k6-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured guidance and best practices for using k6, an open-source load testing tool. All instructions align with standard development and performance testing workflows.
- [EXTERNAL_DOWNLOADS]: The skill references 'https://jslib.k6.io/k6-utils/1.4.0/index.js', which is an official and well-known repository for k6 utility libraries. This is a standard practice in the k6 ecosystem for including community-maintained helper functions.
- [COMMAND_EXECUTION]: The skill provides standard command-line examples for running k6 ('k6 run', 'k6 cloud run') and compiling TypeScript ('esbuild'). These commands are intended for the user's local environment and are typical for the described development workflow.
- [CREDENTIALS_UNSAFE]: Example code snippets use generic placeholder values like 'secret', 'admin', and 'test-key' for demonstration purposes. The skill explicitly teaches security best practices by encouraging the use of environment variables ('__ENV') to handle real credentials safely.
Audit Metadata