Diff Analysis

Name: Diff Analysis
Author: athola

athola/claude-night-market

Run structured git diff analysis with baselines, change-type filters, and semantic risk review before you merge or ship.

Install

npx skills add https://github.com/athola/claude-night-market --skill diff-analysis

What is this skill?

Establish baselines with merge-base, --stat summaries, and changed-file counts
Isolate change types via --diff-filter (A/M/D/R) for focused review passes
Four-step usage pattern: Sanctum git context first, then imbue semantic and risk analysis
Pairs with sanctum:git-workspace-review for branch, status, and raw diff gathering

Adoption & trust: 1 installs on skills.sh; 304 GitHub stars; 3/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).

Recommended Skills

Triagemattpocock/skills

Issue-triage playbook that moves tracker items through defined roles toward human or AFK agent implementation.168k installs·121k stars

Caveman Commitjuliusbrussee/caveman

Agent-oriented skill that writes minimal, exact Conventional Commits—tight subjects and optional 72-column bodies focuse…140k installs·70k stars

Using Git Worktreesobra/superpowers

Workflow skill that verifies whether you are already in an isolated workspace, uses native harness worktrees when availa…93.5k installs·221k stars

Finishing A Development Branchobra/superpowers

Completion skill that runs tests first, detects git/worktree state, then guides the user through merge, pull request, re…91.4k installs·221k stars

Git Commitgithub/awesome-copilot

Git Commit is an agent skill that executes git commits using the Conventional Commits specification, analyzing your real…33.6k installs·34.6k stars

Git Guardrails Claude Codemattpocock/skills

git-guardrails-claude-code is a setup workflow for solo builders who let Claude Code run shell commands but want hard st…27.7k installs·121k stars

Journey fit

Primary fit

Diff analysis is the canonical pre-merge gate in the Ship phase when you need evidence-backed review of what changed. Review subphase is where isolated adds/modifies/deletes and merge-base scoping directly support code review and release readiness.

Common Questions / FAQ

Is Diff Analysis safe to install?

skills.sh reports 3 of 3 security scanners passed. Review the Security Audits panel on this page before installing in production.

SKILL.md

READMESKILL.md - Diff Analysis

# Git Diff Patterns

## Baseline Establishment

Define comparison scope in git repositories:

```bash
# Show latest commit for context
git log --oneline -1 HEAD

# Find common ancestor between branches
git merge-base HEAD main

# Show summary of changes between baseline and HEAD
git diff --stat <baseline>..HEAD | tail -1

# Count changed files
git diff --name-only <baseline>..HEAD | wc -l
```

## Change Type Isolation

Use `--diff-filter` to focus on specific change categories:

```bash
git diff --name-only --diff-filter=A <baseline>  # Additions
git diff --name-only --diff-filter=M <baseline>  # Modifications
git diff --name-only --diff-filter=D <baseline>  # Deletions
git diff --name-only --diff-filter=R <baseline>  # Renames
```

## Integration with Sanctum

Before running diff analysis on git repositories, use `sanctum:git-workspace-review` to gather repository context:

- Repository confirmation (pwd, branch)
- Status overview (staged vs unstaged)
- Diff statistics
- Diff details

Then proceed with imbue-specific semantic analysis and risk assessment.

## Usage Pattern

1. **Sanctum First**: Use `sanctum:git-workspace-review` to gather raw git data
2. **Imbue Second**: Apply semantic categorization and risk assessment to findings
3. **Evidence**: Use `imbue:proof-of-work` to capture analysis artifacts
4. **Output**: Format with `imbue:structured-output` for downstream consumption


---
name: risk-assessment-framework
description: Framework for evaluating change risk and impact, reusable across review workflows
parent_skill: imbue:diff-analysis
category: risk-analysis
tags: [risk, impact, assessment, testing, quality]
reusable_by: [pensive:rust-review, pensive:api-review, pensive:architecture-review, pensive:bug-review]
estimated_tokens: 400
---

# Risk Assessment Framework

## Risk Indicators

Evaluate each change category for potential impact across these dimensions:

### Breaking Changes
- Public API modifications (function signatures, return types)
- Schema changes (database, data structures, serialization formats)
- Contract alterations (protocols, interfaces, message formats)
- Dependency version changes with incompatible APIs

### Security-Sensitive
- Authentication mechanisms or credential handling
- Authorization logic or permission checks
- Cryptography usage (encryption, hashing, signing)
- Input validation or sanitization
- Network communication or protocol handling

### Data Integrity
- Database operations (writes, updates, migrations)
- State management logic
- Persistence logic or serialization
- Transaction handling
- Data validation or constraints

### External Dependencies
- Third-party service integrations
- Library updates or version bumps
- API client changes
- Infrastructure dependencies (databases, queues, caches)

### Performance-Critical
- Hot paths or frequently-executed code
- Caching mechanisms
- Resource allocation (memory, file handles, connections)
- Algorithmic changes in core operations

## Risk Levels

Classify overall risk based on indicators:

- **Low**: Internal refactors, documentation updates, test additions with no production code changes
- **Medium**: Feature additions with detailed tests, non-breaking API extensions, configuration changes with rollback plans
- **High**: Breaking changes requiring coordination, security modifications, schema migrations, changes to critical paths

## Test Coverage Flagging

Identify changes requiring additional testing attention:

- **Untested Changes**: New code or modifications without corresponding test updates
- **Test-Only Changes**: Test updates without production code (potential false positives)
- **Coverage Gaps**: High-risk changes with insufficient test scenarios
- **Integration Points**: Changes affecting external system

What is this skill?

Establish baselines with merge-base, --stat summaries, and changed-file counts

Isolate change types via --diff-filter (A/M/D/R) for focused review passes

Four-step usage pattern: Sanctum git context first, then imbue semantic and risk analysis

Pairs with sanctum:git-workspace-review for branch, status, and raw diff gathering

Adoption & trust: 1 installs on skills.sh; 304 GitHub stars; 3/3 security scanners passed (skills.sh audits); trending (+100% hot-view momentum).

Journey fit

Primary fit

SKILL.md

READMESKILL.md - Diff Analysis

# Git Diff Patterns

## Baseline Establishment

Define comparison scope in git repositories:

```bash
# Show latest commit for context
git log --oneline -1 HEAD

# Find common ancestor between branches
git merge-base HEAD main

# Show summary of changes between baseline and HEAD
git diff --stat <baseline>..HEAD | tail -1

# Count changed files
git diff --name-only <baseline>..HEAD | wc -l
```

## Change Type Isolation

Use `--diff-filter` to focus on specific change categories:

```bash
git diff --name-only --diff-filter=A <baseline>  # Additions
git diff --name-only --diff-filter=M <baseline>  # Modifications
git diff --name-only --diff-filter=D <baseline>  # Deletions
git diff --name-only --diff-filter=R <baseline>  # Renames
```

## Integration with Sanctum

Before running diff analysis on git repositories, use `sanctum:git-workspace-review` to gather repository context:

- Repository confirmation (pwd, branch)
- Status overview (staged vs unstaged)
- Diff statistics
- Diff details

Then proceed with imbue-specific semantic analysis and risk assessment.

## Usage Pattern

1. **Sanctum First**: Use `sanctum:git-workspace-review` to gather raw git data
2. **Imbue Second**: Apply semantic categorization and risk assessment to findings
3. **Evidence**: Use `imbue:proof-of-work` to capture analysis artifacts
4. **Output**: Format with `imbue:structured-output` for downstream consumption


---
name: risk-assessment-framework
description: Framework for evaluating change risk and impact, reusable across review workflows
parent_skill: imbue:diff-analysis
category: risk-analysis
tags: [risk, impact, assessment, testing, quality]
reusable_by: [pensive:rust-review, pensive:api-review, pensive:architecture-review, pensive:bug-review]
estimated_tokens: 400
---

# Risk Assessment Framework

## Risk Indicators

Evaluate each change category for potential impact across these dimensions:

### Breaking Changes
- Public API modifications (function signatures, return types)
- Schema changes (database, data structures, serialization formats)
- Contract alterations (protocols, interfaces, message formats)
- Dependency version changes with incompatible APIs

### Security-Sensitive
- Authentication mechanisms or credential handling
- Authorization logic or permission checks
- Cryptography usage (encryption, hashing, signing)
- Input validation or sanitization
- Network communication or protocol handling

### Data Integrity
- Database operations (writes, updates, migrations)
- State management logic
- Persistence logic or serialization
- Transaction handling
- Data validation or constraints

### External Dependencies
- Third-party service integrations
- Library updates or version bumps
- API client changes
- Infrastructure dependencies (databases, queues, caches)

### Performance-Critical
- Hot paths or frequently-executed code
- Caching mechanisms
- Resource allocation (memory, file handles, connections)
- Algorithmic changes in core operations

## Risk Levels

Classify overall risk based on indicators:

- **Low**: Internal refactors, documentation updates, test additions with no production code changes
- **Medium**: Feature additions with detailed tests, non-breaking API extensions, configuration changes with rollback plans
- **High**: Breaking changes requiring coordination, security modifications, schema migrations, changes to critical paths

## Test Coverage Flagging

Identify changes requiring additional testing attention:

- **Untested Changes**: New code or modifications without corresponding test updates
- **Test-Only Changes**: Test updates without production code (potential false positives)
- **Coverage Gaps**: High-risk changes with insufficient test scenarios
- **Integration Points**: Changes affecting external system

Install

What is this skill?

Recommended Skills

Journey fit

Is Diff Analysis safe to install?

SKILL.md

This week for builders

Install

What is this skill?

Recommended Skills

Journey fit

Is Diff Analysis safe to install?

SKILL.md