[TheTxT]

Those redirect URLs under googles domain are part of every search results page, so my question would be how the vulnerability you found is creating more dangers than the existing mechanism. That is probably the reason why google won't fix it, because they have already accepted the risk to facilitate better tracking of users.

[advisedwang]

The redirect on the results page [1] shows an interstitial warning you about the redirect of you don't have a cryptographic signature in the other parameters.

[1] https://www.google.com/url?q=URL&sa=U&ved=XXX&usg=XXX

[TheTxT]

yeah I also realized after doing some testing myself, but if the site you're trying to link to is listed in google search or if you can somehow reverse engineer it, then it doesn't really matter