chore(ci): riotize appsec_threats_flask

[juanjux]

Checklist

• PR author has checked that all the criteria below are met
• The PR description includes an overview of the change
• The PR description articulates the motivation for the change
• The change includes tests OR the PR description describes a testing strategy
• The PR description notes risks associated with the change, if any
• Newly-added code is easy to change
• The change follows the library release note guidelines
• The change includes or references documentation updates if necessary
• Backport labels are set (if applicable)

Reviewer Checklist

• Reviewer has checked that all the criteria below are met
• Title is accurate
• All changes are related to the pull request's stated goal
• Avoids breaking API changes
• Testing strategy adequately addresses listed risks
• Newly-added code is easy to change
• Release note makes sense to a user of the library
• If necessary, author has acknowledged and discussed the performance implications of this PR as reported in the benchmarks PR comment
• Backport labels are set in a manner that is consistent with the release branch maintenance policy

[github-actions]

CODEOWNERS have been resolved as:

.riot/requirements/10a053e.txt                                          @DataDog/apm-python
.riot/requirements/14f9b26.txt                                          @DataDog/apm-python
.riot/requirements/168930f.txt                                          @DataDog/apm-python
.riot/requirements/182ca07.txt                                          @DataDog/apm-python
.riot/requirements/199cda7.txt                                          @DataDog/apm-python
.riot/requirements/1b06f43.txt                                          @DataDog/apm-python
.riot/requirements/1cb891d.txt                                          @DataDog/apm-python
.riot/requirements/1d71a4a.txt                                          @DataDog/apm-python
.riot/requirements/1e5d795.txt                                          @DataDog/apm-python
.riot/requirements/1eebb20.txt                                          @DataDog/apm-python
.riot/requirements/4727e92.txt                                          @DataDog/apm-python
.riot/requirements/49711bf.txt                                          @DataDog/apm-python
.riot/requirements/5cef490.txt                                          @DataDog/apm-python
.riot/requirements/7b8bfb0.txt                                          @DataDog/apm-python
.riot/requirements/9ff1a39.txt                                          @DataDog/apm-python
.riot/requirements/a74d86f.txt                                          @DataDog/apm-python
.riot/requirements/aa30c9e.txt                                          @DataDog/apm-python
.riot/requirements/b7ac57f.txt                                          @DataDog/apm-python
.riot/requirements/c00aefc.txt                                          @DataDog/apm-python
.riot/requirements/f8fcf35.txt                                          @DataDog/apm-python
hatch.toml                                                              @DataDog/python-guild
riotfile.py                                                             @DataDog/apm-python
tests/appsec/suitespec.yml                                              @DataDog/asm-python

[github-actions]

Bootstrap import analysis

Comparison of import times between this PR and base.

Summary

The average import time from this PR is: 278 ± 3 ms.

The average import time from base is: 281 ± 4 ms.

The import time difference between this PR and base is: -2.8 ± 0.2 ms.

Import time breakdown

The following import paths have shrunk:

ddtrace.auto 2.047 ms (0.73%)

ddtrace.bootstrap.sitecustomize 1.373 ms (0.49%)

ddtrace.bootstrap.preload 1.373 ms (0.49%)

ddtrace.internal.remoteconfig.client 0.676 ms (0.24%)

ddtrace 0.674 ms (0.24%)

ddtrace.internal._unpatched 0.030 ms (0.01%)

json 0.030 ms (0.01%)

json.decoder 0.030 ms (0.01%)

re 0.030 ms (0.01%)

enum 0.030 ms (0.01%)

types 0.030 ms (0.01%)

[pr-commenter]

Benchmarks

Benchmark execution time: 2025-07-09 15:23:21

Comparing candidate commit fb66870 in PR branch juanjux/riotize-threats-flask with baseline commit 573a530 in branch main.

Found 0 performance improvements and 4 performance regressions! Performance is the same for 542 metrics, 4 unstable metrics.

scenario:iastaspects-replace_aspect

• 🟥 execution_time [+619.561ns; +729.264ns] or [+13.025%; +15.331%]

scenario:iastaspectsospath-ospathbasename_aspect

• 🟥 execution_time [+704.657ns; +828.588ns] or [+16.484%; +19.383%]

scenario:iastaspectsospath-ospathjoin_aspect

• 🟥 execution_time [+954.265ns; +1039.627ns] or [+15.538%; +16.928%]

scenario:telemetryaddmetric-1-gauge-metric-1-times

• 🟥 execution_time [+148.134ns; +192.478ns] or [+7.063%; +9.177%]

[emmettbutler]

agreed with brett's comment, otherwise looks good

[brettlangdon]

are we missing a change to remove from hatch ?

[juanjux]

are we missing a change to remove from hatch ?

Fixed, thanks.