Skills
skills/alahmadiq8/skills/k6-load-testing/Gen Agent Trust Hub

k6-load-testing

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill consists of documentation and templates for using Grafana k6 to perform performance and load testing. All behaviors described are appropriate for the skill's stated purpose.
  • [COMMAND_EXECUTION]: The skill uses the k6 run CLI command to execute JavaScript load-testing scripts. This is the primary and intended method of operation for the tool.
  • [EXTERNAL_DOWNLOADS]: The skill references the official jslib.k6.io utility library and GitHub repositories from the grafana organization. These are well-known and trusted sources in the k6 ecosystem.
  • [PROMPT_INJECTION]: The skill contains an attack surface for indirect prompt injection because it generates scripts based on user-provided input (URLs and payloads). However, it promotes secure management of credentials via environment variables.
  • Ingestion points: User-provided test parameters, URLs, and payloads processed in SKILL.md.
  • Boundary markers: Absent.
  • Capability inventory: Command-line execution (k6 run), network operations (http), and file read operations (open()) used in script examples.
  • Sanitization: No specific sanitization or validation of user-provided data is documented.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 08:17 PM