iso14971-risk-analyzer
Comprehensive risk management skill implementing ISO 14971:2019 methodology for medical device risk analysis
Best use case
iso14971-risk-analyzer is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Comprehensive risk management skill implementing ISO 14971:2019 methodology for medical device risk analysis
Teams using iso14971-risk-analyzer should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/iso14971-risk-analyzer/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How iso14971-risk-analyzer Compares
| Feature / Agent | iso14971-risk-analyzer | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Comprehensive risk management skill implementing ISO 14971:2019 methodology for medical device risk analysis
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# ISO 14971 Risk Analyzer Skill
## Purpose
The ISO 14971 Risk Analyzer Skill implements comprehensive risk management methodology per ISO 14971:2019 for medical devices, supporting hazard identification, risk estimation, risk control, and benefit-risk analysis throughout the device lifecycle.
## Capabilities
- Hazard identification questionnaire generation
- Hazardous situation analysis templates
- Risk estimation matrix configuration
- Risk acceptability criteria setup
- Risk control measure tracking
- Residual risk evaluation
- Benefit-risk analysis documentation
- Risk management plan templates
- Risk management report generation
- Post-production risk monitoring
- Risk control verification tracking
## Usage Guidelines
### When to Use
- Establishing risk management plans
- Conducting hazard analyses
- Evaluating risk acceptability
- Documenting benefit-risk determinations
### Prerequisites
- Device intended use defined
- Reasonably foreseeable misuse identified
- Risk acceptability criteria established
- State of the art research completed
### Best Practices
- Begin risk management at concept phase
- Maintain risk management file throughout lifecycle
- Review risks at each design phase gate
- Integrate with post-market surveillance
## Process Integration
This skill integrates with the following processes:
- Medical Device Risk Management (ISO 14971)
- Human Factors Engineering and Usability
- 510(k) Premarket Submission Preparation
- EU MDR Technical Documentation
## Dependencies
- ISO 14971:2019 standard
- Risk matrix templates
- Hazard databases
- Safety standards (IEC 60601, IEC 62366)
- Post-market data sources
## Configuration
```yaml
iso14971-risk-analyzer:
risk-categories:
- clinical
- electrical
- mechanical
- software
- biocompatibility
- sterility
- usability
probability-levels: 5
severity-levels: 5
acceptability-criteria:
ALARP: true
state-of-art: true
```
## Output Artifacts
- Risk management plans
- Hazard analysis worksheets
- Risk estimation matrices
- Risk control documents
- Residual risk evaluations
- Benefit-risk analyses
- Risk management reports
- Risk control verification records
## Quality Criteria
- All reasonably foreseeable hazards identified
- Risk estimation is systematic and documented
- Risk control measures are verified effective
- Residual risks are acceptable per criteria
- Benefit-risk analysis supports intended use
- Documentation meets ISO 14971:2019 requirementsRelated Skills
terraform-analyzer
Specialized skill for analyzing Terraform configurations. Supports parsing, security scanning (tfsec, checkov), cost estimation (infracost), drift detection, and plan visualization across AWS, Azure, and GCP.
db-query-analyzer
Analyze database query performance with execution plans and index recommendations
code-complexity-analyzer
Analyze code complexity metrics including cyclomatic complexity, code smells, and technical debt
cloudformation-analyzer
Validate and analyze AWS CloudFormation templates for security and best practices
vendor-risk-monitor
Continuous vendor security monitoring for security ratings, breach notifications, and risk change detection
semantic-code-analyzer
LLM-powered semantic analysis of code diffs to detect business-logic trojans
sast-analyzer
Static Application Security Testing orchestration and analysis. Execute Semgrep, Bandit, ESLint security plugins, CodeQL, and other SAST tools. Parse, prioritize, and deduplicate findings across multiple tools with remediation guidance.
crypto-analyzer
Cryptographic implementation analysis and validation for encryption algorithms, key sizes, and certificate management
semver-analyzer
Analyze code changes and determine semantic version bumps. Detect breaking changes automatically, suggest version bump (major/minor/patch), generate changelog entries, and validate version consistency.
api-diff-analyzer
Compare API specifications to detect breaking changes. Compare OpenAPI spec versions, categorize changes by severity, generate migration guides, and block breaking changes in CI.
process-analyzer
Analyze processes, identify workflows, define boundaries and scope, and map process requirements for specialization creation.
scope-logic-analyzer
Test equipment integration for signal analysis (oscilloscope and logic analyzer)