Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Add downstream HTTP request/response analysis for OkHttp2 client #9572

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add downstream HTTP request/response analysis for OkHttp2 client #9572

wants to merge 1 commit into from

Conversation

manuel-alvarez-alvarez
Copy link
Member

@manuel-alvarez-alvarez manuel-alvarez-alvarez commented Sep 19, 2025
edited
Loading

What Does This Do

Adds support for downstream HTTP request and response analysis in the OkHttp2 client instrumentation.

Motivation

Enable AppSec to analyze outbound requests made through OkHttp2. This expands coverage for API security and SSRF protections, while supporting downstream traffic inspection with configurable sampling.

Additional Notes

RFC

Contributor Checklist

Jira ticket: APPSEC-58613

@manuel-alvarez-alvarez manuel-alvarez-alvarez added inst: others All other instrumentations comp: asm waf Application Security Management (WAF) labels Sep 19, 2025
@manuel-alvarez-alvarez manuel-alvarez-alvarez changed the title Add http downstream request analysis for OkHttp2 Add downstream HTTP request/response analysis for OkHttp2 client Sep 19, 2025
@pr-commenter
Copy link

pr-commenter bot commented Sep 19, 2025
edited
Loading

Benchmarks

Startup

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master malvarez/appsec-downstream-http
git_commit_date 1758286417 1758297589
git_commit_sha abb87ab 1dae6dc
release_version 1.54.0-SNAPSHOT~abb87aba78 1.54.0-SNAPSHOT~1dae6dc5b2
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1758299355 1758299355
ci_job_id 1138723776 1138723776
ci_pipeline_id 77008090 77008090
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-2-omvu7t5e 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-2-omvu7t5e 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module Agent Agent
parent None None

Summary

Found 0 performance improvements and 4 performance regressions! Performance is the same for 42 metrics, 13 unstable metrics.

scenario Δ mean execution_time candidate mean execution_time baseline mean execution_time
scenario:startup:insecure-bank:tracing:AppSec worse
[+1.098ms; +2.375ms] or [+3.458%; +7.483%]		 33.480ms 31.743ms
scenario:startup:petclinic:profiling:AppSec worse
[+1.099ms; +1.927ms] or [+3.497%; +6.135%]		 32.927ms 31.414ms
scenario:startup:petclinic:tracing:AppSec worse
[+1.071ms; +2.152ms] or [+3.363%; +6.760%]		 33.449ms 31.837ms
scenario:startup:petclinic:tracing:Remote Config worse
[+21.933µs; +61.851µs] or [+3.197%; +9.014%]		 728.025µs 686.133µs
Startup time reports for insecure-bank 
gantt
    title insecure-bank - global startup overhead: candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.022 s) : 0, 1022229
Total [baseline] (8.677 s) : 0, 8676738
Agent [candidate] (1.027 s) : 0, 1026818
Total [candidate] (8.641 s) : 0, 8640953
section iast
Agent [baseline] (1.162 s) : 0, 1161807
Total [baseline] (9.415 s) : 0, 9414832
Agent [candidate] (1.156 s) : 0, 1156266
Total [candidate] (9.366 s) : 0, 9366401
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.022 s -
Agent iast 1.162 s 139.578 ms (13.7%)
Total tracing 8.677 s -
Total iast 9.415 s 738.094 ms (8.5%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.027 s -
Agent iast 1.156 s 129.448 ms (12.6%)
Total tracing 8.641 s -
Total iast 9.366 s 725.449 ms (8.4%) 
gantt
    title insecure-bank - break down per module: candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.472 ms) : 0, 1472
crashtracking [candidate] (1.49 ms) : 0, 1490
BytebuddyAgent [baseline] (689.435 ms) : 0, 689435
BytebuddyAgent [candidate] (690.484 ms) : 0, 690484
GlobalTracer [baseline] (258.154 ms) : 0, 258154
GlobalTracer [candidate] (259.719 ms) : 0, 259719
AppSec [baseline] (31.743 ms) : 0, 31743
AppSec [candidate] (33.48 ms) : 0, 33480
Debugger [baseline] (6.341 ms) : 0, 6341
Debugger [candidate] (6.432 ms) : 0, 6432
Remote Config [baseline] (706.107 µs) : 0, 706
Remote Config [candidate] (722.51 µs) : 0, 723
Telemetry [baseline] (13.381 ms) : 0, 13381
Telemetry [candidate] (13.37 ms) : 0, 13370
section iast
crashtracking [baseline] (1.471 ms) : 0, 1471
crashtracking [candidate] (1.451 ms) : 0, 1451
BytebuddyAgent [baseline] (814.318 ms) : 0, 814318
BytebuddyAgent [candidate] (808.17 ms) : 0, 808170
GlobalTracer [baseline] (250.837 ms) : 0, 250837
GlobalTracer [candidate] (250.116 ms) : 0, 250116
IAST [baseline] (28.432 ms) : 0, 28432
IAST [candidate] (32.498 ms) : 0, 32498
AppSec [baseline] (30.791 ms) : 0, 30791
AppSec [candidate] (27.328 ms) : 0, 27328
Debugger [baseline] (6.03 ms) : 0, 6030
Debugger [candidate] (7.012 ms) : 0, 7012
Remote Config [baseline] (597.323 µs) : 0, 597
Remote Config [candidate] (693.114 µs) : 0, 693
Telemetry [baseline] (8.247 ms) : 0, 8247
Telemetry [candidate] (8.076 ms) : 0, 8076
Loading
Startup time reports for petclinic 
gantt
    title petclinic - global startup overhead: candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.022 s) : 0, 1022480
Total [baseline] (10.76 s) : 0, 10760356
Agent [candidate] (1.021 s) : 0, 1021225
Total [candidate] (10.685 s) : 0, 10685365
section appsec
Agent [baseline] (1.198 s) : 0, 1197580
Total [baseline] (11.039 s) : 0, 11039479
Agent [candidate] (1.208 s) : 0, 1207669
Total [candidate] (11.065 s) : 0, 11065385
section iast
Agent [baseline] (1.153 s) : 0, 1153197
Total [baseline] (11.11 s) : 0, 11110178
Agent [candidate] (1.156 s) : 0, 1155810
Total [candidate] (11.035 s) : 0, 11034663
section profiling
Agent [baseline] (1.17 s) : 0, 1170428
Total [baseline] (11.053 s) : 0, 11052652
Agent [candidate] (1.167 s) : 0, 1167366
Total [candidate] (11.027 s) : 0, 11026643
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.022 s -
Agent appsec 1.198 s 175.099 ms (17.1%)
Agent iast 1.153 s 130.717 ms (12.8%)
Agent profiling 1.17 s 147.947 ms (14.5%)
Total tracing 10.76 s -
Total appsec 11.039 s 279.123 ms (2.6%)
Total iast 11.11 s 349.823 ms (3.3%)
Total profiling 11.053 s 292.296 ms (2.7%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.021 s -
Agent appsec 1.208 s 186.444 ms (18.3%)
Agent iast 1.156 s 134.585 ms (13.2%)
Agent profiling 1.167 s 146.141 ms (14.3%)
Total tracing 10.685 s -
Total appsec 11.065 s 380.02 ms (3.6%)
Total iast 11.035 s 349.298 ms (3.3%)
Total profiling 11.027 s 341.278 ms (3.2%) 
gantt
    title petclinic - break down per module: candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.464 ms) : 0, 1464
crashtracking [candidate] (1.451 ms) : 0, 1451
BytebuddyAgent [baseline] (690.418 ms) : 0, 690418
BytebuddyAgent [candidate] (685.763 ms) : 0, 685763
GlobalTracer [baseline] (260.088 ms) : 0, 260088
GlobalTracer [candidate] (258.453 ms) : 0, 258453
AppSec [baseline] (31.837 ms) : 0, 31837
AppSec [candidate] (33.449 ms) : 0, 33449
Debugger [baseline] (6.398 ms) : 0, 6398
Debugger [candidate] (6.356 ms) : 0, 6356
Remote Config [baseline] (686.133 µs) : 0, 686
Remote Config [candidate] (728.025 µs) : 0, 728
Telemetry [baseline] (10.423 ms) : 0, 10423
Telemetry [candidate] (13.902 ms) : 0, 13902
section appsec
crashtracking [baseline] (1.459 ms) : 0, 1459
crashtracking [candidate] (1.474 ms) : 0, 1474
BytebuddyAgent [baseline] (710.881 ms) : 0, 710881
BytebuddyAgent [candidate] (715.653 ms) : 0, 715653
GlobalTracer [baseline] (251.435 ms) : 0, 251435
GlobalTracer [candidate] (253.889 ms) : 0, 253889
AppSec [baseline] (170.912 ms) : 0, 170912
AppSec [candidate] (174.131 ms) : 0, 174131
Debugger [baseline] (6.114 ms) : 0, 6114
Debugger [candidate] (6.113 ms) : 0, 6113
Remote Config [baseline] (620.442 µs) : 0, 620
Remote Config [candidate] (666.664 µs) : 0, 667
Telemetry [baseline] (9.952 ms) : 0, 9952
Telemetry [candidate] (9.167 ms) : 0, 9167
IAST [baseline] (25.028 ms) : 0, 25028
IAST [candidate] (25.348 ms) : 0, 25348
section iast
crashtracking [baseline] (1.448 ms) : 0, 1448
crashtracking [candidate] (1.453 ms) : 0, 1453
BytebuddyAgent [baseline] (807.476 ms) : 0, 807476
BytebuddyAgent [candidate] (808.094 ms) : 0, 808094
GlobalTracer [baseline] (249.187 ms) : 0, 249187
GlobalTracer [candidate] (249.728 ms) : 0, 249728
AppSec [baseline] (27.231 ms) : 0, 27231
AppSec [candidate] (30.519 ms) : 0, 30519
Debugger [baseline] (6.952 ms) : 0, 6952
Debugger [candidate] (6.137 ms) : 0, 6137
Remote Config [baseline] (684.298 µs) : 0, 684
Remote Config [candidate] (605.103 µs) : 0, 605
Telemetry [baseline] (8.163 ms) : 0, 8163
Telemetry [candidate] (8.247 ms) : 0, 8247
IAST [baseline] (30.945 ms) : 0, 30945
IAST [candidate] (29.955 ms) : 0, 29955
section profiling
ProfilingAgent [baseline] (102.505 ms) : 0, 102505
ProfilingAgent [candidate] (101.22 ms) : 0, 101220
crashtracking [baseline] (1.446 ms) : 0, 1446
crashtracking [candidate] (1.437 ms) : 0, 1437
BytebuddyAgent [baseline] (721.728 ms) : 0, 721728
BytebuddyAgent [candidate] (719.372 ms) : 0, 719372
GlobalTracer [baseline] (238.09 ms) : 0, 238090
GlobalTracer [candidate] (237.204 ms) : 0, 237204
AppSec [baseline] (31.414 ms) : 0, 31414
AppSec [candidate] (32.927 ms) : 0, 32927
Debugger [baseline] (6.575 ms) : 0, 6575
Debugger [candidate] (6.508 ms) : 0, 6508
Remote Config [baseline] (729.924 µs) : 0, 730
Remote Config [candidate] (848.774 µs) : 0, 849
Telemetry [baseline] (16.554 ms) : 0, 16554
Telemetry [candidate] (16.58 ms) : 0, 16580
Profiling [baseline] (103.099 ms) : 0, 103099
Profiling [candidate] (101.817 ms) : 0, 101817
Loading

Load

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master malvarez/appsec-downstream-http
git_commit_date 1758286417 1758297589
git_commit_sha abb87ab 1dae6dc
release_version 1.54.0-SNAPSHOT~abb87aba78 1.54.0-SNAPSHOT~1dae6dc5b2
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1758299013 1758299013
ci_job_id 1138723777 1138723777
ci_pipeline_id 77008090 77008090
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-3-ehwd6l1b 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-3-ehwd6l1b 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 2 performance improvements and 1 performance regressions! Performance is the same for 9 metrics, 12 unstable metrics.

scenario Δ mean http_req_duration Δ mean throughput candidate mean http_req_duration candidate mean throughput baseline mean http_req_duration baseline mean throughput
scenario:load:insecure-bank:profiling:high_load worse
[+666.311µs; +967.062µs] or [+7.761%; +11.264%]		 unstable
[-112.122op/s; +18.935op/s] or [-20.749%; +3.504%]		 9.402ms 493.781op/s 8.586ms 540.375op/s
scenario:load:insecure-bank:iast_FULL:high_load better
[-1.934ms; -1.292ms] or [-12.318%; -8.228%]		 unstable
[-2.352op/s; +69.852op/s] or [-0.792%; +23.519%]		 14.089ms 330.750op/s 15.702ms 297.000op/s
scenario:load:petclinic:appsec:high_load better
[-2.088ms; -1.147ms] or [-4.124%; -2.265%]		 unstable
[-3.466op/s; +9.566op/s] or [-3.750%; +10.349%]		 49.018ms 95.487op/s 50.635ms 92.438op/s
Request duration reports for insecure-bank 
gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78
    dateFormat X
    axisFormat %s
section baseline
no_agent (4.26 ms) : 4214, 4306
.   : milestone, 4260,
iast (9.669 ms) : 9502, 9836
.   : milestone, 9669,
iast_FULL (15.702 ms) : 15387, 16017
.   : milestone, 15702,
iast_GLOBAL (10.636 ms) : 10445, 10827
.   : milestone, 10636,
profiling (8.586 ms) : 8453, 8718
.   : milestone, 8586,
tracing (7.927 ms) : 7813, 8041
.   : milestone, 7927,
section candidate
no_agent (4.372 ms) : 4323, 4422
.   : milestone, 4372,
iast (9.559 ms) : 9394, 9724
.   : milestone, 9559,
iast_FULL (14.089 ms) : 13808, 14370
.   : milestone, 14089,
iast_GLOBAL (10.75 ms) : 10557, 10942
.   : milestone, 10750,
profiling (9.402 ms) : 9256, 9549
.   : milestone, 9402,
tracing (7.759 ms) : 7649, 7869
.   : milestone, 7759,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 4.26 ms [4.214 ms, 4.306 ms] -
iast 9.669 ms [9.502 ms, 9.836 ms] 5.409 ms (127.0%)
iast_FULL 15.702 ms [15.387 ms, 16.017 ms] 11.442 ms (268.6%)
iast_GLOBAL 10.636 ms [10.445 ms, 10.827 ms] 6.376 ms (149.7%)
profiling 8.586 ms [8.453 ms, 8.718 ms] 4.326 ms (101.6%)
tracing 7.927 ms [7.813 ms, 8.041 ms] 3.667 ms (86.1%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 4.372 ms [4.323 ms, 4.422 ms] -
iast 9.559 ms [9.394 ms, 9.724 ms] 5.187 ms (118.6%)
iast_FULL 14.089 ms [13.808 ms, 14.37 ms] 9.717 ms (222.2%)
iast_GLOBAL 10.75 ms [10.557 ms, 10.942 ms] 6.377 ms (145.9%)
profiling 9.402 ms [9.256 ms, 9.549 ms] 5.03 ms (115.0%)
tracing 7.759 ms [7.649 ms, 7.869 ms] 3.387 ms (77.5%)
Request duration reports for petclinic 
gantt
    title petclinic - request duration [CI 0.99] : candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78
    dateFormat X
    axisFormat %s
section baseline
no_agent (37.278 ms) : 36976, 37581
.   : milestone, 37278,
appsec (50.635 ms) : 50179, 51092
.   : milestone, 50635,
code_origins (45.213 ms) : 44837, 45589
.   : milestone, 45213,
iast (45.389 ms) : 45000, 45778
.   : milestone, 45389,
profiling (49.661 ms) : 49147, 50175
.   : milestone, 49661,
tracing (43.763 ms) : 43390, 44136
.   : milestone, 43763,
section candidate
no_agent (37.057 ms) : 36752, 37362
.   : milestone, 37057,
appsec (49.018 ms) : 48600, 49436
.   : milestone, 49018,
code_origins (45.034 ms) : 44646, 45423
.   : milestone, 45034,
iast (45.571 ms) : 45173, 45969
.   : milestone, 45571,
profiling (50.597 ms) : 50023, 51171
.   : milestone, 50597,
tracing (45.018 ms) : 44624, 45413
.   : milestone, 45018,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 37.278 ms [36.976 ms, 37.581 ms] -
appsec 50.635 ms [50.179 ms, 51.092 ms] 13.357 ms (35.8%)
code_origins 45.213 ms [44.837 ms, 45.589 ms] 7.935 ms (21.3%)
iast 45.389 ms [45.0 ms, 45.778 ms] 8.111 ms (21.8%)
profiling 49.661 ms [49.147 ms, 50.175 ms] 12.383 ms (33.2%)
tracing 43.763 ms [43.39 ms, 44.136 ms] 6.485 ms (17.4%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 37.057 ms [36.752 ms, 37.362 ms] -
appsec 49.018 ms [48.6 ms, 49.436 ms] 11.961 ms (32.3%)
code_origins 45.034 ms [44.646 ms, 45.423 ms] 7.977 ms (21.5%)
iast 45.571 ms [45.173 ms, 45.969 ms] 8.514 ms (23.0%)
profiling 50.597 ms [50.023 ms, 51.171 ms] 13.54 ms (36.5%)
tracing 45.018 ms [44.624 ms, 45.413 ms] 7.961 ms (21.5%)

Dacapo

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master malvarez/appsec-downstream-http
git_commit_date 1758286417 1758297589
git_commit_sha abb87ab 1dae6dc
release_version 1.54.0-SNAPSHOT~abb87aba78 1.54.0-SNAPSHOT~1dae6dc5b2
See matching parameters
Baseline Candidate
application biojava biojava
ci_job_date 1758299517 1758299517
ci_job_id 1138723778 1138723778
ci_pipeline_id 77008090 77008090
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-0-ttwmskkb 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-0-ttwmskkb 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 12 metrics, 0 unstable metrics.

Execution time for biojava 
gantt
    title biojava - execution time [CI 0.99] : candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78
    dateFormat X
    axisFormat %s
section baseline
no_agent (15.531 s) : 15531000, 15531000
.   : milestone, 15531000,
appsec (15.045 s) : 15045000, 15045000
.   : milestone, 15045000,
iast (18.438 s) : 18438000, 18438000
.   : milestone, 18438000,
iast_GLOBAL (18.184 s) : 18184000, 18184000
.   : milestone, 18184000,
profiling (15.763 s) : 15763000, 15763000
.   : milestone, 15763000,
tracing (15.155 s) : 15155000, 15155000
.   : milestone, 15155000,
section candidate
no_agent (14.899 s) : 14899000, 14899000
.   : milestone, 14899000,
appsec (15.139 s) : 15139000, 15139000
.   : milestone, 15139000,
iast (18.706 s) : 18706000, 18706000
.   : milestone, 18706000,
iast_GLOBAL (18.055 s) : 18055000, 18055000
.   : milestone, 18055000,
profiling (15.273 s) : 15273000, 15273000
.   : milestone, 15273000,
tracing (14.963 s) : 14963000, 14963000
.   : milestone, 14963000,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 15.531 s [15.531 s, 15.531 s] -
appsec 15.045 s [15.045 s, 15.045 s] -486.0 ms (-3.1%)
iast 18.438 s [18.438 s, 18.438 s] 2.907 s (18.7%)
iast_GLOBAL 18.184 s [18.184 s, 18.184 s] 2.653 s (17.1%)
profiling 15.763 s [15.763 s, 15.763 s] 232.0 ms (1.5%)
tracing 15.155 s [15.155 s, 15.155 s] -376.0 ms (-2.4%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 14.899 s [14.899 s, 14.899 s] -
appsec 15.139 s [15.139 s, 15.139 s] 240.0 ms (1.6%)
iast 18.706 s [18.706 s, 18.706 s] 3.807 s (25.6%)
iast_GLOBAL 18.055 s [18.055 s, 18.055 s] 3.156 s (21.2%)
profiling 15.273 s [15.273 s, 15.273 s] 374.0 ms (2.5%)
tracing 14.963 s [14.963 s, 14.963 s] 64.0 ms (0.4%)
Execution time for tomcat 
gantt
    title tomcat - execution time [CI 0.99] : candidate=1.54.0-SNAPSHOT~1dae6dc5b2, baseline=1.54.0-SNAPSHOT~abb87aba78
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.474 ms) : 1463, 1486
.   : milestone, 1474,
appsec (2.512 ms) : 2459, 2566
.   : milestone, 2512,
iast (2.207 ms) : 2143, 2271
.   : milestone, 2207,
iast_GLOBAL (2.251 ms) : 2187, 2315
.   : milestone, 2251,
profiling (2.06 ms) : 2008, 2111
.   : milestone, 2060,
tracing (2.035 ms) : 1985, 2084
.   : milestone, 2035,
section candidate
no_agent (1.48 ms) : 1468, 1491
.   : milestone, 1480,
appsec (2.516 ms) : 2464, 2569
.   : milestone, 2516,
iast (2.213 ms) : 2149, 2276
.   : milestone, 2213,
iast_GLOBAL (2.256 ms) : 2192, 2320
.   : milestone, 2256,
profiling (2.058 ms) : 2007, 2109
.   : milestone, 2058,
tracing (2.029 ms) : 1980, 2079
.   : milestone, 2029,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.474 ms [1.463 ms, 1.486 ms] -
appsec 2.512 ms [2.459 ms, 2.566 ms] 1.038 ms (70.4%)
iast 2.207 ms [2.143 ms, 2.271 ms] 732.629 µs (49.7%)
iast_GLOBAL 2.251 ms [2.187 ms, 2.315 ms] 776.77 µs (52.7%)
profiling 2.06 ms [2.008 ms, 2.111 ms] 585.178 µs (39.7%)
tracing 2.035 ms [1.985 ms, 2.084 ms] 560.201 µs (38.0%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.48 ms [1.468 ms, 1.491 ms] -
appsec 2.516 ms [2.464 ms, 2.569 ms] 1.037 ms (70.1%)
iast 2.213 ms [2.149 ms, 2.276 ms] 732.978 µs (49.5%)
iast_GLOBAL 2.256 ms [2.192 ms, 2.32 ms] 776.103 µs (52.5%)
profiling 2.058 ms [2.007 ms, 2.109 ms] 578.259 µs (39.1%)
tracing 2.029 ms [1.98 ms, 2.079 ms] 549.492 µs (37.1%)

@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch from e10c32e to 094375b Compare September 19, 2025 15:39
@manuel-alvarez-alvarez manuel-alvarez-alvarez marked this pull request as ready for review September 19, 2025 15:39
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Sep 19, 2025
edited
Loading

Hi! 👋 Thanks for your pull request! 🎉

To help us review it, please make sure to:

  • Add at least one type, and one component or instrumentation label to the pull request

If you need help, please check our contributing guidelines.

@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch from 094375b to fe39167 Compare September 19, 2025 15:51
@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch from fe39167 to 1dae6dc Compare September 19, 2025 15:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@robertpi robertpi Awaiting requested review from robertpi robertpi is a code owner automatically assigned from DataDog/asm-java

@sezen-datadog sezen-datadog Awaiting requested review from sezen-datadog sezen-datadog is a code owner automatically assigned from DataDog/asm-java

@mcculls mcculls Awaiting requested review from mcculls mcculls is a code owner automatically assigned from DataDog/apm-java

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
comp: asm waf Application Security Management (WAF) inst: others All other instrumentations
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@manuel-alvarez-alvarez