fix(starlette): Stop eagerly consuming request bodies for streamed spans#6282
Open
alexander-alderman-webb wants to merge 15 commits into
Open
Conversation
…amed spans in async handlers
alexander-alderman-webb
changed the title
Contributor
Codecov Results 📊✅ 282 passed | Total: 282 | Pass Rate: 100% | Execution Time: 42.63s 📊 Comparison with Base Branch
✨ No test changes detected All tests are passing successfully. ❌ Patch coverage is 6.45%. Project has 14800 uncovered lines. Files with missing lines (2)
Coverage diff@@ Coverage Diff @@
## main #PR +/-##
==========================================
- Coverage 33.62% 33.60% -0.02%
==========================================
Files 190 190 —
Lines 22270 22288 +18
Branches 7546 7544 -2
==========================================
+ Hits 7487 7488 +1
- Misses 14783 14800 +17
- Partials 747 747 —Generated by Codecov Action |
alexander-alderman-webb
changed the title
![sentry[bot]](https://avatars.githubusercontent.com/in/12637?s=60&v=4){kind=small}
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
alexander-alderman-webb
changed the title
alexander-alderman-webb
changed the title
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit 9d2157e. Configure here.
sentrivana
approved these changes
May 18, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Only attach cached request bodies to streamed spans to avoid relying on an eagerly consumed request body. Use the
_jsonand_formattributes instead ofjson()andform()accessors to ensure that the request body is not consumed by the SDK.Note: by using
_jsonand_formdirectly we can no longer distinguish between raw data payloads and payloads that were not cached on theRequestobject. The attribute is therefore omitted if the request body is not cached, since the endpoint may not have accessed it.The integration can still cause application hangs if middleware or handlers deprive the
receive()callable instead of using Starlette accessors. Reliance on the overly ambitious request body access is only eliminated for streamed spans (and only persists for errors with the change).test_request_body_data_does_not_scrub_pii_span_streaming()sincetest_formdata_request_body()already asserts that fields in the request body are not scrubbed.test_request_body_data_annotated_value_top_level_span_streaming()because the attribute is no longer set if the request body is not JSON or FormData.Issues
Reminders
tox -e linters.feat:,fix:,ref:,meta:)