fix(litestar): Copy request info to prevent cookies mutation (#4883)

Prevent mutating cookies on incoming HTTP requests if the cookie name is
in the scrubbers denylist.

Cookies like `token=...` were replaced with `AnnotatedValue` because a
shallow reference of the request information was held by the client. A
deep copy is introduced so scrubbing does not interfere with Litestar,
and in particular does not break `JWTCookieAuth`.

Closes #4882

---------

Co-authored-by: Ivana Kellyer <[email protected]>

Author: alexander-alderman-webb

sentry_sdk/integrations/litestar.py

@@ -1,4 +1,6 @@
 from collections.abc import Set
+from copy import deepcopy
+
 import sentry_sdk
 from sentry_sdk.consts import OP
 from sentry_sdk.integrations import (
@@ -260,7 +262,7 @@ def event_processor(event, _):
 
             event.update(
                 {
-                    "request": request_info,
+                    "request": deepcopy(request_info),
                     "transaction": tx_name,
                     "transaction_info": tx_info,
                 }

sentry_sdk/integrations/starlite.py

@@ -1,3 +1,5 @@
+from copy import deepcopy
+
 import sentry_sdk
 from sentry_sdk.consts import OP
 from sentry_sdk.integrations import DidNotEnable, Integration
@@ -237,7 +239,7 @@ def event_processor(event, _):
 
             event.update(
                 {
-                    "request": request_info,
+                    "request": deepcopy(request_info),
                     "transaction": tx_name,
                     "transaction_info": tx_info,
                 }