DataDog · gnufede · Mar 27, 2024 · Mar 26, 2024
@@ -48,12 +48,13 @@ def on_span_start(self, span):
         if not _is_iast_enabled():
             return
 
+        from ._taint_tracking import create_context
+
+        create_context()
+
         request_iast_enabled = False
         if oce.acquire_request(span):
-            from ._taint_tracking import create_context
-
             request_iast_enabled = True
-            create_context()
 
         core.set_item(IAST.REQUEST_IAST_ENABLED, request_iast_enabled, span=span)
 

@@ -0,0 +1,4 @@
+---
+fixes:
+  - |
+    Vulnerability Management for Code-level (IAST): This fix addresses an issue where tainting objects may fail due to context not being created in the current span.