ralph-prd

SUSPICIOUS. The skill’s core purpose is coherent, but its footprint is high-risk because it enables autonomous project modification through a loop runner that explicitly uses --dangerously-skip-permissions. I see no clear credential-harvesting or malicious exfiltration path in the provided text, so this is better classified as a dangerous autonomous-development skill than confirmed malware.