Goose Attack Report

Users: 5

Target Host: http://trustify:8080/

goose v0.18.0

Plan overview

Action Started Stopped Elapsed Users
Increasing25-10-18 02:17:3825-10-18 02:17:4300:00:050 → 5
Maintaining25-10-18 02:17:4325-10-18 02:22:4300:05:005
Decreasing25-10-18 02:22:4325-10-18 02:24:1900:01:360 ← 5

Request Metrics

Method Name # Requests # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
GET get_advisory_by_doc_id 2 0 10.50 9 12 0.01 0.00
GET get_analysis_latest_cpe 5 (0) 0 149.60 (-22.20) 148 (-22) 151 (-22) 0.02 (+0.00) 0.00 (+0.00)
GET get_analysis_status 5 (0) 0 21.40 (+18.60) 1 (0) 37 (+33) 0.02 (+0.00) 0.00 (+0.00)
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 2 0 1253.00 1243 1263 0.01 0.00
GET get_sbom[sha256:720e4451…a939656247164447] 2 0 960.50 958 963 0.01 0.00
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 2 0 4366.00 4343 4389 0.01 0.00
GET list_advisory 2 0 667.50 657 678 0.01 0.00
GET list_advisory_paginated 2 0 390.00 386 394 0.01 0.00
GET list_importer 2 0 1.50 1 2 0.01 0.00
GET list_organizations 2 0 4.50 3 6 0.01 0.00
GET list_packages 2 0 189.50 189 190 0.01 0.00
GET list_packages_paginated 2 0 217.00 212 222 0.01 0.00
GET list_products 5 (0) 0 6.40 (-3.20) 3 (-5) 9 (-3) 0.02 (+0.00) 0.00 (+0.00)
GET list_sboms 5 (0) 0 582.40 (-28.20) 577 (-30) 591 (-23) 0.02 (+0.00) 0.00 (+0.00)
GET list_sboms_paginated 5 (0) 0 468.80 (-75.20) 452 (-88) 495 (-54) 0.02 (+0.00) 0.00 (+0.00)
GET list_vulnerabilities 2 0 172.00 172 172 0.01 0.00
GET list_vulnerabilities_paginated 2 0 100.50 100 101 0.01 0.00
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 2 0 263.00 259 267 0.01 0.00
GET search_advisory 2 0 1439.00 1437 1441 0.01 0.00
GET search_exact_purl 5 (0) 0 5.80 (-0.80) 3 (-1) 9 (+1) 0.02 (+0.00) 0.00 (+0.00)
GET search_licenses 5 (0) 0 152039.80 (-147962.39) 131472 (-168529) 203254 (-96749) 0.02 (+0.00) 0.00 (-0.02)
GET search_purls 7 (+2) 0 7165.57 (+1303.57) 1196 (-2880) 17125 (+9884) 0.02 (+0.01) 0.00 (+0.00)
GET search_purls_by_license 5 2 126034.40 14824 187601 0.02 0.01
GET search_sboms_by_license 5 5 66053.00 58051 70097 0.02 0.02
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 2 0 2095.50 2066 2125 0.01 0.00
Aggregated 82 (+42) 7 21966.18 (-16435.02) 1 (0) 203254 (-96749) 0.27 (+0.14) 0.02 (+0.01)

Response Time Metrics

Method Name 50%ile (ms) 60%ile (ms) 70%ile (ms) 80%ile (ms) 90%ile (ms) 95%ile (ms) 99%ile (ms) 100%ile (ms)
GET get_advisory_by_doc_id 9 9 9 12 12 12 12 12
GET get_analysis_latest_cpe 150 (-20) 150 (-20) 150 (-20) 150 (-20) 150 (-20) 150 (-20) 150 (-20) 150 (-20)
GET get_analysis_status 32 (+29) 32 (+29) 33 (+29) 33 (+29) 37 (+33) 37 (+33) 37 (+33) 37 (+33)
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 1,243 1,243 1,243 1,243 1,243 1,243 1,243 1,243
GET get_sbom[sha256:720e4451…a939656247164447] 963 963 963 963 963 963 963 963
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 4,343 4,343 4,343 4,343 4,343 4,343 4,343 4,343
GET list_advisory 678 678 678 678 678 678 678 678
GET list_advisory_paginated 390 390 390 390 390 390 390 390
GET list_importer 1 1 1 2 2 2 2 2
GET list_organizations 3 3 3 6 6 6 6 6
GET list_packages 190 190 190 190 190 190 190 190
GET list_packages_paginated 212 212 212 220 220 220 220 220
GET list_products 6 (-3) 6 (-3) 9 (-1) 9 (-1) 9 (-3) 9 (-3) 9 (-3) 9 (-3)
GET list_sboms 591 (-16) 591 (-16) 591 (-16) 591 (-16) 591 (-16) 591 (-16) 591 (-16) 591 (-16)
GET list_sboms_paginated 460 (-80) 460 (-80) 480 (-60) 480 (-60) 495 (-45) 495 (-45) 495 (-45) 495 (-45)
GET list_vulnerabilities 172 172 172 172 172 172 172 172
GET list_vulnerabilities_paginated 100 100 100 100 100 100 100 100
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 260 260 260 267 267 267 267 267
GET search_advisory 1,437 1,437 1,437 1,437 1,437 1,437 1,437 1,437
GET search_exact_purl 6 (-1) 6 (-1) 7 (-1) 7 (-1) 9 (+1) 9 (+1) 9 (+1) 9 (+1)
GET search_licenses 140,000 (-160,001) 140,000 (-160,001) 147,000 (-153,001) 147,000 (-153,001) 203,000 (-97,001) 203,000 (-97,001) 203,000 (-97,001) 203,000 (-97,001)
GET search_purls 4,000 (-2,000) 4,000 (-2,000) 5,000 (-2,000) 17,000 (+10,000) 17,000 (+10,000) 17,000 (+10,000) 17,000 (+10,000) 17,000 (+10,000)
GET search_purls_by_license 181,000 181,000 187,000 187,000 187,601 187,601 187,601 187,601
GET search_sboms_by_license 67,000 67,000 69,000 69,000 70,000 70,000 70,000 70,000
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 2,066 2,066 2,066 2,066 2,066 2,066 2,066 2,066
Aggregated 460 (+290) 700 (+200) 1,000 (+400) 15,000 (+10,000) 70,000 (-230,000) 147,000 (-153,000) 188,000 (-112,000) 203,000 (-97,000)

Status Code Metrics

Method Name Status Codes
GET get_advisory_by_doc_id 2 [200]
GET get_analysis_latest_cpe 5 [200]
GET get_analysis_status 5 [200]
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 2 [200]
GET get_sbom[sha256:720e4451…a939656247164447] 2 [200]
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 2 [200]
GET list_advisory 2 [200]
GET list_advisory_paginated 2 [200]
GET list_importer 2 [200]
GET list_organizations 2 [200]
GET list_packages 2 [200]
GET list_packages_paginated 2 [200]
GET list_products 5 [200]
GET list_sboms 5 [200]
GET list_sboms_paginated 5 [200]
GET list_vulnerabilities 2 [200]
GET list_vulnerabilities_paginated 2 [200]
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 2 [200]
GET search_advisory 2 [200]
GET search_exact_purl 5 [200]
GET search_licenses 5 [200]
GET search_purls 7 [200]
GET search_purls_by_license 3 [200], 2 [500]
GET search_sboms_by_license 5 [500]
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 2 [200]
Aggregated 75 [200], 7 [500]

Transaction Metrics

Transaction # Times Run # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
WebsiteUser
0.0 logon 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.1 website_index 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.2 website_openapi 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.3 website_sboms 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.4 website_packages 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.5 website_advisories 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.6 website_importers 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser
1.0 logon 2 (+2) 0 (0) 15.50 (+15.50) 15 (+15) 16 (+16) 0.01 (+0.01) 0.00 (+0.00)
1.1 list_organizations 2 (+2) 0 (0) 4.50 (+4.50) 3 (+3) 6 (+6) 0.01 (+0.01) 0.00 (+0.00)
1.2 list_advisory 2 (+2) 0 (0) 668.00 (+668.00) 657 (+657) 679 (+679) 0.01 (+0.01) 0.00 (+0.00)
1.3 list_advisory_paginated 2 (+2) 0 (0) 390.00 (+390.00) 386 (+386) 394 (+394) 0.01 (+0.01) 0.00 (+0.00)
1.4 get_advisory_by_doc_id 2 (+2) 0 (0) 11.00 (+11.00) 9 (+9) 13 (+13) 0.01 (+0.01) 0.00 (+0.00)
1.5 search_advisory 2 (+2) 0 (0) 1439.00 (+1439.00) 1437 (+1437) 1441 (+1441) 0.01 (+0.01) 0.00 (+0.00)
1.6 list_vulnerabilities 2 (+2) 0 (0) 172.00 (+172.00) 172 (+172) 172 (+172) 0.01 (+0.01) 0.00 (+0.00)
1.7 list_vulnerabilities_paginated 2 (+2) 0 (0) 100.50 (+100.50) 100 (+100) 101 (+101) 0.01 (+0.01) 0.00 (+0.00)
1.8 list_importer 2 (+2) 0 (0) 1.50 (+1.50) 1 (+1) 2 (+2) 0.01 (+0.01) 0.00 (+0.00)
1.9 list_packages 2 (+2) 0 (0) 189.50 (+189.50) 189 (+189) 190 (+190) 0.01 (+0.01) 0.00 (+0.00)
1.10 list_packages_paginated 2 (+2) 0 (0) 217.00 (+217.00) 212 (+212) 222 (+222) 0.01 (+0.01) 0.00 (+0.00)
1.11 search_purls 7 (+2) 0 (0) 7165.57 (+1303.57) 1196 (-2880) 17125 (+9884) 0.02 (+0.01) 0.00 (+0.00)
1.12 search_exact_purl 5 (0) 0 (0) 5.80 (-0.80) 3 (-1) 9 (+1) 0.02 (+0.00) 0.00 (+0.00)
1.13 list_products 5 (0) 0 (0) 6.40 (-3.20) 3 (-5) 9 (-3) 0.02 (+0.00) 0.00 (+0.00)
1.14 list_sboms 5 (0) 0 (0) 582.40 (-28.20) 577 (-30) 591 (-23) 0.02 (+0.00) 0.00 (+0.00)
1.15 list_sboms_paginated 5 (0) 0 (0) 468.80 (-75.20) 452 (-88) 495 (-54) 0.02 (+0.00) 0.00 (+0.00)
1.16 get_analysis_status 5 (0) 0 (0) 21.40 (+18.60) 1 (0) 37 (+33) 0.02 (+0.00) 0.00 (+0.00)
1.17 get_analysis_latest_cpe 5 (0) 0 (0) 149.60 (-22.60) 148 (-23) 151 (-22) 0.02 (+0.00) 0.00 (+0.00)
1.18 search_licenses 5 (0) 0 (0) 152039.80 (-147962.39) 131472 (-168529) 203254 (-96749) 0.02 (+0.00) 0.00 (+0.00)
1.19 search_sboms_by_license 5 (+5) 0 (0) 66053.00 (+66053.00) 58051 (+58051) 70097 (+70097) 0.02 (+0.02) 0.00 (+0.00)
1.20 search_purls_by_license 5 (+5) 0 (0) 126034.40 (+126034.40) 14824 (+14824) 187601 (+187601) 0.02 (+0.02) 0.00 (+0.00)
1.21 get_sbom[sha256:720e4451…a939656247164447] 2 (+2) 0 (0) 960.50 (+960.50) 958 (+958) 963 (+963) 0.01 (+0.01) 0.00 (+0.00)
1.22 sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 2 (+2) 0 (0) 263.00 (+263.00) 259 (+259) 267 (+267) 0.01 (+0.01) 0.00 (+0.00)
1.23 get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 2 (+2) 0 (0) 4366.00 (+4366.00) 4343 (+4343) 4389 (+4389) 0.01 (+0.01) 0.00 (+0.00)
1.24 post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 2 (+2) 0 (0) 2095.50 (+2095.50) 2066 (+2066) 2125 (+2125) 0.01 (+0.01) 0.00 (+0.00)
1.25 get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 2 (+2) 0 (0) 1253.00 (+1253.00) 1243 (+1243) 1263 (+1263) 0.01 (+0.01) 0.00 (+0.00)
Aggregated 84 (+44) 0 (0) 21443.18 (-16958.02) 1 (0) 203254 (-96749) 0.28 (+0.15) 0.00 (+0.00)

Scenario Metrics

Scenario # Users # Times Run Average (ms) Min (ms) Max (ms) Scenarios/s Iterations
WebsiteUser 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser 2 (+2) 2 (+2) 288700.50 (+288700.50) 288190 (+288190) 289211 (+289211) 0.01 (+0.01) 1.00 (+1.00)
Aggregated 2 (+2) 2 (+2) 288700.50 (+NaN) 288190 (+288190) 289211 (+289211) 0.01 (+0.01) 1.00 (+1.00)

User Metrics

Errors

# Error
2 500 Internal Server Error: search_purls_by_license
5 500 Internal Server Error: search_sboms_by_license