Bump ddtrace from 1.1.4 to 2.13.0

[dependabot]

Bumps ddtrace from 1.1.4 to 2.13.0.

Release notes

Sourced from ddtrace's releases.

2.13.0

New Features

• Datastreams Monitoring (DSM): Adds support for schema tracking.
• Exception Replay will capture any exceptions that are manually attached to a span with a call to set_exc_info.
• LLM Observability: The LangChain integration now submits vectorstore similarity_search spans to LLM Observability as retrieval spans.
• langchain : Adds support for tracing tool invocations.
• LLM Observability: Adds support for capturing tool calls returned from LangChain chat completions.
• LLM Observability: Introduces the ability to set ml_app and timestamp_ms fields in LLMObs.submit_evaluation
• openai: Introduces model tag for openai integration metrics for consistency with the OpenAI SaaS Integration. It has the same value as openai.request.model.

Deprecation Notes

• tracing: All public patch modules are deprecated. The non-deprecated methods are included in the __all__ attribute.
• yaaredis: The yaaredis integration is deprecated and will be removed in a future version. As an alternative to the yaaredis integration, the redis integration should be used.
• tracing: Deprecates the priority_sampling argument in ddtrace.tracer.Tracer.configure(...).

Bug Fixes

• library injection: Resolves an issue where the version of attrs installed by default on some Ubuntu installations was treated as incompatible with library injection
• anthropic: Resolves an issue where attempting to tag non-JSON serializable request arguments caused a TypeError. The Anthropic integration now safely tags non-JSON serializable arguments with a default placeholder text.
• postgres: Fixes circular imports raised when psycopg automatic instrumentation is enabled.
• ASM: Resolves an issue where exploit prevention was not properly blocking requests with custom redirection actions.
• CI Visibility: Resolves an issue where exceptions other than timeouts and connection errors raised while fetching the list of skippable tests for ITR were not being handled correctly and caused the tracer to crash.
• CI Visibility: Fixes a bug where .git was incorrectly being stripped from repository URLs when extracting service names, resulting in g, i, or t being removed (eg: test-environment.git incorrectly becoming test-environmen)
• botocore: Resolves a regression where trace context was not being injected into the input of Stepfunction start_execution commands. This re-enables distributed tracing when a Python service invokes a properly instrumented Step Function.
• LLM Observability: Resolves an issue where custom trace filters were being overwritten in forked processes.
• LLM Observability: Resolves an issue where LLM Observability spans were not being submitted in forked processes, such as when using celery or gunicorn workers. The LLM Observability writer thread now automatically restarts when a forked process is detected.
• tracing: Fixes a side-effect issue with module import callbacks that could cause a runtime exception.
• tracing: Fixes an issue with some module imports with native specs that don't support attribute assignments, resulting in a TypeError exception at runtime.
• tracing: Improves the accuracy of X-Datadog-Trace-Count payload header.
• tracing: Resolves an issue where ddtrace package files were published with incorrect file attributes.
• tracing: Resolves an issue where django db instrumentation could fail.
• LLM Observability: Resolves an issue where session_id was being defaulted to trace_id, which was causing unexpected UI behavior.
• openai: Fixes a bug where asyncio.TimeoutErrors were not being propagated correctly from canceled OpenAI API requests.
• profiling: Propagates tags in DD_PROFILING_TAGS and DD_TAGS to the libdatadog exporter, a new exporter codepath which is enabled when either one of the following is set, DD_PROFILING_STACK_V2_ENABLED, DD_PROFILING_EXPORT_LIBDD_ENABLED, or DD_PROFILING_TIMELINE_ENABLED or dd-trace-py is running in an injected environment.
• ASM: Fixes a memory leak on the native slice aspect.

Other Changes

• tracing: Removes the DD_PRIORITY_SAMPLING configuration option. This option is not used in any ddtrace>=2.0 releases.

2.13.0rc1

Deprecation Notes

• tracing: All public patch modules are deprecated. The non-deprecated methods are included in the __all__ attribute.
• yaaredis: The yaaredis integration is deprecated and will be removed in a future version. As an alternative to the yaaredis integration, the redis integration should be used.
• tracing: Deprecates the priority_sampling argument in ddtrace.tracer.Tracer.configure(...).

New Features

• Datastreams Monitoring (DSM): Adds support for schema tracking.
• debugging: Exception Replay will capture any exceptions that are manually attached to a span with a call to set_exc_info.
• LLM Observability: The LangChain integration now submits vectorstore similarity_search spans to LLM Observability as retrieval spans.

... (truncated)

Changelog

Sourced from ddtrace's changelog.

Changelog

Changelogs for versions not listed here can be found at https://github.com/DataDog/dd-trace-py/releases

---

2.11.6

Bug Fixes

• library injection: Resolves an issue where the version of attrs installed by default on some Ubuntu installations was treated as incompatible with library injection
• Code Security: This fixes a bug in the IAST patching process where AttributeError exceptions were being caught, interfering with the proper application cycle.

---

2.11.5

Bug Fixes

• SSI: This fix ensures injection denylist is included in published OCI package.

---

2.10.7

Bug Fixes

• CI Visibility: Resolves an issue where exceptions other than timeouts and connection errors raised while fetching the list of skippable tests for ITR were not being handled correctly and caused the tracer to crash.
• CI Visibility: Fixes a bug where .git was incorrectly being stripped from repository URLs when extracting service names, resulting in g, i, or t being removed (eg: test-environment.git incorrectly becoming test-environmen)
• openai: Fixes a bug where asyncio.TimeoutErrors were not being propagated correctly from canceled OpenAI API requests.
• profiling: Fixes endpoing profiling for stack v2 when DD_PROFILING_STACK_V2_ENABLED is set.

---

2.9.6

Bug Fixes

• CI Visibility: Resolves an issue where exceptions other than timeouts and connection errors raised while fetching the list of skippable tests for ITR were not being handled correctly and caused the tracer to crash.
• CI Visibility: Fixes a bug where .git was incorrectly being stripped from repository URLs when extracting service names, resulting in g, i, or t being removed (eg: test-environment.git incorrectly becoming test-environmen)
• SSI: Fixes incorrect file permissions on lib-injection images.
• Code Security: Adds null pointer checks when creating new objects ids.
• profiling: Fixes endpoing profiling for stack v2 when DD_PROFILING_STACK_V2_ENABLED is set.

---

2.11.4

... (truncated)

Commits

• 7720c78 chore(llmobs): fix omitted test assertion from backport #10694 to 2.13 (#10780)
• efb3c0e chore(llmobs): add language tag to span events [backport 2.13] (#10704)
• 4efcaa4 fix(llmobs): ensure integration metrics are disabled in agentless mode [backp...
• f538305 fix(llmobs): safely handle non-json serializable arguments [backport #10694 t...
• eea8ed6 chore(tracer): fix version computation for 2.10 for system tests backports (#...
• 278e6e4 fix(anthropic): safely json dump unserializable objects [backport #10659 to 2...
• 6894913 fix(postgres): remove require modules to resolve circular imports [backport 2...
• 144cf17 fix(asm): fixing exploit prevention on custom redirect action [backport 2.13]...
• ccb0932 chore(ci_visibility): fix unittest tests (#10631)
• a555d69 chore(asm): use parameternamelength for libddwaf interface [backport 2.13] (#...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)