Bump the dotnet-dependencies group with 2 updates

[dependabot]

Updated Datadog.Trace.Bundle from 3.21.0 to 3.26.0.

Release notes

Sourced from Datadog.Trace.Bundle's releases.

3.26.0

Summary

Various bug fixes and optimizations.

Changes

Tracer

• Update build and testing to use .NET 10 preview 7 (#​7170)
• add logging for data pipeline status in TracerSettings (#​7436)
• Use P/Invoke to call lstat instead of shelling out to stat to retrieve the inode (#​7453)
• [Native] Convert Rejitters vector to a fixed array (#​7460)
• [Phase 1] chore(configuration): enable DataPipelineEnabled on AAS + Windows (#​7464)

ASM

• [AAP] Add Forwarded header as IP source (#​7438)
• [AAP] Add "100.65.0.0/10" as a private IP range (#​7461)
• [IAST] Fix GRPC IAST tests (#​7485)
• [IAST] Delay dataflow creation (#​7440, #​7451, #​7465)

Continuous Profiler

• [Profiler] Make sure we generate a build-id using SHA-1 (#​7449)
• [Profiler] Try fixing TSAN job (#​7452)

Serverless

• [Azure Functions] Restore files moved by in-process Azure Functions SDK (#​7419)

Fixes

• Support final="true" in NLog Logging rules for direct log submission (#​7445)
• Extract the Managed DevOps pools names to variables (#​7447)
• Update language used in native log messages (#​7467)
• Remove Samples.TraceAnnotations.VersionMismatch.NewerNuget (#​7469)
• Remove Samples.CIVisibilityVersionMismatch (#​7471)
• Add parameter names to MongoDb IBsonSerializerProxy.Serialize() method (#​7443)
• Fix GRPC instrumentation for BuildHttpErrorResponse. Enable integration tests. (#​7457)

Build / Test

• Use mock agent in exploration tests (#​7431)
• [Test Package Versions Bump] Updating package versions (#​7435)
• Use the global.json file to specify the .NET SDK version in GitHub Actions (#​7442)
• Update Managed DevOps pools images (#​7446)
• Remove smoke test image that won't work (#​7450)
• [Test Package Versions Bump] Updating package versions (#​7455)
• Bump the gh-actions-packages group across 2 directories with 2 updates (#​7456)
• [Test Package Versions Bump] Updating package versions (#​7458)
• Split dependabot files into separate projects (#​7459)
• Bump actions/setup-dotnet from 4.3.1 to 5.0.0 in the gh-actions-packages group across 1 directory (#​7463)
• Try to fix dependabot (#​7466)
• Improve logging for InstrumentationTests and update dynamic code scenario (#​7472)
• Fix typo in dependabot yaml (#​7477)
• Fix dependabot again (#​7478)
  ... (truncated)

3.25.0

Summary

• Various bug fixes and optimisations

Changes

Tracer

• Implement "enahanced telemetry reporting" (#​7360)
• Don't call ToUpperInvariant if we don't need to (#​7393)
• Handle TypeLoadException when retrieving HostingEnvironment (#​7417)
• Add missing GetDictionary() method to ConfigurationBuilder (#​7421)
• More ConfigurationBuilder refactoring to avoid incorrect usages (#​7422)
• [Tracer] fix: Re-use runtime metrics writer resources to limit memory growth (#​7434)

Continuous Profiler

• [Profiler] Make timer_create-based CPU profiler default (#​7322)
• Revert "[Profiler] Make timer_create-based CPU profiler default (#​7322)" (#​7427)

Debugger

• Disable debugger initialization if it's not enabled initially (#​7398)

Serverless

• [Azure Functions] Remove all Serverless Mini-Agent (SMA) code (#​7389)

ASM

• [IAST] Fix NRE in Native IAST ModuleInfo->GetFullName() (#​7404)

Fixes

• fix: Clean up small C# and C++ build warnings (#​7363)
• chore: update malformed telemetry name (#​7402)
• Get process start info variables safely (#​7423)
• Fix null reference exception in proxy spans (#​7428)

Build / Test

• [CI] Creates PR Label Based Docker Image (#​7337)
• [Test Package Versions Bump] Updating package versions (#​7315)
• Include the target framework in our InstrumentationTests (#​7347)
• Ignore rejit timeout errors in smoke tests and report a metric (#​7370)
• fix: Make OTLP metrics snapshot testing more stable (#​7374)
• Add final job for blocking merges of PRs (#​7376)
• Fix debug symbol upload in release job (#​7377)
• Fix Windows SSI release (#​7379)
• Fix null ref type warning in Nuke (#​7382)
• Fix creation of label-based artifacts for system tests (#​7385)
• Filter our exit span from Azure Functions tests (#​7391)
• Fix variable generation for linux-arm64 unit tests (#​7394)
• Add more alpine checks for native library (#​7395)
• [Test Package Versions Bump] Updating package versions (#​7396)
• Fix ASM WAF unit tests (#​7397)
• SINT-3848 🔒 Pin GitHub Actions to specific SHA versions for enhanced security (#​7400)
  ... (truncated)

3.24.1

Summary

• Fixes the SSI artifact publishing, which were not published in 3.24.0

Changes

Misc

• Fix Windows SSI release (#​7379)

Changes since 3.24.0

3.24.0

Summary

• [Tracer] Logs injection for connecting logs with traces is enabled by default. To disable, set DD_LOGS_INJECTION=0
• [Tracer] Add support for latest S3 and MSTest packages
• [AAP] Add resource name to the collected endpoints
• [DSM] Flush DSM stats on Lambda Stop

Changes

Tracer

• Refactor the profiling configuration reading (#​7303)
• Minor IConfigurationSource clean up (#​7327)
• chore: clean up baggage span tags implementation (#​7335)
• Update default value of DD_LOGS_INJECTION to true (#​7336)
• Fix broken S3 integration (#​7368)

CI Visibility

• [Test Optimization] Support for MSTest v3.10 (#​7343)

ASM

• [AAP] Add resource name to the collected endpoints (#​7317)
• [AAP] Add latest supported waf capabilities to RC (#​7332)
• [AAP] Added WAF metrics. Reorganized other metrics to match RFC (#​7356)
• [AAP] Update WAF ruleset to v1.15.0 (#​7331)

Debugger

• [Dynamic Instrumentation] DEBUG-3514 Refactor debugger code (#​7304)
• Removes exception throwing during shutdown of dynamic instrumentation (#​7375)

Serverless

• DSMS-90: Flush DSM stats on Lambda Stop (#​7054)

Data Streams Monitoring

• Do not inject DSM legacy headers by default in "default enabled" mode (#​7351)

Build / Test

• Update xunit to latest, fix analyzer warnings, and update analyzer tests (#​7280)
• Send Warm-up request in iisexpress integration tests (#​7321)
• Update CODEOWNERS with SDK capabilities team as owners (#​7328)
• Pre pull aerospike image (#​7333)
• Remove CMake warning: jobserver unavailable: using -j1. Add `+' to parent make rule. (#​7334)
• Fix typo in create_draft_release (#​7338)
• Fix the signing of the fleet installer exe (#​7341)
• Elaborate on Run failed description (#​7344)
• Work around flake in the Couchbase 3 integration tests (#​7357)
• Try to fix flake by using unique keys in StackExchange sample tests (#​7359)
• Mark the OTLP metrics test as [Flaky] (#​7369)
• Fix more flake in the IIS fleet smoke tests (#​7372)
• Don't test Aerospike.Client 8.1.0 on .NET 6 or 7 (#​7349)

... (truncated)

3.23.0

Summary

• [Tracer] Baggage tags are automatically added as span tags
• [Tracer] Fix resource-based sampling for ASP.NET Core
• [Test Optimization] Various fixes for commit info and codeowners
• [Test Optimization] Fix crash with Allure.Xunit
• [IAST] Fix potential crash on ReadOnlySpan<> string.Concat() methods

Changes

Tracer

• feat(baggage): adding baggage to span tags (#​7020)
• Swap disposal ordering of inferred span (#​7293)
• Add [MethodImpl(MethodImplOptions.NoInlining] to all our instrumented APIs in Datadog.Trace.Manual (#​7302)
• Refactor TraceSampler to separate building from evaluation (#​7311)
• Avoid generating resource name that will be thrown away if it's not required (#​7312)
• Fix resource-based sampling for ASP.NET Core (#​7316)

CI Visibility

• [Test Optimization] Retrieve head commit info (#​7285)
• [Test Optimization] Add codeowners and test source file tag at suite level (#​7295)
• [Test Optimization] Fix base branch SHA usage (#​7300)
• [Test Optimization] Avoid crashing on Allure.Xunit usage (#​7305)

ASM

• [AAP] Update WAF to v1.27.0 (#​7330)

Continuous Profiler

• [Profiler] Use ringbuffer with timer create (#​7066)

Fixes

• [IAST] Remove troublesome string.Concat overloads with ReadOnlySpan (#​7318)

Miscellaneous

• Set default timeout for Trace Exporter to 15s. (#​7252)
• [OTEL] OTLP Metrics Exporter POC (#​7138)
• [Test Package Versions Bump] Updating package versions (#​7279)
• [Profiler] Add vcpkg setup for build (#​7292)
• Ensure file_opened_ is getting updated when rotating (#​7296)
• Bump rejit timeout to 200ms (#​7301)

Build / Test

• Filter connection header in flaky tests (#​7290)
• Remove global state to try to fix flake (#​7291)
• Improve repeatability & precision of throughput tests on Linux & ARM (#​7268)
• More fixes for do-not-merge (#​7274)
• Update the Windows test agent to latest (#​7275)
• Fix potential deadlocks in IisFixture process code (#​7281)
• [Profiler] Fix and bump timeitsharp (#​7294)
• Fix debug symbol upload in release (#​7297)
  ... (truncated)

3.22.0

Summary

• [Azure Functions] Support for Azure Functions is GA
• [Azure Functions] Optimized support for Azure Functions with the Datadog.AzureFunctions NuGet package
• [TestOptimization] Add support for pr.number and additional CI variables
• [TestOptimization] Add support for xunit.v3 version 3.x.x
• [Data Streams Monitoring] Initial support for the default experience

Changes

Tracer

• Integrations: Disable AWS Kinesis injection when the integration is disabled (#​7239)
• Refactor SpanContextInjector and SpanContextExtractor and improve tests (#​7258)

CI Visibility

• [TestOptimization] Update the CI Environment Values parser (#​7242)
• Add support for xunit.v3 v3 (#​7245)
• [Test Optimization] Add pr.number tag to Github provider (#​7262)

ASM

• [AAP] Update WAF to V1.26 (#​7216)

Continuous Profiler

• [Profiler] Add ringbuffer (#​7025)

Debugger

• Reduce log level for ConcurrentAdaptiveCache capacity (#​7213)

Serverless

• [Serverless] Remove "preview" version suffix from Datadog.AzureFunctions (#​7229)
• [Azure Functions] Bump Datadog.Serverless.Compat package reference version (#​7238)
• [Azure Functions] Fixes, refactoring, and clean-up (#​7256)
• [Azure Functions] Ignore additional URLs in outgoing HTTP client requests (#​7271)
• [Azure Functions] Fix operation name (#​7272)
• [Serverless] add serverless teams as co-owners on additional files (#​7273)
• [Serverless] GA nuget package Datadog.AzureFunctions (#​7283)

Miscellaneous

• Add documentation on how to perform a major version update (#​7152)
• [IAST] Added compatibility for stable config (#​7164)
• Only enable Schema extraction when DSM explicitly enabled (#​7175)
• remove redundant dependency check for dynamic assemblies (#​7222)
• Bump libdatadog from 19.0.1 to 19.1.0. (#​7232)
• feat: add injection metadata fields to telemetry forwarder (#​7237)
• DSM default state reversal (#​7244)
• chore: add malformed baggage header telemetry (#​7254)
• Fix SSI injection telemetry (#​7288)
• Increase rejit timeout from 100ms to 150ms (#​7289)
• Add agent response handling to native interop (#​7201)
• Prevent and remove double-disposal in DiscoveryService and RemoteConfigurationManager (#​7240)
  ... (truncated)

Commits viewable in compare view.

Updated Serilog.AspNetCore from 8.0.0 to 9.0.0.

Release notes

Sourced from Serilog.AspNetCore's releases.

9.0.0

What's Changed

• #​388 - update to .NET 9 SDK, Serilog.Extensions.Hosting/Serilog.Settings.Configuration 9.0.0, Serilog 4.2.0 (@​nblumhardt)

8.0.3

• #​383 - update Serilog.Settings.Configuration dependency (@​Numpsy)

8.0.2

• #​376 - update Serilog.Settings.Configuration dependency to avoid transitive dependency on vulnerable System.Text.Json (@​nblumhardt)
• #​364 - fix example code (@​RandomBuffer)
• #​367 - clean up and format (@​sungam3r)
• #​370 - README updates (@​nblumhardt)

8.0.1

• #​357 - bug fix: generate an AssemblyVersionAttribute (@​nblumhardt)

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions