UNPKG

dd-trace

Version:

Datadog APM tracing client for JavaScript

github.com/DataDog/dd-trace-js

DataDog/dd-trace-js

114 lines (85 loc) 2.82 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
'use strict' const { getNamespaceFromContext, globalNamespace } = require('./namespaces') const Scope = { GLOBAL: 'GLOBAL', REQUEST: 'REQUEST' } const PropagationType = { STRING: 'STRING', JSON: 'JSON', URL: 'URL' } const TagKey = { VULNERABILITY_TYPE: 'vulnerability_type', SOURCE_TYPE: 'source_type', PROPAGATION_TYPE: 'propagation_type' } function formatTags (tags, tagKey) { return tags.map(tagValue => tagValue ? [`${tagKey}:${tagValue.toLowerCase()}`] : undefined) } function getNamespace (scope, context) { let namespace = globalNamespace if (scope === Scope.REQUEST) { namespace = getNamespaceFromContext(context) || globalNamespace } return namespace } class IastMetric { constructor (name, scope, tagKey) { this.name = name this.scope = scope this.tagKey = tagKey } formatTags (...tags) { return formatTags(tags, this.tagKey) } inc (context, tags, value = 1) { const namespace = getNamespace(this.scope, context) namespace.count(this.name, tags).inc(value) } } class NoTaggedIastMetric extends IastMetric { constructor (name, scope) { super(name, scope) this.tags = [] } inc (context, value = 1) { const namespace = getNamespace(this.scope, context) namespace.count(this.name, this.tags).inc(value) } } function getExecutedMetric (tagKey) { return tagKey === TagKey.VULNERABILITY_TYPE ? EXECUTED_SINK : EXECUTED_SOURCE } function getInstrumentedMetric (tagKey) { return tagKey === TagKey.VULNERABILITY_TYPE ? INSTRUMENTED_SINK : INSTRUMENTED_SOURCE } const INSTRUMENTED_PROPAGATION = new NoTaggedIastMetric('instrumented.propagation', Scope.GLOBAL) const INSTRUMENTED_SOURCE = new IastMetric('instrumented.source', Scope.GLOBAL, TagKey.SOURCE_TYPE) const INSTRUMENTED_SINK = new IastMetric('instrumented.sink', Scope.GLOBAL, TagKey.VULNERABILITY_TYPE) const EXECUTED_SOURCE = new IastMetric('executed.source', Scope.REQUEST, TagKey.SOURCE_TYPE) const EXECUTED_SINK = new IastMetric('executed.sink', Scope.REQUEST, TagKey.VULNERABILITY_TYPE) const REQUEST_TAINTED = new NoTaggedIastMetric('request.tainted', Scope.REQUEST) // DEBUG using metrics const EXECUTED_PROPAGATION = new NoTaggedIastMetric('executed.propagation', Scope.REQUEST) const EXECUTED_TAINTED = new NoTaggedIastMetric('executed.tainted', Scope.REQUEST) const SUPPRESSED_VULNERABILITIES = new IastMetric('suppressed.vulnerabilities', Scope.REQUEST, TagKey.VULNERABILITY_TYPE) module.exports = { INSTRUMENTED_PROPAGATION, INSTRUMENTED_SOURCE, INSTRUMENTED_SINK, EXECUTED_PROPAGATION, EXECUTED_SOURCE, EXECUTED_SINK, EXECUTED_TAINTED, REQUEST_TAINTED, SUPPRESSED_VULNERABILITIES, PropagationType, TagKey, IastMetric, NoTaggedIastMetric, getExecutedMetric, getInstrumentedMetric, formatTags }