Skip to content

Bump github.com/DataDog/dd-trace-go/v2 from 2.4.1 to 2.8.1 in /datadogriver#69

Merged
brandur merged 1 commit into
masterfrom
dependabot/go_modules/datadogriver/github.com/DataDog/dd-trace-go/v2-2.8.1
Jul 16, 2026
Merged

Bump github.com/DataDog/dd-trace-go/v2 from 2.4.1 to 2.8.1 in /datadogriver#69
brandur merged 1 commit into
masterfrom
dependabot/go_modules/datadogriver/github.com/DataDog/dd-trace-go/v2-2.8.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/DataDog/dd-trace-go/v2 from 2.4.1 to 2.8.1.

Release notes

Sourced from github.com/DataDog/dd-trace-go/v2's releases.

v2.8.1

Application Performance Monitoring (APM)

  • Revert "fix(ddtrace/tracer): cache trace ID hex encoding (#4481)" by @​darccio
  • fix(tracer): enforce baggage item and byte limits on extraction by @​mtoffl01 in #4720
  • fix(tracer): drop dd= list-entries over 256 bytes from incoming tracestate by @​mtoffl01 in #4721

Full Changelog: DataDog/dd-trace-go@v2.8.0...v2.8.1

v2.8.0

Summary

New integrations. Two new integrations land in this release: Azure API Management (APIM) callout processor for security (#4620), and twmb/franz-go for Kafka (#4250).

Data Streams Monitoring. All three major Kafka integrations — confluent-kafka-go (#4470), segmentio/kafka-go (#4477), and Sarama (#4560) — now attach kafka_cluster_id for cluster-level visibility. TrackDataStreamsTransaction also gains span tagging and custom timestamp support (#4499).

OpenTelemetry (OTel) and OTLP. The tracer can now export traces directly via the OpenTelemetry Protocol (OTLP), bypassing the Datadog Agent entirely (#4600, #4583). OTel process context v2 (OTLP proto format) is supported (#4478), and the parentbased_always_on sampler works in OTLP mode (#4567).

Large Language Model (LLM) Observability. Prompt tracking is now available for LLMObs spans (#4608). Experiment scope propagates from APM baggage into spans automatically (#4651).

Profiler. An experimental goroutine leak profile is available as opt-in (#4420). The goroutine wait profile type has been removed — this is a breaking change for anyone using it explicitly (#4589).

HTTP and tracing. A new environment variable DD_TRACE_HTTP_URL_QUERY_STRING_ALLOWLIST lets you whitelist query string parameters to keep unredacted (#4562). A new tracer.StartSpanFromPropagatedContext API simplifies span creation from propagated contexts (#4492). AWS EventBridge max payload size is bumped to 1 MB (#4458). Envoy Service Extensions integration gains Unix Domain Socket (UDS) support (#4463).

OpenFeature. Flag evaluation metrics now emit via OTel Metrics (#4489), with allocation key tagging (#4515) and Remote Configuration (RC) integration via FFE_FLAGS subscription at tracer startup (#4495).

Bug fixes. gorm now respects DD_TRACE_REMOVE_INTEGRATION_SERVICE_NAMES_ENABLED (#4618). Redis and Valkey pipeline commands are joined with newlines, fixing agent obfuscation (#4593). A race condition in HTTP client trace timings is resolved (#4591). AppSec block responses now include a correct Content-Length header (#4496), and spurious Remote Configuration errors are silenced when RC is disabled (#4612). ContextWithSpan no longer panics on nil context (#4313). The OTel bridge preserves keep/drop sampling decisions for unsampled spans (#4631). User-provided DogStatsD addresses now correctly take priority over defaults (#4575).

Performance. Trace ID hex encoding is cached (#4481), the span metadata map is preallocated (#4541), and locking is removed from both sampling priority access (#4546) and the internal logger (#4547) — reducing allocations and contention on hot paths.

CI Visibility. Bazel offline cache and payload-file modes are supported (#4503). Known test pagination is implemented for large test suites (#4509).

What's Changed

Application Performance Monitoring (APM)

... (truncated)

Commits
  • 2b2b2c2 chore: make fix-modules && make generate
  • 21438ed internal/version: v2.8.1
  • 0bc11f3 internal/orchestrion/_integration: v2.8.1-rc.2
  • f17a712 orchestrion/all: v2.8.1-rc.2
  • 1b8d8e5 internal/traceprof/traceproftest: v2.8.1-rc.2
  • 7b30b1f contrib/aws/datadog-lambda-go/test/integration_tests/error: v2.8.1-rc.2
  • 96cc2a4 contrib/aws/datadog-lambda-go/test/integration_tests/hello: v2.8.1-rc.2
  • f3013b5 instrumentation/internal/validationtest: v2.8.1-rc.2
  • c9f9843 contrib/labstack/echo.v4: v2.8.1-rc.2
  • e07b30b contrib/valyala/fasthttp: v2.8.1-rc.2
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [github.com/DataDog/dd-trace-go/v2](https://github.com/DataDog/dd-trace-go) from 2.4.1 to 2.8.1.
- [Release notes](https://github.com/DataDog/dd-trace-go/releases)
- [Commits](DataDog/dd-trace-go@v2.4.1...v2.8.1)

---
updated-dependencies:
- dependency-name: github.com/DataDog/dd-trace-go/v2
  dependency-version: 2.8.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 15, 2026

@brandur brandur left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Geeze these DD dependencies are nuts.

@brandur brandur merged commit 757d44f into master Jul 16, 2026
3 checks passed
@brandur brandur deleted the dependabot/go_modules/datadogriver/github.com/DataDog/dd-trace-go/v2-2.8.1 branch July 16, 2026 00:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant