k6-load-testing
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides standard installation commands for k6 using package managers such as Homebrew, Chocolatey, and APT. It includes administrative commands (sudo) specifically for Linux repository configuration, which is a common practice for adding third-party official repositories.
- [EXTERNAL_DOWNLOADS]: The installation instructions reference the official k6 repository (dl.k6.io) and include GPG key verification. Additionally, the CI/CD examples utilize the official grafana/k6-action from GitHub, ensuring dependencies are sourced from trusted providers.
- [DATA_EXFILTRATION]: Provides examples of reading local data files (CSV and JSON) to parameterize load tests. While these scripts read local files and transmit data to target endpoints, this behavior is restricted to the specific test files defined by the user and is the core functionality of the load testing tool.
Audit Metadata