Bump ddtrace from 2.3.0 to 2.6.0

[dependabot]

Bumps ddtrace from 2.3.0 to 2.6.0.

Release notes

Sourced from ddtrace's releases.

2.6.0

Upgrade Notes

• CI Visibility: DD_CIVISIBILITY_ITR_ENABLED now defaults to true, and the Datadog API (configured via the Datadog dashboard) now determines whether code coverage and test skipping are enabled.
• CI Visibility: the CI Visibility service is no longer enabled when the initial query to the Datadog test service settings API fails due to a 403 status code.

New Features

• botocore: Adds optional feature to propagate context between producers and consumers for AWS SQS, AWS SNS, and AWS Kinesis via DD_BOTOCORE_PROPAGATION_ENABLED environment variable. Adds optional feature to disable tracing of AWS SQS poll() operation and AWS Kinesis 'get_records()' operation when no data is consumed via DD_BOTOCORE_EMPTY_POLL_ENABLED environment variable.
• tracing: Adds new tag python_main_package containing the name of the main package of the application.
• profiling: Adds new tag python_main_package containing the name of the main package of the application.
• ASM: API Security schema collection is now officially supported for Django, Flask and FastAPI. It is enabled by default and can be disabled in the tracer using environment variable DD_API_SECURITY_ENABLED=false It will only be active when ASM is also enabled.
• elasticsearch: This allows custom tags to be set on Elasticsearch spans via the Pin interface.
• botocore: This introduces tracing support for bedrock-runtime operations.
  See the docs for more information.
• datastreams: this change adds kombu auto-instrumentation for datastreams monitoring.
• tracing: this change adds the DD_KOMBU_DISTRIBUTED_TRACING flag (default True)
• Vulnerability Management for Code-level (IAST): Add support for CMDi in langchain.
• botocore: Add the ability to inject trace context into the input field of botocore stepfunction start_execution and start_sync_execution calls.
• Removes another place where we always load instrumentation telemetry, even if it is disabled
• tracing: This introduces the ability to disable tracing at runtime based on configuration values sent from the Datadog frontend. Disabling tracing in this way also disables instrumentation telemetry.
• tracing: Adds support for remote configuration of DD_TRACE_HEADER_TAGS
• tracing: Add support for remote configuration of trace-logs correlation.
• grpc/grpc_aio: reports the available target host in client spans as network.destination.ip if only an IP is available, peer.hostname otherwise.
• span: Adds a public api for setting span links
• starlette,fastapi: Trace background tasks using span links

Bug Fixes

• ASM: This fix resolves an issue where an exception would be logged while parsing an empty body JSON request.
• CI Visibility: fixes an issue where coverage data for suites could be lost for long-running test sessions, reducing the possibility of skipping tests when using the Intelligent Test Runner.
• IAST: Don't split AST Assign nodes since it's not needed for propagation to work.
• ASM: This fix resolves an issue where suspicious request blocking on request data was preventing API Security to collect schemas in FastAPI, due to route not being computed.
• ASM: This fix resolves an issue where ASM custom blocking actions with a redirect action could cause the server to drop the response.
• Fixed an incompatible version requirements for one of the internal dependencies that could have caused an exception to be raised at runtime with Python 3.12.
• data_streams: This change fixes a bug leading to lag being reported as 1 offset instead of 0 offsets.
• IAST: fixes import overhead when IAST is disabled.
• Fix an incomplete support for pkg_resouces that could have caused an exception on start-up.
• Fix an issue that caused an exception to be raised when trying to access resource files via pkg_resources.
• Fix for an import issue that caused the pytest plugin to fail to properly initialize a test session and exit with an import exception.
• openai: This fixes a bug that prevents logs from being correlated with traces in the Datadog UI.
• langchain: This fixes a bug that prevents logs from being correlated with traces in the Datadog UI.
• openai: This fix resolves an issue where an internal OpenAI method SyncAPIClient._process_response
  was not being patched correctly and led to to an AttributeError while patching.
• profiling: handle a potential system error that may be raised when running a Celery-based application with CPython 3.11.
• Fixed an issue that could have caused an exception as a result of a concurrent access to some internal value cache.
• tracing: Ensures span links are serialized with the expected traceflag when DD_TRACE_API_VERSION=v0.4
• ASM: This fix resolves an issue where IP Headers configured by the user in the environment could not work for frameworks handling requests with case insensitive headers like FastAPI.
• Vulnerability Management for Code-level (IAST): Fixes a bug in the str aspect where encoding and errors arguments were not honored correctly.
• Vulnerability Management for Code-level (IAST): Fix an unhandled ValueError in ast_function thrown in some cases (i.e. Numpy arrays when converted to bool).

... (truncated)

Commits

• b7ac540 ci: increase parallelism for a few longrunning suites (#8302)
• d4e5fc8 ci(elasticsearch): set parallelism to a divisor of the number of riot envs (1...
• 6a56d41 fix(iast): improve repr aspect (#8287)
• 56e915a ci(telemetry): relax assertion in telemetry dependency event test (#8300)
• 7695181 chore(asm): improve hatch threat tests part 2 (#8257)
• cc8b24f chore(llmobs): make DD_API_KEY, DD_APP_KEY, DD_SITE global configs (#8254)
• b0a8caf feat(elasticsearch): add pin tags to span tags (#8000)
• 9eb9a6f chore: log statsd URL (#8187)
• c63b95a ci(django): regenerate django appsec snapshots (#8295)
• 08b0dec ci: improve reliability in telemetry and appsec_integrations suites (#8291)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[github-actions]

Thank you for your pull request! We could not find a changelog entry for this change. For details on how to document a change, see the contributing guide.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (c12f6fb) 87.97% compared to head (fdd2f2b) 87.92%.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #9551      +/-   ##
==========================================
- Coverage   87.97%   87.92%   -0.05%     
==========================================
  Files         167      167              
  Lines       22170    22170              
==========================================
- Hits        19505    19494      -11     
- Misses       2665     2676      +11     

Flag	Coverage Δ
integration	85.50% <ø> (-0.13%)	⬇️
unit	61.90% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[dependabot]

A newer version of ddtrace exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.