Unfollow All Followers - U.A.F
Version 3.0.0.1 View in Chrome Web Store
Extension Details
Context-Aware Verdict
The extension has very limited adoption with only 1,000 users and a concerning 3.1-star rating from just 19 reviews, suggesting user dissatisfaction. The developer "getcreativesoftware.dev" lacks established reputation or verifiable company information. The extension's purpose is to unfollow Twitter followers, which is a legitimate but niche functionality.
The tabs permission is excessive for an extension that should only need to interact with Twitter pages. This permission allows monitoring and manipulation of all browser tabs, creating privacy risks. The broad host permissions pattern (*://*.twitter.com/*) grants access to all Twitter subdomains, which may be more than necessary. The storage permission, while reasonable for saving user preferences, could potentially store sensitive data. The combination of these permissions creates a concerning attack surface that exceeds what's needed for basic unfollowing functionality.
Given the high risk level, consider running this extension in a separate Chrome profile to isolate it from your main browsing activity. Before installation, verify the extension actually works as advertised by checking recent user reviews. Consider alternative methods for mass unfollowing, such as Twitter's native tools or more established extensions with better ratings and larger user bases. If you must use this extension, regularly review what data it might be storing and monitor your Twitter account for any unexpected activity.
Findings
Security Analysis Details
Required Permissions:
- storage
- tabs
- scripting
- contextMenus
- notifications
Host Permissions:
- *://*.twitter.com/*
Embedded URLs (5 total):
| https://slb.example.com/validate_license/ | https://slbuaf.getcreativesoftware.dev/validate_license/ | |
| https://clients2.google.com/service/update2/crx | https://www.getcreativesoftware.dev/unfollow-all-followers-for-twitter/ | |
| https://www.getcreativesoftware.dev/purchase_license_uaf/ |
Raw Manifest
{ "name": "Unfollow All Followers - U.A.F", "icons": { "16": "icon/16.png", "24": "icon/24.png", "32": "icon/32.png", "48": "icon/48.png", "64": "icon/64.png", "128": "icon/128.png", "256": "icon/256.png", "512": "icon/512.png" }, "action": { "default_popup": "popup/popup.html", "default_title": "U.A.F" }, "version": "3.0.0.1", "background": { "service_worker": "background/background_sw.js" }, "short_name": "U.A.F", "update_url": "https://clients2.google.com/service/update2/crx", "description": "Product designed to help users unfollow everyone on social media websites.", "permissions": [ "storage", "tabs", "scripting", "contextMenus", "notifications" ], "homepage_url": "https://www.getcreativesoftware.dev/unfollow-all-followers-for-twitter/", "host_permissions": [ "*://*.twitter.com/*" ], "manifest_version": 3 }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.