Extension Details
Context-Aware Verdict
The extension lacks critical transparency indicators that would establish trust. There is no visible description, author information, developer details, user count, ratings, or reviews. The extension appears to be in early development (version 0.1.1) with minimal information available. The absence of basic metadata raises questions about the extension's legitimacy and purpose.
Given the complete lack of transparency and unknown functionality, avoid installing this extension. If you must use it for specific reasons, run it in a completely separate Chrome profile to isolate potential risks. The nativeMessaging permission is particularly concerning as it can interact with your system beyond the browser. Wait for more information about the developer, clear documentation of functionality, and user reviews before considering installation. Look for alternative extensions with established reputations and clear purposes instead.
Findings
Security Analysis Details
Required Permissions:
- nativeMessaging
- contextMenus
Embedded URLs (1 total):
| https://clients2.google.com/service/update2/crx |
Raw Manifest
{ "name": "octolo", "version": "0.1.1", "background": { "scripts": [ "dist/background.js" ] }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "Open files with local editor from GitHub Web", "permissions": [ "nativeMessaging", "contextMenus" ], "applications": { "gecko": { "id": "{3de89a2b-180a-427e-85dd-29c983e93ba3}", "strict_min_version": "65.0" } }, "manifest_version": 2 }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.