chore(deps): bump ddtrace from 3.0.0 to 3.3.1

[dependabot]

Bumps ddtrace from 3.0.0 to 3.3.1.

Release notes

Sourced from ddtrace's releases.

3.3.1

Bug Fixes

• ASM

  • Fixes a NotImplementedError that occurred when trying to deepcopy wrapped builtin functions (like open) while ASM or IAST were enabled. The error was caused by the wrapper not implementing the __deepcopy__ method.

• CI Visibility

  • Resolves an issue where JUnit XML output would not count tests retried by Early Flake Detection, Auto Test Retries, and Attempt-to-Fix.

• Lib-Injection

  • Avoids zombie process from telemetry sender on startup.

• LLM Observability

  • Resolves an issue where large spans traced within a short time interval were dropped despite being under the 1 MB limit.

3.3.0

New Features

• Includes dynamodb in the default list of cloud services for payload tagging, i.e. DD_TRACE_CLOUD_PAYLOAD_TAGGING_SERVICES. Note that cloud services payload tagging feature is still gated by DD_TRACE_CLOUD_REQUEST_PAYLOAD_TAGGING and DD_TRACE_CLOUD_RESPONSE_PAYLOAD_TAGGING.

• LLM Observability: This introduces tracing for converse calls to the Bedrock Converse API. converse calls are traced as
  LLM spans with max_tokens, temperature inference parameters and input/output messages.

• botocore: This introduces capturing prompts, token usage, and inference parameters for converse calls to the Bedrock API.

• SCA: This add support for extended heartbeat every 24h with dependencies payload.

• kafka: Adds messaging.destination.name tag to kafka produce and consume spans.

• LLM Observability: Avoids submitting spans to LLM Observability when a non-default base URL is detected in request for the Anthropic, Bedrock, LangChain, Open AI, and Azure Open AI integrations.

• ASM: This introduces support for automatic instrumentation of session monitoring and blocking for Django.

• ASM: This introduces new metrics span tags to keep track of truncations of WAF payloads.

• runtime_metrics: Adds support for sending runtime metrics as gauge metrics (instead of distributions). To enable this feature set DD_TRACE_EXPERIMENTAL_FEATURES_ENABLED=DD_RUNTIME_METRICS_ENABLED.

• runtime_metrics: Adds support for tagging runtime metrics with the current runtime ID. To enable tagging, set DD_TRACE_EXPERIMENTAL_RUNTIME_ID_ENABLED=True.

Bug Fixes

• SCA: This fix resolves an issue where some dependencies where reported with an inaccurate name.

• profiling: This fix resolves an issue where the Lock profiler would throw an AttributeError: '_ProfiledThreadingLock' object has no attribute '_self_acquired_at'.

• tags: Updates DD_TAGS parsing to match the Datadog Agent and other SDKs. Key-value pairs can now be separated by both commas and spaces (e.g., DD_TAGS="key1:value1, key2:value2, key3:value3"). This reverts a change introduced in v2.11.0, which only allowed one separator type.

• dynamic sampling: Ensures that dynamic sampling rates are always consistent with the rates received from the agent via remote configuration. Previously, setting a global sample rate and then sampling rules via remote config would result in both configurations being applied. With this fix only the most recent sampling configuration will be applied.

• LLM Observability: This fix resolves an issue where enabling LLM Observability caused all botocore submodules to be patched instead
  of only bedrock-runtime.

... (truncated)

Changelog

Sourced from ddtrace's changelog.

Changelog

Changelogs for versions not listed here can be found at https://github.com/DataDog/dd-trace-py/releases

---

3.2.2

Bug Fixes

• ASM

  • Fixes a NotImplementedError that occurred when trying to deepcopy wrapped builtin functions (like open) while ASM or IAST were enabled. The error was caused by the wrapper not implementing the __deepcopy__ method.
  • SCA: Resolves an issue where some dependencies where reported with an inaccurate name.

• CI Visibility

  • Resolves an issue where JUnit XML output would not count tests retried by Early Flake Detection, Auto Test Retries, and Attempt-to-Fix.

• LLM Observability

  • Resolves issue where Pydantic model objects were encoded as unhelpful default placeholder text.
  • Improves encoding of non-JSON serializable I/O objects by attempting to convert to string before resorting to default placeholder text.

• Profiling

  • Resolves an issue where the Lock profiler would throw an AttributeError: '_ProfiledThreadingLock' object has no attribute '_self_acquired_at'.

• Tracing

  • pylibmc: Fixes an issue where using Client(server=[url]) would throw the error __init__() got multiple values for argument 'servers'

---

3.1.1

Bug Fixes

• ASM

  • SCA: Resolves an issue where some dependencies where reported with an inaccurate name.

• CI Visibility

  • Resolves an issue where ddtrace's own sys.monitoring coverage tool in Python 3.12+ would block other sys.monitoring tools such as pytest-cov from being used.
  • Resolves an issue where JUnit XML output would not count tests retried by Early Flake Detection, Auto Test Retries, and Attempt-to-Fix.

• LLM Observability

  • Resolves issue where Pydantic model objects were encoded as unhelpful default placeholder text.
  • Improves encoding of non-JSON serializable I/O objects by attempting to convert to string before resorting to default placeholder text.

• Profiling

  • Resolves an issue where the Lock profiler would throw an AttributeError: '_ProfiledThreadingLock' object has no attribute '_self_acquired_at'.

• Tracing

  • Changes the name of the span event generated by a record_exception call as it was not following OTEL semantics.

... (truncated)

Commits

• f213b0f fix(llmobs): send batches of span events [backport 3.3] (#12980)
• 07355d9 ci: 🔥 remove circleci configuration and related scripts 🔥 [backport...
• b527395 ci: move the pygoat test to gitlab and hatch and make it faster [backport 3.3...
• beaceb3 fix: add timeout handling for subprocess wait [backport 3.3] (#12904)
• d7a5b54 chore(ci): update codeowners and bump timestamp for expired aws-lambda tests ...
• 3662c1c test: update ddtrace_api tests for new package name [backport 3.3] (#13008)
• a06249b fix(ci_visibility): count failed/skipped tests in JUnit XML when retries are ...
• 5a1622f fix(asm): add deepcopy for wrapped builtin functions [backport 3.3] (#12953)
• b9dc640 ci(iast): update google tests [backport 3.3] (#12947)
• eb81294 fix(sca): fix sbom dependency name report [backport 3.3] (#12882)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #17920.