Feature Activation

Custom Go Tracer start-up

All applications built using orchestrion automatically start the Datadog tracer at the beginning of the main function using the tracer library’s default configuration. The recommended way to configure the tracer is by using the designated environment variables, such as DD_ENV, DD_SERVICE, DD_VERSION, etc… You can get more information on what environment variables are available in the documentation.

If the main function is annotated with the //dd:ignore directive, the tracer will not be started automatically, and you are responsible for calling gopkg.in/DataDog/dd-trace-go.v1/ddtrace/tracer.Start with your preferred configuration options.

Enabling the Go Profiler

All applications built using orchestrion automatically start the Datadog continuous profiler if the DD_PROFILING_ENABLED environment variable is set to 1 or true. If profiling is enabled via the Datadog Admission Controller, DD_PROFILING_ENABLED can be set to auto.

When enabled, the continuous profiler will activate the following profiles:

• gopkg.in/DataDog/dd-trace-go.v1/profiler.CPUProfile
• gopkg.in/DataDog/dd-trace-go.v1/profiler.HeapProfile
• gopkg.in/DataDog/dd-trace-go.v1/profiler.GoroutineProfile
• gopkg.in/DataDog/dd-trace-go.v1/profiler.MutexProfile

Enabling Application Security features

Datadog Application Security (ASM) features are built into the tracer library, but need to be enabled at run-time. The Enabling ASM for Go documentation explains how to enable Application Security for instrumented go applications.

In the majority of cases, all that’s needed is to set DD_APPSEC_ENABLED to 1 or true.

Building applications with orchestrion allows you to maximize coverage for RASP features, such as automatic protection against SQL Injection attacks.