Automic VaultAutomic Vault

brew

Install vegeta with Homebrew, MacPorts, Nix, pacman, scoop, zypper

HTTP load testing tool and library. Version 12.13.0 via Homebrew; verified from local package data.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install vegeta

local Homebrew formula metadata

MacPortsverified · 94%
sudo port install vegeta

MacPorts ports tree · net/vegeta/Portfile · source: api.github.com

Linux

Nixverified · 92%
nix profile install nixpkgs#vegeta

nixpkgs package indexes · pkgs/by-name/ve/vegeta/package.nix · source: api.github.com

Arch Linux pacmanverified · 92%
sudo pacman -S vegeta

Arch Linux sync databases · vegeta · source: geo.mirror.pkgbuild.com

openSUSE zypperverified · 92%
sudo zypper install vegeta

openSUSE Tumbleweed package metadata · vegeta · source: download.opensuse.org

Windows

Scoopverified · 92%
scoop install main/vegeta

Scoop official bucket manifest trees · bucket/vegeta.json · source: api.github.com

overview

Package summary

HTTP load testing tool and library

Commands and aliases

  • vegeta

history

Project history and usage

Vegeta is a Go-based HTTP load testing command-line tool and library by Tomas Senart. Its identity in the load-testing niche is the constant-rate attack model: instead of simply driving as much traffic as possible, users specify a request rate and duration, then pipe results into text, JSON, histogram, or plot/report commands.

Project history

The public project dates to 2013, with secondary software cataloging and the upstream repository tying the first release era to August 2013. The repository's README frames the tool as something built from the need to drill HTTP services at a constant request rate, and the project has remained a compact Go utility rather than growing into a hosted load-testing service.

Over time Vegeta settled into the Unix-pipeline shape that package users recognize: `vegeta attack` generates binary result streams, `vegeta report` summarizes them, `vegeta plot` creates an HTML visualization, and the library package lets Go programs embed the attacker directly.

Adoption history

Vegeta became popular with operators and backend developers who wanted a small, scriptable load generator that could be installed from language, OS, and package-manager channels. Tutorials from cloud providers and performance-testing blogs continue to teach it as a practical way to validate request-per-second targets and latency behavior for HTTP APIs.

Its adoption has been strongest in the space between heavyweight test suites and commercial load-testing platforms: teams use it for quick pre-production checks, regression comparisons, and reproducible command-line benchmarks.

How it is used

Typical use is a pipeline such as emitting target lines, running `vegeta attack` with a rate and duration, then piping the encoded results to `vegeta report` or saving them for later plotting. More advanced users provide target files with methods, headers, and bodies, or use the Go library to generate traffic from test harnesses.

Because Vegeta tries to sustain a specified rate, package users pay attention to concurrency and overload behavior: if the system under test slows down, the attacker may need more workers to keep the rate, which is useful for stress testing but can intensify an already overloaded target.

Why package nerds care

In package-manager terms, Vegeta is the sort of tool people install because it composes cleanly with shells, CI jobs, and simple HTTP fixtures. It is small, portable, and memorable enough that the binary name itself has become shorthand for a constant-RPS smoke test.

Timeline

  • 2013: Vegeta appears publicly as an HTTP load-testing tool written in Go.
  • 2015: GitHub issue discussions show users pushing on overload detection and concurrency behavior, reflecting real operational use.
  • 2020s: Cloud-provider and community tutorials continue to present Vegeta as a lightweight CLI for API and service load testing.

Related projects

  • Vegeta is often considered alongside ApacheBench, wrk, k6, JMeter, Locust, Gatling, and GoReplay. Its closest niche is the small reproducible CLI benchmark, especially when a constant request rate matters more than browser-like scenario scripting.

security posture

Risk level: blue

broad file, network, media, or database tool signal.

Risk classifier

blue risk · medium confidence · tool

Why

  • broad file, network, media, or database tool signal

Signals

  • text:http

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
vegetacliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version12.13.0
manager updated
local dataok
upstreamcurrent
latest detectedv12.13.0

https://github.com/tsenart/vegeta

  • infoNo package-manager update timestamp was available.low confidence

install metadata

Package metadata

Package keybrew:vegeta
Version12.13.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/vegeta
Homepagehttps://github.com/tsenart/vegeta
Repositoryhttps://github.com/tsenart/vegeta
Upstream docshttps://github.com/tsenart/vegeta#readme
LicenseMIT
Source archivehttps://github.com/tsenart/vegeta/archive/refs/tags/v12.13.0.tar.gz
Build dependenciesgo
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namevegeta
Version Scheme0
Revision0
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Nix95%

vegeta

nix profile install nixpkgs#vegeta
  • normalized package name match
  • Matched by: Vegeta
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/ve/vegeta/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
pacman95%

vegeta 12.13.0-2

HTTP load testing tool

https://github.com/tsenart/vegeta

sudo pacman -S vegeta
  • License: MIT
  • Architecture: x86_64
  • 1 dependencies
  • normalized package name match
  • Matched by: Vegeta
Arch Linux sync databases · geo.mirror.pkgbuild.com · Arch Linux sync databases: vegeta from https://geo.mirror.pkgbuild.com/extra/os/x86_64/extra.db.tar.gz
zypper95%

vegeta 12.13.0-1.4

HTTP load testing tool and library

https://github.com/tsenart/vegeta

sudo zypper install vegeta
  • License: MIT
  • Category: Unspecified
  • Architecture: x86_64
  • Source Package: vegeta
  • 1 dependencies
  • 1 provides
  • normalized package name match
  • Matched by: Vegeta
openSUSE Tumbleweed package metadata · download.opensuse.org · openSUSE Tumbleweed package metadata: vegeta from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst
MacPorts95%

vegeta

sudo port install vegeta
  • normalized package name match
  • Matched by: Vegeta
MacPorts ports tree · api.github.com · MacPorts ports tree: net/vegeta/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Scoop95%

main/vegeta

scoop install main/vegeta
  • normalized package name match
  • Matched by: Vegeta
Scoop official bucket manifest trees · api.github.com · Scoop official bucket manifest trees: bucket/vegeta.json from https://api.github.com/repos/ScoopInstaller/Main/git/trees/master?recursive=1

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment