Extension Details
Rating:
4.3 ★
(45 ratings)
Users:
10,000
Context-Aware Verdict
This section provides a Claude-based AI analysis that applies additional context to the risk. Results are not guaranteed to be accurate.
MEDIUM
Overall Risk
Trust Factors:
The extension has a moderate user base of 10,000 users with a decent rating of 4.3/5 from 45 reviews, suggesting reasonable user satisfaction. However, the lack of clear developer information raises some transparency concerns. The extension appears to serve a legitimate purpose as a dark mode tool, which is a common and useful browser enhancement.
Concerns:
The primary concern is the overly broad host permissions (<all_urls>) which grants access to all websites. While dark mode extensions typically need wide access to apply themes across sites, this level of permission creates potential for data collection or malicious activity. The combination of scripting permissions with universal site access amplifies this risk. The storage permission, while necessary for saving user preferences, could potentially be misused to store sensitive data. The contextMenus permission seems appropriate for a theming extension but adds another attack vector.
Recommendations:
Consider running this extension in a separate Chrome profile to isolate it from sensitive browsing activities. Monitor the extension's behavior and disable it on sensitive websites like banking or work-related sites. Regularly review what data the extension might be storing through Chrome's extension management settings. If possible, look for alternative dark mode extensions with more limited permissions or use Chrome's built-in dark mode features where available. Keep the extension updated and watch for any unusual permission requests in future updates.
Findings
This section provides a detailed analysis of the extension's security posture, without broader context. Assumes worst-case impact.
HIGH
Broad Host Permissions
This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.
MEDIUM
Medium-Risk Permission: contextMenus
This extension has the contextMenus permission. Can add items to the context menu.
MEDIUM
Medium-Risk Permission: storage
This extension has the storage permission. Can store data locally.
Security Analysis Details
Required Permissions:
- alarms
- storage
- scripting
- contextMenus
Host Permissions:
- <all_urls>
Embedded URLs (176 total):
| https://getbootstrap.com/ | https://github.com/twbs/bootstrap/blob/main/LICENSE | |
| http://www.w3.org/2000/svg | https://www.gstatic.com/images/branding/googlelogo | |
| https://www.hcaptcha.com/ | https://images.squarespace-cdn.com | |
| https://allmacworld.com/blocs-free-download/ | https://allmacworld.com/waves-v11-complete-download-free/ | |
| https://allmacworld.com/3dequalizer-4-for-mac-free-download/ | https://allmacworld.com/sylenth1-for-mac-free-download/ | |
| https://allmacworld.com/synapse-audio-legend-free-download/ | https://github.githubassets.com/favicon.ico | |
| https://latexmath.bolo-app.com/render/ | https://www.bahai.us/wp-content/themes/bahai2019/assets/images/bahai_logo_black.svg | |
| https://www.bankier.pl/ | https://cdn.blahdns.com/logo.png | |
| https://cdn.blahdns.com/kofi4.png | https://blog.arelion.com/wp-content/themes/arelion-blog-theme-kopia/public/images/logo.svg | |
| https://blog.arelion.com/wp-content/themes/arelion-blog-theme-kopia/public/images/ico/search-icon.svg | https://blog.arelion.com/wp-content/themes/arelion-blog-theme-kopia/public/images/ico/right-arrow.png | |
| https://www.mozilla.org/ | https://donate.mozilla.org/ | |
| https://x.boardgamearena.net/data/themereleases/current/games/agricola/230120-1146/img/action_frame.png | https://x.boardgamearena.net/data/themereleases/current/games/agricola/230120-1146/img/action_frame_s.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/bandada/221108-1032/img/birds312.png | https://x.boardgamearena.net/data/themereleases/current/games/bandada/221108-1032/img/dicecard.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/carnegie/210812-1806/img/timelines.png | https://x.boardgamearena.net/data/themereleases/current/games/catcafe/221108-0942/img/catcafe_sheet.jpg | |
| https://x.boardgamearena.net/data/themereleases/current/games/catcafe/221108-0942/img/drawings_black.png | https://x.boardgamearena.net/data/themereleases/current/games/catcafe/221108-0942/img/catfootprint.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/catcafe/221108-0942/img/column_scoring.png | https://x.boardgamearena.net/data/themereleases/current/games/kingoftokyo/230710-1229/img/evolution-cards.jpg | |
| https://i.imgur.com/ptX6Fv7.png | https://x.boardgamearena.net/data/themereleases/current/games/littlefactory/220227-0736/img/Card2.jpg | |
| https://x.boardgamearena.net/data/themereleases/current/games/littlefactory/220227-0736/img/Card4.jpg | https://x.boardgamearena.net/data/themereleases/current/games/littlefactory/220227-0736/img/Card1.jpg | |
| https://x.boardgamearena.net/data/themereleases/current/games/littlefactory/220227-0736/img/Card5.jpg | https://x.boardgamearena.net/data/themereleases/current/games/littlefactory/220227-0736/img/Card3.jpg | |
| https://x.boardgamearena.net/data/themereleases/current/games/microdojo/221116-1802/img/barraks.png | https://x.boardgamearena.net/data/themereleases/current/games/rainforest/230403-1628/img/Tokens.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/riftvalleyreserve/221228-1440/img/score_ref_vert.png | https://x.boardgamearena.net/data/themereleases/current/games/riichimahjong/220818-0132/img/mahjongg_japan_annot.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/splashdown/230808-1947/img/tokens.png | https://x.boardgamearena.net/data/themereleases/current/games/takaraisland/170709-1847/img/wound.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/tobago/190401-1859/img/clue_cards.png | https://x.boardgamearena.net/data/themereleases/current/games/tobago/190401-1859/img/hut.png | |
| https://x.boardgamearena.net/data/themereleases/current/games/kado/250219-0834/img/cards.jpg | https://x.boardgamearena.net/data/themereleases/current/games/nextstation/220831-1241/img/mainpad_back.jpg | |
| https://x.boardgamearena.net/data/themereleases/current/games/nextstation/221221-2031/img/scorepad.jpg | https://x.boardgamearena.net/data/themereleases/current/games/romirami/240422-0303/img/card_number.jpg | |
| https://x.boardgamearena.net/data/themereleases/current/games/romirami/240422-0303/img/card_contract.jpg | https://bugzilla.opensuse.org/skins/contrib/openSUSE/noise.png | |
| https://static-assets.cargurus.com/images/site-p2p/homePageBanner/DD_Mobile_606bb2f4286d575e9a21b2f3ac776e8dd33d0deccf409fe1598859361ce63c05.png | https://s3.castbox.fm/webstatic/images/userIcon.06c408dc.png | |
| https://ssl.gstatic.com/social/contactsui/images/emptycontacts/emptycontacts_animation_ | https://static.coupangcdn.com/image/coupang/common/pc_header_img_sprite_new_gnb.svg#person | |
| https://static.coupangcdn.com/image/coupang/common/pc_header_img_sprite_new_gnb.svg#cart | https://cppm3144.itdhosting.de/niku/ui/uitk/images/odf.png | |
| https://www.defectivebydesign.org/sites/all/themes/dbd2/images/dbd-logo.png | https://scontent.fiev25-1.fna.fbcdn.net/v/t39.2365-6/306317286_5514106962009770_3327930304024114088_n.jpg | |
| https://dej.rae.es | https://ssl.gstatic.com/docs/doclist/images/empty_state_details.png | |
| https://duckduckgo.com/assets/icons/thirdparty/wikipedia.svg | https://duckduckgo.com/assets/logo_homepage.alt.v108.svg | |
| https://duckduckgo.com/assets/logo_header.alt.v108.svg | https://i.pl/firmy | |
| https://i.pl/szukaj | https://auth.fandom.com/auth/redirect?redirect= | |
| http://www.festivals.mt | https://torrent-stats.info/ | |
| https://fitgirl-repacks.site/games-with-my-personal-pink-paw-award/ | https://www.flaggenlexikon.de/pix/flaggenlexikon.gif | |
| https://flcu.org/resources/solutions/make-a-payment/ | https://imgv3.fotor.com/images/background/background-image.png | |
| https://github.githubassets.com/images/modules/site/icons/footer/github-logo.svg | https://github.githubassets.com/images/modules/site/home/community-sponsor- | |
| https://github.githubassets.com/images/modules/site/home/community-readme- | https://github.githubassets.com/images/modules/site/home/community-discussions- | |
| https://github.githubassets.com/images/modules/site/home/dependabot-merge.png | https://github.githubassets.com/images/modules/site/home/dependabot-pr.png |
Page 1 of 3
Raw Manifest
{ "name": "__MSG_extName__", "icons": { "16": "icons/icon-16.png", "48": "icons/icon-48.png", "128": "icons/icon-128.png", "300": "icons/icon-300.png" }, "action": { "default_icon": { "16": "icons/icon-16.png", "48": "icons/icon-48.png", "128": "icons/icon-128.png", "300": "icons/icon-300.png" }, "default_popup": "popup/popup.html" }, "author": "Awesome Dark mode", "version": "1.0.5", "background": { "service_worker": "js/background.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_extShortDesc__", "permissions": [ "alarms", "storage", "scripting", "contextMenus" ], "default_locale": "en", "host_permissions": [ "<all_urls>" ], "manifest_version": 3, "minimum_chrome_version": "102.0", "web_accessible_resources": [ { "matches": [ "<all_urls>" ], "resources": [ "js/proxy.js" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
Loading Secure Annex data...
Unable to load Secure Annex data.
This extension may not yet be analyzed by Secure Annex.
Detections
0Critical
0
High
0
Medium
0
Low
0
Has Verdicts
Yes
Manifest Findings
0Critical
0
High
0
Medium
0
Low
0
Secure Annex analyzed version: -