Automic VaultAutomic Vault

brew

Install locust with Homebrew, apt

Scalable user load testing tool written in Python. Version 2.44.4 via Homebrew; verified 2026-06-19.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install locust

local Homebrew formula metadata

Linux

Debian aptverified · 92%
sudo apt install python3-locust

Debian stable package indexes · python3-locust · source: deb.debian.org

overview

Package summary

Scalable user load testing tool written in Python

Commands and aliases

  • locust

history

Project history and usage

Locust is an open source load-testing framework that lets users write test scenarios in Python code and run them from a CLI and web UI. It became a major package in performance-testing workflows because it replaces click-built test plans with ordinary code and scalable distributed execution.

Project history

Locust's official history page says it was created out of frustration with existing tools such as Apache JMeter and Tsung. The objection was both ergonomic and architectural: graphical point-and-click test design made complex scenarios hard to maintain, and thread-bound approaches limited concurrency.

The project was created in 2011 by Carl Bystrom and Jonatan Heyman while they were working on Battlelog, the companion app for Battlefield 3. That origin explains Locust's emphasis on simulating many concurrent users while keeping test behavior programmable.

The official repository describes Locust as an open source performance/load testing tool for HTTP and other protocols, with tests defined in regular Python code. Its docs grew to cover configuration files, distributed load generation, Docker, headless operation, web UI customization, and hosted load testing.

Adoption history

Locust adoption spread among Python teams and service developers who wanted load tests in the same language and version-control workflow as application code. The official Locust Cloud retrospective describes the project as reaching thirteen years and tens of millions of downloads, indicating broad use beyond its original game-service context.

The 1.0 release was a significant API cleanup: the changelog documents renaming `Locust` and `HttpLocust` classes to `User` and `HttpUser`, changing client-count terminology to users, and enabling task declarations directly on User classes. Later 2.x releases continued that modernization while preserving the package's code-first model.

How it is used

A normal Locust project defines user behavior in a Python locustfile, then runs `locust` to open the web UI or uses headless command-line options in CI. The configuration docs list CLI flags, environment variables, and config-file keys for the same settings.

Locust looks for `~/.locust.conf`, `./locust.conf`, and `./pyproject.toml` by default, with `--config` available for an additional file. No official credentials file is documented for the open source CLI.

Why package nerds care

Locust is important to package nerds because it is a Python CLI that is also a test framework, a web application, and a distributed worker system. Packaging has to account for Python versions, transitive networking dependencies, and executable entry points.

It is also culturally important as a counterpoint to GUI-first load-testing tools: install a package, commit a locustfile, and scale from a local smoke test to distributed load generation.

Timeline

  • 2011: Locust was created by Carl Bystrom and Jonatan Heyman during Battlelog development.
  • 2014: Locust 0.7-era changes updated major dependencies such as requests and gevent.
  • 2020: Locust 1.0 introduced breaking API changes including `User` and `HttpUser` class names.
  • 2021: Locust 2.0 refined distributed user control and other APIs.
  • 2024: Locust maintainers described the project as thirteen years old with more than 60 million downloads.

Related projects

  • Apache JMeter and Tsung are explicitly named in Locust's official history as prior tools the authors had used.
  • k6, Gatling, Artillery, wrk, Vegeta, and ApacheBench occupy adjacent load-testing niches with different languages and execution models.

security posture

No protected-tool coverage found yet

No matching local secret-handling manifest was found for locust. Nucleus package metadata is still published here so future coverage has a stable package URL.

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Installs with 3 runtime dependencies.
  • Build metadata lists 2 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

local files

Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.

Configuration files

Config paths the tool may read or write during local use.

Unix
~/.locust.conf./locust.conf./pyproject.toml

executables

Installed executables

CommandKindExposureNote
locustcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version2.44.4
manager updated2026-06-19
local dataok
upstreamnot checked
latest detectednot detected

https://locust.io/

  • infoRelease/tag comparison is only available for GitHub repositories.https://locust.io/none confidence

install metadata

Package metadata

Package keybrew:locust
Version2.44.4
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/locust
Homepagehttps://locust.io/
Repositoryhttps://github.com/locustio/locust
Upstream docshttps://docs.locust.io/
LicenseMIT
Source archivehttps://files.pythonhosted.org/packages/15/58/a9642fa8604ae13d87b408c8c90cac99f3cfd59af59a085ac7435e825f68/locust-2.44.4.tar.gz
Last updated2026-06-19T18:39:59Z
Pulseupdated
Dependenciescertifi, python@3.14, zeromq
Build dependenciescmake, ninja
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namelocust
Version Scheme0
Revision0
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Debian apt95%

python3-locust 2.24.0-1

Developer friendly load testing framework

https://locust.io/

sudo apt install python3-locust
  • Section: python
  • Architecture: all
  • Source Package: locust
  • 15 dependencies
  • 1 provides
  • normalized package name match
  • Matched by: Locust
Debian stable package indexes · deb.debian.org · Debian stable package indexes: python3-locust from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Ubuntu apt95%

python3-locust 2.24.0-1

Developer friendly load testing framework

https://locust.io/

sudo apt install python3-locust
  • Section: universe/python
  • Architecture: all
  • Source Package: locust
  • 15 dependencies
  • 1 provides
  • normalized package name match
  • Matched by: Locust
Ubuntu 24.04 LTS package indexes · archive.ubuntu.com · Ubuntu 24.04 LTS package indexes: python3-locust from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated configuration and credential file locations
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment