google-search

This module is best characterized as a web-scraping/search CLI that relies on an external browser automation tool (chromux) to open Google and third-party pages and then scrape DOM content via dynamically generated eval-like snippets. There is no direct evidence of malware behavior such as credential theft, persistence, or network exfiltration from within this file. The primary supply-chain/misuse risk is the combination of executing an external binary and running generated code in the browser-tool context, plus browsing attacker-controlled URLs. Review and harden the trusted boundaries around the chromux executable, its update/signing, and the eval execution mechanism; also consider limiting domains and sanitizing/controlling what pages can be opened.

SUSPICIOUS: the stated purpose is coherent for a web-search skill, but it relies on an unverifiable external CLI (`chromux`) and ingests untrusted web content through executable tooling. The main issue is install/execution trust, not confirmed malware or credential theft.