Goose Attack Report

Users: 6

Target Host: http://trustify:8080/

goose v0.18.0

Plan overview

Action	Started	Stopped	Elapsed	Users
Increasing	25-10-28 02:17:21	25-10-28 02:17:27	00:00:06	0 → 6
Maintaining	25-10-28 02:17:27	25-10-28 02:22:27	00:05:00	6
Decreasing	25-10-28 02:22:27	25-10-28 02:22:40	00:00:13	0 ← 6

Request Metrics

Method	Name	# Requests	Average (ms)	Min (ms)	Max (ms)	RPS	Failures/s
GET	get_advisory_by_doc_id	60 (+15)	13.32 (+2.18)	3 (0)	63 (+5)	0.20 (+0.05)	0.00 (+0.00)
GET	get_analysis_latest_cpe	62 (+17)	214.19 (+47.13)	36 (+3)	473 (+84)	0.21 (+0.06)	0.00 (+0.00)
GET	get_analysis_status	62 (+17)	9.08 (+0.97)	1 (0)	54 (+4)	0.21 (+0.06)	0.00 (+0.00)
GET	get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd]	60 (+15)	855.12 (+85.38)	276 (+138)	3007 (+1535)	0.20 (+0.05)	0.00 (+0.00)
GET	get_sbom[sha256:720e4451…a939656247164447]	62 (+17)	1175.42 (+273.02)	198 (-15)	5297 (+1180)	0.21 (+0.06)	0.00 (+0.00)
GET	get_sbom_license_ids[urn:uuid:019731…104-331632a21144]	62 (+17)	7682.40 (-863.73)	3712 (+1094)	12283 (-1448)	0.21 (+0.06)	0.00 (+0.00)
GET	list_advisory	60 (+15)	565.92 (+60.36)	144 (+9)	1089 (+155)	0.20 (+0.05)	0.00 (+0.00)
GET	list_advisory_paginated	60 (+15)	503.05 (+61.67)	169 (+49)	1268 (+337)	0.20 (+0.05)	0.00 (+0.00)
GET	list_importer	60 (+14)	3.63 (-0.50)	1 (0)	48 (0)	0.20 (+0.05)	0.00 (+0.00)
GET	list_organizations	60 (+15)	14.52 (+2.41)	1 (0)	55 (-2)	0.20 (+0.05)	0.00 (+0.00)
GET	list_packages	60 (+14)	430.40 (+18.66)	124 (+6)	894 (+112)	0.20 (+0.05)	0.00 (+0.00)
GET	list_packages_paginated	60 (+14)	388.40 (+56.36)	122 (-6)	1118 (+519)	0.20 (+0.05)	0.00 (+0.00)
GET	list_products	63 (+18)	16.65 (+6.21)	2 (0)	67 (0)	0.21 (+0.06)	0.00 (+0.00)
GET	list_sboms	63 (+18)	1318.67 (+260.69)	742 (+85)	2464 (+810)	0.21 (+0.06)	0.00 (+0.00)
GET	list_sboms_paginated	63 (+18)	2209.25 (+583.19)	657 (+311)	5607 (+412)	0.21 (+0.06)	0.00 (+0.00)
GET	list_vulnerabilities	60 (+14)	397.07 (+22.41)	71 (+10)	855 (+29)	0.20 (+0.05)	0.00 (+0.00)
GET	list_vulnerabilities_paginated	60 (+14)	229.63 (+40.74)	46 (+14)	384 (+89)	0.20 (+0.05)	0.00 (+0.00)
GET	sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f]	62 (+17)	68.35 (-4.93)	15 (0)	197 (-60)	0.21 (+0.06)	0.00 (+0.00)
GET	search_advisory	61 (+16)	1053.80 (+45.51)	142 (-54)	3201 (+199)	0.20 (+0.05)	0.00 (+0.00)
GET	search_exact_purl	63 (+18)	10.81 (-4.46)	2 (0)	63 (-2)	0.21 (+0.06)	0.00 (+0.00)
GET	search_licenses	1 (-1)	77644.00 (+11222.00)	77644 (+12069)	77644 (+10375)	0.00 (-0.00)	0.00 (+0.00)
GET	search_purls	64 (+14)	6351.33 (-8765.29)	978 (-4042)	15666 (-8953)	0.21 (+0.05)	0.00 (+0.00)
GET	search_purls_by_license	1 (0)	182355.00 (+55626.00)	182355 (+55626)	182355 (+55626)	0.00 (+0.00)	0.00 (+0.00)
GET	search_sboms_by_license	1 (-1)	54940.00 (+24462.50)	54940 (+32680)	54940 (+16245)	0.00 (-0.00)	0.00 (+0.00)
POST	post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1]	60 (+15)	856.97 (+42.86)	168 (+36)	1590 (+5)	0.20 (+0.05)	0.00 (+0.00)
	Aggregated	1350 (+345)	1357.36 (-488.70)	1 (0)	182355 (+55626)	4.50 (+1.15)	0.00 (+0.00)

Response Time Metrics

Method	Name	50%ile (ms)	60%ile (ms)	70%ile (ms)	80%ile (ms)	90%ile (ms)	95%ile (ms)	99%ile (ms)	100%ile (ms)
GET	get_advisory_by_doc_id	6 (-1)	7 (-1)	9 (0)	13 (+3)	52 (+40)	54 (0)	62 (+4)	63 (+5)
GET	get_analysis_latest_cpe	200 (+30)	210 (+30)	240 (+50)	300 (+90)	380 (+90)	400 (+70)	450 (+61)	470 (+81)
GET	get_analysis_status	2 (-1)	3 (-1)	4 (0)	8 (+3)	41 (-4)	52 (+3)	54 (+4)	54 (+4)
GET	get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd]	700 (0)	800 (-100)	900 (-100)	1,000 (0)	1,000 (0)	2,000 (+1,000)	3,000 (+2,000)	3,000 (+2,000)
GET	get_sbom[sha256:720e4451…a939656247164447]	700 (0)	800 (0)	1,000 (+100)	2,000 (+1,100)	3,000 (+1,000)	3,000 (+1,000)	4,000 (0)	5,000 (+1,000)
GET	get_sbom_license_ids[urn:uuid:019731…104-331632a21144]	8,000 (0)	8,000 (0)	8,000 (-3,000)	10,000 (-1,000)	12,000 (0)	12,000 (0)	12,000 (-1,731)	12,000 (-1,731)
GET	list_advisory	600 (+100)	600 (0)	600 (0)	700 (+100)	800 (+100)	800 (0)	1,000 (+100)	1,000 (+100)
GET	list_advisory_paginated	500 (+20)	500 (+10)	600 (+100)	600 (+100)	700 (+100)	700 (+100)	800 (-100)	1,000 (+100)
GET	list_importer	2 (0)	3 (0)	3 (-1)	4 (-1)	6 (0)	7 (0)	9 (-39)	48 (0)
GET	list_organizations	5 (+1)	6 (+1)	7 (+1)	40 (+13)	44 (+2)	45 (0)	49 (-8)	55 (-2)
GET	list_packages	420 (-70)	470 (-30)	490 (-10)	500 (-100)	600 (0)	700 (0)	800 (+18)	894 (+112)
GET	list_packages_paginated	380 (+60)	400 (+10)	420 (+20)	470 (+10)	600 (+110)	600 (+100)	700 (+101)	1,000 (+401)
GET	list_products	7 (-1)	9 (+1)	16 (+6)	25 (+13)	51 (+37)	52 (+36)	65 (-2)	67 (0)
GET	list_sboms	1,000 (0)	1,000 (0)	1,000 (0)	2,000 (+1,000)	2,000 (+1,000)	2,000 (+1,000)	2,000 (+346)	2,000 (+346)
GET	list_sboms_paginated	2,000 (+1,000)	2,000 (0)	3,000 (+1,000)	3,000 (+1,000)	4,000 (+1,000)	4,000 (0)	5,000 (0)	5,607 (+607)
GET	list_vulnerabilities	310 (-40)	400 (-20)	460 (-40)	600 (+100)	700 (0)	800 (0)	855 (+55)	855 (+55)
GET	list_vulnerabilities_paginated	240 (+40)	270 (+50)	290 (+30)	300 (+30)	360 (+90)	370 (+80)	380 (+85)	380 (+85)
GET	sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f]	57 (-13)	73 (-3)	83 (-1)	94 (+5)	170 (+30)	190 (0)	197 (-60)	197 (-60)
GET	search_advisory	900 (+100)	1,000 (+200)	1,000 (+100)	1,000 (0)	2,000 (0)	2,000 (-1,000)	3,000 (0)	3,000 (0)
GET	search_exact_purl	5 (-2)	6 (-2)	7 (-3)	8 (-3)	41 (-12)	56 (+3)	61 (-4)	63 (-2)
GET	search_licenses	77,644 (+11,644)	77,644 (+11,644)	77,644 (+11,644)	77,644 (+10,644)	77,644 (+10,644)	77,644 (+10,644)	77,644 (+10,644)	77,644 (+10,644)
GET	search_purls	7,000 (-7,000)	8,000 (-8,000)	9,000 (-8,000)	9,000 (-10,000)	10,000 (-10,000)	11,000 (-11,000)	11,000 (-13,619)	15,666 (-8,953)
GET	search_purls_by_license	182,355 (+55,626)	182,355 (+55,626)	182,355 (+55,626)	182,355 (+55,626)	182,355 (+55,626)	182,355 (+55,626)	182,355 (+55,626)	182,355 (+55,626)
GET	search_sboms_by_license	54,940 (+32,680)	54,940 (+32,680)	54,940 (+32,680)	54,940 (+16,245)	54,940 (+16,245)	54,940 (+16,245)	54,940 (+16,245)	54,940 (+16,245)
POST	post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1]	800 (0)	900 (+100)	1,000 (0)	1,000 (0)	1,000 (0)	1,000 (0)	1,000 (-585)	1,590 (+5)
	Aggregated	390 (+70)	500 (0)	700 (0)	1,000 (0)	3,000 (-1,000)	7,000 (-5,000)	11,000 (-9,000)	182,000 (+55,271)

Status Code Metrics

Method	Name	Status Codes
GET	get_advisory_by_doc_id	60 [200]
GET	get_analysis_latest_cpe	62 [200]
GET	get_analysis_status	62 [200]
GET	get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd]	60 [200]
GET	get_sbom[sha256:720e4451…a939656247164447]	62 [200]
GET	get_sbom_license_ids[urn:uuid:019731…104-331632a21144]	62 [200]
GET	list_advisory	60 [200]
GET	list_advisory_paginated	60 [200]
GET	list_importer	60 [200]
GET	list_organizations	60 [200]
GET	list_packages	60 [200]
GET	list_packages_paginated	60 [200]
GET	list_products	63 [200]
GET	list_sboms	63 [200]
GET	list_sboms_paginated	63 [200]
GET	list_vulnerabilities	60 [200]
GET	list_vulnerabilities_paginated	60 [200]
GET	sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f]	62 [200]
GET	search_advisory	61 [200]
GET	search_exact_purl	63 [200]
GET	search_licenses	1 [200]
GET	search_purls	64 [200]
GET	search_purls_by_license	1 [200]
GET	search_sboms_by_license	1 [200]
POST	post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1]	60 [200]
	Aggregated	1,350 [200]

Transaction Metrics

Transaction	# Times Run	# Fails	Average (ms)	Min (ms)	Max (ms)	RPS	Failures/s
WebsiteUser
0.0 logon	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
0.1 website_index	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
0.2 website_openapi	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
0.3 website_sboms	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
0.4 website_packages	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
0.5 website_advisories	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
0.6 website_importers	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
RestAPIUser
1.0 logon	60 (+15)	0 (0)	16.48 (+1.37)	8 (+2)	35 (+5)	0.20 (+0.05)	0.00 (+0.00)
1.1 list_organizations	60 (+15)	0 (0)	14.70 (+2.37)	1 (0)	55 (-2)	0.20 (+0.05)	0.00 (+0.00)
1.2 list_advisory	60 (+15)	0 (0)	565.92 (+60.25)	144 (+9)	1089 (+155)	0.20 (+0.05)	0.00 (+0.00)
1.3 list_advisory_paginated	60 (+15)	0 (0)	503.08 (+61.66)	169 (+49)	1268 (+337)	0.20 (+0.05)	0.00 (+0.00)
1.4 get_advisory_by_doc_id	60 (+15)	0 (0)	13.40 (+2.20)	3 (0)	63 (+5)	0.20 (+0.05)	0.00 (+0.00)
1.5 search_advisory	61 (+16)	0 (0)	1053.90 (+45.59)	143 (-53)	3201 (+199)	0.20 (+0.05)	0.00 (+0.00)
1.6 list_vulnerabilities	60 (+14)	0 (0)	397.15 (+22.43)	71 (+10)	855 (+29)	0.20 (+0.05)	0.00 (+0.00)
1.7 list_vulnerabilities_paginated	60 (+14)	0 (0)	229.63 (+40.70)	46 (+14)	384 (+88)	0.20 (+0.05)	0.00 (+0.00)
1.8 list_importer	60 (+14)	0 (0)	3.63 (-0.54)	1 (0)	48 (0)	0.20 (+0.05)	0.00 (+0.00)
1.9 list_packages	60 (+14)	0 (0)	430.48 (+18.64)	124 (+6)	894 (+112)	0.20 (+0.05)	0.00 (+0.00)
1.10 list_packages_paginated	60 (+14)	0 (0)	388.52 (+56.43)	122 (-6)	1118 (+519)	0.20 (+0.05)	0.00 (+0.00)
1.11 search_purls	64 (+14)	0 (0)	6351.41 (-8765.23)	979 (-4041)	15666 (-8953)	0.21 (+0.05)	0.00 (+0.00)
1.12 search_exact_purl	63 (+18)	0 (0)	10.81 (-4.46)	2 (0)	63 (-2)	0.21 (+0.06)	0.00 (+0.00)
1.13 list_products	63 (+18)	0 (0)	16.68 (+6.19)	2 (0)	67 (0)	0.21 (+0.06)	0.00 (+0.00)
1.14 list_sboms	63 (+18)	0 (0)	1318.76 (+260.76)	742 (+85)	2464 (+810)	0.21 (+0.06)	0.00 (+0.00)
1.15 list_sboms_paginated	63 (+18)	0 (0)	2209.33 (+583.24)	657 (+311)	5608 (+413)	0.21 (+0.06)	0.00 (+0.00)
1.16 get_analysis_status	62 (+17)	0 (0)	9.11 (+0.98)	1 (0)	54 (+4)	0.21 (+0.06)	0.00 (+0.00)
1.17 get_analysis_latest_cpe	62 (+17)	0 (0)	214.27 (+47.19)	36 (+3)	473 (+84)	0.21 (+0.06)	0.00 (+0.00)
1.18 get_sbom[sha256:720e4451…a939656247164447]	62 (+17)	0 (0)	1175.45 (+272.94)	198 (-15)	5297 (+1180)	0.21 (+0.06)	0.00 (+0.00)
1.19 sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f]	62 (+17)	0 (0)	68.39 (-5.04)	15 (0)	197 (-60)	0.21 (+0.06)	0.00 (+0.00)
1.20 get_sbom_license_ids[urn:uuid:019731…104-331632a21144]	62 (+17)	0 (0)	7682.50 (-863.68)	3712 (+1094)	12283 (-1448)	0.21 (+0.06)	0.00 (+0.00)
1.21 post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1]	60 (+15)	0 (0)	857.03 (+42.92)	168 (+36)	1590 (+5)	0.20 (+0.05)	0.00 (+0.00)
1.22 get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd]	60 (+15)	0 (0)	855.20 (+85.42)	276 (+137)	3007 (+1535)	0.20 (+0.05)	0.00 (+0.00)
RestAPIUserSlow
2.0 logon	0 (-1)	0 (0)	0.00 (-11.00)	0 (-11)	0 (-11)	0.00 (-0.00)	0.00 (+0.00)
2.1 search_licenses	1 (-1)	0 (0)	77644.00 (+11221.50)	77644 (+12069)	77644 (+10374)	0.00 (-0.00)	0.00 (+0.00)
2.2 search_sboms_by_license	1 (-1)	0 (0)	54940.00 (+24462.50)	54940 (+32680)	54940 (+16245)	0.00 (-0.00)	0.00 (+0.00)
2.3 search_purls_by_license	1 (0)	0 (0)	182355.00 (+55626.00)	182355 (+55626)	182355 (+55626)	0.00 (+0.00)	0.00 (+0.00)
Aggregated	1,410 (+359)	0 (0)	1299.60 (-465.66)	1 (0)	182355 (+55626)	4.70 (+1.20)	0.00 (+0.00)

Scenario Metrics

Scenario	# Users	# Times Run	Average (ms)	Min (ms)	Max (ms)	Scenarios/s	Iterations
WebsiteUser	0 (0)	0 (0)	0.00 (+0.00)	0 (0)	0 (0)	0.00 (+0.00)	0.00 (+0.00)
RestAPIUser	5 (0)	60 (+15)	24492.12 (-8015.42)	15310 (-3806)	32862 (-7913)	0.20 (+0.05)	12.00 (+3.00)
RestAPIUserSlow	0 (-1)	0 (-1)	0.00 (-231010.00)	0 (-231010)	0 (-231010)	0.00 (-0.00)	0.00 (-1.00)
Aggregated	5 (-1)	60 (+14)	24492.12 (-12330.69)	15310 (-3806)	32862 (-198148)	0.20 (+0.05)	12.00 (+2.00)

Goose Attack Report

Plan overview

Request Metrics

Response Time Metrics

Status Code Metrics

Transaction Metrics

Scenario Metrics

User Metrics