Goose Attack Report

Users: 7

Target Host: http://trustify:8080/

goose v0.18.0

Plan overview

Action Started Stopped Elapsed Users
Increasing25-12-05 02:17:3325-12-05 02:17:4000:00:070 → 7
Maintaining25-12-05 02:17:4025-12-05 02:22:4000:05:007
Decreasing25-12-05 02:22:4025-12-05 02:23:1600:00:360 ← 7

Request Metrics

Method Name # Requests # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
DELETE delete_sbom_from_pool_sequential[100 SBOMs] 38 (0) 0 920.63 (-122.82) 112 (+43) 2004 (-1210) 0.13 (+0.00) 0.00 (+0.00)
GET download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 10 12.40 (-21.40) 3 (0) 76 (-26) 0.03 (+0.00) 0.03 (+0.00)
GET get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 10 23.70 (+17.40) 2 (+1) 78 (+59) 0.03 (+0.00) 0.03 (+0.00)
GET get_advisory_by_doc_id 10 (0) 0 16.90 (-9.90) 5 (+1) 65 (-6) 0.03 (+0.00) 0.00 (+0.00)
GET get_analysis_latest_cpe 15 (0) 0 271.53 (-20.60) 117 (+9) 525 (+23) 0.05 (+0.00) 0.00 (+0.00)
GET get_analysis_status 15 (0) 0 23.07 (+13.27) 2 (-1) 180 (+111) 0.05 (+0.00) 0.00 (+0.00)
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 10 (0) 0 604.60 (-133.80) 136 (+26) 1288 (-137) 0.03 (+0.00) 0.00 (+0.00)
GET get_sbom[sha256:720e4451…a939656247164447] 15 (0) 0 1650.33 (+248.07) 416 (-69) 3898 (+892) 0.05 (+0.00) 0.00 (+0.00)
GET get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 15 (0) 0 60081.87 (-737.33) 47886 (-8244) 66568 (+339) 0.05 (+0.00) 0.00 (+0.00)
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 10 (-5) 0 7350.60 (-289.07) 2657 (-188) 13595 (+1385) 0.03 (-0.02) 0.00 (+0.00)
GET list_advisory 10 (0) 0 750.10 (-165.10) 231 (+66) 1111 (-542) 0.03 (+0.00) 0.00 (+0.00)
GET list_advisory_labels 15 (0) 0 11624.47 (-3451.87) 6585 (-3731) 18087 (-3132) 0.05 (+0.00) 0.00 (+0.00)
GET list_advisory_paginated 10 (0) 0 483.50 (+46.20) 227 (+96) 593 (-48) 0.03 (+0.00) 0.00 (+0.00)
GET list_importer 11 (0) 0 4.00 (-4.09) 2 (+1) 7 (-46) 0.04 (+0.00) 0.00 (+0.00)
GET list_organizations 10 (0) 0 5.20 (-11.00) 2 (0) 11 (-36) 0.03 (+0.00) 0.00 (+0.00)
GET list_packages 11 (0) 0 428.64 (-22.09) 194 (+9) 589 (-309) 0.04 (+0.00) 0.00 (+0.00)
GET list_packages_paginated 11 (0) 0 331.73 (+2.45) 123 (-15) 514 (+109) 0.04 (+0.00) 0.00 (+0.00)
GET list_products 15 (0) 0 16.67 (-1.80) 4 (+1) 111 (-47) 0.05 (+0.00) 0.00 (+0.00)
GET list_sboms 15 (0) 0 1755.80 (+482.47) 599 (+45) 3522 (+800) 0.05 (+0.00) 0.00 (+0.00)
GET list_sboms_paginated 15 (0) 0 2884.47 (-752.47) 423 (-475) 8566 (+156) 0.05 (+0.00) 0.00 (+0.00)
GET list_vulnerabilities 11 (0) 0 318.09 (-28.64) 112 (+29) 432 (-188) 0.04 (+0.00) 0.00 (+0.00)
GET list_vulnerabilities_paginated 11 (0) 0 195.27 (+2.64) 129 (+79) 254 (-62) 0.04 (+0.00) 0.00 (+0.00)
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 10 (-5) 0 42.00 (-25.87) 9 (+3) 93 (-168) 0.03 (-0.02) 0.00 (+0.00)
GET search_advisory 11 (0) 0 833.00 (-519.73) 319 (+145) 1095 (-3099) 0.04 (+0.00) 0.00 (+0.00)
GET search_exact_purl 15 (0) 0 45.33 (+15.53) 7 (+4) 169 (+24) 0.05 (+0.00) 0.00 (+0.00)
GET search_licenses 1 (0) 0 103452.00 (-22100.00) 103452 (-22100) 103452 (-22100) 0.00 (+0.00) 0.00 (+0.00)
GET search_purls 15 (0) 0 22923.07 (+13586.07) 14146 (+10048) 30385 (+13483) 0.05 (+0.00) 0.00 (+0.00)
GET search_purls_by_license 1 (0) 0 170012.00 (+25245.00) 170012 (+25245) 170012 (+25245) 0.00 (+0.00) 0.00 (+0.00)
GET search_sboms_by_license 1 (0) 0 64207.00 (-16916.00) 64207 (-16916) 64207 (-16916) 0.00 (+0.00) 0.00 (+0.00)
POST get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 10 (0) 0 82.50 (+39.30) 30 (+24) 122 (-13) 0.03 (+0.00) 0.00 (+0.00)
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 10 (0) 0 402.40 (-109.50) 162 (+40) 994 (-4) 0.03 (+0.00) 0.00 (+0.00)
Aggregated 367 (-10) 20 5484.36 (+333.41) 2 (+1) 170012 (+25245) 1.22 (-0.03) 0.07 (+0.00)

Response Time Metrics

Method Name 50%ile (ms) 60%ile (ms) 70%ile (ms) 80%ile (ms) 90%ile (ms) 95%ile (ms) 99%ile (ms) 100%ile (ms)
DELETE delete_sbom_from_pool_sequential[100 SBOMs] 800 (0) 900 (-100) 1,000 (0) 1,000 (-1,000) 2,000 (0) 2,000 (0) 2,000 (-1,000) 2,000 (-1,000)
GET download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 5 (-1) 5 (-5) 6 (-44) 7 (-48) 9 (-91) 76 (-24) 76 (-24) 76 (-24)
GET get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 5 (0) 8 (+3) 9 (+3) 53 (+44) 72 (+62) 78 (+59) 78 (+59) 78 (+59)
GET get_advisory_by_doc_id 11 (+4) 12 (-2) 14 (-4) 14 (-54) 22 (-49) 65 (-6) 65 (-6) 65 (-6)
GET get_analysis_latest_cpe 190 (-120) 300 (-10) 330 (-60) 350 (-40) 500 (+20) 500 (+20) 500 (0) 500 (0)
GET get_analysis_status 5 (-1) 6 (0) 7 (+1) 9 (+1) 56 (+47) 56 (+47) 180 (+111) 180 (+111)
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 480 (-20) 600 (-200) 700 (-200) 1,000 (+100) 1,000 (0) 1,000 (0) 1,000 (0) 1,000 (0)
GET get_sbom[sha256:720e4451…a939656247164447] 1,000 (0) 1,000 (0) 3,000 (+1,000) 3,000 (0) 3,898 (+898) 3,898 (+898) 3,898 (+898) 3,898 (+898)
GET get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 62,000 (+1,000) 62,000 (+1,000) 63,000 (0) 63,000 (-1,000) 66,000 (+2,000) 66,000 (+2,000) 66,568 (+568) 66,568 (+568)
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 7,000 (-1,000) 7,000 (-1,000) 8,000 (0) 9,000 (+1,000) 9,000 (-2,000) 13,595 (+2,595) 13,595 (+1,595) 13,595 (+1,595)
GET list_advisory 800 (+100) 800 (-200) 1,000 (0) 1,000 (0) 1,000 (-653) 1,000 (-653) 1,000 (-653) 1,000 (-653)
GET list_advisory_labels 12,000 (-2,000) 12,000 (-2,000) 12,000 (-6,000) 12,000 (-6,000) 17,000 (-2,000) 17,000 (-2,000) 18,000 (-3,000) 18,000 (-3,000)
GET list_advisory_paginated 500 (+10) 593 (+93) 593 (+93) 593 (-7) 593 (-7) 593 (-7) 593 (-7) 593 (-7)
GET list_importer 4 (+1) 4 (0) 5 (+1) 5 (-2) 6 (-4) 6 (-4) 7 (-46) 7 (-46)
GET list_organizations 3 (-1) 3 (-2) 7 (-11) 8 (-27) 9 (-34) 11 (-36) 11 (-36) 11 (-36)
GET list_packages 470 (+60) 490 (+10) 500 (0) 500 (0) 589 (-211) 589 (-211) 589 (-309) 589 (-309)
GET list_packages_paginated 330 (-40) 390 (+20) 390 (+10) 440 (+50) 500 (+100) 500 (+100) 500 (+95) 500 (+95)
GET list_products 11 (+2) 12 (+3) 13 (+1) 13 (0) 16 (0) 16 (0) 110 (-48) 110 (-48)
GET list_sboms 2,000 (+1,000) 2,000 (+1,000) 3,000 (+2,000) 3,000 (+2,000) 3,000 (+278) 3,000 (+278) 3,522 (+800) 3,522 (+800)
GET list_sboms_paginated 3,000 (0) 3,000 (0) 4,000 (-2,000) 4,000 (-2,000) 6,000 (-2,000) 6,000 (-2,000) 8,566 (+566) 8,566 (+566)
GET list_vulnerabilities 340 (+50) 350 (+40) 350 (-250) 370 (-230) 390 (-210) 390 (-210) 430 (-170) 430 (-170)
GET list_vulnerabilities_paginated 180 (-10) 210 (+10) 230 (+20) 250 (-30) 250 (-40) 250 (-40) 250 (-66) 250 (-66)
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 20 (-26) 57 (+9) 65 (-2) 66 (-64) 72 (-78) 93 (-57) 93 (-167) 93 (-167)
GET search_advisory 1,000 (+100) 1,000 (0) 1,000 (0) 1,000 (-1,000) 1,000 (-3,000) 1,000 (-3,000) 1,000 (-3,000) 1,000 (-3,000)
GET search_exact_purl 25 (+15) 52 (+40) 52 (+1) 53 (-3) 110 (+52) 110 (+52) 169 (+24) 169 (+24)
GET search_licenses 103,452 (-22,100) 103,452 (-22,100) 103,452 (-22,100) 103,452 (-22,100) 103,452 (-22,100) 103,452 (-22,100) 103,452 (-22,100) 103,452 (-22,100)
GET search_purls 23,000 (+13,000) 26,000 (+16,000) 27,000 (+16,000) 27,000 (+15,000) 29,000 (+17,000) 29,000 (+17,000) 30,000 (+13,098) 30,000 (+13,098)
GET search_purls_by_license 170,012 (+25,245) 170,012 (+25,245) 170,012 (+25,245) 170,012 (+25,245) 170,012 (+25,245) 170,012 (+25,245) 170,012 (+25,245) 170,012 (+25,245)
GET search_sboms_by_license 64,207 (-16,916) 64,207 (-16,916) 64,207 (-16,916) 64,207 (-16,916) 64,207 (-16,916) 64,207 (-16,916) 64,207 (-16,916) 64,207 (-16,916)
POST get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 91 (+77) 96 (+76) 97 (+34) 100 (+23) 120 (+30) 120 (-15) 120 (-15) 120 (-15)
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 290 (-210) 290 (-310) 390 (-210) 500 (-200) 600 (-100) 994 (-4) 994 (-4) 994 (-4)
Aggregated 390 (-50) 600 (0) 1,000 (0) 3,000 (0) 12,000 (+1,000) 30,000 (+11,000) 65,000 (+1,000) 170,000 (+25,233)

Status Code Metrics

Method Name Status Codes
DELETE delete_sbom_from_pool_sequential[100 SBOMs] 38 [200]
GET download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 [404]
GET get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 [404]
GET get_advisory_by_doc_id 10 [200]
GET get_analysis_latest_cpe 15 [200]
GET get_analysis_status 15 [200]
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 10 [200]
GET get_sbom[sha256:720e4451…a939656247164447] 15 [200]
GET get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 15 [200]
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 10 [200]
GET list_advisory 10 [200]
GET list_advisory_labels 15 [200]
GET list_advisory_paginated 10 [200]
GET list_importer 11 [200]
GET list_organizations 10 [200]
GET list_packages 11 [200]
GET list_packages_paginated 11 [200]
GET list_products 15 [200]
GET list_sboms 15 [200]
GET list_sboms_paginated 15 [200]
GET list_vulnerabilities 11 [200]
GET list_vulnerabilities_paginated 11 [200]
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 10 [200]
GET search_advisory 11 [200]
GET search_exact_purl 15 [200]
GET search_licenses 1 [200]
GET search_purls 15 [200]
GET search_purls_by_license 1 [200]
GET search_sboms_by_license 1 [200]
POST get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 10 [200]
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 10 [200]
Aggregated 347 [200], 20 [404]

Transaction Metrics

Transaction # Times Run # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
WebsiteUser
0.0 logon 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.1 website_index 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.2 website_openapi 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.3 website_sboms 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.4 website_packages 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.5 website_advisories 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.6 website_importers 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser
1.0 logon 10 (0) 0 (0) 12.30 (-1.00) 8 (-2) 15 (-4) 0.03 (+0.00) 0.00 (+0.00)
1.1 list_organizations 10 (0) 0 (0) 5.20 (-11.40) 2 (0) 11 (-37) 0.03 (+0.00) 0.00 (+0.00)
1.2 list_advisory 10 (0) 0 (0) 750.10 (-165.40) 231 (+66) 1111 (-542) 0.03 (+0.00) 0.00 (+0.00)
1.3 list_advisory_paginated 10 (0) 0 (0) 483.70 (+46.30) 227 (+96) 593 (-48) 0.03 (+0.00) 0.00 (+0.00)
1.4 get_advisory_by_doc_id 10 (0) 0 (0) 17.00 (-9.80) 5 (+1) 65 (-6) 0.03 (+0.00) 0.00 (+0.00)
1.5 search_advisory 11 (0) 0 (0) 833.09 (-519.73) 319 (+144) 1095 (-3099) 0.04 (+0.00) 0.00 (+0.00)
1.6 list_vulnerabilities 11 (0) 0 (0) 318.09 (-28.91) 112 (+29) 432 (-188) 0.04 (+0.00) 0.00 (+0.00)
1.7 list_vulnerabilities_paginated 11 (0) 0 (0) 195.27 (+2.55) 129 (+79) 254 (-62) 0.04 (+0.00) 0.00 (+0.00)
1.8 list_importer 11 (0) 0 (0) 4.00 (-4.09) 2 (+1) 7 (-46) 0.04 (+0.00) 0.00 (+0.00)
1.9 list_packages 11 (0) 0 (0) 428.64 (-22.09) 194 (+9) 589 (-309) 0.04 (+0.00) 0.00 (+0.00)
1.10 list_packages_paginated 11 (0) 0 (0) 331.73 (+2.45) 123 (-15) 514 (+109) 0.04 (+0.00) 0.00 (+0.00)
1.11 search_purls 15 (0) 0 (0) 22923.07 (+13585.93) 14146 (+10048) 30385 (+13483) 0.05 (+0.00) 0.00 (+0.00)
1.12 search_exact_purl 15 (0) 0 (0) 45.33 (+15.53) 7 (+4) 169 (+24) 0.05 (+0.00) 0.00 (+0.00)
1.13 list_products 15 (0) 0 (0) 16.73 (-1.87) 4 (+1) 111 (-47) 0.05 (+0.00) 0.00 (+0.00)
1.14 list_sboms 15 (0) 0 (0) 1755.87 (+482.40) 599 (+45) 3522 (+800) 0.05 (+0.00) 0.00 (+0.00)
1.15 list_sboms_paginated 15 (0) 0 (0) 2884.53 (-752.47) 423 (-475) 8566 (+156) 0.05 (+0.00) 0.00 (+0.00)
1.16 get_analysis_status 15 (0) 0 (0) 23.13 (+13.27) 2 (-1) 180 (+111) 0.05 (+0.00) 0.00 (+0.00)
1.17 get_analysis_latest_cpe 15 (0) 0 (0) 271.53 (-20.67) 117 (+9) 525 (+23) 0.05 (+0.00) 0.00 (+0.00)
1.18 list_advisory_labels 15 (0) 0 (0) 11624.47 (-3451.87) 6585 (-3731) 18087 (-3132) 0.05 (+0.00) 0.00 (+0.00)
1.19 get_sbom[sha256:720e4451…a939656247164447] 15 (0) 0 (0) 1650.40 (+247.93) 416 (-70) 3898 (+892) 0.05 (+0.00) 0.00 (+0.00)
1.20 get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 15 (0) 0 (0) 60081.87 (-737.53) 47886 (-8244) 66568 (+339) 0.05 (+0.00) 0.00 (+0.00)
1.21 sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 10 (-5) 0 (0) 42.10 (-25.77) 9 (+3) 93 (-168) 0.03 (-0.02) 0.00 (+0.00)
1.22 get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 10 (-5) 0 (0) 7350.70 (-289.03) 2657 (-188) 13595 (+1385) 0.03 (-0.02) 0.00 (+0.00)
1.23 post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 10 (0) 0 (0) 402.40 (-109.50) 162 (+40) 994 (-4) 0.03 (+0.00) 0.00 (+0.00)
1.24 get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 10 (0) 0 (0) 604.70 (-133.70) 136 (+26) 1288 (-137) 0.03 (+0.00) 0.00 (+0.00)
1.25 get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 10 (0) 0 (0) 82.70 (+39.30) 30 (+23) 123 (-12) 0.03 (+0.00) 0.00 (+0.00)
1.26 download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 0 (0) 12.40 (-21.50) 3 (0) 76 (-26) 0.03 (+0.00) 0.00 (+0.00)
1.27 get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 0 (0) 23.90 (+17.60) 2 (+1) 79 (+60) 0.03 (+0.00) 0.00 (+0.00)
RestAPIUserSlow
2.0 logon 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
2.1 search_licenses 1 (0) 0 (0) 103452.00 (-22100.00) 103452 (-22100) 103452 (-22100) 0.00 (+0.00) 0.00 (+0.00)
2.2 search_sboms_by_license 1 (0) 0 (0) 64207.00 (-16916.00) 64207 (-16916) 64207 (-16916) 0.00 (+0.00) 0.00 (+0.00)
2.3 search_purls_by_license 1 (0) 0 (0) 170012.00 (+25245.00) 170012 (+25245) 170012 (+25245) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUserDelete
3.0 logon 38 (+1) 0 (0) 10.03 (-0.57) 6 (0) 20 (+1) 0.13 (+0.00) 0.00 (+0.00)
3.1 delete_sbom_from_pool_sequential[100 SBOMs] 38 (0) 0 (0) 920.82 (-122.82) 112 (+43) 2004 (-1210) 0.13 (+0.00) 0.00 (+0.00)
Aggregated 415 (-9) 0 (0) 4850.03 (+270.05) 2 (+1) 170012 (+25245) 1.38 (-0.03) 0.00 (+0.00)

Scenario Metrics

Scenario # Users # Times Run Average (ms) Min (ms) Max (ms) Scenarios/s Iterations
WebsiteUser 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser 5 (0) 10 (0) 111454.90 (+11159.10) 102562 (+10911) 118733 (+9273) 0.03 (+0.00) 2.00 (+0.00)
RestAPIUserSlow 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUserDelete 1 (0) 38 (+1) 7950.24 (-84.63) 6628 (-72) 9336 (-897) 0.13 (+0.00) 38.00 (+1.00)
Aggregated 6 (0) 48 (+1) 29513.71 (+1848.86) 6628 (-72) 118733 (+9273) 0.16 (+0.00) 40.00 (+1.00)

User Metrics

Errors

# Error
10 (0) 404 Not Found: download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89]
10 (0) 404 Not Found: get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89]