Risk Assessment

When NOT to Use

• Security vulnerability detection (use /codex-security)
• Code correctness / lint / test review (use /codex-review-fast)
• Project-level health audit (use /project-audit)

Procedure

1. Run bash scripts/run-skill.sh risk-assess risk-analyze.js --json to collect deterministic scores
2. Parse the JSON output — overall_score, risk_level, dimensions, flags, gate, next_actions
3. If risk_level = Critical (score 75-100) — highlight all breaking signals, recommend splitting PRs
4. If risk_level = High (score 50-74) — auto-escalate to --mode deep, detail blast radius
5. If risk_level = Medium (score 30-49) — summarize dimensions, note areas of concern
6. If risk_level = Low (score 0-29) — brief summary, confirm safe to proceed
7. Add qualitative interpretation beyond the scores (e.g., "high blast radius but all dependents are test files")

Script Integration