load-testing-commerce
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate templates for performance testing using k6 and Artillery. It includes safeguards such as instructions to use staging environments and Stripe test tokens (
tok_visa) instead of real credentials. - [EXTERNAL_DOWNLOADS]: A GitHub Actions workflow in
SKILL.mddownloads and installs the k6 load testing tool from its official repository atdl.k6.io. This is an expected operation for setting up the required environment. - [COMMAND_EXECUTION]: The skill instructs on using command-line tools like k6 and Artillery to execute load tests. It also uses standard package management commands (
apt-get,apt-key) within a CI/CD context to install dependencies. - [DATA_EXPOSURE_AND_EXFILTRATION]: The skill identifies the use of Stripe's well-known public test token
tok_visafor simulating payments in a safe manner without exposing real financial data.
Audit Metadata