bk-analyze 是什么？

非常适合需要高级遗留代码转换和正式规格生成能力的代码分析代理。 Reverse engineer brownfield code to specifications. Extract business rules, interfaces, and behaviors from existing implementations to generate BK-compatible specs.

如何安装 bk-analyze？

运行命令：npx killer-skills add dikini/knot/bk-analyze。支持 Cursor、Windsurf、VS Code、Claude Code 等 19+ IDE/Agent。

bk-analyze 适用于哪些场景？

典型场景包括：将不熟悉的ブラウンフィールドコードベース转换为正式规格、从现有的レガシーコード生成コンプライアンス文档、为リファクタリングまたはマイグレーション做准备レガシーシステム。

bk-analyze 支持哪些 IDE 或 Agent？

该技能兼容 Cursor, Windsurf, VS Code, Trae, Claude Code, OpenClaw, Aider, Codex, OpenCode, Goose, Cline, Roo Code, Kiro, Augment Code, Continue, GitHub Copilot, Sourcegraph Cody, and Amazon Q Developer。可使用 Killer-Skills CLI 一条命令通用安装。

bk-analyze 有哪些限制？

需要现有的代码库进行分析；仅限于ブラウンフィールド代码库；需要与BK开发工作流集成。

bk-analyze: Brownfield Code Analysis

Name: bk-analyze
Availability: InStock
Author: dikini

Purpose

Transform existing code into formal specifications that integrate with the BK development workflow. Enables incremental modernization, refactoring, and compliance documentation of legacy systems.

When to Use

Starting work on an unfamiliar brownfield codebase
Documenting legacy systems that lack specifications
Preparing for refactoring or migration
Generating compliance documentation from existing code
Bridging knowledge gaps in maintained systems

When NOT to Use

Greenfield development (use bk-explore → bk-design instead)
Codebases already have comprehensive specs (use bk-verify)
Simple bug fixes (use bk-debug → bk-tdd)

Inputs

yaml
1codebase_path: path        # Required: Root path to analyze
2component_name: string     # Required: Logical name for extracted component
3depth: enum                # Optional: surface | standard | deep (default: standard)
4entry_points: list         # Optional: Specific files/modules to focus analysis
5exclude_patterns: list     # Optional: Patterns to exclude (e.g., ["tests/", "vendor/"])

Discovery Conventions

This skill relies on filesystem discovery rather than status fields. Downstream skills locate specs via:

docs/specs/extracted/*.md    # Machine-generated specs
docs/specs/component/*.md    # Human-designed components
docs/specs/interface/*.md    # Human-designed interfaces

The spec-map.md registry tracks canonical component metadata and must stay aligned with component spec headers:

yaml
1spec_id: string      # e.g., AUTH-001
2source: enum         # extracted | designed
3path: string         # relative to docs/specs/
4concerns: list       # [SEC, REL, CAP, OBS, ...]
5status: string       # exact component-spec status for designed specs

Workflow

1. Discovery Phase

Scan the codebase to understand structure:

Structural mapping:

Identify modules, crates, packages
Map public APIs (functions, traits, structs)
Find entry points and external boundaries
Locate test files for behavior inference

Source analysis:

Language detection (Rust, Python, Go, etc.)
Framework identification
Dependency graph (internal and external)

Output artifact: docs/analysis/<component>-structure.md (optional, for deep analysis)

2. Extraction Phase

Extract specifications from code:

Functional requirements (FR-*)

Public methods → interface requirements
Business logic → behavioral requirements
Configuration → operational requirements

Interfaces (IF-*)

Function signatures
Data structures / DTOs
Error types and handling patterns

Cross-cutting concerns

Security boundaries → SEC
Retry/circuit breaker → REL
Metrics/logging → OBS
Rate limits/backpressure → CAP

Inference heuristics:

fn validate_token(&self, token: &str) -> Result<Claims, AuthError>
↓
FR-1: Validate authentication token
IF-1: Input: token string, Output: Claims or AuthError
SEC-1: Authentication boundary

#[test]
fn test_expired_token_rejected()
↓
FR-2: Reject expired tokens
Acceptance: Expired tokens return AuthError::Expired

3. Synthesis Phase

Generate formal BK specification:

File: docs/specs/extracted/<component>-<nnn>.md

Template:

markdown
1# <Component Name>
2
3## Metadata
4- ID: `<SCOPE>-<COMPONENT>-<NNN>` (e.g., COMP-AUTH-001)
5- Source: `extracted`
6- Component: `<component_name>`
7- Depth: `<surface|standard|deep>`
8- Extracted: `<date>`
9- Concerns: [<inferred concerns>]
10
11## Source Reference
12- Codebase: `<codebase_path>`
13- Entry Points: [<entry files>]
14- Lines Analyzed: <count>
15
16## Confidence Assessment
17| Requirement | Confidence | Evidence | Needs Review |
18|-------------|------------|----------|--------------|
19| FR-1: ... | high | Clear implementation + tests | no |
20| FR-2: ... | medium | Inferred from behavior | yes |
21
22## Contract
23
24### Functional Requirements
25**FR-1**: <Extracted requirement>
26- Evidence: `<file>:<line>`
27- Confidence: <high|medium|low>
28
29**FR-2**: <Extracted requirement>
30...
31
32### Interface
33```<language>
34<Extracted signatures>

Behavior

Given <precondition> When <action> Then <outcome>

Evidence: <test file>:<line> (if from test)

Design Decisions (Inferred)

Decision	Evidence	Confidence
Uses async runtime	`src/main.rs:23`	high
Token expiry = 1hr	`src/auth.rs:45`	medium

Uncertainties

<Question about unclear code>
<Ambiguous business rule>

Acceptance Criteria (Derived from Tests)

<Test-derived criterion>

Extracted from: <codebase_path>
Depends on: [<other specs if detected>]
Used by: [<detected consumers>]


### 4. Registration Phase

Update `docs/specs/system/spec-map.md`:

```markdown
## Components
| Spec | Source | Path | Concerns |
|------|--------|------|----------|
| COMP-AUTH-001 | extracted | extracted/auth-001.md | [SEC, REL] |

Rules:

Generate next available <nnn> for component (001, 002, ...)
Set source: extracted (immutable)
Infer concerns from code patterns
Never duplicate existing spec IDs

Confidence Levels

Every extracted requirement has a confidence level:

Level	Criteria	Action
high	Clear code + comprehensive tests	Use as-is
medium	Clear code OR tests, not both	Review recommended
low	Inferred from indirect evidence	Must review

Downstream skills can filter by confidence if needed.

Output

Primary: docs/specs/extracted/<component>-<nnn>.md - Formal specification
Registry: Updated docs/specs/system/spec-map.md with immutable metadata
Optional: docs/analysis/<component>-structure.md - Detailed structural analysis (deep mode)

Downstream Integration

With bk-plan

User: Plan implementation for auth module

1. LLM scans spec-map.md for auth-related specs
2. Finds COMP-AUTH-001 with source=extracted
3. Loads spec from docs/specs/extracted/auth-001.md
4. Notes confidence levels for planning
5. Proceeds with normal bk-plan workflow

Considerations:

Low-confidence requirements may need research tasks
Uncertainties become planning questions
Extracted interfaces may need refinement

With bk-verify

bk-verify --scope=full

1. Discovers spec in extracted/ directory
2. Scans codebase for SPEC-COMP-AUTH-001 markers
3. Reports coverage: which extracted requirements are marked in code

Note: Extracted specs may initially have no markers. The goal is to add markers during refactoring to establish traceability.

With bk-design

User: Refine the extracted auth spec

bk-design --spec-path=docs/specs/extracted/auth-001.md

1. Moves spec from extracted/ to component/ or interface/
2. Updates source from extracted → designed
3. Now treated as authoritative specification

Example Workflow

Analyzing Legacy Authentication

User: Analyze the auth module in src/auth/

bk-analyze:

1. Discovery:
   - Scans src/auth/ (12 files, 2,400 LOC)
   - Identifies: token validation, session management, refresh flow
   - Finds: 23 tests covering main paths

2. Extraction:
   - FR-1: Validate JWT signature (high confidence - tests present)
   - FR-2: Refresh expired tokens (medium - inferred from flow)
   - IF-1: Auth trait with validate(), refresh()
   - Concerns: [SEC, REL] inferred from code patterns

3. Synthesis:
   Generates: docs/specs/extracted/auth-001.md
   
4. Registration:
   Updates: docs/specs/system/spec-map.md
   | COMP-AUTH-001 | extracted | extracted/auth-001.md | [SEC, REL] |

Output: Extracted 8 requirements with 75% high confidence. 
        2 uncertainties flagged for review.

Chaining to Planning

User: Plan refactoring for the auth module

bk-plan:

1. Discovery:
   - Scans spec-map.md for auth specs
   - Finds COMP-AUTH-001, source=extracted
   - Loads: docs/specs/extracted/auth-001.md

2. Analysis:
   - Sees FR-2 (refresh tokens) has medium confidence
   - Sees uncertainty about rate limiting
   - Adds research task for unclear requirements

3. Planning:
   - Creates tasks for high-confidence requirements
   - Adds "clarify rate limiting" task for uncertainty
   - Generates: docs/plans/auth-refactor-plan-001.md

Guardrails

Never overwrite existing specs - Generate new <nnn> if conflict
Mark all uncertainties explicitly - Don't guess business intent
Preserve evidence - Every requirement cites source file/line
Confidence honesty - Don't inflate confidence to appear complete
Source separation - Keep extracted specs in dedicated directory

Limitations

Cannot infer implicit business knowledge
Tests may not cover all production behaviors
Legacy code may have dead/unreachable paths
Extracted specs represent "as-is", not "should-be"

Future Enhancements (Out of Scope)

Multi-language analysis
Cross-repository dependency mapping
Automated confidence improvement via test analysis
Diff-based re-extraction for evolving codebases

bk-analyze — community bk-analyze, community, ide skills

关于此技能

Killer-Skills Review

核心价值

适用 Agent 类型

↓ 赋予的主要能力 · bk-analyze

! 使用限制与门槛

Why this page is reference-only

Source Boundary

先决定动作，再继续看上游仓库材料

先进入安装与验证

回到可信合集再做一次复核

如果要进团队流转，转到工作流集合

Browser Sandbox Environment

⚡️ Ready to unleash?

常见问题与安装步骤

? FAQ