[AAP] Add response headers even if no appsec event is present by daniel-romano-DD · Pull Request #8784 · DataDog/dd-trace-dotnet

daniel-romano-DD · 2026-06-12T11:12:51Z

Summary of changes

Always tag http.response.headers.content-type and http.response.headers.content-length on the root span when AppSec is enabled, regardless of whether a security event occurred.

Reason for change

JIRA
These two headers are needed for accurate request characterisation in the backend (schema analysis, anomaly detection). Previously they were only emitted when the WAF produced a security event, leaving them absent on clean requests even when AppSec was enabled.

Implementation details

Added AlwaysResponseHeaders (containing content-type and content-length) alongside the existing ResponseHeaders dictionary in SecurityReporter.
AddResponseHeadersToSpan now unconditionfrom the response and tags them. When asecurity event is present it falls through to AddResponseHeaderTags as before, which tags all four response headers plus the endpoint tag.
SecurityCoordinator.AddResponseHeadersToSpan simplified to delegate directly to Reporter.AddResponseHeadersToSpan so both entry points share the same behaviour.

Test coverage

Two new unit tests in TraceTaggingResultTests:

AddResponseHeadersToSpan_WithNoSecuriAndContentLength — asserts content-typeand content-length are tagged when there is no security event, and that content-encoding/content-language are
absent.
AddResponseHeadersToSpan_WithSecurityEvent_AddsAllResponseHeaders — asserts all four response headers are tagged when the span is an AppSec event.

Other details

N/A

pr-commenter · 2026-06-12T12:01:50Z

Benchmarks

Benchmark execution time: 2026-06-19 12:14:54

Comparing candidate commit cd84915 in PR branch dani/aap/add_response_headers_always with baseline commit f1fa899 in branch master.

📊 Benchmarking dashboard

Found 0 performance improvements and 1 performance regressions! Performance is the same for 71 metrics, 0 unstable metrics, 60 known flaky benchmarks, 66 flaky benchmarks without significant changes.

Explanation

This is an A/B test comparing a candidate commit's performance against that of a baseline commit. Performance changes are noted in the tables below as:

🟩 = significantly better candidate vs. baseline
🟥 = significantly worse candidate vs. baseline

We compute a confidence interval (CI) over the relative difference of means between metrics from the candidate and baseline commits, considering the baseline as the reference.

If the CI is entirely outside the configured SIGNIFICANT_IMPACT_THRESHOLD (or the deprecated UNCONFIDENCE_THRESHOLD), the change is considered significant.

Feel free to reach out to #apm-benchmarking-platform on Slack if you have any questions.

More details about the CI and significant changes

You can imagine this CI as a range of values that is likely to contain the true difference of means between the candidate and baseline commits.

CIs of the difference of means are often centered around 0%, because often changes are not that big:

---------------------------------(------|---^--------)-------------------------------->
                              -0.6%    0%  0.3%     +1.2%
                                 |          |        |
         lower bound of the CI --'          |        |
sample mean (center of the CI) -------------'        |
         upper bound of the CI ----------------------'

As described above, a change is considered significant if the CI is entirely outside the configured SIGNIFICANT_IMPACT_THRESHOLD (or the deprecated UNCONFIDENCE_THRESHOLD).

For instance, for an execution time metric, this confidence interval indicates a significantly worse performance:

----------------------------------------|---------|---(---------^---------)---------->
                                       0%        1%  1.3%      2.2%      3.1%
                                                  |   |         |         |
       significant impact threshold --------------'   |         |         |
                      lower bound of CI --------------'         |         |
       sample mean (center of the CI) --------------------------'         |
                      upper bound of CI ----------------------------------'

scenario:Benchmarks.Trace.HttpClientBenchmark.SendAsync net472

🟥 throughput [-6986.779op/s; -5929.842op/s] or [-7.976%; -6.769%]

Known flaky benchmarks

These benchmarks are marked as flaky and will not trigger a failure. Modify FLAKY_BENCHMARKS_REGEX to control which benchmarks are marked as flaky.

scenario:Benchmarks.Trace.ActivityBenchmark.StartStopWithChild net472

🟥 throughput [-8360.256op/s; -7594.158op/s] or [-9.913%; -9.004%]

scenario:Benchmarks.Trace.ActivityBenchmark.StartStopWithChild netcoreapp3.1

🟥 throughput [-8167.206op/s; -6779.046op/s] or [-8.304%; -6.893%]

scenario:Benchmarks.Trace.AgentWriterBenchmark.WriteAndFlushEnrichedTraces net472

🟥 execution_time [+300.217ms; +307.238ms] or [+148.978%; +152.462%]
🟥 throughput [-44.596op/s; -40.974op/s] or [-8.024%; -7.372%]

scenario:Benchmarks.Trace.AgentWriterBenchmark.WriteAndFlushEnrichedTraces net6.0

🟥 execution_time [+378.607ms; +381.188ms] or [+299.123%; +301.162%]
🟩 throughput [+92.416op/s; +96.731op/s] or [+12.185%; +12.754%]

scenario:Benchmarks.Trace.AgentWriterBenchmark.WriteAndFlushEnrichedTraces netcoreapp3.1

🟥 execution_time [+390.875ms; +391.914ms] or [+345.909%; +346.829%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleMoreComplexBody net472

🟥 allocated_mem [+1.308KB; +1.308KB] or [+27.528%; +27.540%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleMoreComplexBody net6.0

🟥 allocated_mem [+471 bytes; +472 bytes] or [+9.976%; +9.987%]
🟩 execution_time [-16.428ms; -12.232ms] or [-7.672%; -5.713%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleMoreComplexBody netcoreapp3.1

🟥 allocated_mem [+1.272KB; +1.272KB] or [+27.500%; +27.510%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleSimpleBody net472

🟥 allocated_mem [+1.307KB; +1.307KB] or [+105.743%; +105.758%]
🟥 throughput [-272139.684op/s; -268816.963op/s] or [-27.787%; -27.448%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleSimpleBody net6.0

🟥 allocated_mem [+471 bytes; +472 bytes] or [+38.557%; +38.566%]
🟩 execution_time [-26.541ms; -21.680ms] or [-11.836%; -9.668%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleSimpleBody netcoreapp3.1

🟥 allocated_mem [+1.272KB; +1.272KB] or [+105.288%; +105.304%]
🟥 throughput [-164295.128op/s; -145567.772op/s] or [-23.606%; -20.915%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorMoreComplexBody net6.0

🟩 throughput [+8545.467op/s; +11486.621op/s] or [+5.437%; +7.309%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorMoreComplexBody netcoreapp3.1

🟩 throughput [+9788.337op/s; +12418.414op/s] or [+7.798%; +9.893%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorSimpleBody net6.0

🟩 throughput [+439338.194op/s; +465529.050op/s] or [+14.649%; +15.523%]

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorSimpleBody netcoreapp3.1

🟩 execution_time [-18.812ms; -14.475ms] or [-8.672%; -6.672%]
🟩 throughput [+176868.272op/s; +231752.897op/s] or [+7.020%; +9.199%]

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeArgs net472

🟥 execution_time [+299.714ms; +300.539ms] or [+149.757%; +150.169%]

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeArgs net6.0

🟥 execution_time [+299.837ms; +303.471ms] or [+151.209%; +153.041%]

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeArgs netcoreapp3.1

🟥 execution_time [+299.247ms; +301.641ms] or [+150.737%; +151.943%]

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeLegacyArgs net472

🟥 execution_time [+295.976ms; +296.951ms] or [+145.372%; +145.851%]

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeLegacyArgs net6.0

🟥 execution_time [+295.829ms; +299.855ms] or [+144.620%; +146.588%]

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeLegacyArgs netcoreapp3.1

🟥 execution_time [+301.195ms; +302.802ms] or [+150.537%; +151.340%]

scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmarkWithAttack net6.0

🟥 execution_time [+28.197µs; +52.100µs] or [+9.002%; +16.633%]
🟥 throughput [-477.214op/s; -276.407op/s] or [-14.876%; -8.616%]

scenario:Benchmarks.Trace.AspNetCoreBenchmark.SendRequest net472

🟥 execution_time [+300.111ms; +300.982ms] or [+149.786%; +150.221%]

scenario:Benchmarks.Trace.AspNetCoreBenchmark.SendRequest net6.0

unstable execution_time [+399.850ms; +409.368ms] or [+434.453%; +444.795%]
🟩 throughput [+856.679op/s; +1047.230op/s] or [+7.039%; +8.605%]

scenario:Benchmarks.Trace.AspNetCoreBenchmark.SendRequest netcoreapp3.1

🟥 execution_time [+368.454ms; +373.947ms] or [+279.764%; +283.935%]

scenario:Benchmarks.Trace.CIVisibilityProtocolWriterBenchmark.WriteAndFlushEnrichedTraces net472

unstable execution_time [+301.417ms; +366.352ms] or [+138.589%; +168.445%]
🟥 throughput [-566.374op/s; -514.490op/s] or [-51.319%; -46.618%]

scenario:Benchmarks.Trace.CIVisibilityProtocolWriterBenchmark.WriteAndFlushEnrichedTraces net6.0

unstable execution_time [+206.895ms; +340.177ms] or [+88.170%; +144.969%]
🟥 throughput [-678.385op/s; -594.445op/s] or [-45.248%; -39.650%]

scenario:Benchmarks.Trace.CIVisibilityProtocolWriterBenchmark.WriteAndFlushEnrichedTraces netcoreapp3.1

🟥 execution_time [+329.706ms; +344.232ms] or [+197.202%; +205.890%]
🟥 throughput [-406.665op/s; -367.625op/s] or [-28.316%; -25.597%]

scenario:Benchmarks.Trace.CharSliceBenchmark.OriginalCharSlice net6.0

🟩 execution_time [-208.258µs; -149.559µs] or [-10.550%; -7.576%]
🟩 throughput [+44.200op/s; +60.066op/s] or [+8.725%; +11.857%]

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearch net472

🟥 execution_time [+304.755ms; +306.968ms] or [+153.469%; +154.583%]

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearch net6.0

🟥 execution_time [+302.613ms; +305.016ms] or [+151.640%; +152.844%]

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearch netcoreapp3.1

🟥 execution_time [+301.785ms; +305.578ms] or [+151.604%; +153.509%]

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearchAsync net472

🟥 execution_time [+301.032ms; +302.467ms] or [+151.168%; +151.889%]

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearchAsync net6.0

🟥 execution_time [+300.992ms; +303.007ms] or [+148.827%; +149.823%]

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearchAsync netcoreapp3.1

🟥 execution_time [+302.587ms; +306.936ms] or [+153.364%; +155.569%]

scenario:Benchmarks.Trace.GraphQLBenchmark.ExecuteAsync net472

🟥 execution_time [+303.466ms; +305.394ms] or [+152.313%; +153.280%]

scenario:Benchmarks.Trace.GraphQLBenchmark.ExecuteAsync net6.0

🟥 execution_time [+299.298ms; +301.572ms] or [+149.173%; +150.306%]
🟩 throughput [+37284.703op/s; +48287.640op/s] or [+7.404%; +9.588%]

scenario:Benchmarks.Trace.GraphQLBenchmark.ExecuteAsync netcoreapp3.1

🟥 execution_time [+301.296ms; +304.539ms] or [+149.892%; +151.506%]

scenario:Benchmarks.Trace.ILoggerBenchmark.EnrichedLog net6.0

🟩 execution_time [-16.468ms; -12.808ms] or [-7.658%; -5.956%]
🟩 throughput [+21675.012op/s; +28610.941op/s] or [+5.946%; +7.849%]

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatAspectBenchmark net472

unstable execution_time [+12.614µs; +57.373µs] or [+3.116%; +14.171%]

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatAspectBenchmark net6.0

🟩 allocated_mem [-21.082KB; -21.059KB] or [-7.690%; -7.682%]
unstable execution_time [-47.393µs; +8.711µs] or [-9.367%; +1.722%]

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatAspectBenchmark netcoreapp3.1

unstable execution_time [-37.475µs; +22.650µs] or [-6.494%; +3.925%]

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatBenchmark net6.0

unstable execution_time [+10.260µs; +15.906µs] or [+24.252%; +37.598%]
🟥 throughput [-6407.915op/s; -4345.742op/s] or [-26.975%; -18.294%]

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatBenchmark netcoreapp3.1

unstable execution_time [-14.973µs; -7.865µs] or [-23.230%; -12.203%]
🟩 throughput [+1942.038op/s; +3458.849op/s] or [+11.915%; +21.221%]

scenario:Benchmarks.Trace.Log4netBenchmark.EnrichedLog net472

🟥 execution_time [+303.574ms; +305.066ms] or [+153.443%; +154.197%]

scenario:Benchmarks.Trace.Log4netBenchmark.EnrichedLog net6.0

🟥 execution_time [+305.362ms; +309.439ms] or [+155.428%; +157.504%]

scenario:Benchmarks.Trace.Log4netBenchmark.EnrichedLog netcoreapp3.1

🟥 execution_time [+298.721ms; +301.699ms] or [+149.547%; +151.037%]

scenario:Benchmarks.Trace.RedisBenchmark.SendReceive net6.0

🟩 throughput [+36546.703op/s; +44752.873op/s] or [+6.918%; +8.471%]

scenario:Benchmarks.Trace.SerilogBenchmark.EnrichedLog net472

🟥 execution_time [+300.808ms; +303.208ms] or [+149.926%; +151.122%]

scenario:Benchmarks.Trace.SerilogBenchmark.EnrichedLog net6.0

🟥 execution_time [+300.913ms; +302.222ms] or [+151.104%; +151.761%]

scenario:Benchmarks.Trace.SerilogBenchmark.EnrichedLog netcoreapp3.1

🟥 execution_time [+302.654ms; +304.955ms] or [+153.487%; +154.654%]

scenario:Benchmarks.Trace.SingleSpanAspNetCoreBenchmark.SingleSpanAspNetCore net472

🟥 execution_time [+300.373ms; +301.412ms] or [+149.828%; +150.346%]
🟩 throughput [+60983494.340op/s; +61341886.851op/s] or [+44.412%; +44.673%]

scenario:Benchmarks.Trace.SingleSpanAspNetCoreBenchmark.SingleSpanAspNetCore net6.0

unstable execution_time [+337.668ms; +394.839ms] or [+419.950%; +491.053%]

scenario:Benchmarks.Trace.SingleSpanAspNetCoreBenchmark.SingleSpanAspNetCore netcoreapp3.1

🟥 execution_time [+299.276ms; +300.443ms] or [+149.272%; +149.854%]

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishScope net6.0

🟩 throughput [+94187.744op/s; +104420.362op/s] or [+8.794%; +9.749%]

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishSpan net6.0

🟩 throughput [+96699.540op/s; +126425.604op/s] or [+7.485%; +9.786%]

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishSpan netcoreapp3.1

🟩 throughput [+79565.982op/s; +87148.789op/s] or [+7.902%; +8.655%]

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishTwoScopes net6.0

🟩 throughput [+50283.566op/s; +57054.107op/s] or [+9.131%; +10.360%]

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishTwoScopes netcoreapp3.1

🟩 throughput [+25534.227op/s; +35198.153op/s] or [+5.715%; +7.878%]

scenario:Benchmarks.Trace.TraceAnnotationsBenchmark.RunOnMethodBegin net6.0

🟩 throughput [+53570.019op/s; +99972.500op/s] or [+5.985%; +11.169%]

Known flaky benchmarks without significant changes:

scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_AddEvent_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_AddEvent_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_AddEvent_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_GetContext_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_GetContext_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_GetContext_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_SetAttributes_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_SetAttributes_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_SetAttributes_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_SetStatus_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_SetStatus_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_SetStatus_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_UpdateName_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_UpdateName_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.ActivityBenchmark.StartSpan_UpdateName_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_AddEvent_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_AddEvent_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_AddEvent_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_GetContext_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_GetContext_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_GetContext_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_RecordException_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_RecordException_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_RecordException_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_SetAttributes_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_SetAttributes_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_SetAttributes_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_SetStatus_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_SetStatus_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_SetStatus_Sampled netcoreapp3.1
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_UpdateName_Sampled net472
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_UpdateName_Sampled net6.0
scenario:Benchmarks.OpenTelemetry.InstrumentedApi.Trace.TelemetrySpanBenchmark.StartSpan_UpdateName_Sampled netcoreapp3.1
scenario:Benchmarks.Trace.ActivityBenchmark.StartStopWithChild net6.0
scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorMoreComplexBody net472
scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorSimpleBody net472
scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmark net472
scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmark net6.0
scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmark netcoreapp3.1
scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmarkWithAttack net472
scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmarkWithAttack netcoreapp3.1
scenario:Benchmarks.Trace.CharSliceBenchmark.OptimizedCharSlice net472
scenario:Benchmarks.Trace.CharSliceBenchmark.OptimizedCharSlice net6.0
scenario:Benchmarks.Trace.CharSliceBenchmark.OptimizedCharSlice netcoreapp3.1
scenario:Benchmarks.Trace.CharSliceBenchmark.OptimizedCharSliceWithPool net472
scenario:Benchmarks.Trace.CharSliceBenchmark.OptimizedCharSliceWithPool net6.0
scenario:Benchmarks.Trace.CharSliceBenchmark.OptimizedCharSliceWithPool netcoreapp3.1
scenario:Benchmarks.Trace.CharSliceBenchmark.OriginalCharSlice net472
scenario:Benchmarks.Trace.CharSliceBenchmark.OriginalCharSlice netcoreapp3.1
scenario:Benchmarks.Trace.ILoggerBenchmark.EnrichedLog net472
scenario:Benchmarks.Trace.ILoggerBenchmark.EnrichedLog netcoreapp3.1
scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatBenchmark net472
scenario:Benchmarks.Trace.RedisBenchmark.SendReceive net472
scenario:Benchmarks.Trace.RedisBenchmark.SendReceive netcoreapp3.1
scenario:Benchmarks.Trace.SpanBenchmark.StartFinishScope net472
scenario:Benchmarks.Trace.SpanBenchmark.StartFinishScope netcoreapp3.1
scenario:Benchmarks.Trace.SpanBenchmark.StartFinishSpan net472
scenario:Benchmarks.Trace.SpanBenchmark.StartFinishTwoScopes net472
scenario:Benchmarks.Trace.TraceAnnotationsBenchmark.RunOnMethodBegin net472
scenario:Benchmarks.Trace.TraceAnnotationsBenchmark.RunOnMethodBegin netcoreapp3.1

datadog-prod-us1-3 · 2026-06-12T12:05:58Z

✨ Fix all issues with BitsAI

⚠️ Warnings

🚦 2 Pipeline jobs failed

consolidated-pipeline | Linux

consolidated-pipeline | build x64

Useful? React with 👍 / 👎

_{This comment will be updated automatically if new data arrives.

🔗 Commit SHA: cd84915 | Docs | Datadog PR Page | Give us feedback!}

daniel-romano-DD · 2026-06-15T13:59:45Z

@codex review

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 74bf55dab4

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

chatgpt-codex-connector · 2026-06-15T14:07:21Z

+        var headers = CanAccessHeaders ? _httpTransport.GetResponseHeaders() : new NameValueHeadersCollection(new NameValueCollection());
+        AddHeaderTags(_span, headers, AlwaysResponseHeaders, SpanContextPropagator.HttpResponseHeadersTagPrefix);


Update snapshots for clean AppSec responses

When AppSec is enabled but the request is not an AppSec event, this new path now adds http.response.headers.content-type and http.response.headers.content-length to the span. The existing Security.AspNetCore5TraceTagging._.verified.txt snapshot still has the first two /Health spans (TraceTagging/v1 and TraceTagging/v2) without those tags, while the later event spans show that this endpoint does return both headers; since no verified snapshots were updated in this commit, AspNetCore5TraceTagging.TestTraceTaggingRules will fail snapshot verification.

Useful? React with 👍 / 👎.

dd-trace-dotnet-ci-bot · 2026-06-15T14:58:55Z

Execution-Time Benchmarks Report ⏱️

Execution-time results for samples comparing This PR (8784) and master.

✅ No regressions detected - check the details below

Full Metrics Comparison

FakeDbCommand

Metric	Master (Mean ± 95% CI)	Current (Mean ± 95% CI)	Change	Status
.NET Framework 4.8 - Baseline
duration	73.13 ± (73.11 - 73.37) ms	75.10 ± (74.86 - 75.34) ms	+2.7%	✅⬆️
.NET Framework 4.8 - Bailout
duration	76.91 ± (76.91 - 77.27) ms	78.72 ± (78.63 - 79.14) ms	+2.4%	✅⬆️
.NET Framework 4.8 - CallTarget+Inlining+NGEN
duration	1098.35 ± (1096.18 - 1101.24) ms	1091.38 ± (1092.56 - 1099.39) ms	-0.6%	✅
.NET Core 3.1 - Baseline
process.internal_duration_ms	22.44 ± (22.39 - 22.48) ms	22.72 ± (22.67 - 22.78) ms	+1.3%	✅⬆️
process.time_to_main_ms	83.95 ± (83.77 - 84.14) ms	86.06 ± (85.83 - 86.30) ms	+2.5%	✅⬆️
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	10.93 ± (10.92 - 10.93) MB	10.90 ± (10.90 - 10.90) MB	-0.3%	✅
runtime.dotnet.threads.count	12 ± (12 - 12)	12 ± (12 - 12)	+0.0%	✅
.NET Core 3.1 - Bailout
process.internal_duration_ms	22.49 ± (22.44 - 22.53) ms	22.39 ± (22.35 - 22.43) ms	-0.4%	✅
process.time_to_main_ms	86.87 ± (86.61 - 87.13) ms	85.90 ± (85.70 - 86.11) ms	-1.1%	✅
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	10.97 ± (10.97 - 10.97) MB	10.95 ± (10.95 - 10.96) MB	-0.2%	✅
runtime.dotnet.threads.count	13 ± (13 - 13)	13 ± (13 - 13)	+0.0%	✅
.NET Core 3.1 - CallTarget+Inlining+NGEN
process.internal_duration_ms	213.98 ± (212.90 - 215.06) ms	213.77 ± (212.81 - 214.72) ms	-0.1%	✅
process.time_to_main_ms	541.78 ± (540.26 - 543.29) ms	538.92 ± (537.68 - 540.15) ms	-0.5%	✅
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	48.63 ± (48.59 - 48.67) MB	48.64 ± (48.61 - 48.67) MB	+0.0%	✅⬆️
runtime.dotnet.threads.count	28 ± (28 - 28)	28 ± (28 - 28)	-0.2%	✅
.NET 6 - Baseline
process.internal_duration_ms	21.17 ± (21.14 - 21.20) ms	21.26 ± (21.22 - 21.30) ms	+0.4%	✅⬆️
process.time_to_main_ms	72.42 ± (72.28 - 72.57) ms	72.84 ± (72.69 - 72.99) ms	+0.6%	✅⬆️
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	10.63 ± (10.63 - 10.64) MB	10.64 ± (10.64 - 10.64) MB	+0.1%	✅⬆️
runtime.dotnet.threads.count	10 ± (10 - 10)	10 ± (10 - 10)	+0.0%	✅
.NET 6 - Bailout
process.internal_duration_ms	21.37 ± (21.32 - 21.42) ms	21.02 ± (20.98 - 21.05) ms	-1.6%	✅
process.time_to_main_ms	75.21 ± (74.98 - 75.44) ms	73.36 ± (73.22 - 73.49) ms	-2.5%	✅
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	10.75 ± (10.74 - 10.75) MB	10.76 ± (10.76 - 10.77) MB	+0.2%	✅⬆️
runtime.dotnet.threads.count	11 ± (11 - 11)	11 ± (11 - 11)	+0.0%	✅
.NET 6 - CallTarget+Inlining+NGEN
process.internal_duration_ms	370.32 ± (368.37 - 372.26) ms	372.79 ± (370.97 - 374.62) ms	+0.7%	✅⬆️
process.time_to_main_ms	545.41 ± (544.25 - 546.57) ms	549.25 ± (548.14 - 550.37) ms	+0.7%	✅⬆️
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	50.21 ± (50.18 - 50.23) MB	50.17 ± (50.15 - 50.20) MB	-0.1%	✅
runtime.dotnet.threads.count	28 ± (28 - 28)	28 ± (28 - 28)	+0.1%	✅⬆️
.NET 8 - Baseline
process.internal_duration_ms	19.54 ± (19.50 - 19.59) ms	19.73 ± (19.68 - 19.78) ms	+1.0%	✅⬆️
process.time_to_main_ms	72.49 ± (72.30 - 72.68) ms	74.55 ± (74.30 - 74.79) ms	+2.8%	✅⬆️
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	7.71 ± (7.71 - 7.72) MB	7.68 ± (7.67 - 7.68) MB	-0.5%	✅
runtime.dotnet.threads.count	10 ± (10 - 10)	10 ± (10 - 10)	+0.0%	✅
.NET 8 - Bailout
process.internal_duration_ms	19.38 ± (19.34 - 19.42) ms	19.43 ± (19.38 - 19.47) ms	+0.2%	✅⬆️
process.time_to_main_ms	73.29 ± (73.13 - 73.44) ms	73.73 ± (73.52 - 73.93) ms	+0.6%	✅⬆️
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	7.75 ± (7.74 - 7.76) MB	7.72 ± (7.72 - 7.72) MB	-0.4%	✅
runtime.dotnet.threads.count	11 ± (11 - 11)	11 ± (11 - 11)	+0.0%	✅
.NET 8 - CallTarget+Inlining+NGEN
process.internal_duration_ms	300.51 ± (298.10 - 302.92) ms	297.18 ± (295.04 - 299.31) ms	-1.1%	✅
process.time_to_main_ms	497.34 ± (496.42 - 498.27) ms	495.31 ± (494.09 - 496.53) ms	-0.4%	✅
runtime.dotnet.exceptions.count	0 ± (0 - 0)	0 ± (0 - 0)	+0.0%	✅
runtime.dotnet.mem.committed	37.15 ± (37.12 - 37.18) MB	37.19 ± (37.16 - 37.21) MB	+0.1%	✅⬆️
runtime.dotnet.threads.count	27 ± (27 - 27)	27 ± (27 - 27)	+0.6%	✅⬆️

HttpMessageHandler

Metric	Master (Mean ± 95% CI)	Current (Mean ± 95% CI)	Change	Status
.NET Framework 4.8 - Baseline
duration	200.39 ± (199.84 - 200.70) ms	201.91 ± (201.57 - 202.33) ms	+0.8%	✅⬆️
.NET Framework 4.8 - Bailout
duration	204.11 ± (203.84 - 204.77) ms	205.35 ± (204.99 - 205.75) ms	+0.6%	✅⬆️
.NET Framework 4.8 - CallTarget+Inlining+NGEN
duration	1194.40 ± (1193.71 - 1199.55) ms	1198.60 ± (1198.47 - 1204.78) ms	+0.4%	✅⬆️
.NET Core 3.1 - Baseline
process.internal_duration_ms	193.51 ± (193.03 - 193.99) ms	195.03 ± (194.60 - 195.46) ms	+0.8%	✅⬆️
process.time_to_main_ms	83.61 ± (83.32 - 83.90) ms	85.10 ± (84.77 - 85.43) ms	+1.8%	✅⬆️
runtime.dotnet.exceptions.count	3 ± (3 - 3)	3 ± (3 - 3)	+0.0%	✅
runtime.dotnet.mem.committed	16.10 ± (16.08 - 16.12) MB	16.11 ± (16.08 - 16.14) MB	+0.1%	✅⬆️
runtime.dotnet.threads.count	20 ± (20 - 20)	20 ± (19 - 20)	-0.1%	✅
.NET Core 3.1 - Bailout
process.internal_duration_ms	193.86 ± (193.48 - 194.24) ms	193.81 ± (193.45 - 194.18) ms	-0.0%	✅
process.time_to_main_ms	85.03 ± (84.76 - 85.31) ms	85.97 ± (85.72 - 86.21) ms	+1.1%	✅⬆️
runtime.dotnet.exceptions.count	3 ± (3 - 3)	3 ± (3 - 3)	+0.0%	✅
runtime.dotnet.mem.committed	16.10 ± (16.08 - 16.13) MB	16.16 ± (16.13 - 16.18) MB	+0.3%	✅⬆️
runtime.dotnet.threads.count	21 ± (20 - 21)	21 ± (20 - 21)	+0.1%	✅⬆️
.NET Core 3.1 - CallTarget+Inlining+NGEN
process.internal_duration_ms	387.01 ± (385.64 - 388.39) ms	388.83 ± (387.34 - 390.32) ms	+0.5%	✅⬆️
process.time_to_main_ms	538.67 ± (537.31 - 540.03) ms	544.67 ± (543.43 - 545.90) ms	+1.1%	✅⬆️
runtime.dotnet.exceptions.count	3 ± (3 - 3)	3 ± (3 - 3)	+0.0%	✅
runtime.dotnet.mem.committed	57.79 ± (57.62 - 57.97) MB	58.25 ± (58.03 - 58.47) MB	+0.8%	✅⬆️
runtime.dotnet.threads.count	30 ± (30 - 30)	30 ± (30 - 30)	+0.5%	✅⬆️
.NET 6 - Baseline
process.internal_duration_ms	199.69 ± (199.21 - 200.17) ms	199.38 ± (198.93 - 199.83) ms	-0.2%	✅
process.time_to_main_ms	73.69 ± (73.42 - 73.96) ms	73.57 ± (73.32 - 73.82) ms	-0.2%	✅
runtime.dotnet.exceptions.count	4 ± (4 - 4)	4 ± (4 - 4)	+0.0%	✅
runtime.dotnet.mem.committed	16.37 ± (16.34 - 16.39) MB	16.40 ± (16.38 - 16.43) MB	+0.2%	✅⬆️
runtime.dotnet.threads.count	19 ± (19 - 19)	19 ± (19 - 19)	-0.4%	✅
.NET 6 - Bailout
process.internal_duration_ms	198.72 ± (198.22 - 199.22) ms	198.78 ± (198.48 - 199.07) ms	+0.0%	✅⬆️
process.time_to_main_ms	73.98 ± (73.76 - 74.20) ms	74.49 ± (74.28 - 74.71) ms	+0.7%	✅⬆️
runtime.dotnet.exceptions.count	4 ± (4 - 4)	4 ± (4 - 4)	+0.0%	✅
runtime.dotnet.mem.committed	16.38 ± (16.36 - 16.40) MB	16.44 ± (16.41 - 16.46) MB	+0.3%	✅⬆️
runtime.dotnet.threads.count	20 ± (20 - 20)	20 ± (20 - 20)	-0.3%	✅
.NET 6 - CallTarget+Inlining+NGEN
process.internal_duration_ms	587.41 ± (584.76 - 590.07) ms	585.63 ± (583.04 - 588.23) ms	-0.3%	✅
process.time_to_main_ms	548.81 ± (547.79 - 549.84) ms	548.10 ± (546.92 - 549.27) ms	-0.1%	✅
runtime.dotnet.exceptions.count	4 ± (4 - 4)	4 ± (4 - 4)	+0.0%	✅
runtime.dotnet.mem.committed	61.62 ± (61.52 - 61.72) MB	61.45 ± (61.35 - 61.56) MB	-0.3%	✅
runtime.dotnet.threads.count	31 ± (31 - 31)	31 ± (31 - 31)	-0.5%	✅
.NET 8 - Baseline
process.internal_duration_ms	196.51 ± (196.02 - 197.00) ms	197.33 ± (196.80 - 197.85) ms	+0.4%	✅⬆️
process.time_to_main_ms	72.26 ± (72.03 - 72.50) ms	72.96 ± (72.72 - 73.20) ms	+1.0%	✅⬆️
runtime.dotnet.exceptions.count	4 ± (4 - 4)	4 ± (4 - 4)	+0.0%	✅
runtime.dotnet.mem.committed	11.71 ± (11.69 - 11.73) MB	11.73 ± (11.71 - 11.75) MB	+0.2%	✅⬆️
runtime.dotnet.threads.count	18 ± (18 - 18)	18 ± (18 - 18)	-0.1%	✅
.NET 8 - Bailout
process.internal_duration_ms	195.82 ± (195.34 - 196.29) ms	197.93 ± (197.48 - 198.37) ms	+1.1%	✅⬆️
process.time_to_main_ms	73.10 ± (72.89 - 73.30) ms	74.49 ± (74.27 - 74.70) ms	+1.9%	✅⬆️
runtime.dotnet.exceptions.count	4 ± (4 - 4)	4 ± (4 - 4)	+0.0%	✅
runtime.dotnet.mem.committed	11.78 ± (11.76 - 11.80) MB	11.75 ± (11.73 - 11.77) MB	-0.2%	✅
runtime.dotnet.threads.count	19 ± (19 - 19)	20 ± (19 - 20)	+1.4%	✅⬆️
.NET 8 - CallTarget+Inlining+NGEN
process.internal_duration_ms	514.87 ± (512.47 - 517.28) ms	513.74 ± (511.00 - 516.47) ms	-0.2%	✅
process.time_to_main_ms	496.57 ± (495.59 - 497.55) ms	498.26 ± (497.40 - 499.13) ms	+0.3%	✅⬆️
runtime.dotnet.exceptions.count	4 ± (4 - 4)	4 ± (4 - 4)	+0.0%	✅
runtime.dotnet.mem.committed	50.93 ± (50.90 - 50.97) MB	51.03 ± (50.99 - 51.07) MB	+0.2%	✅⬆️
runtime.dotnet.threads.count	30 ± (29 - 30)	30 ± (29 - 30)	+0.1%	✅⬆️

Comparison explanation

Execution-time benchmarks measure the whole time it takes to execute a program, and are intended to measure the one-off costs. Cases where the execution time results for the PR are worse than latest master results are highlighted in **red**. The following thresholds were used for comparing the execution times:

Welch test with statistical test for significance of 5%
Only results indicating a difference greater than 5% and 5 ms are considered.

Note that these results are based on a single point-in-time result for each branch. For full results, see the dashboard.

Graphs show the p99 interval based on the mean and StdDev of the test run, as well as the mean value of the run (shown as a diamond below the graph).

Duration charts

FakeDbCommand (.NET Framework 4.8)

gantt
    title Execution time (ms) FakeDbCommand (.NET Framework 4.8)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (75ms)  : 71, 79
    master - mean (73ms)  : 71, 75

    section Bailout
    This PR (8784) - mean (79ms)  : 75, 82
    master - mean (77ms)  : 75, 79

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (1,096ms)  : 1046, 1146
    master - mean (1,099ms)  : 1063, 1135

FakeDbCommand (.NET Core 3.1)

gantt
    title Execution time (ms) FakeDbCommand (.NET Core 3.1)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (117ms)  : 113, 121
    master - mean (114ms)  : 111, 117

    section Bailout
    This PR (8784) - mean (116ms)  : 112, 119
    master - mean (117ms)  : 112, 122

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (791ms)  : 764, 818
    master - mean (794ms)  : 776, 813

FakeDbCommand (.NET 6)

gantt
    title Execution time (ms) FakeDbCommand (.NET 6)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (101ms)  : 98, 104
    master - mean (100ms)  : 97, 103

    section Bailout
    This PR (8784) - mean (101ms)  : 99, 104
    master - mean (103ms)  : 99, 108

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (957ms)  : 922, 992
    master - mean (952ms)  : 910, 994

FakeDbCommand (.NET 8)

gantt
    title Execution time (ms) FakeDbCommand (.NET 8)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (102ms)  : 97, 107
    master - mean (100ms)  : 96, 104

    section Bailout
    This PR (8784) - mean (101ms)  : 97, 105
    master - mean (100ms)  : 98, 102

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (823ms)  : 790, 855
    master - mean (828ms)  : 792, 864

HttpMessageHandler (.NET Framework 4.8)

gantt
    title Execution time (ms) HttpMessageHandler (.NET Framework 4.8)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (202ms)  : 198, 206
    master - mean (200ms)  : 195, 205

    section Bailout
    This PR (8784) - mean (205ms)  : 202, 209
    master - mean (204ms)  : 200, 209

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (1,202ms)  : 1162, 1242
    master - mean (1,197ms)  : 1156, 1238

HttpMessageHandler (.NET Core 3.1)

gantt
    title Execution time (ms) HttpMessageHandler (.NET Core 3.1)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (290ms)  : 283, 297
    master - mean (286ms)  : 275, 297

    section Bailout
    This PR (8784) - mean (289ms)  : 283, 295
    master - mean (288ms)  : 283, 293

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (975ms)  : 952, 997
    master - mean (966ms)  : 945, 987

HttpMessageHandler (.NET 6)

gantt
    title Execution time (ms) HttpMessageHandler (.NET 6)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (282ms)  : 276, 289
    master - mean (282ms)  : 274, 290

    section Bailout
    This PR (8784) - mean (283ms)  : 279, 286
    master - mean (281ms)  : 272, 291

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (1,165ms)  : 1136, 1193
    master - mean (1,167ms)  : 1123, 1211

HttpMessageHandler (.NET 8)

gantt
    title Execution time (ms) HttpMessageHandler (.NET 8)
    dateFormat  x
    axisFormat %Q
    todayMarker off
    section Baseline
    This PR (8784) - mean (281ms)  : 272, 289
    master - mean (279ms)  : 268, 290

    section Bailout
    This PR (8784) - mean (283ms)  : 275, 290
    master - mean (278ms)  : 272, 284

    section CallTarget+Inlining+NGEN
    This PR (8784) - mean (1,043ms)  : 995, 1092
    master - mean (1,042ms)  : 999, 1085

daniel-romano-DD · 2026-06-16T09:39:00Z

@codex review

chatgpt-codex-connector

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: c4f484b25e

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

Open a pull request for review
Mark a draft as ready
Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

github-actions · 2026-06-16T11:59:42Z

Snapshots difference summary

The following differences have been observed in committed snapshots. It is meant to help the reviewer.
The diff is simplistic, so please check some files anyway while we improve it.

4 occurrences of :

+        "http.response.headers.content-type": "text/plain; charset=utf-8",

2 occurrences of :

+      http.response.headers.content-length: 46,
+      http.response.headers.content-type: text/plain; charset=utf-8,

34 occurrences of :

+      http.response.headers.content-type: text/html; charset=utf-8,

1 occurrences of :

+      http.response.headers.content-length: 51,
+      http.response.headers.content-type: text/plain; charset=utf-8,

25 occurrences of :

+      http.response.headers.content-type: application/json; charset=utf-8,

4 occurrences of :

+      http.response.headers.content-length: 3,
+      http.response.headers.content-type: text/plain; charset=utf-8,

22 occurrences of :

+      http.response.headers.content-length: 0,

1 occurrences of :

+      http.response.headers.content-length: 18,
+      http.response.headers.content-type: text/plain; charset=utf-8,

1 occurrences of :

+      http.response.headers.content-length: 13,
+      http.response.headers.content-type: text/plain; charset=utf-8,

5 occurrences of :

+      http.response.headers.content-length: 49,
+      http.response.headers.content-type: text/plain; charset=utf-8,

2 occurrences of :

+      http.response.headers.content-length: 24,
+      http.response.headers.content-type: text/plain; charset=utf-8,

2 occurrences of :

+      http.response.headers.content-length: 4,
+      http.response.headers.content-type: application/json; charset=utf-8,

2 occurrences of :

+      http.response.headers.content-length: 35,
+      http.response.headers.content-type: application/json; charset=utf-8,

Add new headers to snapshots Fix tests Snapshots Fix spans Rasp snapshots Compilation error fix Fix test Fix tests

daniel-romano-DD added the area:asm label Jun 12, 2026

daniel-romano-DD force-pushed the dani/aap/add_response_headers_always branch from fdeb404 to 74bf55d Compare June 12, 2026 15:18

daniel-romano-DD force-pushed the dani/aap/add_response_headers_always branch from 74bf55d to c4f484b Compare June 15, 2026 14:01

chatgpt-codex-connector Bot reviewed Jun 15, 2026

View reviewed changes

chatgpt-codex-connector Bot reviewed Jun 16, 2026

View reviewed changes

Comment thread tracer/src/Datadog.Trace/AppSec/Coordinator/SecurityReporter.cs

daniel-romano-DD force-pushed the dani/aap/add_response_headers_always branch 4 times, most recently from f177466 to bd3d220 Compare June 19, 2026 07:40

daniel-romano-DD marked this pull request as ready for review June 19, 2026 11:11

daniel-romano-DD requested review from a team as code owners June 19, 2026 11:11

daniel-romano-DD added 5 commits June 19, 2026 13:25

Add response headers even if no appsec event has been generated

a3c2ad4

Fix tests

fda7570

Add new headers to snapshots Fix tests Snapshots Fix spans Rasp snapshots Compilation error fix Fix test Fix tests

Smoke tests snapshots

fada21e

Snapshots

70c55d4

MOAR snapshots :_

cd84915

daniel-romano-DD force-pushed the dani/aap/add_response_headers_always branch from bd3d220 to cd84915 Compare June 19, 2026 11:25

daniel-romano-DD enabled auto-merge (squash) June 19, 2026 15:44

e-n-0 approved these changes Jun 19, 2026

View reviewed changes

		var headers = CanAccessHeaders ? _httpTransport.GetResponseHeaders() : new NameValueHeadersCollection(new NameValueCollection());
		AddHeaderTags(_span, headers, AlwaysResponseHeaders, SpanContextPropagator.HttpResponseHeadersTagPrefix);

Conversation

daniel-romano-DD commented Jun 12, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary of changes

Reason for change

Implementation details

Test coverage

Other details

Uh oh!

pr-commenter Bot commented Jun 12, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Benchmarks

Explanation

More details about the CI and significant changes

scenario:Benchmarks.Trace.HttpClientBenchmark.SendAsync net472

Known flaky benchmarks

scenario:Benchmarks.Trace.ActivityBenchmark.StartStopWithChild net472

scenario:Benchmarks.Trace.ActivityBenchmark.StartStopWithChild netcoreapp3.1

scenario:Benchmarks.Trace.AgentWriterBenchmark.WriteAndFlushEnrichedTraces net472

scenario:Benchmarks.Trace.AgentWriterBenchmark.WriteAndFlushEnrichedTraces net6.0

scenario:Benchmarks.Trace.AgentWriterBenchmark.WriteAndFlushEnrichedTraces netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleMoreComplexBody net472

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleMoreComplexBody net6.0

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleMoreComplexBody netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleSimpleBody net472

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleSimpleBody net6.0

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.AllCycleSimpleBody netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorMoreComplexBody net6.0

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorMoreComplexBody netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorSimpleBody net6.0

scenario:Benchmarks.Trace.Asm.AppSecBodyBenchmark.ObjectExtractorSimpleBody netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeArgs net472

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeArgs net6.0

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeArgs netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeLegacyArgs net472

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeLegacyArgs net6.0

scenario:Benchmarks.Trace.Asm.AppSecEncoderBenchmark.EncodeLegacyArgs netcoreapp3.1

scenario:Benchmarks.Trace.Asm.AppSecWafBenchmark.RunWafRealisticBenchmarkWithAttack net6.0

scenario:Benchmarks.Trace.AspNetCoreBenchmark.SendRequest net472

scenario:Benchmarks.Trace.AspNetCoreBenchmark.SendRequest net6.0

scenario:Benchmarks.Trace.AspNetCoreBenchmark.SendRequest netcoreapp3.1

scenario:Benchmarks.Trace.CIVisibilityProtocolWriterBenchmark.WriteAndFlushEnrichedTraces net472

scenario:Benchmarks.Trace.CIVisibilityProtocolWriterBenchmark.WriteAndFlushEnrichedTraces net6.0

scenario:Benchmarks.Trace.CIVisibilityProtocolWriterBenchmark.WriteAndFlushEnrichedTraces netcoreapp3.1

scenario:Benchmarks.Trace.CharSliceBenchmark.OriginalCharSlice net6.0

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearch net472

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearch net6.0

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearch netcoreapp3.1

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearchAsync net472

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearchAsync net6.0

scenario:Benchmarks.Trace.ElasticsearchBenchmark.CallElasticsearchAsync netcoreapp3.1

scenario:Benchmarks.Trace.GraphQLBenchmark.ExecuteAsync net472

scenario:Benchmarks.Trace.GraphQLBenchmark.ExecuteAsync net6.0

scenario:Benchmarks.Trace.GraphQLBenchmark.ExecuteAsync netcoreapp3.1

scenario:Benchmarks.Trace.ILoggerBenchmark.EnrichedLog net6.0

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatAspectBenchmark net472

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatAspectBenchmark net6.0

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatAspectBenchmark netcoreapp3.1

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatBenchmark net6.0

scenario:Benchmarks.Trace.Iast.StringAspectsBenchmark.StringConcatBenchmark netcoreapp3.1

scenario:Benchmarks.Trace.Log4netBenchmark.EnrichedLog net472

scenario:Benchmarks.Trace.Log4netBenchmark.EnrichedLog net6.0

scenario:Benchmarks.Trace.Log4netBenchmark.EnrichedLog netcoreapp3.1

scenario:Benchmarks.Trace.RedisBenchmark.SendReceive net6.0

scenario:Benchmarks.Trace.SerilogBenchmark.EnrichedLog net472

scenario:Benchmarks.Trace.SerilogBenchmark.EnrichedLog net6.0

scenario:Benchmarks.Trace.SerilogBenchmark.EnrichedLog netcoreapp3.1

scenario:Benchmarks.Trace.SingleSpanAspNetCoreBenchmark.SingleSpanAspNetCore net472

scenario:Benchmarks.Trace.SingleSpanAspNetCoreBenchmark.SingleSpanAspNetCore net6.0

scenario:Benchmarks.Trace.SingleSpanAspNetCoreBenchmark.SingleSpanAspNetCore netcoreapp3.1

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishScope net6.0

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishSpan net6.0

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishSpan netcoreapp3.1

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishTwoScopes net6.0

scenario:Benchmarks.Trace.SpanBenchmark.StartFinishTwoScopes netcoreapp3.1

scenario:Benchmarks.Trace.TraceAnnotationsBenchmark.RunOnMethodBegin net6.0

Uh oh!

datadog-prod-us1-3 Bot commented Jun 12, 2026 • edited by datadog-prod-us1-5 Bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

⚠️ Warnings

daniel-romano-DD commented Jun 12, 2026 •

edited

Loading

pr-commenter Bot commented Jun 12, 2026 •

edited

Loading

datadog-prod-us1-3 Bot commented Jun 12, 2026 •

edited by datadog-prod-us1-5 Bot

Loading

dd-trace-dotnet-ci-bot Bot commented Jun 15, 2026 •

edited

Loading

github-actions Bot commented Jun 16, 2026 •

edited

Loading