chore(asm): add SSRF support for webbrowser.open

[juanjux]

Description

Add SSRF taint sink support for the stdlib webbrowser module.

Checklist

• Change(s) are motivated and described in the PR description
• Testing strategy is described if automated tests are not included in the PR
• Risks are described (performance impact, potential for breakage, maintainability)
• Change is maintainable (easy to change, telemetry, documentation)
• Library release note guidelines are followed or label changelog/no-changelog is set
• Documentation is included (in-code, generated user docs, public corp docs)
• Backport labels are set (if applicable)
• If this PR changes the public interface, I've notified @DataDog/apm-tees.

Reviewer Checklist

• Title is accurate
• All changes are related to the pull request's stated goal
• Description motivates each change
• Avoids breaking API changes
• Testing strategy adequately addresses listed risks
• Change is maintainable (easy to change, telemetry, documentation)
• Release note makes sense to a user of the library
• Author has acknowledged and discussed the performance implications of this PR as reported in the benchmarks PR comment
• Backport labels are set in a manner that is consistent with the release branch maintenance policy

[pr-commenter]

Benchmarks

Benchmark execution time: 2024-05-13 11:43:15

Comparing candidate commit 6b0e9f6 in PR branch juanjux/webbrowser-ssrf with baseline commit fccb8b3 in branch main.

Found 0 performance improvements and 0 performance regressions! Performance is the same for 209 metrics, 9 unstable metrics.

[datadog-dd-trace-py-rkomorn]

Datadog Report

Branch report: juanjux/webbrowser-ssrf
Commit report: 6b0e9f6
Test service: dd-trace-py

✅ 0 Failed, 115668 Passed, 59727 Skipped, 2h 50m 41.64s Total duration (7h 29m 30.66s time saved)

[codecov-commenter]

Codecov Report

Attention: Patch coverage is 0% with 142 lines in your changes are missing coverage. Please review.

Project coverage is 6.77%. Comparing base (60be242) to head (6b0e9f6).
Report is 1 commits behind head on main.

Files	Patch %	Lines
tests/appsec/iast/taint_sinks/test_ssrf.py	0.00%	102 Missing ⚠️
ddtrace/contrib/webbrowser/patch.py	0.00%	21 Missing ⚠️
ddtrace/appsec/_iast/taint_sinks/ssrf.py	0.00%	15 Missing ⚠️
ddtrace/contrib/webbrowser/__init__.py	0.00%	4 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##             main    #9209       +/-   ##
===========================================
- Coverage   78.58%    6.77%   -71.82%     
===========================================
  Files        1277     1249       -28     
  Lines      120432   118747     -1685     
===========================================
- Hits        94646     8045    -86601     
- Misses      25786   110702    +84916     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.