ASM capabilities support

The following ASM capabilities are supported in the Ruby library, for the specified tracer version:

ASM capabilityMinimum Ruby tracer version
Threat Detection1.9.0
Threat Protection1.11.0
Customize response to blocked requests1.15.0
Software Composition Analysis (SCA)1.11.0
Code Security (beta)not supported
Automatic user activity event tracking1.14.0

The minimum tracer version to get all supported ASM capabilities for Ruby is 1.11.0.

If you would like to see support added for any of the unsupported capabilities, or for your Ruby framework, let us know! Fill out this short form to send details.

Supported deployment types

TypeThreat Detection supportVulnerability Management for OSS support
Docker
Kubernetes
Amazon ECS
AWS Fargate
AWS Lambda

Language and framework compatibility

Supported Ruby interpreters The Datadog Ruby library supports the latest gem for the following Ruby interpreters:

  • MRI versions 2.1 to 3.1

These are supported on the following architectures:

  • Linux (GNU) x86-64, aarch64
  • Alpine Linux (musl) x86-64, aarch64
  • macOS (Darwin) x86-64, arm64

Supported web servers

  • Attacker source HTTP request details
  • Tags for the HTTP request (status code, method, etc)
  • Distributed Tracing to see attack flows through your applications
ASM Capability Notes
  • Vulnerability Management for Code is not supported
FrameworkThreat Detection supported?Threat Protection supported?
Rack
Rails
Sinatra
Grape
Unicorn
Passenger
Framework Web ServerMinimum Framework Version
Rack1.1
Rails3.2 (also depends on Ruby version)
Sinatra1.4

Networking framework compatibility

Networking tracing provides:

  • Distributed tracing through your applications
  • Request-based blocking
ASM Capability Notes
  • Vulnerability Management for Code-level is not supported
FrameworkThreat Detection supported?Threat Protection supported?
Rack
If you don't see your framework of choice listed, let us know! Fill out this short form to send details.

Data store compatibility

Datastore tracing provides:

  • SQL attack detection
  • query info (for example, a sanitized query string)
  • error and stacktrace capturing
ASM Capability Notes
  • Vulnerability Management for Code-level is not supported
  • Threat Protection also works at the HTTP request (input) layer, and so works for all databases by default, even those not listed in the table below.
FrameworkThreat Detection supported?Threat Protection supported?
MongoDB
Active Record
MySQL2
Presto
Resque
Sequel
Elasticsearch

User Authentication Frameworks compatibility

Integrations to User Authentication Frameworks provide:

  • User login events, including the user IDs
  • Account Takeover detection monitoring for user login events
FrameworkMinimum Framework Version
Devise3.2.1