This skill provides a structured, multi-step workflow for analyze. It is driven by a script included in the repo that orchestrates exploration, focused investigation, verification and synthesis, producing prioritized findings with file:line evidence and recommended remediation actions.
Use when a request spans multiple files or components and you need an architecture review, security assessment, or broad code-quality analysis. Not for single-file quick checks.
Claude Code, Copilot-style assistants, or agents that can run repository scripts and read files.
The 'analyze' skill provides a structured 6-phase codebase analysis workflow (explore, focus, plan, investigate, verify, synthesize) for AI agents. The SKILL.md is exceptionally well-written with clear triggers, anti-patterns, and verification checklists. The script is a clean Python CLI using argparse that outputs step-specific guidance — it requires mandatory arguments (--step-number, --total-steps, --thoughts) and exits with a clear usage message when missing, which is expected behavior. No security concerns found; the skill explicitly warns about command injection (CWE-78). Architecture follows the skill spec well with references/ directory and progressive disclosure.
Well-crafted skill for systematic codebase analysis. The script is essentially a state machine that generates context-appropriate prompts for each phase. Clean code, good security practices (explicit CWE-78 warning), thorough documentation. The only reason run_succeeded is false is that the script requires runtime arguments — it validates and exits cleanly rather than crashing.