Starting analysis...
Extension Details
Rating:
3.5 ★
(8 ratings)
Size:
340KiB
Last Updated:
July 4, 2024
Users:
3,000
Context-Aware Verdict
This section provides a Claude-based AI analysis that applies additional context to the risk. Results are not guaranteed to be accurate.
HIGH
Risk Level
Trust Factors:
- The extension has a relatively low number of users (3,000) and ratings (8), which could indicate a lack of widespread trust or vetting.
- The developer information is not provided, making it difficult to assess the reputation and trustworthiness of the developer.
Concerns:
- The extension requests the "tabs" permission, which allows it to access and manipulate browser tabs, potentially compromising security and privacy.
- The extension has broad host permissions (http://*/*, https://*/*), enabling it to access all websites, which could be exploited for data theft or tracking browsing activity.
- The "storage" permission allows the extension to store data locally, which could be a privacy concern if sensitive information is stored.
Recommendations:
- Exercise caution when installing this extension, as it poses a high risk due to its broad permissions and lack of transparency about the developer.
- Consider running the extension in a separate browser profile or a sandboxed environment to isolate its potential impact.
- Regularly review the extension's permissions and activity, and remove it if any suspicious behavior is observed.
- Look for alternative extensions from reputable developers that offer similar functionality with more limited and transparent permissions.
Security Analysis
This section provides a detailed analysis of the extension's security posture, without broader context. Assumes worst-case impact.
HIGH
Overall Risk
Based on 3 total findings, ranked without considering overall context, including 2 high-risk and 1 medium-risk findings.
HIGH
Broad Host Permissions
This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.
HIGH
High-Risk Permission: tabs
This extension has the tabs permission. Can access browser tab information and manipulate tabs. This could potentially be used maliciously to compromise security or privacy.
MEDIUM
Medium-Risk Permission: storage
This extension has the storage permission. Can store data locally.
Security Analysis Details
Required Permissions:
- tabs
- storage
Host Permissions:
- http://*/*
- https://*/*
Embedded URLs (7 total):
| https://sites.google.com/view/downloads-ext/welcome | https://sites.google.com/view/downloads2/uninstall | |
| https://clients2.google.com/service/update2/crx | http://www.w3.org/2000/svg | |
| https://www.robotstxt.org/robotstxt.html | https://sites.google.com/view/downloads3/improve | |
| https://chromewebstore.google.com/detail/ekbfkelgbjbnakaeenhcfjkchimkledc/reviews |
Raw Manifest
{ "name": "__MSG_appName__", "icons": { "16": "images/16x16.png", "48": "images/48x48.png", "64": "images/64x64.png", "96": "images/96x96.png", "128": "images/128x128.png" }, "action": { "default_icon": { "16": "images/16x16.png", "48": "images/48x48.png", "64": "images/64x64.png", "96": "images/96x96.png", "128": "images/128x128.png" }, "default_title": "Click to open Downloads folder" }, "version": "0.9", "background": { "service_worker": "background.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_shortDesc__", "permissions": [ "tabs", "storage" ], "default_locale": "en", "host_permissions": [ "http://*/*", "https://*/*" ], "manifest_version": 3 }
Secure Annex (beta)
Coming soon...