Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[nodejs] Automated User Tracking and Blocking #3747

Merged
merged 65 commits into from
Feb 3, 2025
Merged

[nodejs] Automated User Tracking and Blocking #3747

Changes from 1 commit
Commits
Show all changes
65 commits
Select commit Hold shift + click to select a range
61fd4e5
update manifest
simon-id Dec 24, 2024
f6ee13f
install express-session
simon-id Dec 24, 2024
0310f6d
use express-session
simon-id Dec 24, 2024
06fbb85
rewrite auth.js
simon-id Dec 24, 2024
ec84141
move auth middleware up
simon-id Dec 26, 2024
0a8fa6c
Merge branch 'main' into nodejs_user_tracking
simon-id Dec 26, 2024
00f237a
use feature branch
simon-id Dec 26, 2024
d808ea5
update manifest
simon-id Dec 27, 2024
5522626
use ASM_DATA instead of ASM_DD for blacklists
simon-id Dec 27, 2024
64ec6ac
add missing_feature
simon-id Dec 27, 2024
72afdcf
Merge branch 'use_asm_data' into nodejs_user_tracking
simon-id Dec 30, 2024
7a2cfba
add temp note
simon-id Jan 15, 2025
a474386
add sdk blocking to weblog
simon-id Jan 17, 2025
294c917
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 18, 2025
14c176f
cleanup
simon-id Jan 18, 2025
7de4a0b
session endpoints
simon-id Jan 18, 2025
f805ac0
enable fingerptint tests
simon-id Jan 18, 2025
373c08f
wrong PR
simon-id Jan 18, 2025
2b9616c
cleanup
simon-id Jan 20, 2025
841e41d
cleanup
simon-id Jan 20, 2025
e71f6ee
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 20, 2025
dbca6f6
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 21, 2025
b5c7a78
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 21, 2025
7348164
Update utils/scripts/load-binary.sh
simon-id Jan 23, 2025
748cf9f
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 23, 2025
39c9734
add before/after sdk call param
simon-id Jan 23, 2025
adaae79
add IAST retroactive exclusion for express-session weak hash vuln
simon-id Jan 24, 2025
302e2cc
update manifest
simon-id Jan 24, 2025
20b2050
fix semver method
simon-id Jan 24, 2025
8d59a58
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 24, 2025
cba62f5
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 26, 2025
a7429d6
put back feature branch
simon-id Jan 26, 2025
8bba8a7
add express-session dep to typescript weblog
simon-id Jan 26, 2025
d6f7a3b
Update manifests/nodejs.yml
simon-id Jan 26, 2025
27c7d0a
mirror changes in typescript weblog
simon-id Jan 26, 2025
6943a8a
lint
simon-id Jan 26, 2025
51fd22b
add passportjs types
simon-id Jan 26, 2025
d4a5906
fix
simon-id Jan 26, 2025
1635dfa
fix types
simon-id Jan 26, 2025
6e92bed
fix
simon-id Jan 26, 2025
d3b4991
fix for express5
simon-id Jan 26, 2025
7bb8044
ts fix
simon-id Jan 26, 2025
a5d7baa
another typescript fix
simon-id Jan 26, 2025
dcb74f7
add semver dep to typescript weblog
simon-id Jan 26, 2025
46d0af3
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 27, 2025
1b2f5eb
fix for misdesigned test
simon-id Jan 29, 2025
c49970a
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 29, 2025
8478252
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 30, 2025
202d853
Update utils/build/docker/nodejs/express4-typescript/iast/exclusions.ts
simon-id Jan 30, 2025
08904d0
Update manifests/nodejs.yml
simon-id Jan 30, 2025
9289141
Update utils/build/docker/nodejs/express/iast/exclusions.js
simon-id Jan 30, 2025
44c3760
increase DD_IAST_MAX_CONTEXT_OPERATIONS for all node weblogs
simon-id Jan 31, 2025
fc8554d
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 31, 2025
43190ef
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 31, 2025
e23fcf4
test saveUninitialized: false
simon-id Jan 31, 2025
ae7e0b7
mirror fix in ts weblog
simon-id Jan 31, 2025
d88616d
push all the fixes
simon-id Jan 31, 2025
f50c0fa
remove unecessary fixes
simon-id Jan 31, 2025
a6882bf
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 31, 2025
9a7fcf5
turns out we actually need it
simon-id Jan 31, 2025
2303435
one last fix
simon-id Jan 31, 2025
284b53b
Merge branch 'main' into nodejs_user_tracking
simon-id Jan 31, 2025
2fc8d2a
Merge branch 'main' into nodejs_user_tracking
simon-id Feb 1, 2025
a5b6271
trigger CI
simon-id Feb 3, 2025
04c4cac
trigger CI
simon-id Feb 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Update utils/build/docker/nodejs/express4-typescript/iast/exclusions.ts
  • Loading branch information
@simon-id
simon-id authored Jan 30, 2025
commit 202d85302c99d1d0413914ffa890b175ad45e18f
2 changes: 1 addition & 1 deletion utils/build/docker/nodejs/express4-typescript/iast/exclusions.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
const semver = require('semver')
const version = require('dd-trace/package.json').version

if (semver.satisfies(version, '<5.33.0')) {
if (semver.satisfies(version, '<5.34.0')) {
const WeakHashAnalyzer = require('dd-trace/packages/dd-trace/src/appsec/iast/analyzers/weak-hash-analyzer.js')
const original = WeakHashAnalyzer._isExcluded

Expand Down