analyze-repo

📁 miles990/claude-software-skills 📅 Jan 24, 2026

总安装量

周安装量

#26235

全站排名

安装命令

npx skills add https://github.com/miles990/claude-software-skills --skill analyze-repo

Agent 安装分布

antigravity 7

gemini-cli 6

windsurf 6

codex 6

opencode 6

Skill 文档

/analyze-repo v3.0

ä¼æ¥ç´å°æ¡æ·±åº¦åæ â åå±¤è¦è¦ºå Ã éä½åçæäº Ã å¯å·è¡å»ºè°

v3.0 æ°ç¹æ§

ç¹æ§	èªªæ
ð¯ ä¸å±¤åææ¶æ§	Executiveï¼5åéï¼â Architecture Storyï¼30åéï¼â Deep Diveï¼æéï¼
ð¬ How It Works	æ°å¢ãå°æ¡å¦ä½éä½ãæäºç« ç¯ï¼å¿«éçè§£æ ¸å¿æµç¨
ð è¦è¦ºåªå	æ¯å±¤ä»¥åè¡¨éé ï¼æåè¼å©èªªæ
ð èæé	ææç¼ç¾éå¸¶ `file:line` ç¨å¼ç¢¼å¼ç¨
ð ï¸ å¯å·è¡å»ºè°	æ¯é å»ºè°å«ï¼åé¡ç¨å¼ç¢¼ â ä¿®å¾©ç¯ä¾ â é©èæ¥é©

æ ¸å¿å¹å¼

è¼¸å¥	è¼¸åº
GitHub URL ææ¬å°è·¯å¾	ä¸å±¤å°æ¥åæå ±å â è¦è¦ºåè¡¨æ¿ + éä½åçæäº + å¯å·è¡å»ºè°

é©ç¨å ´æ¯ï¼

ð¢ æè¡ä¸»ç®¡/CTO â Layer 1 å¿«éæ±ºç + Layer 2 æ¶æ§è©ä¼°
ð¨âð» éç¼è â Layer 2 çè§£éä½åç + Layer 3 ä¸ææå
ð° æè³äºº/Due Diligence â Layer 1 é¢¨éªæè¦ + Layer 2 æè¡æ·±åº¦
ð Code Review â Layer 3 éæªæ¡åæ + å¯å·è¡ä¿®å¾©å»ºè°

å ±åä¸å±¤æ¶æ§

âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ
â  ð LAYER 1: Executive Dashboardï¼5-10 åéï¼                   â
â  âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ  â
â  ç®æ¨ï¼é«å±¤å¿«éææ¡å°æ¡çæ                                      â
â  â¢ å®é è¦è¦ºåè¡¨æ¿ï¼å¥åº·é·éå + é¢¨éªç±ååï¼                      â
â  â¢ ä¸å¥è©±å®ä½ + 30 ç§å°æ¡æè¦                                    â
â  â¢ 3 åééµç¼ç¾å¡çï¼å«å³æè¡åå»ºè°ï¼                            â
â  â¢ ç«¶åå®ä½ç©é£                                                  â
âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ¤
â  ðï¸ LAYER 2: Architecture Storyï¼30-60 åéï¼                   â
â  âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ  â
â  ç®æ¨ï¼çè§£å°æ¡å¦ä½éä½                                          â
â  â¢ ð¬ãéåå°æ¡å¦ä½éä½ãæµç¨æäºï¼æ ¸å¿åµæ°ï¼                     â
â  â¢ C4 åå±¤æ¶æ§åï¼Context â Container â Component â Codeï¼       â
â  â¢ è³ææµåºååï¼ä¸»è¦ä½¿ç¨å ´æ¯ï¼                                   â
â  â¢ æè¡æ±ºçåæï¼çºä»éº¼ç¨ X èé Yï¼                              â
â  â¢ 8 ç¶åº¦åè³ªè©ä¼°è©³è§£                                            â
âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ¤
â  ð¬ LAYER 3: Deep Dive Referenceï¼æéæ¥é±ï¼                     â
â  âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ  â
â  ç®æ¨ï¼å¯å·è¡çæ¹é²è¡å                                          â
â  â¢ æ¯åç¼ç¾éå¸¶ file:line èæé                                 â
â  â¢ å¯å·è¡å»ºè°ï¼åé¡ç¢¼ â ä¿®å¾©ç¯ä¾ â é©èæ¥é©                       â
â  â¢ æè¡åµåä¿®å¾©æ¸å®ï¼å«åªåç´ + å·¥æä¼°ç®ï¼                        â
â  â¢ å®æ´æªæ¡çµæ§èééµå¥å£é»                                      â
âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ

ä½¿ç¨æ¹å¼

# åºæ¬åæï¼é è¨è¼¸åºå®æ´ä¸å±¤å ±åï¼
/analyze-repo https://github.com/owner/repo
/analyze-repo .
/analyze-repo /path/to/project

# æå®æ·±åº¦ï¼å¯é¸ï¼
/analyze-repo . --depth=executive    # å Layer 1ï¼å¿«éæè¦ï¼
/analyze-repo . --depth=story        # Layer 1 + 2ï¼å«éä½åçï¼
/analyze-repo . --depth=full         # å®æ´ä¸å±¤ï¼é è¨ï¼

# æå®è¦è§ï¼å¯é¸ï¼å½±é¿å§å®¹å´éï¼
/analyze-repo . --perspective=executive    # å´éæ±ºçææ¨
/analyze-repo . --perspective=architect    # å´éæ¶æ§è¨è¨
/analyze-repo . --perspective=developer    # å´éä¸ææå
/analyze-repo . --perspective=investor     # å´éé¢¨éªè©ä¼°

# çµåä½¿ç¨
/analyze-repo . --depth=story --perspective=developer

åææ¡æ¶

ä½ æ¯è³æ·±è»é«æ¶æ§é¡§åï¼å·å arc42ãC4 ModelãSOLID/DDD å°æ¥ç¥èã

Phase 1: è³ææ¶éèæå¢å»ºç«

1.1 ä¾æºå¤æ·

https://github.com/ â GitHub API + åå§ç¢¼åæ
æ¬å°è·¯å¾ â ç´æ¥æªæ¡ç³»çµ±åå

1.2 ééµæªæ¡ææï¼åªåé åºï¼

é¡å¥	æªæ¡	åæç®ç
å¥ä»¶ç®¡ç	`package.json`, `requirements.txt`, `pyproject.toml`, `Cargo.toml`, `go.mod`, `pom.xml`, `build.gradle`	ä¾è³´åæãçæ¬æª¢æ¥
å®¹å¨å	`Dockerfile`, `docker-compose.yml`, `k8s/`	é¨ç½²æ¶æ§
æä»¶	`README.md`, `CLAUDE.md`, `docs/`, `ARCHITECTURE.md`	å°æ¡æå
éç½®	`tsconfig.json`, `next.config.*`, `.env.example`, `config/`	æè¡æ±ºç
CI/CD	`.github/workflows/`, `.gitlab-ci.yml`, `Jenkinsfile`	èªååæçåº¦
æ¸¬è©¦	`tests/`, `__tests__/`, `spec/`, `_test.go`, `.spec.ts`	æ¸¬è©¦è¦è
å¥å£é»	`main.`, `index.`, `app.*`, `src/`	ç¨å¼ç¢¼çµæ§
å®å¨	`.env`, `secrets/`, `credentials`, `.pem`, `*.key`	ææè³è¨æª¢æ¥

1.3 å°æ¡åæ¸ææ¶é

ç¨å¼ç¢¼è¡æ¸ï¼æèªè¨åé¡ï¼
æäº¤æ·å²ï¼æ´»èºåº¦ãè²¢ç»èåä½ï¼
Issue/PR çµ±è¨ï¼å¦çº GitHubï¼
License é¡å

Phase 2: å°æ¡éä½åçï¼How It Worksï¼ð

æ ¸å¿åµæ°ï¼è®è®èå¨ 5 åéå§çè§£ãéåå°æ¡å°åºå¨åä»éº¼ãæéº¼åã

2.1 æ ¸å¿æµç¨æäº

å¿é åççåé¡ï¼

è¼¸å¥æ¯ä»éº¼ï¼ â ç¨æ¶/ç³»çµ±è§¸ç¼ä»éº¼
èçéç¨ï¼ â æ ¸å¿éè¼¯å¦ä½éä½
è¼¸åºæ¯ä»éº¼ï¼ â æçµç¢çä»éº¼çµæ

æ ¼å¼ï¼

ä¸å¥è©±çæ¬ï¼
ç¨æ¶ {è§¸ç¼æ¹å¼} â ç³»çµ± {èçæµç¨} â ç¢ç {æçµçµæ}

è©³ç´°çæ¬ï¼3-5 æ®µï¼ï¼
1. è§¸ç¼é»ï¼{æè¿°å¥å£}
2. æ ¸å¿èçï¼{æè¿°ä¸»è¦éè¼¯}
3. è³ææµåï¼{æè¿°è³æå¦ä½æµå}
4. è¼¸åºçµæï¼{æè¿°ç¢åº}

2.2 ä¸»è¦ä½¿ç¨å ´æ¯åºåå

èå¥ 2-3 åæéè¦çä½¿ç¨å ´æ¯ï¼çºæ¯åå ´æ¯çæï¼

sequenceDiagram
    actor User
    participant Frontend
    participant API
    participant Service
    participant DB

    Note over User,DB: å ´æ¯ï¼{å ´æ¯åç¨±}
    User->>Frontend: 1. {è§¸ç¼åä½}
    Frontend->>API: 2. {API å¼å«}
    API->>Service: 3. {æ¥åèç}
    Service->>DB: 4. {è³ææä½}
    DB-->>Service: 5. {åå³è³æ}
    Service-->>API: 6. {èççµæ}
    API-->>Frontend: 7. {åæ}
    Frontend-->>User: 8. {å±ç¤ºçµæ}

2.3 ééµç¨å¼ç¢¼å¥å£é»

æ¯åæµç¨å¿é æ¨è¨»å·é«æªæ¡ä½ç½®ï¼

éæ®µ	æªæ¡ä½ç½®	å½æ¸/é¡å¥	èªªæ
å¥å£	`src/main.ts:15`	`bootstrap()`	æç¨åå
è·¯ç±	`src/routes/index.ts:42`	`router.get()`	è«æ±åç¼
éè¼¯	`src/services/core.ts:128`	`processRequest()`	æ ¸å¿èç
è³æ	`src/models/data.ts:23`	`DataModel`	è³æçµæ§

2.4 æ ¸å¿æ¼ç®æ³/éè¼¯èªªæ

å¦æå°æ¡æç¨ç¹çæ¼ç®æ³æéè¼¯ï¼ç¨ä»¥ä¸æ ¼å¼èªªæï¼

æ¼ç®æ³åç¨±ï¼{åç¨±}
ç¨éï¼{è§£æ±ºä»éº¼åé¡}
è¤éåº¦ï¼O(n) / O(log n) / etc.

èæ¬ç¢¼ï¼
1. {æ¥é© 1}
2. {æ¥é© 2}
3. {æ¥é© 3}

å¯¦éç¨å¼ç¢¼ä½ç½®ï¼`src/algorithms/xxx.ts:45-78`

Phase 3: æ¶æ§åæï¼C4 Model åå±¤ï¼

Level 1: System Contextï¼ç³»çµ±æå¢ï¼

èå¥ç³»çµ±éç
å¤é¨ä½¿ç¨è/è§è²
å¤é¨ç³»çµ±æ´å
ð éå¸¶èªªæï¼ç¨ 2-3 å¥è©±è§£éåè¡¨å«ç¾©

Level 2: Containerï¼å®¹å¨ï¼

æç¨ç¨å¼
è³æå²å
è¨æ¯ä½å
å®¹å¨ééè¨åå®
ð æè¡é¸ååå ï¼çºä»éº¼é¸éåæè¡

Level 3: Componentï¼åä»¶ï¼

ä¸»è¦æ¨¡çµ/å¥ä»¶
ééµé¡å¥/å½æ¸
æ¨¡çµè·è²¬åå
ð ç¨å¼ç¢¼ä½ç½®ï¼æ¯ååä»¶çæªæ¡è·¯å¾

Level 4: Codeï¼ç¨å¼ç¢¼å±¤ç´ï¼

æ ¸å¿æ¼ç®æ³
è¨è¨æ¨¡å¼ä½¿ç¨
ééµè³æçµæ§
ð ç¨å¼ç¢¼çæ®µï¼å±ç¤ºééµå¯¦ä½

Phase 3: åè³ªè©ä¼°ï¼8 ç¶åº¦ï¼

ä½¿ç¨ 1-100 åå¶è©ä¼°ï¼

ç¶åº¦	è©ä¼°æ¨æº	æ¬é
å¯ç¶è·æ§	ç¨å¼ç¢¼è¤éåº¦ãå½åè¦ç¯ãæ¨¡çµåç¨åº¦ãMaintainability Index	15%
å¯æ¸¬è©¦æ§	æ¸¬è©¦è¦èçãæ¸¬è©¦åè³ªãMock/Stub ä½¿ç¨	12%
å¯æ´å±æ§	æ¶æ§å½æ§ãæ°´å¹³/åç´æ´å±è½åãè¨è¨æ¨¡å¼	12%
å®å¨æ§	ä¾è³´æ¼æ´ãææè³è¨æ´é²ãOWASP Top 10	15%
æä»¶å®æ´åº¦	READMEãAPI æä»¶ãæ¶æ§æä»¶ãè¨»è§£åè³ª	10%
æ¶æ§å¥åº·åº¦	SOLID åè¦ãéæ³¨é»åé¢ãå±¤æ¬¡æ¸æ°	15%
ä¾è³´å¥åº·åº¦	ä¾è³´æ¸éãçæ¬éæç¨åº¦ãå¾ªç°ä¾è³´	11%
éç¼èé«é©	ä¸æé£åº¦ãéç¼å·¥å·éç½®ãé¯èª¤è¨æ¯åè³ª	10%

ç¶åå¥åº·åæ¸ = å æ¬å¹³å

Phase 4: æè¡åµååæ

4.1 åµååé¡ï¼SQALE æ¨¡åï¼

é¡å¥	åµæ¸¬ææ¨
å¯é æ§åµå	æªèçä¾å¤ãç©ºææ¨é¢¨éªãè³æºæ´©æ¼
å®å¨æ§åµå	å·²ç¥æ¼æ´ãç¡¬ç·¨ç¢¼å¯é°ãSQL æ³¨å¥é¢¨éª
å¯ç¶è·æ§åµå	éè¤ç¨å¼ç¢¼ãéé·å½æ¸ãéæ·±å·¢ç
æè½åµå	N+1 æ¥è©¢ãç¡å¿«åçç¥ãåæ¥é»å¡
æ¸¬è©¦åµå	ä½è¦èçãç¡æ´åæ¸¬è©¦ãèå¼±æ¸¬è©¦

4.2 åµåéå

ä¿®å¾©æéä¼°ç®ï¼äººå¤©ï¼
åªåç´æåºï¼Impact Ã Effort ç©é£ï¼
åµåè¶¨å¢ï¼å¦ææ·å²è³æï¼

Phase 5: ä¾è³´éä¿åæ

5.1 ä¾è³´åè

å§é¨æ¨¡çµä¾è³´éä¿
å¤é¨å¥ä»¶ä¾è³´
å¾ªç°ä¾è³´åµæ¸¬
æå¥/æåºåæï¼Afferent/Efferent Couplingï¼

5.2 ä¾è³´å¥åº·æª¢æ¥

æª¢æ¥é	é¢¨éªçç´
å·²ç¥ CVE æ¼æ´	ð´ Critical
éå¤§çæ¬è½å¾ï¼>2 çï¼	ð High
ç¡ç¶è·å¥ä»¶ï¼>2 å¹´ç¡æ´æ°ï¼	ð High
æ¬¡è¦çæ¬è½å¾	ð¡ Medium
ææ¬åè¦é¢¨éª	ð¡ Medium

Phase 6: å®å¨æ§è©ä¼°

6.1 éææææè¦

ä¾è³´æ¼æ´ï¼npm audit / pip-audit / cargo-audit çæåæï¼
ææè³è¨æ´é²ï¼API Keysãå¯ç¢¼ãTokenï¼
ä¸å®å¨ç¨å¼ç¢¼æ¨¡å¼

6.2 OWASP Top 10 æª¢æ¥æ¸å®

é¢¨éª	æª¢æ¥é ç®
A01 Broken Access Control	ææ¬æª¢æ¥ãè·¯ç±ä¿è·
A02 Cryptographic Failures	å å¯æ¼ç®æ³ãå¯é°ç®¡ç
A03 Injection	è¼¸å¥é©èãåæ¸åæ¥è©¢
A07 Authentication	èº«ä»½é©èæ©å¶ãSession ç®¡ç
A09 Logging & Monitoring	æ¥èªè¨éãç°å¸¸è¿½è¹¤

Phase 7: ç«¶åèå¹å¼åæ

7.1 ç¨ç¹å¹å¼ä¸»å¼µ (UVP)

æ ¸å¿è§£æ±ºçåé¡
å·®ç°åç¹é»
ç®æ¨ä½¿ç¨è

7.2 ä¸å¯æ¿ä»£æ§è©ä¼°ï¼5 åå¶ï¼

ç¶åº¦	è©ä¼°
æè¡ç¨ç¹æ§	æ ¸å¿æ¼ç®æ³ãå°å©ãç¨ç¹å¯¦ç¾
çææ´åæ·±åº¦	èå¶ä»ç³»çµ±çæ´åç¨åº¦
é·ç§»ææ¬	æå°æ¿ä»£æ¹æ¡çææ¬
å¸ç¿æ²ç·	åéä¸æé£åº¦
ç¤¾ç¾¤æ´»èºåº¦	ç¶è·èãè²¢ç»èãIssue åæ

7.3 ç«¶åæ¯è¼ç©é£

èå¥ 2-3 åä¸»è¦ç«¶å/æ¿ä»£æ¹æ¡ï¼é²è¡åè½å°æ¯ï¼

å¿é åå«çæ¯è¼ç¶åº¦ï¼

ç¶åº¦	èªªæ
æ ¸å¿åè½	ä¸»è¦è§£æ±ºçåé¡
æè¡æ¶æ§	æè¡é¸åå·®ç°
æ´å±æ§	æ¯å¦æ¯æ´æä»¶/æ´å±
å¸ç¿æ²ç·	ä¸æé£åº¦
ç¤¾ç¾¤æ´»èºåº¦	ç¶è·çæãIssue åæ
ææ¬æ¹å¼	éæº/åæ¥/æ··å

ç¯ä¾æ ¼å¼ï¼

| ç¹æ§ | æ¬å°æ¡ | ç«¶å A | ç«¶å B | ç«¶å C |
|------|--------|--------|--------|--------|
| æ ¸å¿åè½ | â å®æ´ | â ï¸ é¨å | â å®æ´ | â ç¡ |
| æ´å±æ§ | â Plugin | â ç¡ | â ï¸ æé | â å®æ´ |
| å¸ç¿æ²ç· | â ï¸ ä¸ç | â ç°¡å® | â å°é£ | â ï¸ ä¸ç |

7.4 é©ç¨å ´æ¯åæ ð

ç¨é¤ååç¾æé©åçä½¿ç¨å ´æ¯ä½æ¯ï¼

pie title æé©åä½¿ç¨å ´æ¯
    "å ´æ¯ A" : 35
    "å ´æ¯ B" : 25
    "å ´æ¯ C" : 20
    "å ´æ¯ D" : 15
    "å¶ä»" : 5

ä¸¦æä¾æ¡ç¨å»ºè°ç©é£ï¼

æå¢	å»ºè°	èªªæ
æå¢ A	â å¼·çæ¨è¦	{çºä»éº¼é©å}
æå¢ B	â æ¨è¦	{çºä»éº¼é©å}
æå¢ C	â ï¸ å¯è½éé	{çºä»éº¼å¯è½ä¸é©å}
æå¢ D	â ä¸é©ç¨	{çºä»éº¼ä¸é©å}

Phase 7.5: å¸å ´æªä¾å¹å¼åæ

7.5.1 æè¡è¶¨å¢å°é½åº¦

è©ä¼°å°æ¡èç¶å/æªä¾æè¡è¶¨å¢çå¥åç¨åº¦ï¼

è¶¨å¢é å	è©ä¼°é ç®
AI/ML æ´åè½å	æ¯å¦æ AI æ´åé»ãLLM åå¥½ APIãåéè³æåº«æ¯æ´
é²åçæçåº¦	å®¹å¨åãK8s æ¯æ´ãServerless é©éæ§
éç·£éç®æºååº¦	è¼éåå¯è½æ§ãé¢ç·è½åãä½å»¶é²è¨è¨
Web3/å»ä¸å¿å	åå¡éæ´åæ½åãå»ä¸å¿åæ¶æ§å¯è½æ§
æ°¸çºæ§/ç¶ è²éç®	è³æºæçãè½èåªåæ½å

7.5.2 å¸å ´å®ä½åæ

quadrantChart
    title Market Position Matrix
    x-axis Low Tech Complexity --> High Tech Complexity
    y-axis Low Market Demand --> High Market Demand
    quadrant-1 Star (Invest)
    quadrant-2 Question Mark (Evaluate)
    quadrant-3 Pet (Divest)
    quadrant-4 Cash Cow (Maintain)

7.5.3 æé·æ½åææ¨

ææ¨	è©ä¼°æ¹å¼
TAM/SAM/SOM ä¼°ç®	ç®æ¨å¸å ´è¦æ¨¡ãå¯æåå¸å ´ãå¯ç²åå¸å ´
æé·åè½	GitHub Stars è¶¨å¢ãnpm ä¸è¼éãç¤¾ç¾¤æ´»èºåº¦æé·ç
ç¶²è·¯æææ½å	ä½¿ç¨èè¶å¤å¹å¼è¶é«çç¹æ§
å¹³å°åå¯è½æ§	æ¯å¦å¯ç¼å±çºçæå¹³å°
åæ¥æ¨¡å¼å½æ§	éæº/SaaS/ä¼æ¥ççå¤åè®ç¾è·¯å¾

7.5.4 é¢¨éªèæ©æç©é£ï¼SWOT å»¶ä¼¸ï¼

é¡å¥	å§é¨	å¤é¨
æ£é¢	åªå¢ Strengths	æ©æ Opportunities
è² é¢	å£å¢ Weaknesses	å¨è Threats

7.5.5 æè³/æ¡ç¨å»ºè°

åºæ¼ä»¥ä¸åæï¼çµ¦åºæç¢ºå»ºè°ï¼

ð¢ å¼·çæ¨è¦ â æè¡åé²ãå¸å ´åæ¯ä½³ãé¢¨éªå¯æ§
ð¡ è¬¹æèæ® â æå¹å¼ä½åå¨ç¹å®é¢¨éªæéå¶
ð´ ä¸å»ºè° â æè¡éæãå¸å ´èç¸®ãæé¢¨éªéé«

7.5.6 çæ¬æ¼é²åæ ð

å¦æå°æ¡æ CHANGELOG æ Git æ·å²ï¼åæçæ¬æ¼é²ï¼

Gantt æéè»¸è¦è¦ºåï¼

gantt
    title å°æ¡çæ¬æ¼é²
    dateFormat  YYYY-MM-DD
    section æ ¸å¿åè½
    v1.0 åå§çæ¬       :done, 2024-01-01, 30d
    v2.0 éå¤§æ´æ°       :done, 2024-03-01, 60d
    v3.0 æ¶æ§éæ§       :done, 2024-06-01, 90d
    section æ´ååè½
    Plugin ç³»çµ±         :done, 2024-04-01, 45d
    API æ´å±           :active, 2024-08-01, 60d

ééµçæ¬éç¨ç¢è¡¨ï¼

çæ¬	æ¥æ	éé»åè½	å½±é¿
v1.0	YYYY-MM-DD	åå§ç¼å¸	å»ºç«åºç¤
v2.0	YYYY-MM-DD	{éå¤§åè½}	{å¸¶ä¾çæ¹è®}
v3.0	YYYY-MM-DD	{éå¤§åè½}	{å¸¶ä¾çæ¹è®}

æ¼é²è¶¨å¢åæï¼

çæ¬çç¥ï¼{èªæåçæ¬/æ¥æçæ¬/å¶ä»}
åå¾ç¸å®¹æ§ï¼{è¯å¥½/éæ³¨æ/ç¶å¸¸ç ´å£}

Phase 8: çç¥å»ºè°çæ

8.1 åªåç´ç©é£

quadrantChart
    title Priority Matrix
    x-axis Low Effort --> High Effort
    y-axis Low Impact --> High Impact
    quadrant-1 Do First (Quick Wins)
    quadrant-2 Plan (Major Projects)
    quadrant-3 Delegate/Automate
    quadrant-4 Evaluate (Consider Later)

8.2 å¯å·è¡å»ºè°æ¡æ¶ ð

æ ¸å¿ååï¼æ¯é å»ºè°å¿é å¯ç«å³å·è¡ï¼ä¸éé¡å¤ç ç©¶

æ¯é å»ºè°å¿é åå«ä»¥ä¸çµæ§ï¼

æ¬ä½	èªªæ	å¿å¡«
ID	å¯ä¸èå¥ç¢¼ï¼å¦ REC-001ï¼	â
é¡å¥	Architecture / Security / Performance / Quality / Documentation / DevOps	â
æ¨é¡	ç°¡æ½æè¿°ï¼< 10 åï¼	â
éè¦æ§	âââ æ ¸å¿/å¿è¦ / ââ éè¦/å»ºè° / â å¯é¸/å¢å¼·	â
åªåç´	ð´ Critical / ð High / ð¡ Medium / ð¢ Low	â
åé¡ä½ç½®	ð `file:line` å·é«ç¨å¼ç¢¼ä½ç½®	â
åé¡ç¨å¼ç¢¼	ð å±ç¤ºæåé¡çå¯¦éç¨å¼ç¢¼çæ®µ	â
ä¿®å¾©ç¯ä¾	ð å±ç¤ºä¿®å¾©å¾çç¨å¼ç¢¼ç¯ä¾	â
é©èæ¥é©	ð å¦ä½é©èä¿®å¾©æåï¼å½ä»¤ææ¸¬è©¦ï¼	â
æåææ¨	å¯è¡¡éçé©æ¶æ¨æº	â

å»ºè°æ ¼å¼ç¯ä¾ï¼

### REC-001: ä¿®å¾© SQL æ³¨å¥æ¼æ´

| å±¬æ§ | å¼ |
|------|-----|
| é¡å¥ | ð Security |
| éè¦æ§ | âââ æ ¸å¿ |
| åªåç´ | ð´ Critical |

#### ð åé¡ä½ç½®
- `src/api/users.ts:87`
- `src/api/products.ts:142`

#### â åé¡ç¨å¼ç¢¼
```typescript
// src/api/users.ts:87
const query = `SELECT * FROM users WHERE id = ${userId}`;
//                                            ^^^^^^^^^ SQL æ³¨å¥é¢¨éª

â ä¿®å¾©ç¯ä¾

// src/api/users.ts:87
const query = 'SELECT * FROM users WHERE id = $1';
const result = await db.query(query, [userId]);

ð§ª é©èæ¥é©

# 1. å·è¡å®å¨ææ
npm run security:audit

# 2. æ¸¬è©¦æ³¨å¥é²è·
curl "localhost:3000/api/users/1'%20OR%20'1'='1"
# é æï¼400 Bad Requestï¼èéè³ææ´©æ¼ï¼

â æåææ¨

npm audit ç¡ Critical è¦å


#### 8.2.1 éè¦æ§èåªåç´çåå¥

- **éè¦æ§ (Importance)**ï¼å°å°æ¡é·æå¥åº·çå½±é¿ç¨åº¦
  - âââ **æ ¸å¿/å¿è¦** â ä¸åæå°è´å°æ¡å¤±ææå´éé¢¨éª
  - ââ **éè¦/å»ºè°** â é¡¯èæåå°æ¡åè³ªæéä½é¢¨éª
  - â **å¯é¸/å¢å¼·** â é¦ä¸æ·»è±ï¼æåé«é©

- **åªåç´ (Priority)**ï¼æè©²ä½æå·è¡
  - çµåéè¦æ§ + ç·è¿«æ§

```mermaid
quadrantChart
    title Importance vs Priority Matrix
    x-axis Low Priority --> High Priority
    y-axis Low Importance --> High Importance
    quadrant-1 Strategic (Plan Carefully)
    quadrant-2 Critical (Do Now)
    quadrant-3 Optional (If Time Permits)
    quadrant-4 Quick Wins (Easy Wins)

8.3 å»ºè°åªåé åºè¦å

å®å¨æ§ Critical â å¿é ç«å³èç
å¢å¼·åè½ â ææ¥åå¹å¼æåº

8.4 å»ºè°åé¡è¦è¦ºå

flowchart TB
    subgraph Critical["ð´ ç«å³èç"]
        C1[å®å¨æ¼æ´]
        C2[çç¢ç°å¢é¢¨éª]
    end

    subgraph High["ð  çæèç"]
        H1[æ¶æ§åé¡]
        H2[æè½ç¶é ¸]
    end

    subgraph Medium["ð¡ è¦åèç"]
        M1[æè¡åµå]
        M2[æ¸¬è©¦è¦è]
    end

    subgraph Low["ð¢ é©æèç"]
        L1[æä»¶å®å]
        L2[ç¨å¼ç¢¼é¢¨æ ¼]
    end

Phase 9: Mermaid åè¡¨çæ

å¿é ç¢çä»¥ä¸åè¡¨ï¼

9.1 C4 Context Diagram

C4Context
    title System Context Diagram
    Person(user, "User")
    System(system, "Target System")
    System_Ext(ext, "External System")
    Rel(user, system, "Uses")
    Rel(system, ext, "Integrates")

9.2 Container Diagram

C4Container
    title Container Diagram
    Container(web, "Web App", "React")
    Container(api, "API", "Node.js")
    ContainerDb(db, "Database", "PostgreSQL")

9.3 æ¨¡çµä¾è³´å

flowchart LR
    subgraph Core
        A[Module A]
        B[Module B]
    end
    A --> B

9.4 æè¡æ£§ç¸½è¦½

flowchart TB
    subgraph Frontend
        F1[React]
    end
    subgraph Backend
        B1[Node.js]
    end
    subgraph Data
        D1[(PostgreSQL)]
    end

è¼¸åºçµæ§ï¼ä¸å±¤æ¶æ§ï¼

ââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ
â  ð LAYER 1: Executive Dashboardï¼5-10 åéï¼                  â
â âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ£

1. Executive Summaryï¼è¦è¦ºåè¡¨æ¿ï¼
   - ð¯ ä¸å¥è©±å®ä½
   - ð å¥åº·åæ¸é·éåï¼è¦è¦ºåï¼
   - â ï¸ 3 åééµé¢¨éªå¡ç
   - ð ç«å³è¡åå»ºè°ï¼Top 3ï¼
   - ð ç«¶åå®ä½ç©é£å

2. 30 ç§å°æ¡æè¦
   - éæ¯ä»éº¼ï¼ï¼ä¸æ®µè©±ï¼
   - è§£æ±ºä»éº¼åé¡ï¼
   - æè¡æ£§ä¸è¦½

â âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ£
â  ðï¸ LAYER 2: Architecture Storyï¼30-60 åéï¼                  â
â âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ£

3. ð¬ How It Worksï¼å°æ¡å¦ä½éä½ï¼ð
   - æ ¸å¿æµç¨æäºï¼è¼¸å¥ â èç â è¼¸åºï¼
   - ä¸»è¦ä½¿ç¨å ´æ¯åºååï¼2-3 åï¼
   - ééµç¨å¼ç¢¼å¥å£é»è¡¨
   - æ ¸å¿æ¼ç®æ³/éè¼¯èªªæ

4. Architecture Analysisï¼æ¶æ§åæï¼
   - C4 åå±¤åè¡¨ï¼éèªªææåï¼
   - æ¶æ§æ¨¡å¼èå¥
   - æè¡é¸ååæï¼çºä»éº¼é¸ Xï¼
   - æ¶æ§æ±ºçè¨é (ADR) æ¨æ¸¬

5. Quality Assessmentï¼åè³ªè©ä¼°ï¼
   - 8 ç¶åº¦é·éå
   - åç¶åº¦è©³ç´°è©åèèªªæ
   - åªå¢èé¢¨éªæ¸å®

6. Value & Competitive Analysisï¼å¹å¼åæï¼
   - UVP é³è¿°
   - ä¸å¯æ¿ä»£æ§è©å
   - ç«¶åæ¯è¼ç©é£
   - å¸å ´å®ä½åæ

â âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ£
â  ð¬ LAYER 3: Deep Dive Referenceï¼æéæ¥é±ï¼                   â
â âââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââââ£

7. Technical Debt Reportï¼æè¡åµåå ±åï¼
   - åµååé¡æ¸å®ï¼é file:lineï¼
   - åªåç´ç©é£
   - ä¿®å¾©å»ºè°ï¼å«ç¨å¼ç¢¼ç¯ä¾ï¼

8. Dependency Analysisï¼ä¾è³´åæï¼
   - ä¾è³´åè
   - å¥åº·æª¢æ¥å ±å
   - å¾ªç°ä¾è³´è¦å

9. Security Assessmentï¼å®å¨è©ä¼°ï¼
   - æ¼æ´æææè¦
   - OWASP æª¢æ¥æ¸å®
   - é¢¨éªçç´åé¡ï¼é file:lineï¼

10. ð ï¸ Actionable Recommendationsï¼å¯å·è¡å»ºè°ï¼ð
    - æåªåç´åé¡ï¼
      * ð´ ç«å³èç
      * ð  çæèç
      * ð¡ è¦åèç
      * ð¢ é©æèç
    - æ¯é å»ºè°åå«ï¼
      * ð åé¡ä½ç½®ï¼file:lineï¼
      * â åé¡ç¨å¼ç¢¼
      * â ä¿®å¾©ç¯ä¾
      * ð§ª é©èæ¥é©
      * â æåææ¨

11. Appendixï¼ééï¼
    - å®æ´ç®éçµæ§
    - ééµæªæ¡æ¸å®èèªªæ
    - è¡èªè¡¨
    - åææ¹æ³èªªæ

å·è¡æºå

â å¿é éµå®

å®æ´è®å â ç¢ºä¿è¶³å¤ æªæ¡é²è¡æºç¢ºåæ
å·é«éå â ç¡å¯è½æä¾æ¸åèéæ¨¡ç³æè¿°
åè¡¨æ£ç¢º â ç¢ºä¿ Mermaid èªæ³æ£ç¢ºå¯æ¸²æ
å¯è¡å»ºè° â æ¯é å»ºè°å¿é å·é«å¯å·è¡

â é¿åäºé

æ²ææ ¹æçæ¨æ¸¬
éåº¦æè¡è¡èªï¼æ ¹æ perspective èª¿æ´ï¼
éºæ¼ééµé¢¨éª

åèè³æº

arc42 Template â è»é«æ¶æ§æä»¶æ¨æº
C4 Model â æ¶æ§è¦è¦ºåæ¹æ³
OWASP Top 10 â Web å®å¨é¢¨éª

ç¸é Skills

/evolve â èªä¸»å®æè¤éç®æ¨
/commit â æäº¤ç¨å¼ç¢¼è®æ´

ARGUMENTS: $ARGUMENTS

GitHub 仓库 ↗ ← 返回陌讯 Skills 聚合平台

analyze-repo

Agent 安装分布

Skill 文档

/analyze-repo v3.0

v3.0 æ°ç¹æ§

æ ¸å¿å¹å¼

å ±åä¸å±¤æ¶æ§

ä½¿ç¨æ¹å¼

åææ¡æ¶

Phase 1: è³ææ¶éèæ å¢å»ºç«

1.1 ä¾æºå¤æ·

1.2 ééµæªæ¡ææï¼åªå é åºï¼

1.3 å°æ¡å æ¸ææ¶é

Phase 2: å°æ¡éä½åçï¼How It Worksï¼ð

2.1 æ ¸å¿æµç¨æäº

2.2 ä¸»è¦ä½¿ç¨å ´æ¯åºåå

2.3 ééµç¨å¼ç¢¼å ¥å£é»

2.4 æ ¸å¿æ¼ç®æ³/éè¼¯èªªæ

Phase 3: æ¶æ§åæï¼C4 Model åå±¤ï¼

Level 1: System Contextï¼ç³»çµ±æ å¢ï¼

Level 2: Containerï¼å®¹å¨ï¼

Level 3: Componentï¼å ä»¶ï¼

Level 4: Codeï¼ç¨å¼ç¢¼å±¤ç´ï¼

Phase 3: åè³ªè©ä¼°ï¼8 ç¶­åº¦ï¼

Phase 4: æè¡åµååæ

4.1 åµååé¡ï¼SQALE æ¨¡åï¼

4.2 åµåéå

Phase 5: ä¾è³´éä¿åæ

5.1 ä¾è³´åè­

5.2 ä¾è³´å¥åº·æª¢æ¥

Phase 6: å®å ¨æ§è©ä¼°

6.1 éæ æææè¦

6.2 OWASP Top 10 æª¢æ¥æ¸ å®

Phase 7: ç«¶åèå¹å¼åæ

7.1 ç¨ç¹å¹å¼ä¸»å¼µ (UVP)

7.2 ä¸å¯æ¿ä»£æ§è©ä¼°ï¼5 åå¶ï¼

7.3 ç«¶åæ¯è¼ç©é£

7.4 é©ç¨å ´æ¯åæ ð

Phase 7.5: å¸å ´æªä¾å¹å¼åæ

7.5.1 æè¡è¶¨å¢å°é½åº¦

7.5.2 å¸å ´å®ä½åæ

7.5.3 æé·æ½åææ¨

7.5.4 é¢¨éªèæ©æç©é£ï¼SWOT å»¶ä¼¸ï¼

7.5.5 æè³/æ¡ç¨å»ºè­°

7.5.6 çæ¬æ¼é²åæ ð

Phase 8: ç­ç¥å»ºè­°çæ

8.1 åªå ç´ç©é£

8.2 å¯å·è¡å»ºè­°æ¡æ¶ ð

â ä¿®å¾©ç¯ä¾

ð§ª é©è­æ­¥é©

â æåææ¨

8.3 å»ºè­°åªå é åºè¦å

8.4 å»ºè­°åé¡è¦è¦ºå

Phase 9: Mermaid åè¡¨çæ