Implemented New API Security Sampling mechanism

[ValentinZakharov]

What Does This Do

Implemented new endpoint based API Security Sampling mechanism.

• Removed old sampling
• Removed sampling configuration via remote-config
• Introduced API Access Tracker to be used for sampling

Motivation

This pull request is driven by the need to implement changes based on a newly issued RFC that consolidates all previous specifications. The RFC introduces several minor modifications, including a crucial distinction between user IDs and user logins. By adhering to this updated specification, we aim to enhance our system's accuracy and consistency in tracking user lifecycle events.

Additional Notes

Contributor Checklist

• Format the title according the contribution guidelines
• Assign the type: and (comp: or inst:) labels in addition to any usefull labels
• Don't use close, fix or any linking keywords when referencing an issue.
  Use solves instead, and assign the PR milestone to the issue
• Update the public documentation in case of new configuration flag or behavior

Jira ticket: [PROJ-IDENT]

[pr-commenter]

Benchmarks

Startup

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	vzakharov/api_sec_sampling_new
git_commit_date	1736444760	1736495566
git_commit_sha	03478c8	a9e0fe2
release_version	1.46.0-SNAPSHOT~03478c8e5c	1.46.0-SNAPSHOT~a9e0fe2225

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1736498043	1736498043
ci_job_id	761403629	761403629
ci_pipeline_id	52634979	52634979
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
module	Agent	Agent
parent	None	None
variant	iast	iast

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 61 metrics, 2 unstable metrics.

Startup time reports for insecure-bank

gantt
    title insecure-bank - global startup overhead: candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.069 s) : 0, 1068826
Total [baseline] (8.659 s) : 0, 8658643
Agent [candidate] (1.057 s) : 0, 1056830
Total [candidate] (8.623 s) : 0, 8623115
section iast
Agent [baseline] (1.182 s) : 0, 1182264
Total [baseline] (9.23 s) : 0, 9229707
Agent [candidate] (1.186 s) : 0, 1186283
Total [candidate] (9.26 s) : 0, 9260056
section iast_HARDCODED_SECRET_DISABLED
Agent [baseline] (1.184 s) : 0, 1183917
Total [baseline] (9.209 s) : 0, 9209135
Agent [candidate] (1.189 s) : 0, 1189316
Total [candidate] (9.258 s) : 0, 9257522
section iast_TELEMETRY_OFF
Agent [baseline] (1.185 s) : 0, 1185346
Total [baseline] (9.244 s) : 0, 9243771
Agent [candidate] (1.187 s) : 0, 1187066
Total [candidate] (9.229 s) : 0, 9229091

Loading

• baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.069 s	-
Agent	iast	1.182 s	113.437 ms (10.6%)
Agent	iast_HARDCODED_SECRET_DISABLED	1.184 s	115.091 ms (10.8%)
Agent	iast_TELEMETRY_OFF	1.185 s	116.519 ms (10.9%)
Total	tracing	8.659 s	-
Total	iast	9.23 s	571.064 ms (6.6%)
Total	iast_HARDCODED_SECRET_DISABLED	9.209 s	550.491 ms (6.4%)
Total	iast_TELEMETRY_OFF	9.244 s	585.127 ms (6.8%)

• candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.057 s	-
Agent	iast	1.186 s	129.453 ms (12.2%)
Agent	iast_HARDCODED_SECRET_DISABLED	1.189 s	132.486 ms (12.5%)
Agent	iast_TELEMETRY_OFF	1.187 s	130.236 ms (12.3%)
Total	tracing	8.623 s	-
Total	iast	9.26 s	636.942 ms (7.4%)
Total	iast_HARDCODED_SECRET_DISABLED	9.258 s	634.407 ms (7.4%)
Total	iast_TELEMETRY_OFF	9.229 s	605.977 ms (7.0%)

gantt
    title insecure-bank - break down per module: candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c

    dateFormat X
    axisFormat %s
section tracing
BytebuddyAgent [baseline] (724.386 ms) : 0, 724386
BytebuddyAgent [candidate] (713.437 ms) : 0, 713437
GlobalTracer [baseline] (258.519 ms) : 0, 258519
GlobalTracer [candidate] (255.982 ms) : 0, 255982
AppSec [baseline] (56.261 ms) : 0, 56261
AppSec [candidate] (55.837 ms) : 0, 55837
Remote Config [baseline] (715.702 µs) : 0, 716
Remote Config [candidate] (719.78 µs) : 0, 720
Telemetry [baseline] (13.637 ms) : 0, 13637
Telemetry [candidate] (15.818 ms) : 0, 15818
section iast
BytebuddyAgent [baseline] (831.169 ms) : 0, 831169
BytebuddyAgent [candidate] (832.104 ms) : 0, 832104
GlobalTracer [baseline] (247.067 ms) : 0, 247067
GlobalTracer [candidate] (248.215 ms) : 0, 248215
AppSec [baseline] (58.079 ms) : 0, 58079
AppSec [candidate] (59.591 ms) : 0, 59591
IAST [baseline] (21.388 ms) : 0, 21388
IAST [candidate] (21.727 ms) : 0, 21727
Remote Config [baseline] (672.877 µs) : 0, 673
Remote Config [candidate] (673.511 µs) : 0, 674
Telemetry [baseline] (8.821 ms) : 0, 8821
Telemetry [candidate] (8.926 ms) : 0, 8926
section iast_HARDCODED_SECRET_DISABLED
BytebuddyAgent [baseline] (832.512 ms) : 0, 832512
BytebuddyAgent [candidate] (835.976 ms) : 0, 835976
GlobalTracer [baseline] (247.343 ms) : 0, 247343
GlobalTracer [candidate] (247.951 ms) : 0, 247951
AppSec [baseline] (58.361 ms) : 0, 58361
AppSec [candidate] (59.185 ms) : 0, 59185
IAST [baseline] (21.224 ms) : 0, 21224
IAST [candidate] (21.521 ms) : 0, 21521
Remote Config [baseline] (659.813 µs) : 0, 660
Remote Config [candidate] (672.043 µs) : 0, 672
Telemetry [baseline] (8.761 ms) : 0, 8761
Telemetry [candidate] (8.855 ms) : 0, 8855
section iast_TELEMETRY_OFF
BytebuddyAgent [baseline] (833.346 ms) : 0, 833346
BytebuddyAgent [candidate] (834.388 ms) : 0, 834388
GlobalTracer [baseline] (248.081 ms) : 0, 248081
GlobalTracer [candidate] (248.368 ms) : 0, 248368
AppSec [baseline] (58.456 ms) : 0, 58456
AppSec [candidate] (58.541 ms) : 0, 58541
IAST [baseline] (21.005 ms) : 0, 21005
IAST [candidate] (21.134 ms) : 0, 21134
Remote Config [baseline] (655.553 µs) : 0, 656
Remote Config [candidate] (667.579 µs) : 0, 668
Telemetry [baseline] (8.677 ms) : 0, 8677
Telemetry [candidate] (8.783 ms) : 0, 8783

Loading

Startup time reports for petclinic

gantt
    title petclinic - global startup overhead: candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.057 s) : 0, 1057059
Total [baseline] (10.479 s) : 0, 10478687
Agent [candidate] (1.059 s) : 0, 1059400
Total [candidate] (10.411 s) : 0, 10411222
section appsec
Agent [baseline] (1.19 s) : 0, 1190414
Total [baseline] (10.746 s) : 0, 10745838
Agent [candidate] (1.196 s) : 0, 1196112
Total [candidate] (10.776 s) : 0, 10776327
section iast
Agent [baseline] (1.191 s) : 0, 1190866
Total [baseline] (10.985 s) : 0, 10984841
Agent [candidate] (1.185 s) : 0, 1184871
Total [candidate] (10.997 s) : 0, 10996603
section profiling
Agent [baseline] (1.283 s) : 0, 1282811
Total [baseline] (10.919 s) : 0, 10918619
Agent [candidate] (1.282 s) : 0, 1282223
Total [candidate] (10.906 s) : 0, 10906017

Loading

• baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.057 s	-
Agent	appsec	1.19 s	133.356 ms (12.6%)
Agent	iast	1.191 s	133.807 ms (12.7%)
Agent	profiling	1.283 s	225.752 ms (21.4%)
Total	tracing	10.479 s	-
Total	appsec	10.746 s	267.152 ms (2.5%)
Total	iast	10.985 s	506.155 ms (4.8%)
Total	profiling	10.919 s	439.933 ms (4.2%)

• candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.059 s	-
Agent	appsec	1.196 s	136.711 ms (12.9%)
Agent	iast	1.185 s	125.471 ms (11.8%)
Agent	profiling	1.282 s	222.823 ms (21.0%)
Total	tracing	10.411 s	-
Total	appsec	10.776 s	365.105 ms (3.5%)
Total	iast	10.997 s	585.382 ms (5.6%)
Total	profiling	10.906 s	494.795 ms (4.8%)

gantt
    title petclinic - break down per module: candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c

    dateFormat X
    axisFormat %s
section tracing
BytebuddyAgent [baseline] (714.004 ms) : 0, 714004
BytebuddyAgent [candidate] (716.245 ms) : 0, 716245
GlobalTracer [baseline] (256.227 ms) : 0, 256227
GlobalTracer [candidate] (256.961 ms) : 0, 256961
AppSec [baseline] (56.838 ms) : 0, 56838
AppSec [candidate] (56.535 ms) : 0, 56535
Remote Config [baseline] (722.749 µs) : 0, 723
Remote Config [candidate] (723.98 µs) : 0, 724
Telemetry [baseline] (14.262 ms) : 0, 14262
Telemetry [candidate] (13.791 ms) : 0, 13791
section appsec
BytebuddyAgent [baseline] (732.034 ms) : 0, 732034
BytebuddyAgent [candidate] (735.489 ms) : 0, 735489
GlobalTracer [baseline] (253.511 ms) : 0, 253511
GlobalTracer [candidate] (254.489 ms) : 0, 254489
AppSec [baseline] (171.205 ms) : 0, 171205
AppSec [candidate] (172.303 ms) : 0, 172303
Remote Config [baseline] (672.569 µs) : 0, 673
Remote Config [candidate] (658.956 µs) : 0, 659
Telemetry [baseline] (8.25 ms) : 0, 8250
Telemetry [candidate] (8.231 ms) : 0, 8231
IAST [baseline] (19.472 ms) : 0, 19472
IAST [candidate] (19.547 ms) : 0, 19547
section iast
BytebuddyAgent [baseline] (837.474 ms) : 0, 837474
BytebuddyAgent [candidate] (832.362 ms) : 0, 832362
GlobalTracer [baseline] (248.598 ms) : 0, 248598
GlobalTracer [candidate] (247.66 ms) : 0, 247660
AppSec [baseline] (58.368 ms) : 0, 58368
AppSec [candidate] (58.892 ms) : 0, 58892
Remote Config [baseline] (680.201 µs) : 0, 680
Remote Config [candidate] (675.243 µs) : 0, 675
Telemetry [baseline] (8.83 ms) : 0, 8830
Telemetry [candidate] (8.756 ms) : 0, 8756
IAST [baseline] (21.774 ms) : 0, 21774
IAST [candidate] (21.438 ms) : 0, 21438
section profiling
ProfilingAgent [baseline] (95.848 ms) : 0, 95848
ProfilingAgent [candidate] (95.96 ms) : 0, 95960
BytebuddyAgent [baseline] (711.676 ms) : 0, 711676
BytebuddyAgent [candidate] (708.735 ms) : 0, 708735
GlobalTracer [baseline] (369.207 ms) : 0, 369207
GlobalTracer [candidate] (370.916 ms) : 0, 370916
AppSec [baseline] (54.091 ms) : 0, 54091
AppSec [candidate] (54.836 ms) : 0, 54836
Remote Config [baseline] (717.267 µs) : 0, 717
Remote Config [candidate] (710.083 µs) : 0, 710
Telemetry [baseline] (8.836 ms) : 0, 8836
Telemetry [candidate] (8.82 ms) : 0, 8820
Profiling [baseline] (95.872 ms) : 0, 95872
Profiling [candidate] (95.984 ms) : 0, 95984

Loading

Load

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
end_time	2025-01-10T08:04:17	2025-01-10T08:11:18
git_branch	master	vzakharov/api_sec_sampling_new
git_commit_date	1736444760	1736495566
git_commit_sha	03478c8	a9e0fe2
release_version	1.46.0-SNAPSHOT~03478c8e5c	1.46.0-SNAPSHOT~a9e0fe2225
start_time	2025-01-10T08:04:03	2025-01-10T08:11:04

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1736497036	1736497036
ci_job_id	761403630	761403630
ci_pipeline_id	52634979	52634979
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
variant	iast	iast

Summary

Found 0 performance improvements and 1 performance regressions! Performance is the same for 12 metrics, 15 unstable metrics.

scenario	Δ mean http_req_duration	Δ mean throughput	candidate mean http_req_duration	candidate mean throughput	baseline mean http_req_duration	baseline mean throughput
scenario:load:petclinic:profiling	worse [+52.324µs; +105.197µs] or [+3.460%; +6.956%]	unstable [-663.056op/s; +435.136op/s] or [-21.549%; +14.142%]	1.591ms	2962.963op/s	1.512ms	3076.923op/s

Request duration reports for insecure-bank

gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c
    dateFormat X
    axisFormat %s
section baseline
no_agent (386.25 µs) : 367, 406
.   : milestone, 386,
iast (501.818 µs) : 480, 524
.   : milestone, 502,
iast_FULL (668.955 µs) : 647, 691
.   : milestone, 669,
iast_GLOBAL (527.748 µs) : 506, 550
.   : milestone, 528,
iast_HARDCODED_SECRET_DISABLED (502.231 µs) : 481, 524
.   : milestone, 502,
iast_INACTIVE (468.569 µs) : 448, 489
.   : milestone, 469,
iast_TELEMETRY_OFF (488.947 µs) : 467, 511
.   : milestone, 489,
tracing (459.737 µs) : 439, 480
.   : milestone, 460,
section candidate
no_agent (381.628 µs) : 362, 402
.   : milestone, 382,
iast (505.163 µs) : 483, 527
.   : milestone, 505,
iast_FULL (666.945 µs) : 645, 689
.   : milestone, 667,
iast_GLOBAL (541.522 µs) : 519, 564
.   : milestone, 542,
iast_HARDCODED_SECRET_DISABLED (508.13 µs) : 486, 530
.   : milestone, 508,
iast_INACTIVE (461.872 µs) : 440, 483
.   : milestone, 462,
iast_TELEMETRY_OFF (488.232 µs) : 467, 510
.   : milestone, 488,
tracing (456.689 µs) : 436, 477
.   : milestone, 457,

Loading

• baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	386.25 µs [366.637 µs, 405.863 µs]	-
iast	501.818 µs [480.073 µs, 523.562 µs]	115.567 µs (29.9%)
iast_FULL	668.955 µs [647.173 µs, 690.737 µs]	282.705 µs (73.2%)
iast_GLOBAL	527.748 µs [505.56 µs, 549.935 µs]	141.498 µs (36.6%)
iast_HARDCODED_SECRET_DISABLED	502.231 µs [480.89 µs, 523.572 µs]	115.981 µs (30.0%)
iast_INACTIVE	468.569 µs [447.644 µs, 489.494 µs]	82.319 µs (21.3%)
iast_TELEMETRY_OFF	488.947 µs [467.253 µs, 510.64 µs]	102.697 µs (26.6%)
tracing	459.737 µs [438.975 µs, 480.498 µs]	73.486 µs (19.0%)

• candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	381.628 µs [361.716 µs, 401.54 µs]	-
iast	505.163 µs [483.32 µs, 527.006 µs]	123.535 µs (32.4%)
iast_FULL	666.945 µs [645.07 µs, 688.821 µs]	285.318 µs (74.8%)
iast_GLOBAL	541.522 µs [518.572 µs, 564.471 µs]	159.894 µs (41.9%)
iast_HARDCODED_SECRET_DISABLED	508.13 µs [486.312 µs, 529.949 µs]	126.502 µs (33.1%)
iast_INACTIVE	461.872 µs [440.417 µs, 483.327 µs]	80.244 µs (21.0%)
iast_TELEMETRY_OFF	488.232 µs [466.925 µs, 509.538 µs]	106.604 µs (27.9%)
tracing	456.689 µs [436.324 µs, 477.055 µs]	75.061 µs (19.7%)

Request duration reports for petclinic

gantt
    title petclinic - request duration [CI 0.99] : candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.365 ms) : 1346, 1384
.   : milestone, 1365,
appsec (1.764 ms) : 1740, 1787
.   : milestone, 1764,
appsec_no_iast (1.775 ms) : 1750, 1799
.   : milestone, 1775,
iast (1.5 ms) : 1476, 1523
.   : milestone, 1500,
profiling (1.512 ms) : 1489, 1536
.   : milestone, 1512,
tracing (1.496 ms) : 1471, 1521
.   : milestone, 1496,
section candidate
no_agent (1.384 ms) : 1365, 1404
.   : milestone, 1384,
appsec (1.767 ms) : 1743, 1791
.   : milestone, 1767,
appsec_no_iast (1.762 ms) : 1738, 1786
.   : milestone, 1762,
iast (1.516 ms) : 1493, 1539
.   : milestone, 1516,
profiling (1.591 ms) : 1565, 1617
.   : milestone, 1591,
tracing (1.509 ms) : 1484, 1534
.   : milestone, 1509,

Loading

• baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	1.365 ms [1.346 ms, 1.384 ms]	-
appsec	1.764 ms [1.74 ms, 1.787 ms]	398.365 µs (29.2%)
appsec_no_iast	1.775 ms [1.75 ms, 1.799 ms]	409.576 µs (30.0%)
iast	1.5 ms [1.476 ms, 1.523 ms]	134.296 µs (9.8%)
profiling	1.512 ms [1.489 ms, 1.536 ms]	146.992 µs (10.8%)
tracing	1.496 ms [1.471 ms, 1.521 ms]	130.387 µs (9.6%)

• candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	1.384 ms [1.365 ms, 1.404 ms]	-
appsec	1.767 ms [1.743 ms, 1.791 ms]	382.922 µs (27.7%)
appsec_no_iast	1.762 ms [1.738 ms, 1.786 ms]	378.152 µs (27.3%)
iast	1.516 ms [1.493 ms, 1.539 ms]	132.016 µs (9.5%)
profiling	1.591 ms [1.565 ms, 1.617 ms]	206.918 µs (15.0%)
tracing	1.509 ms [1.484 ms, 1.534 ms]	125.06 µs (9.0%)

Dacapo

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	vzakharov/api_sec_sampling_new
git_commit_date	1736444760	1736495566
git_commit_sha	03478c8	a9e0fe2
release_version	1.46.0-SNAPSHOT~03478c8e5c	1.46.0-SNAPSHOT~a9e0fe2225

See matching parameters

	Baseline	Candidate
application	biojava	biojava
ci_job_date	1736497585	1736497585
ci_job_id	761403631	761403631
ci_pipeline_id	52634979	52634979
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
variant	appsec	appsec

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 12 metrics, 0 unstable metrics.

Execution time for tomcat

gantt
    title tomcat - execution time [CI 0.99] : candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.467 ms) : 1456, 1479
.   : milestone, 1467,
appsec (2.358 ms) : 2315, 2400
.   : milestone, 2358,
iast (2.101 ms) : 2047, 2155
.   : milestone, 2101,
iast_GLOBAL (2.138 ms) : 2084, 2192
.   : milestone, 2138,
profiling (1.988 ms) : 1943, 2033
.   : milestone, 1988,
tracing (1.936 ms) : 1895, 1978
.   : milestone, 1936,
section candidate
no_agent (1.471 ms) : 1460, 1483
.   : milestone, 1471,
appsec (2.359 ms) : 2316, 2401
.   : milestone, 2359,
iast (2.097 ms) : 2043, 2151
.   : milestone, 2097,
iast_GLOBAL (2.144 ms) : 2090, 2198
.   : milestone, 2144,
profiling (1.961 ms) : 1918, 2005
.   : milestone, 1961,
tracing (1.936 ms) : 1895, 1977
.   : milestone, 1936,

Loading

• baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.467 ms [1.456 ms, 1.479 ms]	-
appsec	2.358 ms [2.315 ms, 2.4 ms]	890.627 µs (60.7%)
iast	2.101 ms [2.047 ms, 2.155 ms]	633.689 µs (43.2%)
iast_GLOBAL	2.138 ms [2.084 ms, 2.192 ms]	670.608 µs (45.7%)
profiling	1.988 ms [1.943 ms, 2.033 ms]	520.71 µs (35.5%)
tracing	1.936 ms [1.895 ms, 1.978 ms]	469.086 µs (32.0%)

• candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.471 ms [1.46 ms, 1.483 ms]	-
appsec	2.359 ms [2.316 ms, 2.401 ms]	887.18 µs (60.3%)
iast	2.097 ms [2.043 ms, 2.151 ms]	625.456 µs (42.5%)
iast_GLOBAL	2.144 ms [2.09 ms, 2.198 ms]	672.702 µs (45.7%)
profiling	1.961 ms [1.918 ms, 2.005 ms]	489.893 µs (33.3%)
tracing	1.936 ms [1.895 ms, 1.977 ms]	464.222 µs (31.5%)

Execution time for biojava

gantt
    title biojava - execution time [CI 0.99] : candidate=1.46.0-SNAPSHOT~a9e0fe2225, baseline=1.46.0-SNAPSHOT~03478c8e5c
    dateFormat X
    axisFormat %s
section baseline
no_agent (15.265 s) : 15265000, 15265000
.   : milestone, 15265000,
appsec (15.071 s) : 15071000, 15071000
.   : milestone, 15071000,
iast (18.647 s) : 18647000, 18647000
.   : milestone, 18647000,
iast_GLOBAL (18.001 s) : 18001000, 18001000
.   : milestone, 18001000,
profiling (15.157 s) : 15157000, 15157000
.   : milestone, 15157000,
tracing (14.756 s) : 14756000, 14756000
.   : milestone, 14756000,
section candidate
no_agent (15.054 s) : 15054000, 15054000
.   : milestone, 15054000,
appsec (15.046 s) : 15046000, 15046000
.   : milestone, 15046000,
iast (19.148 s) : 19148000, 19148000
.   : milestone, 19148000,
iast_GLOBAL (17.95 s) : 17950000, 17950000
.   : milestone, 17950000,
profiling (15.171 s) : 15171000, 15171000
.   : milestone, 15171000,
tracing (14.987 s) : 14987000, 14987000
.   : milestone, 14987000,

Loading

• baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	15.265 s [15.265 s, 15.265 s]	-
appsec	15.071 s [15.071 s, 15.071 s]	-194.0 ms (-1.3%)
iast	18.647 s [18.647 s, 18.647 s]	3.382 s (22.2%)
iast_GLOBAL	18.001 s [18.001 s, 18.001 s]	2.736 s (17.9%)
profiling	15.157 s [15.157 s, 15.157 s]	-108.0 ms (-0.7%)
tracing	14.756 s [14.756 s, 14.756 s]	-509.0 ms (-3.3%)

• candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	15.054 s [15.054 s, 15.054 s]	-
appsec	15.046 s [15.046 s, 15.046 s]	-8.0 ms (-0.1%)
iast	19.148 s [19.148 s, 19.148 s]	4.094 s (27.2%)
iast_GLOBAL	17.95 s [17.95 s, 17.95 s]	2.896 s (19.2%)
profiling	15.171 s [15.171 s, 15.171 s]	117.0 ms (0.8%)
tracing	14.987 s [14.987 s, 14.987 s]	-67.0 ms (-0.4%)