Skip to content

Add downstream HTTP request/response analysis for OkHttp2 client #9572

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add downstream HTTP request/response analysis for OkHttp2 client #9572

wants to merge 1 commit into from

Conversation

manuel-alvarez-alvarez
Copy link
Member

@manuel-alvarez-alvarez manuel-alvarez-alvarez commented Sep 19, 2025
edited
Loading

What Does This Do

Adds support for downstream HTTP request and response analysis in the OkHttp2 client instrumentation.

Motivation

Enable AppSec to analyze outbound requests made through OkHttp2. This expands coverage for API security and SSRF protections, while supporting downstream traffic inspection with configurable sampling.

Additional Notes

RFC

Contributor Checklist

Jira ticket: APPSEC-58613

@manuel-alvarez-alvarez manuel-alvarez-alvarez added inst: others All other instrumentations comp: asm waf Application Security Management (WAF) labels Sep 19, 2025
@manuel-alvarez-alvarez manuel-alvarez-alvarez changed the title Add http downstream request analysis for OkHttp2 Add downstream HTTP request/response analysis for OkHttp2 client Sep 19, 2025
@pr-commenter
Copy link

pr-commenter bot commented Sep 19, 2025
edited
Loading

Benchmarks

Startup

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master malvarez/appsec-downstream-http
git_commit_date 1758615873 1758624931
git_commit_sha 0094a60 f331f45
release_version 1.54.0-SNAPSHOT~0094a60a80 1.54.0-SNAPSHOT~f331f45fc6
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1758626720 1758626720
ci_job_id 1142805776 1142805776
ci_pipeline_id 77264930 77264930
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-0-w3em2o0e 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-0-w3em2o0e 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module Agent Agent
parent None None

Summary

Found 0 performance improvements and 5 performance regressions! Performance is the same for 51 metrics, 3 unstable metrics.

scenario Δ mean execution_time candidate mean execution_time baseline mean execution_time
scenario:startup:insecure-bank:iast:AppSec worse
[+1.379ms; +3.144ms] or [+4.112%; +9.373%]		 35.808ms 33.547ms
scenario:startup:insecure-bank:tracing:AppSec worse
[+1.811ms; +2.505ms] or [+5.856%; +8.100%]		 33.081ms 30.923ms
scenario:startup:petclinic:iast:AppSec worse
[+0.833ms; +2.166ms] or [+2.453%; +6.382%]		 35.436ms 33.937ms
scenario:startup:petclinic:profiling:AppSec worse
[+1.361ms; +1.870ms] or [+4.306%; +5.916%]		 33.230ms 31.614ms
scenario:startup:petclinic:tracing:AppSec worse
[+1.686ms; +2.191ms] or [+5.397%; +7.015%]		 33.173ms 31.235ms
Startup time reports for petclinic 
gantt
    title petclinic - global startup overhead: candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.006 s) : 0, 1006146
Total [baseline] (10.654 s) : 0, 10654225
Agent [candidate] (1.009 s) : 0, 1009224
Total [candidate] (10.683 s) : 0, 10683045
section appsec
Agent [baseline] (1.184 s) : 0, 1184025
Total [baseline] (10.914 s) : 0, 10914278
Agent [candidate] (1.192 s) : 0, 1191531
Total [candidate] (11.023 s) : 0, 11023450
section iast
Agent [baseline] (1.153 s) : 0, 1153309
Total [baseline] (10.894 s) : 0, 10893919
Agent [candidate] (1.147 s) : 0, 1147094
Total [candidate] (10.936 s) : 0, 10935965
section profiling
Agent [baseline] (1.154 s) : 0, 1154299
Total [baseline] (11.016 s) : 0, 11016104
Agent [candidate] (1.158 s) : 0, 1158271
Total [candidate] (10.999 s) : 0, 10999204
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.006 s -
Agent appsec 1.184 s 177.878 ms (17.7%)
Agent iast 1.153 s 147.163 ms (14.6%)
Agent profiling 1.154 s 148.153 ms (14.7%)
Total tracing 10.654 s -
Total appsec 10.914 s 260.053 ms (2.4%)
Total iast 10.894 s 239.694 ms (2.2%)
Total profiling 11.016 s 361.879 ms (3.4%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.009 s -
Agent appsec 1.192 s 182.307 ms (18.1%)
Agent iast 1.147 s 137.87 ms (13.7%)
Agent profiling 1.158 s 149.047 ms (14.8%)
Total tracing 10.683 s -
Total appsec 11.023 s 340.405 ms (3.2%)
Total iast 10.936 s 252.919 ms (2.4%)
Total profiling 10.999 s 316.158 ms (3.0%) 
gantt
    title petclinic - break down per module: candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.458 ms) : 0, 1458
crashtracking [candidate] (1.452 ms) : 0, 1452
BytebuddyAgent [baseline] (688.682 ms) : 0, 688682
BytebuddyAgent [candidate] (689.135 ms) : 0, 689135
GlobalTracer [baseline] (247.597 ms) : 0, 247597
GlobalTracer [candidate] (248.122 ms) : 0, 248122
AppSec [baseline] (31.235 ms) : 0, 31235
AppSec [candidate] (33.173 ms) : 0, 33173
Debugger [baseline] (6.332 ms) : 0, 6332
Debugger [candidate] (6.391 ms) : 0, 6391
Remote Config [baseline] (684.595 µs) : 0, 685
Remote Config [candidate] (716.618 µs) : 0, 717
Telemetry [baseline] (8.974 ms) : 0, 8974
Telemetry [candidate] (9.019 ms) : 0, 9019
section appsec
crashtracking [baseline] (1.454 ms) : 0, 1454
crashtracking [candidate] (1.457 ms) : 0, 1457
BytebuddyAgent [baseline] (711.0 ms) : 0, 711000
BytebuddyAgent [candidate] (713.86 ms) : 0, 713860
GlobalTracer [baseline] (239.466 ms) : 0, 239466
GlobalTracer [candidate] (240.54 ms) : 0, 240540
AppSec [baseline] (170.577 ms) : 0, 170577
AppSec [candidate] (173.801 ms) : 0, 173801
Debugger [baseline] (6.011 ms) : 0, 6011
Debugger [candidate] (6.051 ms) : 0, 6051
Remote Config [baseline] (627.333 µs) : 0, 627
Remote Config [candidate] (630.863 µs) : 0, 631
Telemetry [baseline] (9.112 ms) : 0, 9112
Telemetry [candidate] (9.198 ms) : 0, 9198
IAST [baseline] (24.688 ms) : 0, 24688
IAST [candidate] (24.889 ms) : 0, 24889
section iast
crashtracking [baseline] (1.476 ms) : 0, 1476
crashtracking [candidate] (1.448 ms) : 0, 1448
BytebuddyAgent [baseline] (815.892 ms) : 0, 815892
BytebuddyAgent [candidate] (809.476 ms) : 0, 809476
GlobalTracer [baseline] (239.141 ms) : 0, 239141
GlobalTracer [candidate] (238.203 ms) : 0, 238203
AppSec [baseline] (33.937 ms) : 0, 33937
AppSec [candidate] (35.436 ms) : 0, 35436
Debugger [baseline] (6.167 ms) : 0, 6167
Debugger [candidate] (6.077 ms) : 0, 6077
Remote Config [baseline] (598.783 µs) : 0, 599
Remote Config [candidate] (599.52 µs) : 0, 600
Telemetry [baseline] (8.384 ms) : 0, 8384
Telemetry [candidate] (8.265 ms) : 0, 8265
IAST [baseline] (26.357 ms) : 0, 26357
IAST [candidate] (26.255 ms) : 0, 26255
section profiling
crashtracking [baseline] (1.446 ms) : 0, 1446
crashtracking [candidate] (1.44 ms) : 0, 1440
BytebuddyAgent [baseline] (720.542 ms) : 0, 720542
BytebuddyAgent [candidate] (719.781 ms) : 0, 719781
GlobalTracer [baseline] (224.605 ms) : 0, 224605
GlobalTracer [candidate] (223.898 ms) : 0, 223898
AppSec [baseline] (31.614 ms) : 0, 31614
AppSec [candidate] (33.23 ms) : 0, 33230
Debugger [baseline] (6.518 ms) : 0, 6518
Debugger [candidate] (6.551 ms) : 0, 6551
Remote Config [baseline] (702.798 µs) : 0, 703
Remote Config [candidate] (780.595 µs) : 0, 781
Telemetry [baseline] (16.255 ms) : 0, 16255
Telemetry [candidate] (15.514 ms) : 0, 15514
ProfilingAgent [baseline] (101.434 ms) : 0, 101434
ProfilingAgent [candidate] (103.298 ms) : 0, 103298
Profiling [baseline] (102.026 ms) : 0, 102026
Profiling [candidate] (105.846 ms) : 0, 105846
Loading
Startup time reports for insecure-bank 
gantt
    title insecure-bank - global startup overhead: candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.01 s) : 0, 1009533
Total [baseline] (8.641 s) : 0, 8640670
Agent [candidate] (1.008 s) : 0, 1008215
Total [candidate] (8.661 s) : 0, 8660664
section iast
Agent [baseline] (1.144 s) : 0, 1144152
Total [baseline] (9.336 s) : 0, 9335676
Agent [candidate] (1.157 s) : 0, 1156777
Total [candidate] (9.308 s) : 0, 9308254
Loading
  • baseline results
Module Variant Duration Δ tracing
Agent tracing 1.01 s -
Agent iast 1.144 s 134.619 ms (13.3%)
Total tracing 8.641 s -
Total iast 9.336 s 695.006 ms (8.0%)
  • candidate results
Module Variant Duration Δ tracing
Agent tracing 1.008 s -
Agent iast 1.157 s 148.562 ms (14.7%)
Total tracing 8.661 s -
Total iast 9.308 s 647.59 ms (7.5%) 
gantt
    title insecure-bank - break down per module: candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.478 ms) : 0, 1478
crashtracking [candidate] (1.451 ms) : 0, 1451
BytebuddyAgent [baseline] (692.638 ms) : 0, 692638
BytebuddyAgent [candidate] (687.948 ms) : 0, 687948
GlobalTracer [baseline] (247.263 ms) : 0, 247263
GlobalTracer [candidate] (248.426 ms) : 0, 248426
AppSec [baseline] (30.923 ms) : 0, 30923
AppSec [candidate] (33.081 ms) : 0, 33081
Debugger [baseline] (6.325 ms) : 0, 6325
Debugger [candidate] (6.401 ms) : 0, 6401
Remote Config [baseline] (693.633 µs) : 0, 694
Remote Config [candidate] (716.002 µs) : 0, 716
Telemetry [baseline] (9.012 ms) : 0, 9012
Telemetry [candidate] (9.031 ms) : 0, 9031
section iast
crashtracking [baseline] (1.462 ms) : 0, 1462
crashtracking [candidate] (1.473 ms) : 0, 1473
BytebuddyAgent [baseline] (809.435 ms) : 0, 809435
BytebuddyAgent [candidate] (816.413 ms) : 0, 816413
GlobalTracer [baseline] (237.413 ms) : 0, 237413
GlobalTracer [candidate] (239.702 ms) : 0, 239702
AppSec [baseline] (33.547 ms) : 0, 33547
AppSec [candidate] (35.808 ms) : 0, 35808
Debugger [baseline] (6.071 ms) : 0, 6071
Debugger [candidate] (6.17 ms) : 0, 6170
Remote Config [baseline] (589.372 µs) : 0, 589
Remote Config [candidate] (608.314 µs) : 0, 608
Telemetry [baseline] (8.32 ms) : 0, 8320
Telemetry [candidate] (8.521 ms) : 0, 8521
IAST [baseline] (26.107 ms) : 0, 26107
IAST [candidate] (26.674 ms) : 0, 26674
Loading

Load

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master malvarez/appsec-downstream-http
git_commit_date 1758615873 1758624931
git_commit_sha 0094a60 f331f45
release_version 1.54.0-SNAPSHOT~0094a60a80 1.54.0-SNAPSHOT~f331f45fc6
See matching parameters
Baseline Candidate
application insecure-bank insecure-bank
ci_job_date 1758626398 1758626398
ci_job_id 1142805779 1142805779
ci_pipeline_id 77264930 77264930
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-0-bwhwa4uv 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-0-bwhwa4uv 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 1 performance improvements and 2 performance regressions! Performance is the same for 9 metrics, 12 unstable metrics.

scenario Δ mean http_req_duration Δ mean throughput candidate mean http_req_duration candidate mean throughput baseline mean http_req_duration baseline mean throughput
scenario:load:insecure-bank:iast:high_load worse
[+401.979µs; +763.972µs] or [+4.099%; +7.790%]		 unstable
[-80.277op/s; +27.964op/s] or [-16.956%; +5.907%]		 10.390ms 447.281op/s 9.807ms 473.438op/s
scenario:load:petclinic:profiling:high_load worse
[+3.225ms; +4.220ms] or [+6.916%; +9.051%]		 unstable
[-14.478op/s; -0.272op/s] or [-14.430%; -0.271%]		 50.346ms 92.963op/s 46.624ms 100.338op/s
scenario:load:petclinic:code_origins:high_load better
[-2.120ms; -1.292ms] or [-4.710%; -2.871%]		 unstable
[-3.697op/s; +11.772op/s] or [-3.556%; +11.324%]		 43.302ms 108.000op/s 45.008ms 103.963op/s
Request duration reports for petclinic 
gantt
    title petclinic - request duration [CI 0.99] : candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80
    dateFormat X
    axisFormat %s
section baseline
no_agent (37.19 ms) : 36891, 37488
.   : milestone, 37190,
appsec (49.127 ms) : 48699, 49554
.   : milestone, 49127,
code_origins (45.008 ms) : 44618, 45398
.   : milestone, 45008,
iast (44.383 ms) : 44010, 44755
.   : milestone, 44383,
profiling (46.624 ms) : 46216, 47032
.   : milestone, 46624,
tracing (43.038 ms) : 42674, 43402
.   : milestone, 43038,
section candidate
no_agent (37.014 ms) : 36711, 37317
.   : milestone, 37014,
appsec (49.671 ms) : 49240, 50102
.   : milestone, 49671,
code_origins (43.302 ms) : 42923, 43681
.   : milestone, 43302,
iast (44.108 ms) : 43727, 44489
.   : milestone, 44108,
profiling (50.346 ms) : 49835, 50858
.   : milestone, 50346,
tracing (43.892 ms) : 43523, 44261
.   : milestone, 43892,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 37.19 ms [36.891 ms, 37.488 ms] -
appsec 49.127 ms [48.699 ms, 49.554 ms] 11.937 ms (32.1%)
code_origins 45.008 ms [44.618 ms, 45.398 ms] 7.818 ms (21.0%)
iast 44.383 ms [44.01 ms, 44.755 ms] 7.193 ms (19.3%)
profiling 46.624 ms [46.216 ms, 47.032 ms] 9.434 ms (25.4%)
tracing 43.038 ms [42.674 ms, 43.402 ms] 5.848 ms (15.7%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 37.014 ms [36.711 ms, 37.317 ms] -
appsec 49.671 ms [49.24 ms, 50.102 ms] 12.657 ms (34.2%)
code_origins 43.302 ms [42.923 ms, 43.681 ms] 6.288 ms (17.0%)
iast 44.108 ms [43.727 ms, 44.489 ms] 7.095 ms (19.2%)
profiling 50.346 ms [49.835 ms, 50.858 ms] 13.333 ms (36.0%)
tracing 43.892 ms [43.523 ms, 44.261 ms] 6.878 ms (18.6%)
Request duration reports for insecure-bank 
gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80
    dateFormat X
    axisFormat %s
section baseline
no_agent (4.422 ms) : 4372, 4472
.   : milestone, 4422,
iast (9.807 ms) : 9646, 9969
.   : milestone, 9807,
iast_FULL (13.943 ms) : 13669, 14217
.   : milestone, 13943,
iast_GLOBAL (10.804 ms) : 10606, 11002
.   : milestone, 10804,
profiling (9.438 ms) : 9285, 9591
.   : milestone, 9438,
tracing (7.927 ms) : 7815, 8039
.   : milestone, 7927,
section candidate
no_agent (4.56 ms) : 4508, 4612
.   : milestone, 4560,
iast (10.39 ms) : 10215, 10565
.   : milestone, 10390,
iast_FULL (14.376 ms) : 14094, 14657
.   : milestone, 14376,
iast_GLOBAL (10.674 ms) : 10485, 10864
.   : milestone, 10674,
profiling (9.184 ms) : 9029, 9340
.   : milestone, 9184,
tracing (7.813 ms) : 7699, 7927
.   : milestone, 7813,
Loading
  • baseline results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 4.422 ms [4.372 ms, 4.472 ms] -
iast 9.807 ms [9.646 ms, 9.969 ms] 5.385 ms (121.8%)
iast_FULL 13.943 ms [13.669 ms, 14.217 ms] 9.521 ms (215.3%)
iast_GLOBAL 10.804 ms [10.606 ms, 11.002 ms] 6.382 ms (144.3%)
profiling 9.438 ms [9.285 ms, 9.591 ms] 5.016 ms (113.4%)
tracing 7.927 ms [7.815 ms, 8.039 ms] 3.505 ms (79.3%)
  • candidate results
Variant Request duration [CI 0.99] Δ no_agent
no_agent 4.56 ms [4.508 ms, 4.612 ms] -
iast 10.39 ms [10.215 ms, 10.565 ms] 5.831 ms (127.9%)
iast_FULL 14.376 ms [14.094 ms, 14.657 ms] 9.816 ms (215.3%)
iast_GLOBAL 10.674 ms [10.485 ms, 10.864 ms] 6.115 ms (134.1%)
profiling 9.184 ms [9.029 ms, 9.34 ms] 4.625 ms (101.4%)
tracing 7.813 ms [7.699 ms, 7.927 ms] 3.253 ms (71.3%)

Dacapo

Parameters

Baseline Candidate
baseline_or_candidate baseline candidate
git_branch master malvarez/appsec-downstream-http
git_commit_date 1758615873 1758624931
git_commit_sha 0094a60 f331f45
release_version 1.54.0-SNAPSHOT~0094a60a80 1.54.0-SNAPSHOT~f331f45fc6
See matching parameters
Baseline Candidate
application biojava biojava
ci_job_date 1758626926 1758626926
ci_job_id 1142805792 1142805792
ci_pipeline_id 77264930 77264930
cpu_model Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version Linux runner-zfyrx7zua-project-304-concurrent-1-xhrcd5kv 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux Linux runner-zfyrx7zua-project-304-concurrent-1-xhrcd5kv 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 11 metrics, 1 unstable metrics.

Execution time for biojava 
gantt
    title biojava - execution time [CI 0.99] : candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80
    dateFormat X
    axisFormat %s
section baseline
no_agent (14.867 s) : 14867000, 14867000
.   : milestone, 14867000,
appsec (15.125 s) : 15125000, 15125000
.   : milestone, 15125000,
iast (18.516 s) : 18516000, 18516000
.   : milestone, 18516000,
iast_GLOBAL (18.026 s) : 18026000, 18026000
.   : milestone, 18026000,
profiling (15.473 s) : 15473000, 15473000
.   : milestone, 15473000,
tracing (15.153 s) : 15153000, 15153000
.   : milestone, 15153000,
section candidate
no_agent (14.993 s) : 14993000, 14993000
.   : milestone, 14993000,
appsec (15.14 s) : 15140000, 15140000
.   : milestone, 15140000,
iast (18.634 s) : 18634000, 18634000
.   : milestone, 18634000,
iast_GLOBAL (18.131 s) : 18131000, 18131000
.   : milestone, 18131000,
profiling (15.539 s) : 15539000, 15539000
.   : milestone, 15539000,
tracing (15.213 s) : 15213000, 15213000
.   : milestone, 15213000,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 14.867 s [14.867 s, 14.867 s] -
appsec 15.125 s [15.125 s, 15.125 s] 258.0 ms (1.7%)
iast 18.516 s [18.516 s, 18.516 s] 3.649 s (24.5%)
iast_GLOBAL 18.026 s [18.026 s, 18.026 s] 3.159 s (21.2%)
profiling 15.473 s [15.473 s, 15.473 s] 606.0 ms (4.1%)
tracing 15.153 s [15.153 s, 15.153 s] 286.0 ms (1.9%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 14.993 s [14.993 s, 14.993 s] -
appsec 15.14 s [15.14 s, 15.14 s] 147.0 ms (1.0%)
iast 18.634 s [18.634 s, 18.634 s] 3.641 s (24.3%)
iast_GLOBAL 18.131 s [18.131 s, 18.131 s] 3.138 s (20.9%)
profiling 15.539 s [15.539 s, 15.539 s] 546.0 ms (3.6%)
tracing 15.213 s [15.213 s, 15.213 s] 220.0 ms (1.5%)
Execution time for tomcat 
gantt
    title tomcat - execution time [CI 0.99] : candidate=1.54.0-SNAPSHOT~f331f45fc6, baseline=1.54.0-SNAPSHOT~0094a60a80
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.472 ms) : 1460, 1483
.   : milestone, 1472,
appsec (3.629 ms) : 3415, 3842
.   : milestone, 3629,
iast (2.19 ms) : 2128, 2253
.   : milestone, 2190,
iast_GLOBAL (2.238 ms) : 2174, 2301
.   : milestone, 2238,
profiling (2.063 ms) : 2011, 2116
.   : milestone, 2063,
tracing (2.028 ms) : 1978, 2077
.   : milestone, 2028,
section candidate
no_agent (1.472 ms) : 1460, 1483
.   : milestone, 1472,
appsec (3.707 ms) : 3490, 3924
.   : milestone, 3707,
iast (2.187 ms) : 2125, 2249
.   : milestone, 2187,
iast_GLOBAL (2.238 ms) : 2174, 2301
.   : milestone, 2238,
profiling (2.047 ms) : 1996, 2098
.   : milestone, 2047,
tracing (2.029 ms) : 1980, 2078
.   : milestone, 2029,
Loading
  • baseline results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.472 ms [1.46 ms, 1.483 ms] -
appsec 3.629 ms [3.415 ms, 3.842 ms] 2.157 ms (146.6%)
iast 2.19 ms [2.128 ms, 2.253 ms] 718.765 µs (48.8%)
iast_GLOBAL 2.238 ms [2.174 ms, 2.301 ms] 766.093 µs (52.1%)
profiling 2.063 ms [2.011 ms, 2.116 ms] 591.793 µs (40.2%)
tracing 2.028 ms [1.978 ms, 2.077 ms] 555.969 µs (37.8%)
  • candidate results
Variant Execution Time [CI 0.99] Δ no_agent
no_agent 1.472 ms [1.46 ms, 1.483 ms] -
appsec 3.707 ms [3.49 ms, 3.924 ms] 2.236 ms (151.9%)
iast 2.187 ms [2.125 ms, 2.249 ms] 715.27 µs (48.6%)
iast_GLOBAL 2.238 ms [2.174 ms, 2.301 ms] 765.993 µs (52.0%)
profiling 2.047 ms [1.996 ms, 2.098 ms] 575.235 µs (39.1%)
tracing 2.029 ms [1.98 ms, 2.078 ms] 556.942 µs (37.8%)

@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch from e10c32e to 094375b Compare September 19, 2025 15:39
@manuel-alvarez-alvarez manuel-alvarez-alvarez marked this pull request as ready for review September 19, 2025 15:39
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Sep 19, 2025
edited
Loading

Hi! 👋 Thanks for your pull request! 🎉

To help us review it, please make sure to:

  • Add at least one type, and one component or instrumentation label to the pull request

If you need help, please check our contributing guidelines.

@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch 2 times, most recently from fe39167 to 1dae6dc Compare September 19, 2025 15:59
@manuel-alvarez-alvarez manuel-alvarez-alvarez added the type: enhancement Enhancements and improvements label Sep 22, 2025
@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch 2 times, most recently from 86ba6d2 to 4ce366c Compare September 22, 2025 14:58
@datadog-datadog-prod-us1
Copy link
Contributor

datadog-datadog-prod-us1 bot commented Sep 22, 2025
edited by datadog-official bot
Loading

🎯 Code Coverage
Patch Coverage: 60.44%
Total Coverage: 60.53% (+0.74%)

View detailed report

This comment will be updated automatically if new data arrives.
🔗 Commit SHA: f331f45 | Docs | Was this helpful? Give us feedback!

@manuel-alvarez-alvarez manuel-alvarez-alvarez force-pushed the malvarez/appsec-downstream-http branch from 4ce366c to f331f45 Compare September 23, 2025 10:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@robertpi robertpi Awaiting requested review from robertpi robertpi is a code owner automatically assigned from DataDog/asm-java

@sezen-datadog sezen-datadog Awaiting requested review from sezen-datadog sezen-datadog is a code owner automatically assigned from DataDog/asm-java

@mcculls mcculls Awaiting requested review from mcculls mcculls is a code owner automatically assigned from DataDog/apm-java

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
comp: asm waf Application Security Management (WAF) inst: others All other instrumentations type: enhancement Enhancements and improvements
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@manuel-alvarez-alvarez