claw-deck

The skill is mostly coherent with its stated workspace-management purpose and routes data to the expected Felo service, but its install flow is a notable trust problem: it tells the agent to execute a user-pasted GitHub install link without verification and contradicts its own prerequisite that the package should already be installed. Overall this is better classified as suspicious than benign due to install-trust inconsistency, not because of clear malicious exfiltration.