Apps plugin

[yoannmoinet]

What and why?

• Add an alpha apps plugin that zips built assets and uploads them to Datadog storage with optional dry-run and identifier override.
• Extend core helpers with gzipped multipart uploads, origin headers, repository URL sanitization, and APPS intake env overrides to support the new workflow.
• Wire the apps plugin into the factory and published bundler packages while keeping alpha plugins hidden from the root README.
• Align sourcemap uploads and git timing with the new helpers and logging style.

How?

• Collect bundler outputs plus optional include globs, dedupe them, archive with JSZip, and upload via the apps-intake endpoint with retries/dry-run summaries.
• Derive app identifiers from package.json or git remote (with sensitive info stripped)
• Allow full intake URL overrides via DATADOG_APPS_INTAKE_URL/DATADOG_SITE.
• Introduce createGzipFormData and getOriginHeaders for compressed multipart requests and reuse them in sourcemap sending.
• Export the new options/types across bundler plugins and adjust README generation to skip packages marked hideFromRootReadme.

[datadog-official]

✅ Tests

🎉 All green!

❄️ No new flaky tests detected
🧪 All tests passed

_{This comment will be updated automatically if new data arrives.
🔗 Commit SHA: 054f233 | Docs | Datadog PR Page | Was this helpful? Give us feedback!}

[sdkennedy2]

I wonder if we should be worried about conflicts when the repository url isn't defined and the package name conflicts across two apps. I don't think it needs to be solved now but maybe we should think through this scenario in one of the RFCs.

[yoannmoinet]

Very good point, we could make it mandatory to have a remote url.
At least for now.

[sdkennedy2]

Separately from the PR we should think through how we want to handle auth. I kind of like how dd-auth works.

[yoannmoinet]

How does dd-auth work? (make it through DM in slack)