search-layer

SUSPICIOUS: the core search purpose matches most capabilities, but the footprint is broader than a simple search layer. Main concerns are credential forwarding through a local wrapper, support for arbitrary Grok apiUrl instead of a fixed official endpoint, and recursive processing of untrusted external content that creates notable prompt-injection risk. No clear evidence of confirmed malware or overt exfiltration appears in the excerpt.