native-web-search

No clear evidence of overt malware behavior is visible, but the code presents a substantial supply-chain/loader security risk: it dynamically imports JavaScript modules from paths influenced by environment variables and filesystem probing without verification, enabling arbitrary code execution if an attacker can influence PI_AI_MODULE_PATH/PI_AI_OAUTH_MODULE_PATH or the probed directories. Additionally, OAuth refresh results are persisted back to auth.json, increasing the impact of any compromise. If the runtime environment and configuration files are trustworthy and immutable, the remaining behavior appears consistent with a legitimate web-research CLI.