Features
- Publicize the list of sources against which Kagi vets its results for malicious activity.
- Document any other measures which Kagi takes to vet results wrt security.
Per a Discord thread:
niam (Today at 6:13 PM)
Perhaps a technical question from a search layman: does Kagi vet links for malicious activity, or have insight on what its 'borrowed' indexes (e.g Google) are marking as malicious?
Zac (Today at 6:32 PM)
If by "malicious", you mean technically harmful things like viruses, malware, etc.; we maintain a list of domains sourced from public datasets that are known to be harmful. if those domains are found in your results, we throw them to the bottom of the results and mark them with an indicator
What is it for?
To help users (or their employers) identify whether Kagi fits their threat model, or does its diligence in equal-enough measure to e.g Google / Bing / other typically-approved search providers.
How will it affect existing workflows or user experience?
It shouldn't, save for perhaps the links to these sources/documents wherever Kagi should decide to make them available.
- A user/company is curious whether Kagi poses a security risk in excess of Google/Bing/DDG/etc.
- The user/company searches for Kagi's documentation on this and finds this list.
Or: Kagi's security approach is easily discovered in the footer or hamburger menu ("control center").
