Automatic checking of search results against VirusTotal

ldmitch

Malicious domains, like phishing and malware, can sometimes make their way into Kagi search results. I think it would be beneficial for Kagi to automatically check search results against VirusTotal, and mark results that have been reported as being malicious. This would help users avoid phishing.

While the checking would happen automatically on the backend, users should be given a clearly visible warning icon next to results that have been reported. This would be somewhat similar to domains with many ads/trackers (yellow shield outline) or surveillance technology providers (Surveillance Watch icon). I don't think the flagged results should be removed, since there is always the risk of a false positive, but possibly downranked like tracker-riddled sites.

For example, the second result of a search for "kamino finance" is a phishing domain:

The red shield (as I have expertly drawn) indicates that this site has been flagged by VirusTotal:

Thibaultmol

(I thought there was already an indicator for the shield icon if a site was potentially malicious but it seems like we might just be not showing those results at all now?)

I don't know if it's financially doable to check every url in the search results each time, if not:
we could maybe check if the query talks about finance/shoppping/buying-something and in that case run it.

In case the api turns out to be too slow, we could do it async and have it change the shield icon and such as the page has already loaded

EDIT: maybe always have it run for kids accounts? (or does it not matter cause they don't do purchases? guess you can still give away data as a kid to a bad site, so maybe it should always run)