Update module github.com/DataDog/dd-trace-go/contrib/net/http/v2 to v2.2.3

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
github.com/DataDog/dd-trace-go/contrib/net/http/v2	v2.0.1 → v2.2.3

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

DataDog/dd-trace-go (github.com/DataDog/dd-trace-go/contrib/net/http/v2)

v2.2.3

Compare Source

What's Changed

This patch release fixes a significant bug that caused dropped spans due to local sampling rules overriding the sampling decision already present in inbound distributed trace context.

[!IMPORTANT]
Depending on your sampling rules, and especially if you have trace sampling rules,, you may notice an increase in ingested spans. This increase is expected and the consequence of not applying trace sampling rules when there is a head sampling decision. If the ingested volume is problematic, reduce it using APM Ingestion Controls. For any questions or issues, please contact Datadog Support.

Application Performance Monitoring (APM)

• fix(ddtrace/tracer): keep correct trace+span sampling with propagated sampling decision by @​darccio in #​3856
• chore: update the remoteconfig dependency by @​andreimatei in #​3883

Full Changelog: DataDog/dd-trace-go@v2.2.2...v2.2.3

v2.2.2

Compare Source

[!NOTE]
v2.2.0 and v2.2.1 are retracted versions. If you are running one these two versions, please upgrade to v2.2.2 as soon as possible.

[!WARNING]
If you are experiencing sporadic spotaneous reboots by running dd-trace-go on Mac M4 15.5 or 15.6. Please upgrade to v2.2.2 as soon as possible. More information in #​3827

What's Changed

Application Performance Monitoring (APM)

• fix: bump aws-sdk-go-v2 dependencies to support opensearch by @​darccio in #​3645
• contrib/go.mongodb.org/mongo-driver.v2: add orchestrion support by @​rarguelloF in #​3651
• contrib/database/sql: sanitize sensitive data in error messages by @​kakkoyun in #​3686
• valkey-go: fix orchestrion schema by @​eliottness in #​3732
• go.mod: upgrade datadog-agent packages to v.0.67.0 by @​KevinFairise2 in #​3726
• feat: add ruleguard rules to prevent uncontrolled data leakage in logging by @​kakkoyun in #​3706
• fix: service name configurations by @​rarguelloF in #​3736
• feat: enable runtime metrics v2 by default by @​felixge in #​3745
• refactor: replace atomic operations with atomic.Int32 for error tracking in SpanContext by @​darccio in #​3655
• fix(tracer): Baggage extraction by @​mtoffl01 in #​3597
• fix(ddtrace/tracer): add test and fix for deadlock issue #​3541 in remote configuration by @​darccio in #​3667
• instrumentation: stop sending telemetry logs for each log a contrib would send to stdout by @​eliottness in #​3684
• ddtrace/tracer: cap execution tracer task name length by @​nsrip-dd in #​3658
• contrib/aws: finish span in middleware func where it was created by @​chadawagner in #​3697
• ddtrace/tracer: sanitize URLs in CI Visibility transport logs by @​kakkoyun in #​3704
• fix(internal/baggage): fix data race on baggage map read/write by @​mtoffl01 in #​3700
• ddtrace/tracer: fix remote config memory leak by @​ajwerner in #​3797

App & API Protection

• appsec: support for go 1.25 by @​eliottness in #​3739
• appsec: fix a sporadic kernel panic on Mac M4 15.5 by @​RomainMuller in DataDog/go-libddwaf#147
• contrib/envoyproxy: body parsing support by @​e-n-0 in #​3671
• contrib/envoyproxy: Implement API Sec proxy route sampler by @​e-n-0 in #​3698
• contrib/envoyproxy: update default env vars by @​e-n-0 in #​3759
• appsec: don't send response schemas if request was blocked by @​RomainMuller in #​3628
• appsec: set HTTP header span tags even if WAF has no interest in them by @​RomainMuller in #​3355
• appsec: treat 100.65.0.0/10 as internal IPs by @​RomainMuller in #​3685

Profiling

• profiler: fix race in refreshing execution trace config by @​nsrip-dd in #​3659
• profiler: re-introduce enabled field to startup log by @​mtoffl01 in #​3712

Ci Visibility

• fix (internal/civisibility): fix code coverage stdout data race by @​tonyredondo in #​3674
• fix (internal/civisibility): fix code coverage data race by @​tonyredondo in #​3662
• fix (internal/civisibility): logs test fix by @​tonyredondo in #​3653
• fix (internal/civisibility): fix p.serializationTime data race by @​tonyredondo in #​3668
• fix: data race in civisibility/integrations/logs/logs_payload.go by @​darccio in #​3666
• fix (internal/civisibility): fix parallel testing when ancilliary features are enabled. by @​tonyredondo in #​3720
• fix(internal/civisibility): fix the attempt-to-fix-passed tag by @​tonyredondo in #​3743
• internal/civisibility: add debug logs to the git command execution by @​tonyredondo in #​3770
• feat(baggage): auto-adding baggage to span tags by @​rachelyangdog in #​3440
• feat(internal/civisibility): improve telemetry for git commands. by @​tonyredondo in #​3773
• feat(internal/civisibility): start reporting ci.job.id tag on supported providers. by @​tonyredondo in #​3776
• feat(internal/civisibility): attempt to fix v5 by @​tonyredondo in #​3784
• feat(internal/civisibility): update ci provider spec and add DroneCI support by @​tonyredondo in #​3800

General

• fix: add @latest to v2fix install command by @​mkusaka in #​3654
• Adds a nil check on tracer.AddEvent by @​heitoriha in #​3657
• internal/telemetry: fix deadlock when recorder queue is full by @​eliottness in #​3683
• profiler: skip flaky TestDebugCompressionEnv test by @​nsrip-dd in #​3691
• add recipe for handling flaky tests [LANGPLAT-352] by @​emmettbutler in #​3682
• internal/stableconfig: Report configuration telemetry by @​mtoffl01 in #​3570
• fix: sanitize span context debug logging to prevent sensitive data exposure by @​kakkoyun in #​3703
• fix: orchestrion metadata not propagated into the config object by @​RomainMuller in #​3734
• internal/remoteconfig: Propagate git metadata tags by @​piob-io in #​3735
• internal/stableconfig: Report config ID to telemetry by @​mtoffl01 in #​3617
• Suppress spammy retry attempt logs by @​yuandesu in #​3747
• instrumentation/errortrace: Improve error stack traces by @​hannahkm in #​3709
• internal/remoteconfig: Propagate container ids headers by @​piob-io in #​3794
• tracer: subscribe to and report symbol db RC status by @​ajwerner in #​3799
• fix: errorstack duration checks failing on Windows by @​hannahkm in #​3798

New Contributors

• @​mkusaka made their first contribution in #​3654
• @​heitoriha made their first contribution in #​3657
• @​emmettbutler made their first contribution in #​3682
• @​chadawagner made their first contribution in #​3697
• @​KevinFairise2 made their first contribution in #​3726
• @​piob-io made their first contribution in #​3735
• @​yuandesu made their first contribution in #​3747
• @​drodriguezhdez made their first contribution in #​3774
• @​CarlosNietoP made their first contribution in #​3783
• @​ajwerner made their first contribution in #​3797

Full Changelog: DataDog/dd-trace-go@v2.1.0...v2.2.0

v2.1.0

Compare Source

Summary

Application Performance Monitoring (APM)

Client-Side Stats Computation

Client-Side Stats computation is now enabled by default. This feature allows the Go tracer to compute aggregated span statistics locally before sending them to the Datadog Agent, resulting in reduced network traffic and improved performance.

What this means: Instead of sending all raw span data to the Agent, the tracer now sends pre-computed statistics, reducing bandwidth usage while maintaining full observability.

To disable, if needed: Set the environment variable DD_TRACE_STATS_COMPUTATION_ENABLED=false or use tracer.WithStatsComputation(false) when starting the tracer programmatically.

File-based Configurations

Introduced support for configuring SDK products via a file on the underlying Linux system. #​3438 Documentation

Baggage improvements

Fixed a distributed tracing bug in the baggage propagator. Also refactored baggage injection and extraction logic for improved performance and readability. #​3439 #​3597

Application Security Management (ASM)

contrib envoyproxy/go-control-plane:

• API Security
  • Proxy sampler has been implemented for schema generation
  • Support of Json body analysis of requests and responses (using simdjson-go or fallbacking on json-iterator/go if not available)
• Appsec
  • Support of Envoy observability_mode for async and non-blocking requests analysis

What's Changed

Application Performance Monitoring (APM)

• feat(http): add round tripper option for status check functionality and corresponding tests by @​darccio in #​3480
• fix: graphql default service name by @​rarguelloF in #​3547
• fix: revert unexpected changes from v1->v2 by @​rarguelloF in #​3549
• fix: Add public Version for dd-trace-go for contrib by @​e-n-0 in #​3599
• fix(ddtrace/tracer): postpone span events/links serialization by @​darccio in #​3429
• fix(ddtrace/tracer): add finished check on NoDebugStack and WithError code branches by @​darccio in #​3441
• fix(ddtrace/tracer): replace RLock with Lock for NoDebugStack check to prevent race condition by @​darccio in #​3446
• fix(ddtrace/tracer): prevent applying rate to finished spans and add test coverage for this finishing code path by @​darccio in #​3474
• fix(baggage): drop entire baggage header when malformed by @​rachelyangdog in #​3498
• fix(ddtrace/tracer): fix UDS handling in WithAgentURL (#​3553) by @​darccio in #​3554
• fix(ddtrace/tracer): handle nil options in span configuration functions by @​darccio in #​3592
• contrib/gorilla/mux: fix orchestrion aspect by @​rarguelloF in #​3630
• contrib/go.mongodb.org/mongo-driver.v2: add support by @​rarguelloF in #​3604
• contrib/envoyproxy: add JSON Encoder by @​e-n-0 in #​3550
• contrib/database/sql: fix race condition by @​rarguelloF in #​3649
• contrib/aws/aws-sdk-go-v2/aws: Fix dynamodb service inference by @​LamineKouissi in #​3528
• tracer: fix potential concurrency bug for trace source tag by @​genesor in #​3442
• tracer: Log a warning on NoopTracer.StartSpan() (#​2991) (#​3378) by @​mtoffl01 in #​3449
• sampling: update formula by @​genesor in #​3423
• ddtrace/tracer: add process tags to client stats payload by @​rarguelloF in #​3580
• ddtrace/tracer: more accurate retry logging by @​jstern in #​3327
• refactor(ddtrace/tracer): internalize {Get,Set}GlobalTracer API by @​darccio in #​3482
• refactor Optimize baggage implementation by @​mtoffl01 in #​3439
• refactor(ddtrace/tracer): remove Submit method from Tracer interface by @​darccio in #​3561
• refactor(ddtrace/{tracer,mocktracer}): remove SubmitChunk method fromTracer interface by @​darccio in #​3562
• refactor(ddtrace/tracer): remove unused Submit and SubmitChunk methods, unexpose Chunk type by @​kakkoyun in #​3641
• feat: add process tags to tracing payloads by @​rarguelloF in #​3566
• feat: stats - compute stats after span is fully finished by @​ichinaski in #​3443
• feat: stats - enable stats computation by default by @​ichinaski in #​3548
• orchestrion: don't trace the tracer even if tracer.Start(tracer.WithHTTPClient(...)) is called by @​eliottness in #​3559
• Support file-based configurations (Phase 1) by @​mtoffl01 in #​3438
• instrumentation: stop sending telemetry logs for each log a contrib would send to stdout by @​eliottness #​3684
• contrib/database/sql: sanitize sensitive data in error messages by @​kakkoyun #​3686
• fix(ddtrace/tracer): add test and fix for deadlock issue #​3541 in remote configuration by @​darccio #​3667
• fix(tracer): Baggage extraction by @​mtoffl01 #​3597
• ddtrace/tracer: cap execution tracer task name length by @​nsrip-dd #​3658

Application Security Management (ASM)

• appsec: blocking unavailable + update Envoy contrib by @​e-n-0 in #​3298
• appsec: support route quantization for proxies by @​eliottness in #​3471
• feat(appsec): HTTP response monitoring SDK by @​RomainMuller in #​3576
• feat(appsec): contrib/labstack/echo.v4 transparent response body analysis by @​RomainMuller in #​3578
• feat(appsec): contrib/gin-gonic/gin semi-transparent body analysis by @​RomainMuller in #​3579
• feat(appsec): support WAF trace tagging rules by @​RomainMuller in #​3619
• internal/appsec: fix APISec in standalone mode by @​eliottness in #​3485
• internal/appsec: report libdl_present configuration by @​eliottness in #​3582
• internal/appsec: report appsec start error by @​eliottness in #​3631
• ci: update deployment for docker images by @​e-n-0 #​3613
• contrib/envoyproxy(feat): Implement API Sec proxy route sampler by @​e-n-0 #​3698
• envoyproxy: body parsing support by @​eliottness #​3671
• envoyproxy: support simdjson body parsing by @​eliottness #​3643
• appsec: support for go 1.25 by @​eliottness #​3739

Profiling

• refactor(profiler): centralize compression logic by @​felixge in #​3529
• feat(profiler): show config in profile "Runtime Info" tab by @​felixge in #​3588
• profiler: add process tags to profiling payloads by @​rarguelloF in #​3583

CI Visibility

• fix (internal/civisibility): Fix features load race condition by @​tonyredondo in #​3501
• fix (internal/civisibility): Fix environment variable parsing. by @​tonyredondo in #​3527
• fix (internal/civisibility): use internal code coverage api to get the total percentage. by @​tonyredondo in #​3540
• fix (internal/civisibility): fix travis environment variables mapping by @​tonyredondo in #​3573
• fix (internal/civisibility): update the impacted tests algorithm to use only remote branches. by @​tonyredondo in #​3584
• fix (internal/civisibility): fix code coverage stdout data race by @​tonyredondo #​3674
• fix (internal/civisibility): fix p.serializationTime data race by @​tonyredondo #​3668
• fix: data race in civisibility/integrations/logs/logs_payload.go by @​darccio #​3666
• feat (internal/civisibility): Add missing provider's environment variables. by @​tonyredondo in #​3514
• feat (internal/civisibility): civisibility mocktracer by @​tonyredondo in #​3507
• feat (internal/civisibility): Parallel EFD support by @​tonyredondo in #​3488
• feat (internal/civisibility): Add CIVisibility test event global hook by @​tonyredondo in #​3531
• feat (internal/civisibility): add support for git tags by @​tonyredondo in #​3593
• feat (internal/civisibility): Add test logs collection support by @​tonyredondo in #​3624

General

• orchestrion/all: enforce using the latest tag by @​RomainMuller in #​3418
• fix: orchestrion metadata not propagated into the config object by @​RomainMuller #​3734
• internal/telemetry: fix telemetry metric submit datarace double pool insertion by @​eliottness in #​3430
• internal/telemetry: add process tags to telemetry payloads by @​rarguelloF in #​3586
• internal/telemetry: make sure only backend known metrics are released by @​eliottness in #​3614
• internal/datastreams: add process tags to dsm payloads by @​rarguelloF in #​3585
• feat(ddtrace/opentelemetry): update expected span names based on otelhttp version by @​darccio in #​3551

New Contributors

• @​emmanuel-ferdman made their first contribution in #​3420
• @​jstern made their first contribution in #​3327
• @​arguile- made their first contribution in #​3538
• @​jachym-tousek-keboola made their first contribution in #​3278

Full Changelog: DataDog/dd-trace-go@v2.0.0...v2.1.0

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday (* 0-4,22-23 * * 1-5)
  • Only on Sunday and Saturday (* * * * 0,6)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ️ Artifact update notice

File name: pkg/dyninst/testprogs/progs/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/DataDog/dd-trace-go/v2	v2.2.3-rc.1 -> v2.2.3

[dd-prapprover]

PRApprover will approve and merge this PR, FAQ, #dx-source-code-management

🛠️ PRApproval Status

• ✅ PR is eligible for auto-approval by rule datadog-agent-renovate - 2026-05-07T08:44:15Z
• ⬜ CI tests passed
• ⬜ Approved
• ⬜ Merge Started
• ⬜ Merged

➡️ Current phase: CI tests failed. Please fix the failing tests to continue.

[dd-octo-sts]

Files inventory check summary

File checks results against ancestor a4176470:

Results for datadog-agent_7.80.0~devel.git.562.d07640f.pipeline.112038287-1_amd64.deb:

No change detected

[dd-octo-sts]

Static quality checks

✅ Please find below the results from static quality gates
Comparison made with ancestor a417647
📊 Static Quality Gates Dashboard
🔗 SQG Job

32 successful checks with minimal change (< 2 KiB)

	Quality gate	Current Size
✅	agent_deb_amd64	742.347 MiB
✅	agent_deb_amd64_fips	700.414 MiB
✅	agent_heroku_amd64	309.210 MiB
✅	agent_rpm_amd64	742.331 MiB
✅	agent_rpm_amd64_fips	700.397 MiB
✅	agent_rpm_arm64	720.235 MiB
✅	agent_rpm_arm64_fips	681.397 MiB
✅	agent_suse_amd64	742.331 MiB
✅	agent_suse_amd64_fips	700.397 MiB
✅	agent_suse_arm64	720.235 MiB
✅	agent_suse_arm64_fips	681.397 MiB
✅	docker_agent_amd64	802.578 MiB
✅	docker_agent_arm64	805.334 MiB
✅	docker_agent_jmx_amd64	993.497 MiB
✅	docker_agent_jmx_arm64	985.033 MiB
✅	docker_cluster_agent_amd64	206.626 MiB
✅	docker_cluster_agent_arm64	220.634 MiB
✅	docker_cws_instrumentation_amd64	7.142 MiB
✅	docker_cws_instrumentation_arm64	6.689 MiB
✅	docker_host_profiler_amd64	301.580 MiB
✅	docker_host_profiler_arm64	313.117 MiB
✅	docker_dogstatsd_amd64	39.507 MiB
✅	docker_dogstatsd_arm64	37.690 MiB
✅	dogstatsd_deb_amd64	30.161 MiB
✅	dogstatsd_deb_arm64	28.290 MiB
✅	dogstatsd_rpm_amd64	30.161 MiB
✅	dogstatsd_suse_amd64	30.161 MiB
✅	iot_agent_deb_amd64	44.486 MiB
✅	iot_agent_deb_arm64	41.463 MiB
✅	iot_agent_deb_armhf	42.203 MiB
✅	iot_agent_rpm_amd64	44.487 MiB
✅	iot_agent_suse_amd64	44.487 MiB

[cit-pr-commenter-54b7da]

Regression Detector

Regression Detector Results

Metrics dashboard
Target profiles
Run ID: a5b9c460-6f87-414c-a516-b131f12d3782

Baseline: a417647
Comparison: d07640f
Diff

Optimization Goals: ✅ No significant changes detected

Experiments ignored for regressions

Regressions in experiments with settings containing erratic: true are ignored.

perf	experiment	goal	Δ mean %	Δ mean % CI	trials	links
➖	docker_containers_cpu	% cpu utilization	-2.92	[-5.78, -0.06]	1	Logs

Fine details of change detection per experiment

perf	experiment	goal	Δ mean %	Δ mean % CI	trials	links
➖	quality_gate_logs	% cpu utilization	+2.74	[+1.76, +3.72]	1	Logs bounds checks dashboard
➖	otlp_ingest_metrics	memory utilization	+0.42	[+0.26, +0.57]	1	Logs
➖	ddot_metrics	memory utilization	+0.38	[+0.18, +0.58]	1	Logs
➖	uds_dogstatsd_20mb_12k_contexts_20_senders	memory utilization	+0.35	[+0.30, +0.41]	1	Logs
➖	quality_gate_idle	memory utilization	+0.15	[+0.10, +0.20]	1	Logs bounds checks dashboard
➖	file_to_blackhole_500ms_latency	egress throughput	+0.05	[-0.37, +0.47]	1	Logs
➖	uds_dogstatsd_to_api	ingress throughput	+0.02	[-0.18, +0.22]	1	Logs
➖	tcp_dd_logs_filter_exclude	ingress throughput	+0.01	[-0.09, +0.11]	1	Logs
➖	quality_gate_idle_all_features	memory utilization	+0.01	[-0.03, +0.05]	1	Logs bounds checks dashboard
➖	file_to_blackhole_100ms_latency	egress throughput	+0.00	[-0.17, +0.18]	1	Logs
➖	uds_dogstatsd_to_api_v3	ingress throughput	-0.00	[-0.20, +0.20]	1	Logs
➖	ddot_metrics_sum_delta	memory utilization	-0.03	[-0.22, +0.17]	1	Logs
➖	file_to_blackhole_1000ms_latency	egress throughput	-0.05	[-0.51, +0.41]	1	Logs
➖	file_to_blackhole_0ms_latency	egress throughput	-0.10	[-0.65, +0.45]	1	Logs
➖	quality_gate_security_no_fs_load	memory utilization	-0.15	[-0.26, -0.04]	1	Logs bounds checks dashboard
➖	quality_gate_security_mean_fs_load	memory utilization	-0.18	[-0.22, -0.14]	1	Logs bounds checks dashboard
➖	ddot_metrics_sum_cumulativetodelta_exporter	memory utilization	-0.26	[-0.50, -0.02]	1	Logs
➖	quality_gate_security_idle	memory utilization	-0.26	[-0.33, -0.18]	1	Logs bounds checks dashboard
➖	docker_containers_memory	memory utilization	-0.32	[-0.42, -0.21]	1	Logs
➖	ddot_logs	memory utilization	-0.40	[-0.48, -0.33]	1	Logs
➖	ddot_metrics_sum_cumulative	memory utilization	-0.42	[-0.57, -0.26]	1	Logs
➖	otlp_ingest_logs	memory utilization	-0.60	[-0.70, -0.50]	1	Logs
➖	quality_gate_metrics_logs	memory utilization	-0.80	[-1.05, -0.55]	1	Logs bounds checks dashboard
➖	tcp_syslog_to_blackhole	ingress throughput	-0.82	[-1.04, -0.60]	1	Logs
➖	docker_containers_cpu	% cpu utilization	-2.92	[-5.78, -0.06]	1	Logs

Bounds Checks: ✅ Passed

perf	experiment	bounds_check_name	replicates_passed	observed_value	links
✅	docker_containers_cpu	simple_check_run	10/10	719 ≥ 26
✅	docker_containers_memory	memory_usage	10/10	244.05MiB ≤ 370MiB
✅	docker_containers_memory	simple_check_run	10/10	697 ≥ 26
✅	file_to_blackhole_0ms_latency	memory_usage	10/10	0.16GiB ≤ 1.20GiB
✅	file_to_blackhole_0ms_latency	missed_bytes	10/10	0B = 0B
✅	file_to_blackhole_1000ms_latency	memory_usage	10/10	0.21GiB ≤ 1.20GiB
✅	file_to_blackhole_1000ms_latency	missed_bytes	10/10	0B = 0B
✅	file_to_blackhole_100ms_latency	memory_usage	10/10	0.17GiB ≤ 1.20GiB
✅	file_to_blackhole_100ms_latency	missed_bytes	10/10	0B = 0B
✅	file_to_blackhole_500ms_latency	memory_usage	10/10	0.18GiB ≤ 1.20GiB
✅	file_to_blackhole_500ms_latency	missed_bytes	10/10	0B = 0B
✅	quality_gate_idle	intake_connections	10/10	3 ≤ 4	bounds checks dashboard
✅	quality_gate_idle	memory_usage	10/10	141.99MiB ≤ 147MiB	bounds checks dashboard
✅	quality_gate_idle_all_features	intake_connections	10/10	3 ≤ 4	bounds checks dashboard
✅	quality_gate_idle_all_features	memory_usage	10/10	473.74MiB ≤ 495MiB	bounds checks dashboard
✅	quality_gate_logs	intake_connections	10/10	4 ≤ 6	bounds checks dashboard
✅	quality_gate_logs	memory_usage	10/10	181.03MiB ≤ 195MiB	bounds checks dashboard
✅	quality_gate_logs	missed_bytes	10/10	0B = 0B	bounds checks dashboard
✅	quality_gate_metrics_logs	cpu_usage	10/10	361.94 ≤ 2000	bounds checks dashboard
✅	quality_gate_metrics_logs	intake_connections	10/10	3 ≤ 6	bounds checks dashboard
✅	quality_gate_metrics_logs	memory_usage	10/10	370.79MiB ≤ 430MiB	bounds checks dashboard
✅	quality_gate_metrics_logs	missed_bytes	10/10	0B = 0B	bounds checks dashboard
✅	quality_gate_security_idle	cpu_usage	10/10	24.70 ≤ 40	bounds checks dashboard
✅	quality_gate_security_idle	memory_usage	10/10	291.90MiB ≤ 330MiB	bounds checks dashboard
✅	quality_gate_security_mean_fs_load	cpu_usage	10/10	54.51 ≤ 70	bounds checks dashboard
✅	quality_gate_security_mean_fs_load	memory_usage	10/10	267.75MiB ≤ 320MiB	bounds checks dashboard
✅	quality_gate_security_no_fs_load	cpu_usage	10/10	21.73 ≤ 40	bounds checks dashboard
✅	quality_gate_security_no_fs_load	memory_usage	10/10	278.16MiB ≤ 320MiB	bounds checks dashboard

Explanation

Confidence level: 90.00%
Effect size tolerance: |Δ mean %| ≥ 5.00%

Performance changes are noted in the perf column of each table:

• ✅ = significantly better comparison variant performance
• ❌ = significantly worse comparison variant performance
• ➖ = no significant change in performance

A regression test is an A/B test of target performance in a repeatable rig, where "performance" is measured as "comparison variant minus baseline variant" for an optimization goal (e.g., ingress throughput). Due to intrinsic variability in measuring that goal, we can only estimate its mean value for each experiment; we report uncertainty in that value as a 90.00% confidence interval denoted "Δ mean % CI".

For each experiment, we decide whether a change in performance is a "regression" -- a change worth investigating further -- if all of the following criteria are true:

1. Its estimated |Δ mean %| ≥ 5.00%, indicating the change is big enough to merit a closer look.

2. Its 90.00% confidence interval "Δ mean % CI" does not contain zero, indicating that if our statistical model is accurate, there is at least a 90.00% chance there is a difference in performance between baseline and comparison variants.

3. Its configuration does not mark it "erratic".

CI Pass/Fail Decision

✅ Passed. All Quality Gates passed.

• quality_gate_security_idle, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_security_idle, bounds check cpu_usage: 10/10 replicas passed. Gate passed.
• quality_gate_idle, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_idle, bounds check intake_connections: 10/10 replicas passed. Gate passed.
• quality_gate_security_mean_fs_load, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_security_mean_fs_load, bounds check cpu_usage: 10/10 replicas passed. Gate passed.
• quality_gate_logs, bounds check missed_bytes: 10/10 replicas passed. Gate passed.
• quality_gate_logs, bounds check intake_connections: 10/10 replicas passed. Gate passed.
• quality_gate_logs, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_security_no_fs_load, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_security_no_fs_load, bounds check cpu_usage: 10/10 replicas passed. Gate passed.
• quality_gate_metrics_logs, bounds check intake_connections: 10/10 replicas passed. Gate passed.
• quality_gate_metrics_logs, bounds check cpu_usage: 10/10 replicas passed. Gate passed.
• quality_gate_metrics_logs, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_metrics_logs, bounds check missed_bytes: 10/10 replicas passed. Gate passed.
• quality_gate_idle_all_features, bounds check memory_usage: 10/10 replicas passed. Gate passed.
• quality_gate_idle_all_features, bounds check intake_connections: 10/10 replicas passed. Gate passed.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[ajwerner]

technically this is just a test program not code that is used, but if you give me a few I'll rebase it anyway

[chouetz]

technically this is just a test program not code that is used, but if you give me a few I'll rebase it anyway

@ajwerner I was not really sure of what I was doing, I generated this as well as a follow-up