fix: [openfeature] allow empty targeting key in exposure events

[leoromanovsky]

Motivation

The exposure schema (exposure.json) requires subject.id to be a string but does not enforce a minimum length, meaning empty strings are valid.

Previously, the exposure hook would skip logging exposures when the targeting key was empty. This prevented server-side flag evaluations (which often don't have a user context) from being tracked.

SDK Specification | EXP.5

-->

What does this PR do?

This change removes that restriction, allowing exposures with empty targeting keys to be sent to the event platform.

system test relevant to this: DataDog/system-tests#6040

Reviewer's Checklist

• Changed code has unit tests for its functionality at or near 100% coverage.
• System-Tests covering this feature have been added and enabled with the va.b.c-dev version tag.
• There is a benchmark for any new code, or changes to existing code.
• If this interacts with the agent in a new way, a system test has been added.
• New code is free of linting errors. You can check this by running ./scripts/lint.sh locally.
• Add an appropriate team label so this PR gets put in the right place for the release notes.
• Non-trivial go.mod changes, e.g. adding new modules, are reviewed by @DataDog/dd-trace-go-guild.

Unsure? Have a question? Request a review!

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 55.00%. Comparing base (bcf07d5) to head (62210ff).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

Files with missing lines	Coverage Δ
openfeature/exposure_hook.go	90.76% <ø> (+12.82%)	⬆️

... and 5 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[pr-commenter]

Benchmarks

Benchmark execution time: 2026-01-16 16:27:55

Comparing candidate commit 62210ff in PR branch leo.romanovsky/openfeature-allow-empty-targeting-key with baseline commit bcf07d5 in branch main.

Found 0 performance improvements and 0 performance regressions! Performance is the same for 158 metrics, 6 unstable metrics.

[leoromanovsky]

/merge

[gh-worker-devflow-routing-ef8351]

View all feedbacks in Devflow UI.

2026-01-16 15:08:38 UTC ℹ️ Start processing command /merge

---

2026-01-16 15:09:08 UTC ℹ️ MergeQueue: pull request added to the queue

The expected merge time in main is approximately 39m (p90).

---

2026-01-16 15:34:38 UTC ❌ MergeQueue: The checks failed on this merge request

Tests failed on this commit 77695fc:

• Dynamic Checks Summary
• System Tests
• unit-integration-tests / upload-test-results
• Dynamic Analysis with Deadlock Detection / upload-test-results
• Dynamic Analysis with Debug Detection / test-contrib
  ...

What to do next?

• Investigate the failures and when ready, re-add your pull request to the queue!
• If your PR checks are green, try to rebase/merge. It might be because the CI run is a bit old.
• Any question, go check the FAQ.

[leoromanovsky]

/merge

[gh-worker-devflow-routing-ef8351]

View all feedbacks in Devflow UI.

2026-01-16 16:30:36 UTC ℹ️ Start processing command /merge

---

2026-01-16 16:31:21 UTC ℹ️ MergeQueue: waiting for PR to be ready

This pull request is not mergeable according to GitHub. Common reasons include pending required checks, missing approvals, or merge conflicts — but it could also be blocked by other repository rules or settings.
It will be added to the queue as soon as checks pass and/or get approvals. View in MergeQueue UI.
Note: if you pushed new commits since the last approval, you may need additional approval.
You can remove it from the waiting list with /remove command.

---

2026-01-16 16:32:54 UTC ℹ️ MergeQueue: merge request added to the queue

The expected merge time in main is approximately 39m (p90).

---

2026-01-16 16:59:12 UTC ℹ️ MergeQueue: This merge request was merged