booth-deck

SUSPICIOUS. The workflow is mostly aligned with a coding worker skill, but it relies on an unverifiable `booth` CLI as its control/reporting channel and grants the agent autonomous commit/reload behavior. I see no confirmed credential theft or overtly malicious behavior, but the opaque CLI and operational autonomy make the skill high risk.