Starting analysis...
CookieManager - Cookie Editor
Version 0.2.2 View in Chrome Web Store
Last scanned: 27 days ago
| force re-scan
Extension Details
Rating:
3.2 ★
(25 ratings)
Size:
111KiB
Last Updated:
September 9, 2024
Users:
50,000
Context-Aware Verdict
This section provides a Claude-based AI analysis that applies additional context to the risk. Results are not guaranteed to be accurate.
HIGH
Risk Level
Trust Factors:
- The extension has a relatively low number of users (50,000) and a low rating (3.2/5), which raises some concerns about its trustworthiness and quality.
- The lack of developer information or a reputable company behind the extension further diminishes trust.
Concerns:
- The "cookies" permission allows the extension to access and modify browser cookies, which could potentially compromise user security and privacy.
- The "*://*/*" host permission grants the extension access to all websites, enabling potential data theft or browsing activity tracking.
- The "storage" and "contextMenus" permissions, while not inherently high-risk, are unnecessary for a cookie manager extension and could be exploited for malicious purposes.
Recommendations:
- Exercise caution when installing this extension, as it poses a high risk due to its broad permissions and lack of transparency about its developer and purpose.
- Consider using a more reputable and well-reviewed cookie manager extension from a trusted source.
- If you decide to use this extension, run it in a separate Chrome profile or incognito mode to isolate it from your main browsing activity.
- Regularly review and remove unnecessary extensions to minimize potential security risks.
Security Analysis
This section provides a detailed analysis of the extension's security posture, without broader context. Assumes worst-case impact.
HIGH
Overall Risk
Based on 4 total findings, ranked without considering overall context, including 2 high-risk and 2 medium-risk findings.
HIGH
Broad Host Permissions
This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.
HIGH
High-Risk Permission: cookies
This extension has the cookies permission. Can access and modify browser cookies. This could potentially be used maliciously to compromise security or privacy.
MEDIUM
Medium-Risk Permission: contextMenus
This extension has the contextMenus permission. Can add items to the context menu.
MEDIUM
Medium-Risk Permission: storage
This extension has the storage permission. Can store data locally.
Security Analysis Details
Required Permissions:
- cookies
- storage
- scripting
- contextMenus
Host Permissions:
- *://*/*
Embedded URLs (7 total):
| http://mozilla.org/MPL/2.0/. | https://clients2.google.com/service/update2/crx | |
| https://webextension.org/listing/cookie-editor.html | http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd | |
| http://www.w3.org/2000/svg | http://www.w3.org/1999/xlink | |
| https://github.com/joue-quroi/Resizable |
Raw Manifest
{ "name": "CookieManager - Cookie Editor", "icons": { "16": "/data/icons/16.png", "32": "/data/icons/32.png", "48": "/data/icons/48.png", "64": "/data/icons/64.png", "128": "/data/icons/128.png", "256": "/data/icons/256.png", "512": "/data/icons/512.png" }, "action": { "default_popup": "/data/popup/index.html" }, "version": "0.2.2", "commands": { "_execute_action": {} }, "background": { "service_worker": "worker.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_description__", "permissions": [ "cookies", "storage", "scripting", "contextMenus" ], "homepage_url": "https://webextension.org/listing/cookie-editor.html", "default_locale": "en", "host_permissions": [ "*://*/*" ], "manifest_version": 3 }
Secure Annex (beta)
Coming soon...