[APPSEC-61743] Add missing WAF addresses to custom rule public API (#3840)

api-clients-generation-pipeline[bot] · ci.datadog-api-spec · web-flow · commit 3b901966dfaa · 2026-03-17T13:19:47.000Z
Co-authored-by: ci.datadog-api-spec &lt;packages@datadoghq.com&gt;
diff --git a/.generator/schemas/v2/openapi.yaml b/.generator/schemas/v2/openapi.yaml
@@ -4004,19 +4004,29 @@ components:
       - server.request.uri.raw
       - server.request.path_params
       - server.request.query
+      - server.request.headers
       - server.request.headers.no_cookies
+      - server.request.custom-auth
       - server.request.cookies
       - server.request.trailers
       - server.request.body
+      - server.request.body.filenames
       - server.response.status
       - server.response.headers.no_cookies
       - server.response.trailers
+      - server.response.body
       - grpc.server.request.metadata
       - grpc.server.request.message
       - grpc.server.method
       - graphql.server.all_resolvers
       - usr.id
       - http.client_ip
+      - server.llm.event
+      - server.llm.guard.verdict
+      - _dd.appsec.fp.http.header
+      - _dd.appsec.fp.http.network
+      - _dd.appsec.fp.session
+      - _dd.appsec.fp.http.endpoint
       example: server.db.statement
       type: string
       x-enum-varnames:
@@ -4028,19 +4038,29 @@ components:
       - SERVER_REQUEST_URI_RAW
       - SERVER_REQUEST_PATH_PARAMS
       - SERVER_REQUEST_QUERY
+      - SERVER_REQUEST_HEADERS
       - SERVER_REQUEST_HEADERS_NO_COOKIES
+      - SERVER_REQUEST_CUSTOM_AUTH
       - SERVER_REQUEST_COOKIES
       - SERVER_REQUEST_TRAILERS
       - SERVER_REQUEST_BODY
+      - SERVER_REQUEST_BODY_FILENAMES
       - SERVER_RESPONSE_STATUS
       - SERVER_RESPONSE_HEADERS_NO_COOKIES
       - SERVER_RESPONSE_TRAILERS
+      - SERVER_RESPONSE_BODY
       - GRPC_SERVER_REQUEST_METADATA
       - GRPC_SERVER_REQUEST_MESSAGE
       - GRPC_SERVER_METHOD
       - GRAPHQL_SERVER_ALL_RESOLVERS
       - USR_ID
       - HTTP_CLIENT_IP
+      - SERVER_LLM_EVENT
+      - SERVER_LLM_GUARD_VERDICT
+      - DD_APPSEC_FP_HTTP_HEADER
+      - DD_APPSEC_FP_HTTP_NETWORK
+      - DD_APPSEC_FP_SESSION
+      - DD_APPSEC_FP_HTTP_ENDPOINT
     ApplicationSecurityWafCustomRuleConditionOperator:
       description: Operator to use for the WAF Condition.
       enum:
diff --git a/api/datadogV2/model_application_security_waf_custom_rule_condition_input_address.go b/api/datadogV2/model_application_security_waf_custom_rule_condition_input_address.go
@@ -23,19 +23,29 @@ const (
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_URI_RAW             ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.uri.raw"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_PATH_PARAMS         ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.path_params"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_QUERY               ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.query"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_HEADERS             ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.headers"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_HEADERS_NO_COOKIES  ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.headers.no_cookies"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_CUSTOM_AUTH         ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.custom-auth"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_COOKIES             ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.cookies"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_TRAILERS            ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.trailers"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_BODY                ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.body"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_BODY_FILENAMES      ApplicationSecurityWafCustomRuleConditionInputAddress = "server.request.body.filenames"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_STATUS             ApplicationSecurityWafCustomRuleConditionInputAddress = "server.response.status"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_HEADERS_NO_COOKIES ApplicationSecurityWafCustomRuleConditionInputAddress = "server.response.headers.no_cookies"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_TRAILERS           ApplicationSecurityWafCustomRuleConditionInputAddress = "server.response.trailers"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_BODY               ApplicationSecurityWafCustomRuleConditionInputAddress = "server.response.body"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRPC_SERVER_REQUEST_METADATA       ApplicationSecurityWafCustomRuleConditionInputAddress = "grpc.server.request.metadata"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRPC_SERVER_REQUEST_MESSAGE        ApplicationSecurityWafCustomRuleConditionInputAddress = "grpc.server.request.message"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRPC_SERVER_METHOD                 ApplicationSecurityWafCustomRuleConditionInputAddress = "grpc.server.method"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRAPHQL_SERVER_ALL_RESOLVERS       ApplicationSecurityWafCustomRuleConditionInputAddress = "graphql.server.all_resolvers"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_USR_ID                             ApplicationSecurityWafCustomRuleConditionInputAddress = "usr.id"
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_HTTP_CLIENT_IP                     ApplicationSecurityWafCustomRuleConditionInputAddress = "http.client_ip"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_LLM_EVENT                   ApplicationSecurityWafCustomRuleConditionInputAddress = "server.llm.event"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_LLM_GUARD_VERDICT           ApplicationSecurityWafCustomRuleConditionInputAddress = "server.llm.guard.verdict"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_HTTP_HEADER           ApplicationSecurityWafCustomRuleConditionInputAddress = "_dd.appsec.fp.http.header"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_HTTP_NETWORK          ApplicationSecurityWafCustomRuleConditionInputAddress = "_dd.appsec.fp.http.network"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_SESSION               ApplicationSecurityWafCustomRuleConditionInputAddress = "_dd.appsec.fp.session"
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_HTTP_ENDPOINT         ApplicationSecurityWafCustomRuleConditionInputAddress = "_dd.appsec.fp.http.endpoint"
 )
 
 var allowedApplicationSecurityWafCustomRuleConditionInputAddressEnumValues = []ApplicationSecurityWafCustomRuleConditionInputAddress{
@@ -47,19 +57,29 @@ var allowedApplicationSecurityWafCustomRuleConditionInputAddressEnumValues = []A
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_URI_RAW,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_PATH_PARAMS,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_QUERY,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_HEADERS,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_HEADERS_NO_COOKIES,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_CUSTOM_AUTH,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_COOKIES,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_TRAILERS,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_BODY,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_REQUEST_BODY_FILENAMES,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_STATUS,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_HEADERS_NO_COOKIES,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_TRAILERS,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_RESPONSE_BODY,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRPC_SERVER_REQUEST_METADATA,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRPC_SERVER_REQUEST_MESSAGE,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRPC_SERVER_METHOD,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_GRAPHQL_SERVER_ALL_RESOLVERS,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_USR_ID,
 	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_HTTP_CLIENT_IP,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_LLM_EVENT,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_SERVER_LLM_GUARD_VERDICT,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_HTTP_HEADER,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_HTTP_NETWORK,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_SESSION,
+	APPLICATIONSECURITYWAFCUSTOMRULECONDITIONINPUTADDRESS_DD_APPSEC_FP_HTTP_ENDPOINT,
 }
 
 // GetAllowedValues reeturns the list of possible values.
