Code Analyzer
Run analysis tools on the codebase.
Usage
code
/analyze # Run all analyzers /analyze packages # Unused NuGet packages only /analyze quality # Code quality only /analyze security # Security vulnerabilities only
Arguments
- •
$ARGUMENTS- Analyzer type to run- •Empty or
all- Run all analyzers - •
packages- Detect unused NuGet packages (dotnet-unused) - •
quality- Check code style and Roslyn warnings - •
security- Scan for known CVEs and deprecated packages
- •Empty or
Process
Step 1: Ensure Tools Are Installed
Run dotnet tool restore if tools are not available.
Step 2: Execute Analyzer(s)
Based on $ARGUMENTS:
| Argument | Script |
|---|---|
(empty) / all | ./tools/analyzers/run-all.sh |
packages | ./tools/analyzers/unused-packages/analyze.sh |
quality | ./tools/analyzers/code-quality/analyze.sh |
security | ./tools/analyzers/security/analyze.sh |
Step 3: Report Results
Summarize findings:
- •Number of issues found per category
- •Actionable recommendations
Output Format
code
=== Analysis Results === Unused Packages: X issues - ProjectName: PackageName Code Quality: X warnings - File:Line - Warning description Security: X vulnerabilities - PackageName - CVE-XXXX-XXXXX (severity) Recommendations: 1. Remove unused package X from project Y 2. Fix warning Z in file W