Skills
skills/naodeng/awesome-qa-skills/performance-test-k6/Gen Agent Trust Hub

performance-test-k6

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill contains shell scripts (run-tests.sh, run-local-smoke.sh) designed to automate performance tests using the k6 binary and Python utilities. These operations are transparent and consistent with the skill's stated purpose of performance automation.
  • [EXTERNAL_DOWNLOADS]: The k6 testing scripts are configured to make network requests to target applications (defaulting to https://test.k6.io or a local mock server) to measure performance metrics. This is standard behavior for load testing tools.
  • [REMOTE_CODE_EXECUTION]: No patterns of remote script execution or untrusted code loading were identified. The included Python and JavaScript files are static and perform defined tasks like data summarization and HTTP mocking.
  • [DATA_EXFILTRATION]: No evidence of unauthorized data collection or exfiltration was found. Network operations are localized to the testing targets and do not access sensitive user files or credentials.
  • [PROMPT_INJECTION]: The instructions provided in SKILL.md and the prompts folder are focused on guiding the AI to generate valid k6 configurations and plans. They do not contain instructions to bypass safety filters or override system behavior.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 09:00 AM