Goose Attack Report

Users: 7

Target Host: http://trustify:8080/

goose v0.18.0

Plan overview

Action Started Stopped Elapsed Users
Increasing25-12-22 02:17:4725-12-22 02:17:5400:00:070 → 7
Maintaining25-12-22 02:17:5425-12-22 02:22:5500:05:017
Decreasing25-12-22 02:22:5525-12-22 02:23:4000:00:450 ← 7

Request Metrics

Method Name # Requests # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
DELETE delete_sbom_from_pool_sequential[100 SBOMs] 38 (0) 0 1047.74 (+46.68) 111 (-29) 3954 (+549) 0.13 (+0.00) 0.00 (+0.00)
GET download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 10 17.20 (-10.20) 2 (0) 92 (+10) 0.03 (+0.00) 0.03 (+0.00)
GET get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 10 18.80 (+7.70) 1 (0) 66 (+12) 0.03 (+0.00) 0.03 (+0.00)
GET get_advisory_by_doc_id 10 (0) 0 18.90 (-7.70) 5 (+2) 61 (-10) 0.03 (+0.00) 0.00 (+0.00)
GET get_analysis_latest_cpe 15 (0) 0 295.27 (+10.33) 93 (-122) 577 (+86) 0.05 (+0.00) 0.00 (+0.00)
GET get_analysis_status 15 (0) 0 22.47 (+10.27) 2 (0) 59 (+8) 0.05 (+0.00) 0.00 (+0.00)
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 10 (0) 0 739.10 (-14.10) 194 (-29) 1110 (-475) 0.03 (+0.00) 0.00 (+0.00)
GET get_sbom[sha256:720e4451…a939656247164447] 15 (0) 0 1280.47 (-330.13) 264 (-52) 3498 (-306) 0.05 (+0.00) 0.00 (+0.00)
GET get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 15 (0) 0 57391.40 (+642.20) 51108 (+6043) 65426 (-87) 0.05 (+0.00) 0.00 (+0.00)
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 10 (0) 0 8646.40 (+950.70) 6083 (+2685) 11776 (+1173) 0.03 (+0.00) 0.00 (+0.00)
GET list_advisory 10 (0) 0 1032.10 (+140.40) 311 (+143) 1613 (+82) 0.03 (+0.00) 0.00 (+0.00)
GET list_advisory_labels 15 (0) 0 14456.93 (-72.60) 9273 (-1549) 21915 (+2613) 0.05 (+0.00) 0.00 (+0.00)
GET list_advisory_paginated 10 (0) 0 536.90 (-11.90) 315 (+167) 722 (-1) 0.03 (+0.00) 0.00 (+0.00)
GET list_importer 11 (0) 0 3.73 (-0.09) 1 (0) 8 (-9) 0.04 (+0.00) 0.00 (+0.00)
GET list_organizations 10 (0) 0 23.10 (+9.20) 2 (+1) 67 (+14) 0.03 (+0.00) 0.00 (+0.00)
GET list_packages 11 (0) 0 365.55 (-49.00) 163 (+52) 505 (-512) 0.04 (+0.00) 0.00 (+0.00)
GET list_packages_paginated 11 (0) 0 360.18 (+41.18) 117 (+4) 597 (+127) 0.04 (+0.00) 0.00 (+0.00)
GET list_products 15 (0) 0 12.07 (-6.93) 6 (+2) 20 (-33) 0.05 (+0.00) 0.00 (+0.00)
GET list_sboms 15 (0) 0 1583.87 (+613.27) 866 (+432) 3484 (+419) 0.05 (+0.00) 0.00 (+0.00)
GET list_sboms_paginated 15 (0) 0 3163.93 (+1608.73) 560 (+120) 6598 (+3314) 0.05 (+0.00) 0.00 (+0.00)
GET list_vulnerabilities 11 (0) 0 457.18 (-22.73) 74 (+18) 735 (-48) 0.04 (+0.00) 0.00 (+0.00)
GET list_vulnerabilities_paginated 11 (0) 0 201.73 (-30.55) 45 (-2) 296 (-72) 0.04 (+0.00) 0.00 (+0.00)
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 10 (0) 0 59.70 (-9.40) 11 (+4) 188 (+49) 0.03 (+0.00) 0.00 (+0.00)
GET search_advisory 10 (0) 0 1388.30 (-307.30) 456 (+256) 2429 (+2) 0.03 (+0.00) 0.00 (+0.00)
GET search_exact_purl 15 (0) 0 68.40 (+36.87) 6 (+2) 124 (+65) 0.05 (+0.00) 0.00 (+0.00)
GET search_licenses 2 (+1) 0 79508.00 (-7268.00) 72025 (-14751) 86991 (+215) 0.01 (+0.00) 0.00 (+0.00)
GET search_purls 15 (0) 0 26350.00 (+6551.00) 15697 (+2695) 31653 (+2918) 0.05 (+0.00) 0.00 (+0.00)
GET search_purls_by_license 1 (0) 0 136497.00 (-57139.00) 136497 (-57139) 136497 (-57139) 0.00 (+0.00) 0.00 (+0.00)
GET search_sboms_by_license 1 (0) 0 52388.00 (+12120.00) 52388 (+12120) 52388 (+12120) 0.00 (+0.00) 0.00 (+0.00)
POST get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 10 (0) 0 29.00 (-94.00) 7 (-1) 87 (-99) 0.03 (+0.00) 0.00 (+0.00)
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 10 (0) 0 507.70 (-19.10) 103 (+2) 1115 (-289) 0.03 (+0.00) 0.00 (+0.00)
Aggregated 367 (+1) 20 5728.97 (+450.49) 1 (0) 136497 (-57139) 1.22 (+0.00) 0.07 (+0.00)

Response Time Metrics

Method Name 50%ile (ms) 60%ile (ms) 70%ile (ms) 80%ile (ms) 90%ile (ms) 95%ile (ms) 99%ile (ms) 100%ile (ms)
DELETE delete_sbom_from_pool_sequential[100 SBOMs] 900 (0) 1,000 (0) 1,000 (0) 2,000 (+1,000) 2,000 (0) 3,000 (+1,000) 3,954 (+954) 3,954 (+954)
GET download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 5 (-3) 9 (-6) 16 (-33) 17 (-33) 19 (-32) 92 (+10) 92 (+10) 92 (+10)
GET get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 6 (+3) 9 (+5) 16 (+4) 27 (+14) 54 (+36) 66 (+12) 66 (+12) 66 (+12)
GET get_advisory_by_doc_id 8 (-3) 9 (-3) 10 (-6) 12 (-53) 61 (-9) 61 (-10) 61 (-10) 61 (-10)
GET get_analysis_latest_cpe 320 (+100) 320 (+100) 360 (+50) 380 (+10) 450 (-20) 450 (-20) 577 (+87) 577 (+87)
GET get_analysis_status 7 (+3) 13 (+8) 43 (+37) 51 (+44) 54 (+6) 54 (+6) 59 (+8) 59 (+8)
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 700 (-100) 700 (-200) 1,000 (+100) 1,000 (+100) 1,000 (0) 1,000 (-585) 1,000 (-585) 1,000 (-585)
GET get_sbom[sha256:720e4451…a939656247164447] 1,000 (-1,000) 1,000 (-1,000) 2,000 (0) 2,000 (0) 2,000 (-1,000) 2,000 (-1,000) 3,000 (-804) 3,000 (-804)
GET get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 58,000 (-2,000) 58,000 (-3,000) 59,000 (-2,000) 59,000 (-2,000) 65,000 (+2,000) 65,000 (+2,000) 65,000 (-513) 65,000 (-513)
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 7,000 (-1,000) 8,000 (0) 11,000 (+3,000) 11,776 (+3,776) 11,776 (+1,776) 11,776 (+1,173) 11,776 (+1,173) 11,776 (+1,173)
GET list_advisory 1,000 (+200) 1,000 (+200) 1,000 (0) 1,000 (0) 1,613 (+82) 1,613 (+82) 1,613 (+82) 1,613 (+82)
GET list_advisory_labels 14,000 (+1,000) 14,000 (0) 15,000 (-3,000) 17,000 (-1,000) 21,915 (+2,915) 21,915 (+2,915) 21,915 (+2,915) 21,915 (+2,915)
GET list_advisory_paginated 500 (-100) 600 (0) 600 (0) 600 (-100) 600 (-100) 700 (0) 700 (0) 700 (0)
GET list_importer 4 (+2) 4 (+1) 5 (+1) 5 (+1) 7 (+2) 7 (+2) 8 (-9) 8 (-9)
GET list_organizations 13 (+8) 22 (+16) 30 (+21) 41 (+25) 41 (0) 67 (+14) 67 (+14) 67 (+14)
GET list_packages 430 (+20) 430 (+10) 470 (-30) 480 (-20) 480 (-220) 480 (-220) 500 (-500) 500 (-500)
GET list_packages_paginated 310 (-90) 470 (+60) 470 (+50) 490 (+40) 500 (+40) 500 (+40) 597 (+127) 597 (+127)
GET list_products 10 (+1) 10 (+1) 16 (+5) 17 (-33) 20 (-32) 20 (-32) 20 (-33) 20 (-33)
GET list_sboms 1,000 (+400) 1,000 (+400) 2,000 (+1,100) 2,000 (+1,000) 3,000 (0) 3,000 (0) 3,000 (0) 3,000 (0)
GET list_sboms_paginated 2,000 (+1,000) 2,000 (+1,000) 5,000 (+4,000) 6,000 (+4,000) 6,000 (+3,000) 6,000 (+3,000) 6,598 (+3,598) 6,598 (+3,598)
GET list_vulnerabilities 450 (-150) 700 (+100) 700 (0) 700 (-83) 700 (-83) 700 (-83) 700 (-83) 700 (-83)
GET list_vulnerabilities_paginated 230 (-70) 230 (-70) 240 (-60) 290 (-60) 296 (-54) 296 (-54) 296 (-72) 296 (-72)
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 45 (-22) 49 (-24) 60 (-23) 62 (-26) 110 (+12) 188 (+49) 188 (+49) 188 (+49)
GET search_advisory 1,000 (-1,000) 1,000 (-1,000) 1,000 (-1,000) 2,000 (0) 2,000 (0) 2,000 (0) 2,000 (0) 2,000 (0)
GET search_exact_purl 72 (+59) 73 (+21) 120 (+63) 120 (+62) 120 (+62) 120 (+62) 120 (+61) 120 (+61)
GET search_licenses 72,025 (-14,751) 72,025 (-14,751) 72,025 (-14,751) 86,991 (+215) 86,991 (+215) 86,991 (+215) 86,991 (+215) 86,991 (+215)
GET search_purls 28,000 (+10,000) 28,000 (+9,000) 31,000 (+5,000) 31,000 (+3,000) 31,000 (+2,265) 31,000 (+2,265) 31,653 (+2,918) 31,653 (+2,918)
GET search_purls_by_license 136,497 (-57,139) 136,497 (-57,139) 136,497 (-57,139) 136,497 (-57,139) 136,497 (-57,139) 136,497 (-57,139) 136,497 (-57,139) 136,497 (-57,139)
GET search_sboms_by_license 52,388 (+12,120) 52,388 (+12,120) 52,388 (+12,120) 52,388 (+12,120) 52,388 (+12,120) 52,388 (+12,120) 52,388 (+12,120) 52,388 (+12,120)
POST get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 11 (-129) 11 (-129) 19 (-151) 64 (-116) 65 (-115) 87 (-99) 87 (-99) 87 (-99)
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 210 (-80) 310 (-70) 900 (+300) 1,000 (+100) 1,000 (0) 1,000 (0) 1,000 (0) 1,000 (0)
Aggregated 440 (+20) 700 (+100) 1,000 (0) 2,000 (0) 16,000 (+2,000) 51,000 (+22,000) 65,000 (+3,000) 136,000 (-57,636)

Status Code Metrics

Method Name Status Codes
DELETE delete_sbom_from_pool_sequential[100 SBOMs] 38 [200]
GET download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 [404]
GET get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 [404]
GET get_advisory_by_doc_id 10 [200]
GET get_analysis_latest_cpe 15 [200]
GET get_analysis_status 15 [200]
GET get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 10 [200]
GET get_sbom[sha256:720e4451…a939656247164447] 15 [200]
GET get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 15 [200]
GET get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 10 [200]
GET list_advisory 10 [200]
GET list_advisory_labels 15 [200]
GET list_advisory_paginated 10 [200]
GET list_importer 11 [200]
GET list_organizations 10 [200]
GET list_packages 11 [200]
GET list_packages_paginated 11 [200]
GET list_products 15 [200]
GET list_sboms 15 [200]
GET list_sboms_paginated 15 [200]
GET list_vulnerabilities 11 [200]
GET list_vulnerabilities_paginated 11 [200]
GET sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 10 [200]
GET search_advisory 10 [200]
GET search_exact_purl 15 [200]
GET search_licenses 2 [200]
GET search_purls 15 [200]
GET search_purls_by_license 1 [200]
GET search_sboms_by_license 1 [200]
POST get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 10 [200]
POST post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 10 [200]
Aggregated 347 [200], 20 [404]

Transaction Metrics

Transaction # Times Run # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
WebsiteUser
0.0 logon 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.1 website_index 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.2 website_openapi 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.3 website_sboms 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.4 website_packages 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.5 website_advisories 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.6 website_importers 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser
1.0 logon 10 (0) 0 (0) 13.90 (+1.00) 7 (0) 21 (+1) 0.03 (+0.00) 0.00 (+0.00)
1.1 list_organizations 10 (0) 0 (0) 23.20 (+9.30) 2 (+1) 67 (+14) 0.03 (+0.00) 0.00 (+0.00)
1.2 list_advisory 10 (0) 0 (0) 1032.20 (+140.30) 311 (+143) 1613 (+82) 0.03 (+0.00) 0.00 (+0.00)
1.3 list_advisory_paginated 10 (0) 0 (0) 537.00 (-11.80) 315 (+167) 722 (-1) 0.03 (+0.00) 0.00 (+0.00)
1.4 get_advisory_by_doc_id 10 (0) 0 (0) 18.90 (-7.70) 5 (+2) 61 (-10) 0.03 (+0.00) 0.00 (+0.00)
1.5 search_advisory 10 (0) 0 (0) 1388.30 (-307.40) 456 (+256) 2429 (+1) 0.03 (+0.00) 0.00 (+0.00)
1.6 list_vulnerabilities 11 (0) 0 (0) 457.27 (-22.64) 74 (+18) 735 (-48) 0.04 (+0.00) 0.00 (+0.00)
1.7 list_vulnerabilities_paginated 11 (0) 0 (0) 201.73 (-30.55) 45 (-2) 296 (-72) 0.04 (+0.00) 0.00 (+0.00)
1.8 list_importer 11 (0) 0 (0) 3.73 (-0.09) 1 (0) 8 (-9) 0.04 (+0.00) 0.00 (+0.00)
1.9 list_packages 11 (0) 0 (0) 365.55 (-49.09) 163 (+52) 505 (-512) 0.04 (+0.00) 0.00 (+0.00)
1.10 list_packages_paginated 11 (0) 0 (0) 360.18 (+41.18) 117 (+4) 597 (+127) 0.04 (+0.00) 0.00 (+0.00)
1.11 search_purls 15 (0) 0 (0) 26350.07 (+6551.07) 15697 (+2695) 31653 (+2918) 0.05 (+0.00) 0.00 (+0.00)
1.12 search_exact_purl 15 (0) 0 (0) 68.40 (+36.80) 6 (+2) 124 (+65) 0.05 (+0.00) 0.00 (+0.00)
1.13 list_products 15 (0) 0 (0) 12.07 (-7.00) 6 (+2) 20 (-33) 0.05 (+0.00) 0.00 (+0.00)
1.14 list_sboms 15 (0) 0 (0) 1583.87 (+613.27) 866 (+432) 3484 (+419) 0.05 (+0.00) 0.00 (+0.00)
1.15 list_sboms_paginated 15 (0) 0 (0) 3164.00 (+1608.80) 560 (+120) 6598 (+3314) 0.05 (+0.00) 0.00 (+0.00)
1.16 get_analysis_status 15 (0) 0 (0) 22.60 (+10.20) 3 (0) 59 (+8) 0.05 (+0.00) 0.00 (+0.00)
1.17 get_analysis_latest_cpe 15 (0) 0 (0) 295.27 (+10.33) 93 (-122) 577 (+86) 0.05 (+0.00) 0.00 (+0.00)
1.18 list_advisory_labels 15 (0) 0 (0) 14457.00 (-72.53) 9273 (-1549) 21916 (+2614) 0.05 (+0.00) 0.00 (+0.00)
1.19 get_sbom[sha256:720e4451…a939656247164447] 15 (0) 0 (0) 1280.53 (-330.13) 264 (-52) 3499 (-306) 0.05 (+0.00) 0.00 (+0.00)
1.20 get_sbom_advisories[sha256:87fd06bc…9d7b8304c0d2d9b2] 15 (0) 0 (0) 57391.40 (+641.93) 51108 (+6043) 65426 (-87) 0.05 (+0.00) 0.00 (+0.00)
1.21 sbom_by_package[pkg:maven/io.qu…dhat.com%2fga%2f] 10 (0) 0 (0) 59.70 (-9.50) 11 (+4) 188 (+49) 0.03 (+0.00) 0.00 (+0.00)
1.22 get_sbom_license_ids[urn:uuid:019731…104-331632a21144] 10 (0) 0 (0) 8646.60 (+950.80) 6083 (+2685) 11776 (+1172) 0.03 (+0.00) 0.00 (+0.00)
1.23 post_vulnerability_analyze[pkg:rpm/redhat/…h=noarch&epoch=1] 10 (0) 0 (0) 507.70 (-19.20) 103 (+2) 1115 (-289) 0.03 (+0.00) 0.00 (+0.00)
1.24 get_purl_details[b00df2ca-df21-5…874-304e9c54e2bd] 10 (0) 0 (0) 739.10 (-14.10) 194 (-29) 1110 (-475) 0.03 (+0.00) 0.00 (+0.00)
1.25 get_recommendations[pkg:rpm/redhat/…e-metrics@2.13.8] 10 (0) 0 (0) 29.10 (-93.90) 7 (-1) 88 (-98) 0.03 (+0.00) 0.00 (+0.00)
1.26 download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 0 (0) 17.20 (-10.20) 2 (0) 92 (+10) 0.03 (+0.00) 0.00 (+0.00)
1.27 get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89] 10 (0) 0 (0) 18.80 (+7.70) 1 (0) 66 (+12) 0.03 (+0.00) 0.00 (+0.00)
RestAPIUserSlow
2.0 logon 1 (+1) 0 (0) 7.00 (+7.00) 7 (+7) 7 (+7) 0.00 (+0.00) 0.00 (+0.00)
2.1 search_licenses 2 (+1) 0 (0) 79508.00 (-7268.00) 72025 (-14751) 86991 (+215) 0.01 (+0.00) 0.00 (+0.00)
2.2 search_sboms_by_license 1 (0) 0 (0) 52388.00 (+12120.00) 52388 (+12120) 52388 (+12120) 0.00 (+0.00) 0.00 (+0.00)
2.3 search_purls_by_license 1 (0) 0 (0) 136497.00 (-57140.00) 136497 (-57140) 136497 (-57140) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUserDelete
3.0 logon 37 (-1) 0 (0) 10.59 (-0.35) 6 (0) 20 (+1) 0.12 (-0.00) 0.00 (+0.00)
3.1 delete_sbom_from_pool_sequential[100 SBOMs] 38 (0) 0 (0) 1047.92 (+46.68) 112 (-28) 3954 (+549) 0.13 (+0.00) 0.00 (+0.00)
Aggregated 415 (+1) 0 (0) 5066.34 (+399.86) 1 (0) 136497 (-57140) 1.38 (+0.00) 0.00 (+0.00)

Scenario Metrics

Scenario # Users # Times Run Average (ms) Min (ms) Max (ms) Scenarios/s Iterations
WebsiteUser 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser 5 (0) 10 (0) 116640.50 (+3683.30) 105410 (+5412) 129536 (+2402) 0.03 (+0.00) 2.00 (+0.00)
RestAPIUserSlow 1 (+1) 1 (+1) 260921.00 (+260921.00) 260921 (+260921) 260921 (+260921) 0.00 (+0.00) 1.00 (+1.00)
RestAPIUserDelete 1 (0) 37 (-1) 8073.81 (+136.81) 6732 (+131) 11344 (+879) 0.12 (-0.00) 37.00 (-1.00)
Aggregated 7 (+1) 48 (0) 35959.52 (+6143.31) 6732 (+131) 260921 (+133787) 0.16 (+0.00) 40.00 (+0.00)

User Metrics

Errors

# Error
10 (0) 404 Not Found: download_advisory[24ae57c3-4b57-4…2c1-83ae26059a89]
10 (0) 404 Not Found: get_advisory[24ae57c3-4b57-4…2c1-83ae26059a89]