Goose Attack Report

Users: 7

Target Host: http://trustify:8080/

goose v0.18.0

Plan overview

Action Started Stopped Elapsed Users
Increasing26-03-27 02:27:5126-03-27 02:27:5800:00:070 → 7
Maintaining26-03-27 02:27:5826-03-27 02:57:5800:30:007
Decreasing26-03-27 02:57:5826-03-27 02:58:4200:00:440 ← 7

Request Metrics

Method Name # Requests # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
GET download_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 60 (+10) 0 195.05 (+11.51) 44 (+17) 323 (-237) 0.03 (+0.01) 0.00 (+0.00)
GET get_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 60 (+10) 0 171.20 (+8.76) 23 (-13) 292 (-50) 0.03 (+0.01) 0.00 (+0.00)
GET get_advisory_by_doc_id 60 (+10) 0 26.58 (-3.58) 3 (-3) 119 (-215) 0.03 (+0.01) 0.00 (+0.00)
GET get_analysis_latest_cpe 60 (+5) 0 75.13 (+31.10) 4 (-2) 195 (+79) 0.03 (+0.00) 0.00 (+0.00)
GET get_analysis_status 60 (+5) 0 20.50 (+7.85) 1 (-1) 83 (+11) 0.03 (+0.00) 0.00 (+0.00)
GET get_purl_details[0000054a-a69b-5…520-80752db183e6] 60 (+6) 0 277.35 (+14.07) 39 (+16) 616 (+30) 0.03 (+0.00) 0.00 (+0.00)
GET get_sbom[sha256:a3442b37…3040057f79c70669] 60 (+5) 0 8794.70 (-79.74) 284 (+85) 14216 (+89) 0.03 (+0.00) 0.00 (+0.00)
GET get_sbom_license_ids[urn:uuid:019c4a…8ba-3cc0260ef778] 60 (+6) 0 37.32 (+12.87) 2 (-1) 150 (+40) 0.03 (+0.00) 0.00 (+0.00)
GET list_advisory 60 (+10) 0 525.32 (-25.18) 160 (-4) 999 (-665) 0.03 (+0.01) 0.00 (+0.00)
GET list_advisory_labels 60 (+5) 0 13419.73 (-1323.87) 3513 (-3540) 18978 (-1342) 0.03 (+0.00) 0.00 (+0.00)
GET list_advisory_paginated 60 (+10) 0 463.63 (-31.39) 117 (-72) 1316 (-508) 0.03 (+0.01) 0.00 (+0.00)
GET list_importer 60 (+9) 0 14.97 (-2.35) 1 (-1) 92 (+4) 0.03 (+0.01) 0.00 (+0.00)
GET list_organizations 60 (+10) 0 240.45 (+10.75) 49 (-46) 385 (-295) 0.03 (+0.01) 0.00 (+0.00)
GET list_packages 61 (+10) 0 475.20 (-7.00) 102 (-33) 1089 (+75) 0.03 (+0.01) 0.00 (+0.00)
GET list_packages_paginated 61 (+10) 0 401.23 (-10.30) 103 (-36) 766 (+63) 0.03 (+0.01) 0.00 (+0.00)
GET list_products 65 (+10) 0 12.62 (-5.73) 5 (-1) 52 (-12) 0.04 (+0.01) 0.00 (+0.00)
GET list_sboms 65 (+10) 0 105142.95 (-5125.61) 77214 (-17311) 132243 (+119) 0.04 (+0.01) 0.00 (+0.00)
GET list_sboms_paginated 60 (+5) 0 1103.02 (+47.65) 644 (-232) 3033 (+1339) 0.03 (+0.00) 0.00 (+0.00)
GET list_vulnerabilities 60 (+10) 0 472.93 (-41.41) 88 (-106) 777 (-361) 0.03 (+0.01) 0.00 (+0.00)
GET list_vulnerabilities_paginated 60 (+9) 0 384.55 (+10.43) 83 (-28) 782 (+93) 0.03 (+0.01) 0.00 (+0.00)
GET sbom_by_package[pkg:oci/web-ter…-bundle&tag=1.11] 60 (+6) 0 210.48 (+33.65) 65 (+20) 495 (-21) 0.03 (+0.00) 0.00 (+0.00)
GET search_advisory 60 (+10) 0 1627.92 (+287.50) 191 (-151) 5032 (+216) 0.03 (+0.01) 0.00 (+0.00)
GET search_exact_purl 65 (+10) 0 194.63 (+113.01) 151 (+106) 403 (+289) 0.04 (+0.01) 0.00 (+0.00)
GET search_licenses 69 (-96) 0 43.20 (+4.21) 6 (+2) 178 (-38) 0.04 (-0.05) 0.00 (+0.00)
GET search_purls 65 (+10) 0 8726.72 (-13980.68) 1895 (-13995) 15884 (-13481) 0.04 (+0.01) 0.00 (+0.00)
GET search_purls_by_license 70 (-96) 1 25736.06 (+14963.03) 5195 (+2108) 300001 (+265266) 0.04 (-0.05) 0.00 (+0.00)
GET search_sboms_by_license 69 (-96) 0 53.71 (-0.12) 6 (+3) 274 (+52) 0.04 (-0.05) 0.00 (+0.00)
POST get_recommendations[pkg:maven/io.ne…8.1.redhat-00033] 60 (+6) 0 1384.65 (+8.06) 603 (+18) 2894 (-78) 0.03 (+0.00) 0.00 (+0.00)
POST post_vulnerability_analyze[pkg:rpm/redhat/squid] 60 (+6) 0 5.50 (+0.02) 1 (0) 52 (0) 0.03 (+0.00) 0.00 (+0.00)
Aggregated 1790 (-75) 1 6169.68 (+366.18) 1 (0) 300001 (+167877) 0.99 (-0.04) 0.00 (+0.00)

Response Time Metrics

Method Name 50%ile (ms) 60%ile (ms) 70%ile (ms) 80%ile (ms) 90%ile (ms) 95%ile (ms) 99%ile (ms) 100%ile (ms)
GET download_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 200 (+20) 220 (+30) 230 (+30) 260 (+50) 280 (+60) 300 (-200) 320 (-240) 320 (-240)
GET get_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 190 (+20) 200 (+20) 210 (+20) 230 (+20) 270 (-10) 270 (-20) 290 (-50) 290 (-50)
GET get_advisory_by_doc_id 17 (+3) 22 (+5) 28 (+9) 48 (+19) 60 (-8) 69 (-19) 80 (-250) 119 (-211)
GET get_analysis_latest_cpe 78 (+42) 86 (+44) 96 (+34) 110 (+39) 140 (+58) 160 (+69) 170 (+70) 195 (+79)
GET get_analysis_status 12 (+5) 16 (+8) 19 (+9) 33 (+12) 53 (+21) 71 (+33) 78 (+37) 83 (+11)
GET get_purl_details[0000054a-a69b-5…520-80752db183e6] 290 (+20) 310 (+20) 340 (+40) 380 (+50) 410 (+10) 490 (+90) 500 (0) 600 (+14)
GET get_sbom[sha256:a3442b37…3040057f79c70669] 11,000 (0) 12,000 (0) 12,000 (0) 13,000 (0) 13,000 (0) 14,000 (0) 14,000 (0) 14,000 (0)
GET get_sbom_license_ids[urn:uuid:019c4a…8ba-3cc0260ef778] 18 (+6) 28 (+12) 55 (+34) 64 (+22) 90 (+25) 100 (+18) 110 (+14) 150 (+40)
GET list_advisory 500 (0) 600 (0) 600 (0) 600 (-100) 700 (0) 800 (0) 900 (-764) 999 (-665)
GET list_advisory_labels 14,000 (0) 14,000 (0) 14,000 (-1,000) 15,000 (-1,000) 17,000 (-1,000) 18,000 (-1,000) 18,978 (-1,022) 18,978 (-1,022)
GET list_advisory_paginated 480 (-20) 500 (0) 500 (0) 600 (0) 600 (0) 700 (0) 1,000 (-824) 1,000 (-824)
GET list_importer 5 (-2) 6 (-3) 9 (-2) 17 (-7) 56 (-9) 63 (-3) 66 (-4) 92 (+4)
GET list_organizations 270 (+40) 280 (+10) 280 (+10) 290 (+10) 350 (+60) 370 (+20) 370 (-310) 385 (-295)
GET list_packages 490 (-10) 500 (0) 600 (0) 600 (0) 700 (+100) 800 (+100) 1,000 (+300) 1,000 (0)
GET list_packages_paginated 420 (+10) 480 (+10) 500 (+10) 500 (0) 600 (0) 600 (0) 600 (0) 766 (+66)
GET list_products 11 (-2) 12 (-3) 13 (-7) 14 (-10) 21 (-11) 23 (-25) 32 (-28) 52 (-12)
GET list_sboms 105,000 (-4,000) 110,000 (0) 120,000 (+8,000) 120,000 (+6,000) 132,000 (+12,000) 132,000 (0) 132,000 (0) 132,000 (0)
GET list_sboms_paginated 1,000 (0) 1,000 (0) 1,000 (0) 1,000 (0) 1,000 (0) 1,000 (0) 3,000 (+2,000) 3,000 (+1,306)
GET list_vulnerabilities 500 (+10) 500 (0) 600 (+100) 600 (0) 600 (-100) 600 (-400) 700 (-300) 777 (-223)
GET list_vulnerabilities_paginated 420 (+30) 470 (+10) 480 (0) 500 (+10) 500 (0) 600 (+100) 700 (+100) 782 (+93)
GET sbom_by_package[pkg:oci/web-ter…-bundle&tag=1.11] 200 (+40) 220 (+40) 240 (+40) 260 (+50) 400 (+120) 420 (+120) 480 (+120) 495 (-5)
GET search_advisory 1,000 (+100) 2,000 (+1,000) 2,000 (+1,000) 3,000 (+1,000) 3,000 (0) 3,000 (-1,000) 4,000 (-816) 5,000 (+184)
GET search_exact_purl 170 (+88) 170 (+88) 170 (+86) 210 (+120) 300 (+202) 390 (+291) 400 (+290) 400 (+290)
GET search_licenses 19 (+1) 36 (+7) 60 (+9) 78 (0) 99 (+2) 130 (+20) 160 (0) 178 (-38)
GET search_purls 9,000 (-14,000) 9,000 (-15,000) 9,000 (-15,000) 10,000 (-14,000) 13,000 (-11,000) 13,000 (-14,000) 14,000 (-15,000) 15,884 (-13,116)
GET search_purls_by_license 14,000 (+5,000) 15,000 (+3,000) 16,000 (+3,000) 17,000 (+2,000) 32,000 (+13,000) 46,000 (+20,000) 284,000 (+251,000) 300,000 (+265,265)
GET search_sboms_by_license 33 (+4) 40 (-2) 65 (-2) 94 (+5) 140 (-20) 170 (-10) 190 (-20) 270 (+50)
POST get_recommendations[pkg:maven/io.ne…8.1.redhat-00033] 1,000 (0) 1,000 (-1,000) 2,000 (0) 2,000 (0) 2,000 (0) 2,000 (0) 2,000 (0) 2,894 (-78)
POST post_vulnerability_analyze[pkg:rpm/redhat/squid] 3 (0) 4 (+1) 6 (+1) 7 (+1) 11 (+3) 15 (+6) 17 (-34) 52 (0)
Aggregated 270 (+60) 430 (+30) 600 (0) 2,000 (-1,000) 13,000 (-1,000) 17,000 (-6,000) 120,000 (+10,000) 300,000 (+168,000)

Status Code Metrics

Method Name Status Codes
GET download_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 60 [200]
GET get_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 60 [200]
GET get_advisory_by_doc_id 60 [200]
GET get_analysis_latest_cpe 60 [200]
GET get_analysis_status 60 [200]
GET get_purl_details[0000054a-a69b-5…520-80752db183e6] 60 [200]
GET get_sbom[sha256:a3442b37…3040057f79c70669] 60 [200]
GET get_sbom_license_ids[urn:uuid:019c4a…8ba-3cc0260ef778] 60 [200]
GET list_advisory 60 [200]
GET list_advisory_labels 60 [200]
GET list_advisory_paginated 60 [200]
GET list_importer 60 [200]
GET list_organizations 60 [200]
GET list_packages 61 [200]
GET list_packages_paginated 61 [200]
GET list_products 65 [200]
GET list_sboms 65 [200]
GET list_sboms_paginated 60 [200]
GET list_vulnerabilities 60 [200]
GET list_vulnerabilities_paginated 60 [200]
GET sbom_by_package[pkg:oci/web-ter…-bundle&tag=1.11] 60 [200]
GET search_advisory 60 [200]
GET search_exact_purl 65 [200]
GET search_licenses 69 [200]
GET search_purls 65 [200]
GET search_purls_by_license 69 [200], 1 [0]
GET search_sboms_by_license 69 [200]
POST get_recommendations[pkg:maven/io.ne…8.1.redhat-00033] 60 [200]
POST post_vulnerability_analyze[pkg:rpm/redhat/squid] 60 [200]
Aggregated 1,789 [200], 1 [0]

Transaction Metrics

Transaction # Times Run # Fails Average (ms) Min (ms) Max (ms) RPS Failures/s
WebsiteUser
0.0 logon 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.1 website_index 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.2 website_openapi 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.3 website_sboms 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.4 website_packages 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.5 website_advisories 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
0.6 website_importers 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser
1.0 logon 60 (+10) 0 (0) 12.70 (+0.12) 6 (-1) 23 (+3) 0.03 (+0.01) 0.00 (+0.00)
1.1 list_organizations 60 (+10) 0 (0) 240.57 (+10.65) 49 (-46) 385 (-295) 0.03 (+0.01) 0.00 (+0.00)
1.2 list_advisory 60 (+10) 0 (0) 525.42 (-25.18) 160 (-4) 999 (-665) 0.03 (+0.01) 0.00 (+0.00)
1.3 list_advisory_paginated 60 (+10) 0 (0) 463.67 (-31.39) 117 (-72) 1316 (-508) 0.03 (+0.01) 0.00 (+0.00)
1.4 get_advisory_by_doc_id 60 (+10) 0 (0) 26.62 (-3.64) 3 (-3) 120 (-214) 0.03 (+0.01) 0.00 (+0.00)
1.5 search_advisory 60 (+10) 0 (0) 1627.98 (+287.48) 191 (-151) 5032 (+216) 0.03 (+0.01) 0.00 (+0.00)
1.6 list_vulnerabilities 60 (+10) 0 (0) 473.00 (-41.36) 89 (-105) 777 (-361) 0.03 (+0.01) 0.00 (+0.00)
1.7 list_vulnerabilities_paginated 60 (+9) 0 (0) 384.62 (+10.44) 83 (-28) 782 (+93) 0.03 (+0.01) 0.00 (+0.00)
1.8 list_importer 60 (+9) 0 (0) 14.98 (-2.37) 1 (-1) 92 (+4) 0.03 (+0.01) 0.00 (+0.00)
1.9 list_packages 61 (+10) 0 (0) 475.26 (-7.01) 102 (-34) 1089 (+75) 0.03 (+0.01) 0.00 (+0.00)
1.10 list_packages_paginated 61 (+10) 0 (0) 401.31 (-10.26) 103 (-36) 766 (+63) 0.03 (+0.01) 0.00 (+0.00)
1.11 search_purls 65 (+10) 0 (0) 8726.75 (-13980.68) 1895 (-13995) 15884 (-13481) 0.04 (+0.01) 0.00 (+0.00)
1.12 search_exact_purl 65 (+10) 0 (0) 194.68 (+113.04) 151 (+106) 403 (+289) 0.04 (+0.01) 0.00 (+0.00)
1.13 list_products 65 (+10) 0 (0) 12.68 (-5.67) 6 (0) 52 (-12) 0.04 (+0.01) 0.00 (+0.00)
1.14 list_sboms 65 (+10) 0 (0) 105143.03 (-5125.57) 77214 (-17311) 132243 (+119) 0.04 (+0.01) 0.00 (+0.00)
1.15 list_sboms_paginated 60 (+5) 0 (0) 1103.08 (+47.70) 644 (-233) 3033 (+1339) 0.03 (+0.00) 0.00 (+0.00)
1.16 get_analysis_status 60 (+5) 0 (0) 20.57 (+7.84) 1 (-1) 83 (+11) 0.03 (+0.00) 0.00 (+0.00)
1.17 get_analysis_latest_cpe 60 (+5) 0 (0) 75.20 (+31.11) 4 (-2) 195 (+79) 0.03 (+0.00) 0.00 (+0.00)
1.18 list_advisory_labels 60 (+5) 0 (0) 13419.83 (-1323.80) 3513 (-3540) 18978 (-1342) 0.03 (+0.00) 0.00 (+0.00)
1.19 get_sbom[sha256:a3442b37…3040057f79c70669] 60 (+5) 0 (0) 8794.75 (-79.80) 284 (+85) 14216 (+89) 0.03 (+0.00) 0.00 (+0.00)
1.20 sbom_by_package[pkg:oci/web-ter…-bundle&tag=1.11] 60 (+6) 0 (0) 210.62 (+33.65) 65 (+20) 495 (-21) 0.03 (+0.00) 0.00 (+0.00)
1.21 get_sbom_license_ids[urn:uuid:019c4a…8ba-3cc0260ef778] 60 (+6) 0 (0) 37.42 (+12.92) 2 (-1) 150 (+40) 0.03 (+0.00) 0.00 (+0.00)
1.22 post_vulnerability_analyze[pkg:rpm/redhat/squid] 60 (+6) 0 (0) 5.55 (-0.01) 1 (0) 52 (0) 0.03 (+0.00) 0.00 (+0.00)
1.23 get_purl_details[0000054a-a69b-5…520-80752db183e6] 60 (+6) 0 (0) 277.38 (+14.09) 39 (+16) 616 (+30) 0.03 (+0.00) 0.00 (+0.00)
1.24 get_recommendations[pkg:maven/io.ne…8.1.redhat-00033] 60 (+6) 0 (0) 1384.75 (+8.08) 603 (+18) 2895 (-77) 0.03 (+0.00) 0.00 (+0.00)
1.25 download_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 60 (+10) 0 (0) 195.13 (+11.51) 44 (+17) 323 (-237) 0.03 (+0.01) 0.00 (+0.00)
1.26 get_advisory[5b25cdef-428a-4…29e-fbb3415c22ab] 60 (+10) 0 (0) 171.28 (+8.80) 23 (-13) 292 (-50) 0.03 (+0.01) 0.00 (+0.00)
RestAPIUserSlow
2.0 logon 69 (-96) 0 (0) 10.91 (+0.84) 7 (+1) 26 (+1) 0.04 (-0.05) 0.00 (+0.00)
2.1 search_licenses 69 (-96) 0 (0) 43.33 (+4.15) 6 (+2) 182 (-34) 0.04 (-0.05) 0.00 (+0.00)
2.2 search_sboms_by_license 69 (-96) 0 (0) 53.81 (-0.09) 6 (+3) 274 (+52) 0.04 (-0.05) 0.00 (+0.00)
2.3 search_purls_by_license 70 (-96) 0 (0) 25736.13 (+14963.04) 5195 (+2108) 300001 (+265266) 0.04 (-0.05) 0.00 (+0.00)
RestAPIUserDelete
3.0 logon 509 (-4) 0 (0) 10.70 (+0.09) 6 (0) 41 (+12) 0.28 (-0.00) 0.00 (+0.00)
RestAdvisoryLableUser
4.0 logon 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
Aggregated 2,428 (-165) 0 (0) 4548.49 (+374.35) 1 (0) 300001 (+167877) 1.35 (-0.09) 0.00 (+0.00)

Scenario Metrics

Scenario # Users # Times Run Average (ms) Min (ms) Max (ms) Scenarios/s Iterations
WebsiteUser 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
RestAPIUser 5 (0) 60 (+10) 142914.45 (-21485.05) 102194 (-29186) 178814 (-11875) 0.03 (+0.01) 12.00 (+2.00)
RestAPIUserSlow 1 (0) 69 (-96) 26021.46 (+15226.34) 5232 (+2118) 300166 (+265284) 0.04 (-0.05) 69.00 (-96.00)
RestAPIUserDelete 1 (0) 509 (-4) 3542.25 (+33.77) 3016 (+2) 4018 (-1) 0.28 (-0.00) 509.00 (-4.00)
RestAdvisoryLableUser 0 (0) 0 (0) 0.00 (+0.00) 0 (0) 0 (0) 0.00 (+0.00) 0.00 (+0.00)
Aggregated 7 (0) 638 (-90) 19080.49 (+2870.30) 3016 (+2) 300166 (+109477) 0.35 (-0.05) 590.00 (-98.00)

User Metrics

Errors

# Error
1 error sending request search_purls_by_license: operation timed out