ralph-claude-code-autonomous-development

SUSPICIOUS. The skill’s autonomous-development purpose matches much of its behavior, but the trust boundary is weak: ara.so publishes the skill while installation comes from an unrelated GitHub repo, core setup runs install scripts, uninstall uses curl|bash, and the installed tool receives Anthropic credentials while being granted broad autonomous shell/file capabilities. This is a coherent but high-risk skill with disproportionate install and execution trust concerns rather than confirmed malware.