: <36.000MB 🟡 -1.6%) vs baseline: +4.5%

✅ useragentvariant_exists_3

Time: ✅ 40.425µs (SLO: <50.000µs 📉 -19.1%) vs baseline: +1.2%

Memory: ✅ 35.389MB (SLO: <36.000MB 🟡 -1.7%) vs baseline: +4.3%

✅ useragentvariant_not_exists_1

Time: ✅ 39.716µs (SLO: <50.000µs 📉 -20.6%) vs baseline: +0.3%

Memory: ✅ 35.350MB (SLO: <36.000MB 🟡 -1.8%) vs baseline: +3.9%

✅ useragentvariant_not_exists_2

Time: ✅ 39.912µs (SLO: <50.000µs 📉 -20.2%) vs baseline: +1.0%

Memory: ✅ 35.232MB (SLO: <36.000MB -2.1%) vs baseline: +3.6%

🟡 span - 26/26

✅ add-event

Time: ✅ 18.330ms (SLO: <22.500ms 📉 -18.5%) vs baseline: +1.1%

Memory: ✅ 36.976MB (SLO: <53.000MB 📉 -30.2%) vs baseline: +5.2%

✅ add-metrics

Time: ✅ 88.242ms (SLO: <93.500ms -5.6%) vs baseline: -1.1%

Memory: ✅ 40.983MB (SLO: <53.000MB 📉 -22.7%) vs baseline: +4.6%

✅ add-tags

Time: ✅ 141.996ms (SLO: <155.000ms -8.4%) vs baseline: +0.2%

Memory: ✅ 41.095MB (SLO: <53.000MB 📉 -22.5%) vs baseline: +5.1%

✅ get-context

Time: ✅ 16.957ms (SLO: <20.500ms 📉 -17.3%) vs baseline: -0.3%

Memory: ✅ 36.782MB (SLO: <53.000MB 📉 -30.6%) vs baseline: +4.9%

✅ is-recording

Time: ✅ 17.199ms (SLO: <20.500ms 📉 -16.1%) vs baseline: +0.4%

Memory: ✅ 36.784MB (SLO: <53.000MB 📉 -30.6%) vs baseline: +4.9%

✅ record-exception

Time: ✅ 36.668ms (SLO: <40.000ms -8.3%) vs baseline: +0.5%

Memory: ✅ 37.343MB (SLO: <53.000MB 📉 -29.5%) vs baseline: +5.0%

✅ set-status

Time: ✅ 18.769ms (SLO: <22.000ms 📉 -14.7%) vs baseline: +0.5%

Memory: ✅ 36.763MB (SLO: <53.000MB 📉 -30.6%) vs baseline: +4.8%

✅ start

Time: ✅ 17.434ms (SLO: <20.500ms 📉 -15.0%) vs baseline: +2.6%

Memory: ✅ 36.686MB (SLO: <53.000MB 📉 -30.8%) vs baseline: +4.8%

✅ start-finish

Time: ✅ 50.701ms (SLO: <52.500ms -3.4%) vs baseline: -0.6%

Memory: ✅ 34.741MB (SLO: <35.500MB -2.1%) vs baseline: +4.6%

✅ start-finish-telemetry

Time: ✅ 52.291ms (SLO: <54.500ms -4.1%) vs baseline: +0.3%

Memory: ✅ 34.741MB (SLO: <35.500MB -2.1%) vs baseline: +4.8%

✅ start-finish-traceid128

Time: ✅ 54.085ms (SLO: <57.000ms -5.1%) vs baseline: ~same

Memory: ✅ 34.878MB (SLO: <35.500MB 🟡 -1.8%) vs baseline: +5.4%

✅ start-traceid128

Time: ✅ 17.232ms (SLO: <22.500ms 📉 -23.4%) vs baseline: ~same

Memory: ✅ 36.822MB (SLO: <53.000MB 📉 -30.5%) vs baseline: +5.0%

✅ update-name

Time: ✅ 17.255ms (SLO: <22.000ms 📉 -21.6%) vs baseline: -0.9%

Memory: ✅ 36.826MB (SLO: <53.000MB 📉 -30.5%) vs baseline: +4.9%

🟡 tracer - 6/6

✅ large

Time: ✅ 29.306ms (SLO: <32.950ms 📉 -11.1%) vs baseline: ~same

Memory: ✅ 35.881MB (SLO: <36.500MB 🟡 -1.7%) vs baseline: +4.7%

✅ medium

Time: ✅ 2.889ms (SLO: <3.200ms -9.7%) vs baseline: +0.1%

Memory: ✅ 34.760MB (SLO: <35.500MB -2.1%) vs baseline: +5.0%

✅ small

Time: ✅ 332.729µs (SLO: <370.000µs 📉 -10.1%) vs baseline: +1.8%

Memory: ✅ 34.642MB (SLO: <35.500MB -2.4%) vs baseline: +4.7%

📉 Performance Improvements (1 suite)

📉 iastpropagation - 8/8

✅ no-propagation

Time: ✅ 48.549µs (SLO: <60.000µs 📉 -19.1%) vs baseline: ~same

Memory: ✅ 38.103MB (SLO: <42.000MB -9.3%) vs baseline: -0.3%

✅ propagation_enabled

Time: ✅ 138.716µs (SLO: <190.000µs 📉 -27.0%) vs baseline: 📉 -20.5%

Memory: ✅ 38.299MB (SLO: <42.000MB -8.8%) vs baseline: +0.1%

✅ propagation_enabled_100

Time: ✅ 1.600ms (SLO: <2.300ms 📉 -30.4%) vs baseline: 📉 -17.2%

Memory: ✅ 38.358MB (SLO: <42.000MB -8.7%) vs baseline: +0.4%

✅ propagation_enabled_1000

Time: ✅ 29.040ms (SLO: <34.550ms 📉 -15.9%) vs baseline: 📉 -11.4%

Memory: ✅ 38.201MB (SLO: <42.000MB -9.0%) vs baseline: -0.3%

⚠️ Unstable Tests (1 suite)

⚠️

packagesupdateimporteddependencies - 24/24 (1 unstable)

✅ import_many

Time: ✅ 154.806µs (SLO: <170.000µs -8.9%) vs baseline: ~same

Memory: ✅ 39.680MB (SLO: <41.000MB -3.2%) vs baseline: +5.0%

✅ import_many_cached

Time: ✅ 122.113µs (SLO: <130.000µs -6.1%) vs baseline: +0.8%

Memory: ✅ 39.652MB (SLO: <41.000MB -3.3%) vs baseline: +4.4%

✅ import_many_stdlib

Time: ✅ 0.753ms (SLO: <1.750ms 📉 -56.9%) vs baseline: +0.1%

Memory: ✅ 39.668MB (SLO: <41.000MB -3.2%) vs baseline: +4.9%

⚠️ import_many_stdlib_cached

Time: ⚠️ 0.173ms (SLO: <1.100ms 📉 -84.3%) vs baseline: +0.4%

Memory: ✅ 39.771MB (SLO: <41.000MB -3.0%) vs baseline: +4.9%

✅ import_many_unknown

Time: ✅ 836.976µs (SLO: <890.000µs -6.0%) vs baseline: ~same

Memory: ✅ 39.887MB (SLO: <41.000MB -2.7%) vs baseline: +4.7%

✅ import_many_unknown_cached

Time: ✅ 788.405µs (SLO: <870.000µs -9.4%) vs baseline: -1.4%

Memory: ✅ 39.966MB (SLO: <41.000MB -2.5%) vs baseline: +5.3%

✅ import_one

Time: ✅ 19.625µs (SLO: <30.000µs 📉 -34.6%) vs baseline: -0.5%

Memory: ✅ 39.622MB (SLO: <41.000MB -3.4%) vs baseline: +4.7%

✅ import_one_cache

Time: ✅ 6.228µs (SLO: <10.000µs 📉 -37.7%) vs baseline: -0.3%

Memory: ✅ 39.724MB (SLO: <41.000MB -3.1%) vs baseline: +5.0%

✅ import_one_stdlib

Time: ✅ 18.583µs (SLO: <20.000µs -7.1%) vs baseline: -0.6%

Memory: ✅ 39.613MB (SLO: <41.000MB -3.4%) vs baseline: +4.8%

✅ import_one_stdlib_cache

Time: ✅ 6.290µs (SLO: <10.000µs 📉 -37.1%) vs baseline: +0.5%

Memory: ✅ 39.547MB (SLO: <41.000MB -3.5%) vs baseline: +4.7%

✅ import_one_unknown

Time: ✅ 45.394µs (SLO: <50.000µs -9.2%) vs baseline: -0.3%

Memory: ✅ 39.759MB (SLO: <41.000MB -3.0%) vs baseline: +5.3%

✅ import_one_unknown_cache

Time: ✅ 6.283µs (SLO: <10.000µs 📉 -37.2%) vs baseline: -1.0%

Memory: ✅ 39.740MB (SLO: <41.000MB -3.1%) vs baseline: +5.2%

✅ All Tests Passing (3 suites)

✅ iast_aspects - 40/40

✅ re_expand_aspect

Time: ✅ 33.904µs (SLO: <40.000µs 📉 -15.2%) vs baseline: +6.5%

Memory: ✅ 38.398MB (SLO: <41.000MB -6.3%) vs baseline: +0.2%

✅ re_expand_noaspect

Time: ✅ 28.514µs (SLO: <40.000µs 📉 -28.7%) vs baseline: -0.8%

Memory: ✅ 38.594MB (SLO: <41.000MB -5.9%) vs baseline: +0.5%

✅ re_findall_aspect

Time: ✅ 2.915µs (SLO: <10.000µs 📉 -70.9%) vs baseline: +0.5%

Memory: ✅ 38.221MB (SLO: <41.000MB -6.8%) vs baseline: -0.5%

✅ re_findall_noaspect

Time: ✅ 1.409µs (SLO: <10.000µs 📉 -85.9%) vs baseline: -0.2%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: +0.4%

✅ re_finditer_aspect

Time: ✅ 4.451µs (SLO: <10.000µs 📉 -55.5%) vs baseline: -0.6%

Memory: ✅ 38.162MB (SLO: <41.000MB -6.9%) vs baseline: -0.8%

✅ re_finditer_noaspect

Time: ✅ 1.403µs (SLO: <10.000µs 📉 -86.0%) vs baseline: -1.0%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: +0.3%

✅ re_fullmatch_aspect

Time: ✅ 2.725µs (SLO: <10.000µs 📉 -72.8%) vs baseline: +0.2%

Memory: ✅ 38.201MB (SLO: <41.000MB -6.8%) vs baseline: -0.2%

✅ re_fullmatch_noaspect

Time: ✅ 1.312µs (SLO: <10.000µs 📉 -86.9%) vs baseline: +1.2%

Memory: ✅ 38.574MB (SLO: <41.000MB -5.9%) vs baseline: +0.4%

✅ re_group_aspect

Time: ✅ 3.003µs (SLO: <10.000µs 📉 -70.0%) vs baseline: +0.3%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: +0.3%

✅ re_group_noaspect

Time: ✅ 1.614µs (SLO: <10.000µs 📉 -83.9%) vs baseline: -0.4%

Memory: ✅ 38.516MB (SLO: <41.000MB -6.1%) vs baseline: +0.4%

✅ re_groups_aspect

Time: ✅ 3.137µs (SLO: <10.000µs 📉 -68.6%) vs baseline: ~same

Memory: ✅ 38.496MB (SLO: <41.000MB -6.1%) vs baseline: ~same

✅ re_groups_noaspect

Time: ✅ 1.705µs (SLO: <10.000µs 📉 -83.0%) vs baseline: -0.5%

Memory: ✅ 38.516MB (SLO: <41.000MB -6.1%) vs baseline: +0.5%

✅ re_match_aspect

Time: ✅ 2.785µs (SLO: <10.000µs 📉 -72.2%) vs baseline: +1.3%

Memory: ✅ 38.457MB (SLO: <41.000MB -6.2%) vs baseline: +0.4%

✅ re_match_noaspect

Time: ✅ 1.300µs (SLO: <10.000µs 📉 -87.0%) vs baseline: -1.7%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: +0.4%

✅ re_search_aspect

Time: ✅ 2.569µs (SLO: <10.000µs 📉 -74.3%) vs baseline: -0.3%

Memory: ✅ 38.417MB (SLO: <41.000MB -6.3%) vs baseline: -0.1%

✅ re_search_noaspect

Time: ✅ 1.205µs (SLO: <10.000µs 📉 -88.0%) vs baseline: +0.2%

Memory: ✅ 38.555MB (SLO: <41.000MB -6.0%) vs baseline: +0.6%

✅ re_sub_aspect

Time: ✅ 3.594µs (SLO: <10.000µs 📉 -64.1%) vs baseline: +5.1%

Memory: ✅ 38.555MB (SLO: <41.000MB -6.0%) vs baseline: +0.1%

✅ re_sub_noaspect

Time: ✅ 1.533µs (SLO: <10.000µs 📉 -84.7%) vs baseline: +0.8%

Memory: ✅ 38.574MB (SLO: <41.000MB -5.9%) vs baseline: +0.7%

✅ re_subn_aspect

Time: ✅ 3.596µs (SLO: <10.000µs 📉 -64.0%) vs baseline: -2.0%

Memory: ✅ 38.555MB (SLO: <41.000MB -6.0%) vs baseline: +0.3%

✅ re_subn_noaspect

Time: ✅ 1.596µs (SLO: <10.000µs 📉 -84.0%) vs baseline: -0.5%

Memory: ✅ 38.614MB (SLO: <41.000MB -5.8%) vs baseline: +0.9%

✅ iastaspectssplit - 12/12

✅ rsplit_aspect

Time: ✅ 1.385µs (SLO: <10.000µs 📉 -86.2%) vs baseline: -4.2%

Memory: ✅ 38.476MB (SLO: <41.000MB -6.2%) vs baseline: +0.2%

✅ rsplit_noaspect

Time: ✅ 0.578µs (SLO: <10.000µs 📉 -94.2%) vs baseline: -0.4%

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: +0.5%

✅ split_aspect

Time: ✅ 1.335µs (SLO: <10.000µs 📉 -86.6%) vs baseline: -5.1%

Memory: ✅ 38.555MB (SLO: <41.000MB -6.0%) vs baseline: +0.6%

✅ split_noaspect

Time: ✅ 0.570µs (SLO: <10.000µs 📉 -94.3%) vs baseline: ~same

Memory: ✅ 38.535MB (SLO: <41.000MB -6.0%) vs baseline: +0.3%

✅ splitlines_aspect

Time: ✅ 1.361µs (SLO: <10.000µs 📉 -86.4%) vs baseline: -3.7%

Memory: ✅ 38.614MB (SLO: <41.000MB -5.8%) vs baseline: +0.5%

✅ splitlines_noaspect

Time: ✅ 0.581µs (SLO: <10.000µs 📉 -94.2%) vs baseline: -0.3%

Memory: ✅ 38.574MB (SLO: <41.000MB -5.9%) vs baseline: +0.1%

✅ otelsdkspan - 24/24

✅ add-event

Time: ✅ 40.324ms (SLO: <42.000ms -4.0%) vs baseline: +0.3%

Memory: ✅ 37.611MB (SLO: <39.000MB -3.6%) vs baseline: +4.8%

✅ add-link

Time: ✅ 36.621ms (SLO: <38.550ms -5.0%) vs baseline: +1.0%

Memory: ✅ 37.631MB (SLO: <39.000MB -3.5%) vs baseline: +4.7%

✅ add-metrics

Time: ✅ 217.741ms (SLO: <232.000ms -6.1%) vs baseline: -0.5%

Memory: ✅ 37.709MB (SLO: <39.000MB -3.3%) vs baseline: +4.9%

✅ add-tags

Time: ✅ 210.973ms (SLO: <221.600ms -4.8%) vs baseline: +0.7%

Memory: ✅ 37.591MB (SLO: <39.000MB -3.6%) vs baseline: +4.7%

✅ get-context

Time: ✅ 29.167ms (SLO: <31.300ms -6.8%) vs baseline: ~same

Memory: ✅ 37.670MB (SLO: <39.000MB -3.4%) vs baseline: +5.1%

✅ is-recording

Time: ✅ 29.191ms (SLO: <31.000ms -5.8%) vs baseline: +0.9%

Memory: ✅ 37.650MB (SLO: <39.000MB -3.5%) vs baseline: +4.8%

✅ record-exception

Time: ✅ 63.105ms (SLO: <65.850ms -4.2%) vs baseline: +0.2%

Memory: ✅ 37.552MB (SLO: <39.000MB -3.7%) vs baseline: +4.7%

✅ set-status

Time: ✅ 32.021ms (SLO: <34.150ms -6.2%) vs baseline: +0.2%

Memory: ✅ 37.611MB (SLO: <39.000MB -3.6%) vs baseline: +4.9%

✅ start

Time: ✅ 29.263ms (SLO: <30.150ms -2.9%) vs baseline: +1.7%

Memory: ✅ 37.709MB (SLO: <39.000MB -3.3%) vs baseline: +5.2%

✅ start-finish

Time: ✅ 34.139ms (SLO: <35.350ms -3.4%) vs baseline: +0.8%

Memory: ✅ 37.768MB (SLO: <39.000MB -3.2%) vs baseline: +5.1%

✅ start-finish-telemetry

Time: ✅ 33.911ms (SLO: <35.450ms -4.3%) vs baseline: -1.1%

Memory: ✅ 37.670MB (SLO: <39.000MB -3.4%) vs baseline: +5.0%

✅ update-name

Time: ✅ 31.147ms (SLO: <33.400ms -6.7%) vs baseline: ~same

Memory: ✅ 37.690MB (SLO: <39.000MB -3.4%) vs baseline: +5.0%

ℹ️ Scenarios Missing SLO Configuration (10 scenarios)

The following scenarios exist in candidate data but have no SLO thresholds configured:

coreapiscenario-core_dispatch_listeners
coreapiscenario-core_dispatch_no_listeners
coreapiscenario-core_dispatch_with_results_listeners
coreapiscenario-core_dispatch_with_results_no_listeners
djangosimple-baseline
errortrackingdjangosimple-baseline
errortrackingflasksqli-baseline
flasksimple-baseline
flasksqli-baseline
sethttpmeta-obfuscation-disabled

ddtrace/appsec/_iast/_taint_tracking/api/safe_initializer.cpp

avara1986 added 2 commits December 4, 2025 15:52

fix(iast): wrong memory address in subprocess in MCP servers

578f47c

fix(iast): wrong memory address in subprocess in MCP servers

061b01e

avara1986 added changelog/no-changelog A changelog entry is not required for this PR. ASM Application Security Monitoring labels Dec 4, 2025

fix(iast): wrong memory address in subprocess in MCP servers

5105588

avara1986 added 7 commits December 4, 2025 21:39

fix(iast): wrong memory address in subprocess in MCP servers

750d831

enable tests for python 3.14

9f2a3cf

fix(iast): wrong memory address in subprocess in MCP servers

54aec7d

fix(iast): wrong memory address in subprocess in MCP servers

968863b

fix(iast): wrong memory address in subprocess in MCP servers

95c4163

fix(iast): wrong memory address in subprocess in MCP servers

30f8559

fix(iast): wrong memory address in subprocess in MCP servers

d7d49e4

avara1986 added backport 4.0 backport 3.19 and removed changelog/no-changelog A changelog entry is not required for this PR. labels Dec 5, 2025

fix(iast): wrong memory address in subprocess in MCP servers

6f80cb9

juanjux reviewed Dec 5, 2025

View reviewed changes

ddtrace/appsec/_iast/_taint_tracking/api/safe_initializer.cpp Show resolved Hide resolved

ddtrace/appsec/_iast/_taint_tracking/api/safe_initializer.cpp Show resolved Hide resolved

ddtrace/appsec/_iast/_taint_tracking/api/safe_initializer.cpp Show resolved Hide resolved

juanjux approved these changes Dec 5, 2025

View reviewed changes

avara1986 added 5 commits December 5, 2025 13:17

Merge branch 'main' into avara1986/APPSEC-60135_iast_potencial_error

8f51f9b

fix(iast): wrong memory address in subprocess in MCP servers

ee17762

fix(iast): wrong memory address in subprocess in MCP servers

524f55a

codestyle

fcf83f2

rollback

05a9d46

avara1986 force-pushed the avara1986/APPSEC-60135_iast_potencial_error branch from e676dc2 to 05a9d46 Compare December 5, 2025 16:04

avara1986 added 3 commits December 5, 2025 17:13

codestyle

364dde0

fix slice aspect memory usage

83a1467

fix slice aspect memory usage

0104ab5

increment slo

f396595

fix(iast): wrong memory address in subprocess in mcp servers #15514

Are you sure you want to change the base?

fix(iast): wrong memory address in subprocess in mcp servers #15514

Conversation

avara1986 commented Dec 4, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Root Cause

Solution

ASAN Verification

Minimal Reproduction Test

Uh oh!

github-actions bot commented Dec 4, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

github-actions bot commented Dec 4, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Bootstrap import analysis

Summary

Import time breakdown

Uh oh!

pr-commenter bot commented Dec 4, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Performance SLOs

✅ add_aspect

✅ add_inplace_aspect

✅ add_inplace_noaspect

✅ add_noaspect

✅ bytearray_aspect

✅ bytearray_extend_aspect

✅ bytearray_extend_noaspect

✅ bytearray_noaspect

✅ bytes_aspect

✅ bytes_noaspect

✅ bytesio_aspect

✅ bytesio_noaspect

✅ capitalize_aspect

✅ capitalize_noaspect

✅ casefold_aspect

✅ casefold_noaspect

✅ decode_aspect

✅ decode_noaspect

✅ encode_aspect

✅ encode_noaspect

✅ format_aspect

✅ format_map_aspect

✅ format_map_noaspect

✅ format_noaspect

✅ index_aspect

✅ index_noaspect

✅ join_aspect

✅ join_noaspect

✅ ljust_aspect

✅ ljust_noaspect

✅ lower_aspect

✅ lower_noaspect

✅ lstrip_aspect

✅ lstrip_noaspect

✅ modulo_aspect

✅ modulo_aspect_for_bytearray_bytearray

✅ modulo_aspect_for_bytes

✅ modulo_aspect_for_bytes_bytearray

✅ modulo_noaspect

✅ replace_aspect

✅ replace_noaspect

✅ repr_aspect

✅ repr_noaspect

✅ rstrip_aspect

✅ rstrip_noaspect

⚠️ slice_aspect

✅ slice_noaspect

✅ stringio_aspect

✅ stringio_noaspect

✅ strip_aspect

✅ strip_noaspect

✅ swapcase_aspect

✅ swapcase_noaspect

✅ title_aspect

✅ title_noaspect

✅ translate_aspect

✅ translate_noaspect

avara1986 commented Dec 4, 2025 •

edited

Loading

github-actions bot commented Dec 4, 2025 •

edited

Loading

github-actions bot commented Dec 4, 2025 •

edited

Loading

pr-commenter bot commented Dec 4, 2025 •

edited

Loading