[APPSEC-61743] Add missing WAF addresses to custom rule public API (#3721)

api-clients-generation-pipeline[bot] · ci.datadog-api-spec · web-flow · commit ded8edd4c399 · 2026-03-17T13:20:07.000Z
Co-authored-by: ci.datadog-api-spec &lt;packages@datadoghq.com&gt;
diff --git a/.generator/schemas/v2/openapi.yaml b/.generator/schemas/v2/openapi.yaml
@@ -4004,19 +4004,29 @@ components:
       - server.request.uri.raw
       - server.request.path_params
       - server.request.query
+      - server.request.headers
       - server.request.headers.no_cookies
+      - server.request.custom-auth
       - server.request.cookies
       - server.request.trailers
       - server.request.body
+      - server.request.body.filenames
       - server.response.status
       - server.response.headers.no_cookies
       - server.response.trailers
+      - server.response.body
       - grpc.server.request.metadata
       - grpc.server.request.message
       - grpc.server.method
       - graphql.server.all_resolvers
       - usr.id
       - http.client_ip
+      - server.llm.event
+      - server.llm.guard.verdict
+      - _dd.appsec.fp.http.header
+      - _dd.appsec.fp.http.network
+      - _dd.appsec.fp.session
+      - _dd.appsec.fp.http.endpoint
       example: server.db.statement
       type: string
       x-enum-varnames:
@@ -4028,19 +4038,29 @@ components:
       - SERVER_REQUEST_URI_RAW
       - SERVER_REQUEST_PATH_PARAMS
       - SERVER_REQUEST_QUERY
+      - SERVER_REQUEST_HEADERS
       - SERVER_REQUEST_HEADERS_NO_COOKIES
+      - SERVER_REQUEST_CUSTOM_AUTH
       - SERVER_REQUEST_COOKIES
       - SERVER_REQUEST_TRAILERS
       - SERVER_REQUEST_BODY
+      - SERVER_REQUEST_BODY_FILENAMES
       - SERVER_RESPONSE_STATUS
       - SERVER_RESPONSE_HEADERS_NO_COOKIES
       - SERVER_RESPONSE_TRAILERS
+      - SERVER_RESPONSE_BODY
       - GRPC_SERVER_REQUEST_METADATA
       - GRPC_SERVER_REQUEST_MESSAGE
       - GRPC_SERVER_METHOD
       - GRAPHQL_SERVER_ALL_RESOLVERS
       - USR_ID
       - HTTP_CLIENT_IP
+      - SERVER_LLM_EVENT
+      - SERVER_LLM_GUARD_VERDICT
+      - DD_APPSEC_FP_HTTP_HEADER
+      - DD_APPSEC_FP_HTTP_NETWORK
+      - DD_APPSEC_FP_SESSION
+      - DD_APPSEC_FP_HTTP_ENDPOINT
     ApplicationSecurityWafCustomRuleConditionOperator:
       description: Operator to use for the WAF Condition.
       enum:
diff --git a/packages/datadog-api-client-v2/models/ApplicationSecurityWafCustomRuleConditionInputAddress.ts b/packages/datadog-api-client-v2/models/ApplicationSecurityWafCustomRuleConditionInputAddress.ts
@@ -19,19 +19,29 @@ export type ApplicationSecurityWafCustomRuleConditionInputAddress =
   | typeof SERVER_REQUEST_URI_RAW
   | typeof SERVER_REQUEST_PATH_PARAMS
   | typeof SERVER_REQUEST_QUERY
+  | typeof SERVER_REQUEST_HEADERS
   | typeof SERVER_REQUEST_HEADERS_NO_COOKIES
+  | typeof SERVER_REQUEST_CUSTOM_AUTH
   | typeof SERVER_REQUEST_COOKIES
   | typeof SERVER_REQUEST_TRAILERS
   | typeof SERVER_REQUEST_BODY
+  | typeof SERVER_REQUEST_BODY_FILENAMES
   | typeof SERVER_RESPONSE_STATUS
   | typeof SERVER_RESPONSE_HEADERS_NO_COOKIES
   | typeof SERVER_RESPONSE_TRAILERS
+  | typeof SERVER_RESPONSE_BODY
   | typeof GRPC_SERVER_REQUEST_METADATA
   | typeof GRPC_SERVER_REQUEST_MESSAGE
   | typeof GRPC_SERVER_METHOD
   | typeof GRAPHQL_SERVER_ALL_RESOLVERS
   | typeof USR_ID
   | typeof HTTP_CLIENT_IP
+  | typeof SERVER_LLM_EVENT
+  | typeof SERVER_LLM_GUARD_VERDICT
+  | typeof DD_APPSEC_FP_HTTP_HEADER
+  | typeof DD_APPSEC_FP_HTTP_NETWORK
+  | typeof DD_APPSEC_FP_SESSION
+  | typeof DD_APPSEC_FP_HTTP_ENDPOINT
   | UnparsedObject;
 export const SERVER_DB_STATEMENT = "server.db.statement";
 export const SERVER_IO_FS_FILE = "server.io.fs.file";
@@ -41,18 +51,28 @@ export const SERVER_REQUEST_METHOD = "server.request.method";
 export const SERVER_REQUEST_URI_RAW = "server.request.uri.raw";
 export const SERVER_REQUEST_PATH_PARAMS = "server.request.path_params";
 export const SERVER_REQUEST_QUERY = "server.request.query";
+export const SERVER_REQUEST_HEADERS = "server.request.headers";
 export const SERVER_REQUEST_HEADERS_NO_COOKIES =
   "server.request.headers.no_cookies";
+export const SERVER_REQUEST_CUSTOM_AUTH = "server.request.custom-auth";
 export const SERVER_REQUEST_COOKIES = "server.request.cookies";
 export const SERVER_REQUEST_TRAILERS = "server.request.trailers";
 export const SERVER_REQUEST_BODY = "server.request.body";
+export const SERVER_REQUEST_BODY_FILENAMES = "server.request.body.filenames";
 export const SERVER_RESPONSE_STATUS = "server.response.status";
 export const SERVER_RESPONSE_HEADERS_NO_COOKIES =
   "server.response.headers.no_cookies";
 export const SERVER_RESPONSE_TRAILERS = "server.response.trailers";
+export const SERVER_RESPONSE_BODY = "server.response.body";
 export const GRPC_SERVER_REQUEST_METADATA = "grpc.server.request.metadata";
 export const GRPC_SERVER_REQUEST_MESSAGE = "grpc.server.request.message";
 export const GRPC_SERVER_METHOD = "grpc.server.method";
 export const GRAPHQL_SERVER_ALL_RESOLVERS = "graphql.server.all_resolvers";
 export const USR_ID = "usr.id";
 export const HTTP_CLIENT_IP = "http.client_ip";
+export const SERVER_LLM_EVENT = "server.llm.event";
+export const SERVER_LLM_GUARD_VERDICT = "server.llm.guard.verdict";
+export const DD_APPSEC_FP_HTTP_HEADER = "_dd.appsec.fp.http.header";
+export const DD_APPSEC_FP_HTTP_NETWORK = "_dd.appsec.fp.http.network";
+export const DD_APPSEC_FP_SESSION = "_dd.appsec.fp.session";
+export const DD_APPSEC_FP_HTTP_ENDPOINT = "_dd.appsec.fp.http.endpoint";
diff --git a/packages/datadog-api-client-v2/models/ObjectSerializer.ts b/packages/datadog-api-client-v2/models/ObjectSerializer.ts
@@ -3596,19 +3596,29 @@ const enumsMap: { [key: string]: any[] } = {
     "server.request.uri.raw",
     "server.request.path_params",
     "server.request.query",
+    "server.request.headers",
     "server.request.headers.no_cookies",
+    "server.request.custom-auth",
     "server.request.cookies",
     "server.request.trailers",
     "server.request.body",
+    "server.request.body.filenames",
     "server.response.status",
     "server.response.headers.no_cookies",
     "server.response.trailers",
+    "server.response.body",
     "grpc.server.request.metadata",
     "grpc.server.request.message",
     "grpc.server.method",
     "graphql.server.all_resolvers",
     "usr.id",
     "http.client_ip",
+    "server.llm.event",
+    "server.llm.guard.verdict",
+    "_dd.appsec.fp.http.header",
+    "_dd.appsec.fp.http.network",
+    "_dd.appsec.fp.session",
+    "_dd.appsec.fp.http.endpoint",
   ],
   ApplicationSecurityWafCustomRuleConditionOperator: [
     "match_regex",
