release notes/v1.6.0.md
k6 v1.6.0 is here 🎉! This release includes:
k6 deps command for analyzing script dependencies.frameLocator(), goBack(), goForward() methods.jslib gets a new TOTP library for time-based one-time password generation and validation.There are no breaking changes in this release.
Cloud commands now support configuring the default Grafana Cloud stack you want to use. The stack slug (or stack id) is used by the Cloud to determine which default project to use when not explicitly provided.
Previously, users had to specify the project id for every test run. With this change, you can configure a default stack during login, and k6 will use it to automatically resolve the appropriate default project. This is particularly useful for organizations with multiple Grafana Cloud stacks or when working across different teams and environments.
Users can also set up a specific stack for every test run, either using the new option stackID or the environment variable K6_CLOUD_STACK_ID.
Please note that, in k6 v2, this stack information will become mandatory to run a test.
# Login interactively and select default stack
k6 cloud login
# Login and set default stack with token
k6 cloud login --token $MY_TOKEN --stack my-stack-slug
# Run test using the configured default stack
k6 cloud run script.js
# Run test using a specific stack
K6_CLOUD_STACK_ID=12345 k6 cloud run script.js
# Stack id can also be set in the options
export const options = {
cloud: {
stackID: 123,
projectID: 789, // If the project does not belong to the stack, this will throw an error
},
};
This simplifies the cloud testing workflow and prepares k6 for upcoming changes to the Grafana Cloud k6 authentication process, where the stack will eventually become mandatory.
k6 deps command and manifest support #5410, #5427A new k6 deps command is now available to analyze and list all dependencies of a given script or archive. This is particularly useful for understanding which extensions are required to run a script, especially when using auto extension resolution.
The command identifies all imports in your script and lists dependencies that might be needed for building a new binary with auto extension resolution. Like auto extension resolution itself, this only accounts for imports, not dynamic require() calls.
# Analyze script dependencies
k6 deps script.js
# Output in JSON format for programmatic consumption
k6 deps --json script.js
# Analyze archived test dependencies
k6 deps archive.tar
This makes it easier to understand extension requirements, share scripts with clear dependency information, and integrate k6 into automated build pipelines.
In addition, k6 now supports a manifest that specifies default version constraints for dependencies when no version is defined in the script using pragmas. If a dependency is imported without an explicit version, it defaults to "*", and the manifest can be used to replace that with a concrete version constraint.
The manifest is set through an environment variable as JSON with keys being a dependency and values being constraints:
K6_DEPENDENCIES_MANIFEST='{"k6/x/faker": ">=v0.4.4"}' k6 run scripts.js
In this example, if the script only imports k6/x/faker and does not use a use k6 with k6/x/faker ... directive, it will set the version constraint to >=v0.4.4. It will not make any changes if k6/x/faker is not a dependency of the script at all.
frameLocator() method #5487The browser module now supports frameLocator() on Page, Frame, Locator, and FrameLocator objects. This method creates a locator for working with iframe elements without the need to explicitly switch contexts, making it much easier to interact with embedded content.
Frame locators are particularly valuable when testing applications with nested iframes, as they allow you to chain locators naturally while maintaining readability:
<details> <summary>Click to expand example code</summary>import { browser } from 'k6/browser';
export const options = {
scenarios: {
ui: {
executor: 'shared-iterations',
options: {
browser: {
type: 'chromium',
},
},
},
},
};
export default async function () {
const page = await browser.newPage();
try {
await page.goto('https://example.com');
// Locate an iframe and interact with elements inside it
const frame = page.frameLocator('#payment-iframe');
await frame.locator('#card-number').fill('4242424242424242');
await frame.locator('#submit-button').click();
// Chain frame locators for nested iframes
const nestedFrame = page
.frameLocator('#outer-frame')
.frameLocator('#inner-frame');
await nestedFrame.locator('#nested-content').click();
} finally {
await page.close();
}
}
This complements existing frame handling methods and provides a more intuitive API for working with iframe-heavy applications.
goBack() and goForward() navigation methods #5494The browser module now supports page.goBack() and page.goForward() methods for browser history navigation. These methods allow you to navigate the page's history, similar to clicking the browser's back/forward buttons.
import { browser } from 'k6/browser';
export const options = {
scenarios: {
ui: {
executor: 'shared-iterations',
options: {
browser: {
type: 'chromium',
},
},
},
},
};
export default async function () {
const page = await browser.newPage();
try {
await page.goto('https://example.com');
await page.goto('https://example.com/page2');
// Navigate back to the previous page
await page.goBack();
// Navigate forward again
await page.goForward();
// Both methods support optional timeout and waitUntil parameters
await page.goBack({ waitUntil: 'networkidle' });
} finally {
await page.close();
}
}
The browser module now supports page.on('requestfailed') and page.on('requestfinished') event handlers, enabling better monitoring and debugging of network activity during browser tests.
The requestfailed event fires when a request fails (network errors, aborts, etc.), while requestfinished fires when a request completes successfully.
import { browser } from 'k6/browser';
export const options = {
scenarios: {
ui: {
executor: 'shared-iterations',
options: {
browser: {
type: 'chromium',
},
},
},
},
};
export default async function () {
const page = await browser.newPage();
// Monitor failed requests
page.on('requestfailed', (request) => {
console.log(`Request failed: ${request.url()}`);
});
// Monitor successful requests
page.on('requestfinished', (request) => {
console.log(`Request finished: ${request.url()}`);
});
await page.goto('https://example.com');
await page.close();
}
These event handlers provide deeper insights into network behavior during browser testing and help identify issues that might not be immediately visible.
The crypto module now supports PBKDF2 for deriving cryptographic keys from passwords. PBKDF2 is widely used for password hashing and key derivation in security-sensitive applications, and this addition enables testing of systems that use PBKDF2 for authentication or encryption.
For usage examples, check out the one provided in the repository or refer to the documentation.
The websockets module has been promoted to stable status and is now available via the k6/websockets path.
The experimental k6/experimental/websockets module will be removed in a future release. Users should migrate to the stable k6/websockets module.
To migrate, simply update your import statement:
// Old (experimental)
import ws from 'k6/experimental/websockets';
// New (stable)
import ws from 'k6/websockets';
No other changes are required because the API is the same.
console.log() now properly displays ArrayBuffer and TypedArray objects, making it easier to debug binary data handling in your test scripts. Previously, these types would not display useful information, making debugging difficult when working with binary protocols, file uploads, or WebSocket binary messages.
// Log ArrayBuffer - shows detailed byte contents
const buffer = new ArrayBuffer(8);
const view = new Int32Array(buffer);
view[0] = 4;
view[1] = 2;
console.log(buffer);
// Output: ArrayBuffer { [Uint8Contents]: <04 00 00 00 02 00 00 00>, byteLength: 8 }
// Log TypedArrays - shows type, length, and values
const int32 = new Int32Array([4, 2]);
console.log(int32);
// Output: Int32Array(2) [ 4, 2 ]
// Nested objects with TypedArrays
console.log({ v: int32 });
// Output: { v: Int32Array(2) [ 4, 2 ] }
// Complex nested structures
console.log({
name: "test",
buffer: buffer,
view: int32
});
// Output: { name: "test", buffer: ArrayBuffer {...}, view: Int32Array(2) [...] }
The experimental Prometheus remote write output now supports configuring the minimum TLS version used for connections. This allows you to meet specific security requirements or compatibility constraints when sending metrics to Prometheus endpoints.
If not set, the default minimum TLS version is 1.3.
K6_PROMETHEUS_RW_TLS_MIN_VERSION=1.3 k6 run script.js -o experimental-prometheus-rw
A new TOTP (Time-based One-Time Password) library is now available in jslib.k6.io, enabling k6 scripts to generate and validate time-based one-time passwords. This is particularly useful for testing applications that use TOTP-based two-factor authentication (2FA), such as authenticator apps like Google Authenticator or Authy. See the documentation at k6-totp.
<details> <summary>Click to expand example code</summary>import http from 'k6/http';
import { TOTP } from 'https://jslib.k6.io/totp/1.0.0/index.js';
export default async function () {
// Initialize TOTP with your secret key (base32 encoded)
// The second parameter is the number of digits (typically 6 or 8)
const totp = new TOTP('GEZDGNBVGY3TQOJQGEZDGNBVGY3TQOJQ', 6);
// Generate the current TOTP code
const code = await totp.gen();
console.log(`Generated TOTP code: ${code}`);
// Use the TOTP code in authentication
const response = http.post('https://api.example.com/login', JSON.stringify({
username: '[email protected]',
password: 'password123',
totpCode: code
}), {
headers: { 'Content-Type': 'application/json' }
});
// Optionally verify a TOTP code
const isValid = await totp.verify(code);
console.log(`Code is valid: ${isValid}`);
}
The library follows the standard TOTP RFC 6238 specification, ensuring compatibility with standard authenticator applications.
mcp-k6 is an experimental Model Context Protocol (MCP) server for k6. Once connected to your AI assistant or MCP-compatible editor (such as Cursor, VS Code, or Claude Desktop), it helps you write better k6 scripts faster and run them with confidence.
With mcp-k6, your AI assistant can:
export default function declarations before execution.To get started, install mcp-k6 via Docker, Homebrew, or from source, then configure it with your editor. See the documentation for installation instructions and setup guides.
ExecutionStatusMarkedAsFailed when a test is explicitly marked as failed using exec.test.fail().csv.parse() where each VU created its own copy of CSV data instead of sharing it.saltLength: 0 with RSA-PSS sign/verify operations.Config.String() in the OpenTelemetry output to properly display ExporterProtocol.WaitForEvent mapping more type-safe and consistent by using a typed event name parameter instead of a raw string.make generate command OS-agnostic for cross-platform compatibility.github.com/jhump/protoreflect/desc/protoparse with github.com/bufbuild/protocompile for better protobuf parsing.cloudapi/v6 package with authentication features.onAttachedToTarget context done detection for better maintainability.TestFlushMaxSeriesInBatch non-deterministic behavior.frameLocator PR review comments and improves code organization.t.Parallel() on TestCompile for now, to reduce flakiness in CI.We've started looking into k6 v2! The major release will focus on introducing breaking changes that have accumulated throughout the v1.x series, such as removing deprecated APIs and changing default behaviors. New features will continue to be incrementally released in v1.x minor versions as usual until the v2.0.0 release.
A huge thank you to the external contributors who helped during this release: @LBaronceli, @baeseokjae, @chojs23, @pkalsi97, @weillercarvalho, @ariasmn, @rahulmedicharla, @janHildebrandt98 and @shota3506! 🙏