ralph

Enables specification-first AI development through Socratic questioning and iterative evolution until requirements are met.

Install this skill

43/100

Security score

The ralph skill was audited on Mar 7, 2026 and we found 7 security issues across 2 threat categories, including 1 critical. Review the findings below before installing.

Categories Tested

Security Issues

high line 405

Template literal with variable interpolation in command context

SourceSKILL.md

405	Claude Code hooks.json (installed at `${CLAUDE_PLUGIN_ROOT}/hooks/hooks.json`):

medium line 406

Template literal with variable interpolation in command context

SourceSKILL.md

406

```json

critical line 506

Piping content to bash shell

SourceSKILL.md

506	\| Codex CLI \| 🔧 Adapted \| bash + `/prompts:ralph` \| Via conversation \| Manual state file \|

medium line 459

Access to hidden dotfiles in home directory

SourceSKILL.md

459	Required in `~/.gemini/settings.json`:

low line 464

Access to hidden dotfiles in home directory

SourceSKILL.md

464	"includeDirectories": ["~/.gemini/extensions/ralph"]

medium line 469

Access to hidden dotfiles in home directory

SourceSKILL.md

469	AfterAgent hook for loop continuation (add to `~/.gemini/settings.json`):

low line 477

Access to hidden dotfiles in home directory

SourceSKILL.md

477	"command": "bash ~/.gemini/hooks/ralph-check.sh",

Scanned on Mar 7, 2026

View Security Dashboard

Install this skill with one command

/learn @supercent-io/ralph

GitHub Stars 28

Rate this skill

Categoryproduct

UpdatedMarch 29, 2026

claude-code codex gemini-cli opencode product-manager growth-pm ux-designer technical-pm data-scientist product design data analytics

supercent-io/skills-template