Does it actually write the tests for me?

No, it identifies what needs testing and suggests the most appropriate specialized test generator skills, such as API or E2E testers, to perform the actual test creation.

How does Risk Analyzer calculate risk scores?

It uses a weighted model that evaluates change size, logic complexity, dependency blast radius, historical churn rate, and existing test coverage.

Does this replace security scanners?

No, Risk Analyzer focuses on regression and stability risks. For security vulnerabilities, it is recommended to use specialized security testing skills.

What happens if the repository has no Git history?

The skill includes a fallback mode that performs static analysis on file size, imports, and complexity to provide a baseline risk assessment without historical data.

Can it analyze a PR before it is merged?

Yes, it specifically analyzes git diffs and commit history to determine the potential impact of changes in a branch compared to the main codebase.

Risk Analyzer

Name: Risk Analyzer
Author: umitozdemirf

byumitozdemirf

0•

Security & Testing

Analyzes code changes and repository health to calculate risk scores, map impact areas, and prioritize testing strategies.

Risk Analyzer is a specialized Claude Code skill designed to evaluate the potential impact and fragility of code modifications within a repository. By performing deep impact analysis, calculating risk scores based on churn and complexity, and identifying 'god files' or high-coupling areas, it provides developers with a clear roadmap of what needs testing most urgently. It is particularly useful during code reviews, release planning, and complex refactoring tasks where understanding the blast radius of a change is critical for maintaining system stability.

Key Features

01Automated risk scoring for Pull Requests and feature branches based on weighted factors

02Identification of codebase fragility indicators like high churn and tight coupling

030 GitHub stars

04Deep impact analysis mapping both direct and transitive downstream dependencies

05Comprehensive risk reports featuring impact graphs and deployment safety recommendations

06Prioritized test recommendations mapped to specific specialized testing skills

Use Cases

01Identifying the most fragile modules in a legacy codebase to prioritize technical debt reduction

02Assessing the 'blast radius' of a major refactor before merging a high-stakes Pull Request

03Generating a risk-based testing plan for upcoming software releases to optimize QA resources

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add umitozdemirf/qa-skills risk-analyzer

For use in Claude.ai and ChatGPT

Key Features

01Automated risk scoring for Pull Requests and feature branches based on weighted factors

02Identification of codebase fragility indicators like high churn and tight coupling

030 GitHub stars

04Deep impact analysis mapping both direct and transitive downstream dependencies

05Comprehensive risk reports featuring impact graphs and deployment safety recommendations

06Prioritized test recommendations mapped to specific specialized testing skills

Use Cases

01Identifying the most fragile modules in a legacy codebase to prioritize technical debt reduction

02Assessing the 'blast radius' of a major refactor before merging a high-stakes Pull Request

03Generating a risk-based testing plan for upcoming software releases to optimize QA resources