Skip to main content

factory-ralph-loop

Facilitates iterative task execution using the Ralph Loop pattern, optimizing code quality by fixing lint errors and passing tests.

Install this skill

or
0/100

Security score

The factory-ralph-loop skill was audited on Mar 8, 2026 and we found 34 security issues across 1 threat category, including 1 critical. Review the findings below before installing.

Categories Tested

Security Issues

high line 29

Direct command execution function call

SourceSKILL.md
29const result = await factory.spawn({
high line 60

Direct command execution function call

SourceSKILL.md
60const lintResult = spawnSync("npm", ["run", "lint"], {
high line 75

Direct command execution function call

SourceSKILL.md
75const result = await factory.spawn({
high line 118

Direct command execution function call

SourceSKILL.md
118const lintResult = spawnSync("npm", ["run", "lint"], {
high line 154

Direct command execution function call

SourceSKILL.md
154const result = await factory.spawn({
high line 189

Direct command execution function call

SourceSKILL.md
189const testResult = spawnSync(cmd, args, {
high line 210

Direct command execution function call

SourceSKILL.md
210const result = await factory.spawn({
high line 269

Direct command execution function call

SourceSKILL.md
269const result = await factory.spawn({
high line 332

Direct command execution function call

SourceSKILL.md
332const checkResult = spawnSync(cmd, args, {
high line 363

Direct command execution function call

SourceSKILL.md
363const result = await factory.spawn({
high line 411

Direct command execution function call

SourceSKILL.md
411const result = spawnSync("npm", ["test"], { encoding: "utf-8" });
high line 484

Direct command execution function call

SourceSKILL.md
484const result = await factory.spawn({
high line 492

Direct command execution function call

SourceSKILL.md
492const check = spawnSync("npm", ["run", "lint", module], {
critical line 505

Direct command execution function call

SourceSKILL.md
505- **While loop** around `await factory.spawn()`
medium line 27

Template literal with variable interpolation in command context

SourceSKILL.md
27factory.observe.log("info", `Iteration ${iteration}`, { maxIterations });
medium line 70

Template literal with variable interpolation in command context

SourceSKILL.md
70factory.observe.log("info", `Iteration ${iteration}`, {
medium line 81

Template literal with variable interpolation in command context

SourceSKILL.md
81prompt: `Fix lint errors. Current output:\n\n${lintResult.stdout}\n${lintResult.stderr}`,
medium line 146

Template literal with variable interpolation in command context

SourceSKILL.md
146factory.observe.log("info", `Iteration ${iteration}`, {
medium line 156

Template literal with variable interpolation in command context

SourceSKILL.md
156systemPrompt: `You fix lint errors iteratively.
medium line 160

Template literal with variable interpolation in command context

SourceSKILL.md
160prompt: `Fix lint errors:\n\n${lintResult.stdout}\n${lintResult.stderr}`,
medium line 200

Template literal with variable interpolation in command context

SourceSKILL.md
200factory.observe.log("info", `Iteration ${iteration}`, {
medium line 216

Template literal with variable interpolation in command context

SourceSKILL.md
216prompt: `Fix failing tests. Output from '${testCommand}':\n\n${failureOutput}`,
medium line 265

Template literal with variable interpolation in command context

SourceSKILL.md
265factory.observe.log("info", `Iteration ${iteration}: ${nextTask.id}`, {
medium line 271

Template literal with variable interpolation in command context

SourceSKILL.md
271systemPrompt: `You implement PRD tasks iteratively.
medium line 275

Template literal with variable interpolation in command context

SourceSKILL.md
275prompt: `Implement: ${nextTask.id} - ${nextTask.description}\n\nCompleted so far:\n${
medium line 300

Template literal with variable interpolation in command context

SourceSKILL.md
300id: `TASK-${id++}`,
medium line 357

Template literal with variable interpolation in command context

SourceSKILL.md
357factory.observe.log("info", `Iteration ${iteration}`, {
medium line 420

Template literal with variable interpolation in command context

SourceSKILL.md
420prompt: `Iteration ${iteration}/${maxIterations}
medium line 478

Template literal with variable interpolation in command context

SourceSKILL.md
478factory.observe.log("info", `Processing module: ${module}`);
medium line 486

Template literal with variable interpolation in command context

SourceSKILL.md
486systemPrompt: `Fix issues in ${module}`,
low line 52

Node child_process module reference

SourceSKILL.md
52import { spawnSync } from "node:child_process";
low line 98

Node child_process module reference

SourceSKILL.md
98import { spawnSync } from "node:child_process";
low line 179

Node child_process module reference

SourceSKILL.md
179import { spawnSync } from "node:child_process";
low line 315

Node child_process module reference

SourceSKILL.md
315import { spawnSync } from "node:child_process";
Scanned on Mar 8, 2026
View Security Dashboard
Installation guide →
GitHub Stars 3
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawbackendtestingdevops-srebackend-developerqa-engineerdevelopment
diegosouzapw/awesome-omni-skill