feat(aap): endpoint discovery for Django (#14113)

This PR introduces a new feature for API Protection:
- Discovery of Django endpoints at startup of the tracer
- Report through a new telemetry payload
- Add max_length and time checks to ensure collection of endpoints is
memory and time bounded
- Add telemetry test with minimalist django application to test the
feature.

APPSEC-58374

Note: This new feature is completely independent from security features.

## Checklist
- [x] PR author has checked that all the criteria below are met
- The PR description includes an overview of the change
- The PR description articulates the motivation for the change
- The change includes tests OR the PR description describes a testing
strategy
- The PR description notes risks associated with the change, if any
- Newly-added code is easy to change
- The change follows the [library release note
guidelines](https://ddtrace.readthedocs.io/en/stable/releasenotes.html)
- The change includes or references documentation updates if necessary
- Backport labels are set (if
[applicable](https://ddtrace.readthedocs.io/en/latest/contributing.html#backporting))

## Reviewer Checklist
- [x] Reviewer has checked that all the criteria below are met 
- Title is accurate
- All changes are related to the pull request's stated goal
- Avoids breaking
[API](https://ddtrace.readthedocs.io/en/stable/versioning.html#interfaces)
changes
- Testing strategy adequately addresses listed risks
- Newly-added code is easy to change
- Release note makes sense to a user of the library
- If necessary, author has acknowledged and discussed the performance
implications of this PR as reported in the benchmarks PR comment
- Backport labels are set in a manner that is consistent with the
[release branch maintenance
policy](https://ddtrace.readthedocs.io/en/latest/contributing.html#backporting)

Author: christophe-papazian

.github/CODEOWNERS

@@ -37,6 +37,7 @@ mypy.ini                            @DataDog/python-guild  @DataDog/apm-core-pyt
 ddtrace/internal/_file_queue.py     @DataDog/python-guild
 ddtrace/internal/_unpatched.py      @DataDog/python-guild
 ddtrace/internal/compat.py          @DataDog/python-guild  @DataDog/apm-core-python
+ddtrace/internal/endpoints.py       @DataDog/python-guild  @DataDog/asm-python
 ddtrace/settings/config.py          @DataDog/python-guild  @DataDog/apm-sdk-api-python
 docs/                               @DataDog/python-guild
 tests/utils.py                      @DataDog/python-guild

.riot/requirements/10505cf.txt

@@ -0,0 +1,36 @@
+#
+# This file is autogenerated by pip-compile with Python 3.11
+# by the following command:
+#
+#    pip-compile --allow-unsafe --no-annotate .riot/requirements/10505cf.in
+#
+asgiref==3.9.1
+attrs==25.3.0
+certifi==2025.7.14
+charset-normalizer==3.4.2
+click==7.1.2
+coverage[toml]==7.9.2
+django==5.2.4
+flask==1.1.4
+gunicorn==23.0.0
+httpretty==1.0.5
+hypothesis==6.45.0
+idna==3.10
+iniconfig==2.1.0
+itsdangerous==1.1.0
+jinja2==2.11.3
+markupsafe==1.1.1
+mock==5.2.0
+opentracing==2.4.0
+packaging==25.0
+pluggy==1.6.0
+pygments==2.19.2
+pytest==8.4.1
+pytest-cov==6.2.1
+pytest-mock==3.14.1
+pytest-randomly==3.16.0
+requests==2.32.4
+sortedcontainers==2.4.0
+sqlparse==0.5.3
+urllib3==2.5.0
+werkzeug==1.0.1

.riot/requirements/1153ad9.txt

@@ -0,0 +1,36 @@
+#
+# This file is autogenerated by pip-compile with Python 3.12
+# by the following command:
+#
+#    pip-compile --allow-unsafe --no-annotate .riot/requirements/1ac71d3.in
+#
+asgiref==3.9.1
+attrs==25.3.0
+certifi==2025.7.14
+charset-normalizer==3.4.2
+click==7.1.2
+coverage[toml]==7.9.2
+django==5.2.4
+flask==1.1.4
+gunicorn==23.0.0
+httpretty==1.0.5
+hypothesis==6.45.0
+idna==3.10
+iniconfig==2.1.0
+itsdangerous==1.1.0
+jinja2==2.11.3
+markupsafe==1.1.1
+mock==5.2.0
+opentracing==2.4.0
+packaging==25.0
+pluggy==1.6.0
+pygments==2.19.2
+pytest==8.4.1
+pytest-cov==6.2.1
+pytest-mock==3.14.1
+pytest-randomly==3.16.0
+requests==2.32.4
+sortedcontainers==2.4.0
+sqlparse==0.5.3
+urllib3==2.5.0
+werkzeug==1.0.1

.riot/requirements/118cb50.txt

@@ -0,0 +1,39 @@
+#
+# This file is autogenerated by pip-compile with Python 3.10
+# by the following command:
+#
+#    pip-compile --allow-unsafe --no-annotate .riot/requirements/1bd7fc4.in
+#
+asgiref==3.9.1
+attrs==25.3.0
+certifi==2025.7.14
+charset-normalizer==3.4.2
+click==7.1.2
+coverage[toml]==7.9.2
+django==5.2.4
+exceptiongroup==1.3.0
+flask==1.1.4
+gunicorn==23.0.0
+httpretty==1.0.5
+hypothesis==6.45.0
+idna==3.10
+iniconfig==2.1.0
+itsdangerous==1.1.0
+jinja2==2.11.3
+markupsafe==1.1.1
+mock==5.2.0
+opentracing==2.4.0
+packaging==25.0
+pluggy==1.6.0
+pygments==2.19.2
+pytest==8.4.1
+pytest-cov==6.2.1
+pytest-mock==3.14.1
+pytest-randomly==3.16.0
+requests==2.32.4
+sortedcontainers==2.4.0
+sqlparse==0.5.3
+tomli==2.2.1
+typing-extensions==4.14.1
+urllib3==2.5.0
+werkzeug==1.0.1

.riot/requirements/135aac0.txt

@@ -0,0 +1,41 @@
+#
+# This file is autogenerated by pip-compile with Python 3.9
+# by the following command:
+#
+#    pip-compile --allow-unsafe --no-annotate .riot/requirements/2e24172.in
+#
+asgiref==3.9.1
+attrs==25.3.0
+certifi==2025.7.14
+charset-normalizer==3.4.2
+click==7.1.2
+coverage[toml]==7.9.2
+django==4.2.23
+exceptiongroup==1.3.0
+flask==1.1.4
+gunicorn==23.0.0
+httpretty==1.0.5
+hypothesis==6.45.0
+idna==3.10
+importlib-metadata==8.7.0
+iniconfig==2.1.0
+itsdangerous==1.1.0
+jinja2==2.11.3
+markupsafe==1.1.1
+mock==5.2.0
+opentracing==2.4.0
+packaging==25.0
+pluggy==1.6.0
+pygments==2.19.2
+pytest==8.4.1
+pytest-cov==6.2.1
+pytest-mock==3.14.1
+pytest-randomly==3.16.0
+requests==2.32.4
+sortedcontainers==2.4.0
+sqlparse==0.5.3
+tomli==2.2.1
+typing-extensions==4.14.1
+urllib3==2.5.0
+werkzeug==1.0.1
+zipp==3.23.0