Yes, what a devious plan: give open source software projects a free CI service so you can... read their open source software code?

It seems to be a Linux Foundation project, my trust is implicit higher than what you're claiming. Why wouldn't you trust them?

It's also aimed at open-source projects, for free, with the intent to improve RISC-V support.

RISE is supported by many legit companies. Stealing is for sure not the intent.

The idea is to promote testing on RISC-V and to eliminate lack of hardware for being the reason not to. Obviously, low budget projects and Open Source are the primary targets. Commercial products can afford real RISC-V hardware.

This is who you are trusting: https://riseproject.dev/members/

people better not be snooping on my public open source projects!