e/OS is not degoogled, only some of the functionality has been rewritten in microG (eg not implementing security checks but instead spoofing them), but still uses Google play sdk and libraries.

Additionally it runs in the privileged mode, so any exploit on that, well, means back luck.