gooserelayvpn-android-client

The skill is internally coherent: it documents how to build a domain-fronted Android VPN client and the network flows match that goal. It is not confirmed malware, but it is security-sensitive and somewhat suspicious because it teaches covert tunneling via Google Apps Script, routes user traffic through intermediary infrastructure, and depends on a third-party repo not obviously owned by the skill publisher.