Sweezy Custom Doodle for Google™
Version 2.3.5 View in Chrome Web Store
Last scanned: about 4 hours ago
Extension Details
Developer:
custom-doodle.com
Rating:
4.8 ★
(902 ratings)
Users:
80,000
Context-Aware Verdict
This section provides a Claude-based AI analysis that applies additional context to the risk. Results are not guaranteed to be accurate.
MEDIUM
Overall Risk
Trust Factors:
The extension has a solid user base of 80,000 users with a high rating of 4.8 stars from 902 reviews, indicating general user satisfaction. The extension uses Manifest V3, which provides better security controls. However, the developer information is limited to just a domain name (custom-doodle.com) without comprehensive company details, which reduces transparency.
Concerns:
The primary concern is the extremely broad host permissions covering virtually every Google domain worldwide (over 150 country-specific Google domains). While this aligns with the extension's purpose of customizing Google doodles globally, it represents significant access scope. The extension can inject content scripts across all these Google properties, potentially accessing user search queries, personal information, and browsing patterns. The storage permission allows data persistence, which could be used to track user preferences or behavior over time. The access to custom-doodle.com suggests potential data communication with external servers.
Recommendations:
Given the broad Google access, consider running this extension in a separate Chrome profile dedicated to casual browsing rather than accounts containing sensitive information. Monitor the extension's behavior and disable it if you notice unusual performance issues or unexpected network activity. Regularly review what data might be stored locally through Chrome's extension management settings. Users should be comfortable with the extension having visibility into their Google search activity before installation, as this access is fundamental to its doodle customization functionality.
Findings
This section provides a detailed analysis of the extension's security posture, without broader context. Assumes worst-case impact.
HIGH
Broad Host Permissions
This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.
MEDIUM
Access to Sensitive Domains
This extension requests access to sensitive domains: https://*.google.com/*, https://*.google.ad/*, https://*.google.ae/*, https://*.google.com.af/*, https://*.google.com.ag/*, https://*.google.com.ai/*, https://*.google.al/*, https://*.google.am/*, https://*.google.co.ao/*, https://*.google.com.ar/*, https://*.google.as/*, https://*.google.at/*, https://*.google.com.au/*, https://*.google.az/*, https://*.google.ba/*, https://*.google.com.bd/*, https://*.google.be/*, https://*.google.bf/*, https://*.google.bg/*, https://*.google.com.bh/*, https://*.google.bi/*, https://*.google.bj/*, https://*.google.com.bn/*, https://*.google.com.bo/*, https://*.google.com.br/*, https://*.google.bs/*, https://*.google.bt/*, https://*.google.co.bw/*, https://*.google.by/*, https://*.google.com.bz/*, https://*.google.ca/*, https://*.google.cd/*, https://*.google.cf/*, https://*.google.cg/*, https://*.google.ch/*, https://*.google.ci/*, https://*.google.co.ck/*, https://*.google.cl/*, https://*.google.cm/*, https://*.google.cn/*, https://*.google.com.co/*, https://*.google.co.cr/*, https://*.google.com.cu/*, https://*.google.cv/*, https://*.google.com.cy/*, https://*.google.cz/*, https://*.google.de/*, https://*.google.dj/*, https://*.google.dk/*, https://*.google.dm/*, https://*.google.com.do/*, https://*.google.dz/*, https://*.google.com.ec/*, https://*.google.ee/*, https://*.google.com.eg/*, https://*.google.es/*, https://*.google.com.et/*, https://*.google.fi/*, https://*.google.com.fj/*, https://*.google.fm/*, https://*.google.fr/*, https://*.google.ga/*, https://*.google.ge/*, https://*.google.gg/*, https://*.google.com.gh/*, https://*.google.com.gi/*, https://*.google.gl/*, https://*.google.gm/*, https://*.google.gr/*, https://*.google.com.gt/*, https://*.google.gy/*, https://*.google.com.hk/*, https://*.google.hn/*, https://*.google.hr/*, https://*.google.ht/*, https://*.google.hu/*, https://*.google.co.id/*, https://*.google.ie/*, https://*.google.co.il/*, https://*.google.im/*, https://*.google.co.in/*, https://*.google.iq/*, https://*.google.is/*, https://*.google.it/*, https://*.google.je/*, https://*.google.com.jm/*, https://*.google.jo/*, https://*.google.co.jp/*, https://*.google.co.ke/*, https://*.google.com.kh/*, https://*.google.ki/*, https://*.google.kg/*, https://*.google.co.kr/*, https://*.google.com.kw/*, https://*.google.kz/*, https://*.google.la/*, https://*.google.com.lb/*, https://*.google.li/*, https://*.google.lk/*, https://*.google.co.ls/*, https://*.google.lt/*, https://*.google.lu/*, https://*.google.lv/*, https://*.google.com.ly/*, https://*.google.co.ma/*, https://*.google.md/*, https://*.google.me/*, https://*.google.mg/*, https://*.google.mk/*, https://*.google.ml/*, https://*.google.com.mm/*, https://*.google.mn/*, https://*.google.ms/*, https://*.google.com.mt/*, https://*.google.mu/*, https://*.google.mv/*, https://*.google.mw/*, https://*.google.com.mx/*, https://*.google.com.my/*, https://*.google.co.mz/*, https://*.google.com.na/*, https://*.google.com.ng/*, https://*.google.com.ni/*, https://*.google.ne/*, https://*.google.nl/*, https://*.google.no/*, https://*.google.com.np/*, https://*.google.nr/*, https://*.google.nu/*, https://*.google.co.nz/*, https://*.google.com.om/*, https://*.google.com.pa/*, https://*.google.com.pe/*, https://*.google.com.pg/*, https://*.google.com.ph/*, https://*.google.com.pk/*, https://*.google.pl/*, https://*.google.pn/*, https://*.google.com.pr/*, https://*.google.ps/*, https://*.google.pt/*, https://*.google.com.py/*, https://*.google.com.qa/*, https://*.google.ro/*, https://*.google.ru/*, https://*.google.rw/*, https://*.google.com.sa/*, https://*.google.com.sb/*, https://*.google.sc/*, https://*.google.se/*, https://*.google.com.sg/*, https://*.google.sh/*, https://*.google.si/*, https://*.google.sk/*, https://*.google.com.sl/*, https://*.google.sn/*, https://*.google.so/*, https://*.google.sm/*, https://*.google.sr/*, https://*.google.st/*, https://*.google.com.sv/*, https://*.google.td/*, https://*.google.tg/*, https://*.google.co.th/*, https://*.google.com.tj/*, https://*.google.tl/*, https://*.google.tm/*, https://*.google.tn/*, https://*.google.to/*, https://*.google.com.tr/*, https://*.google.tt/*, https://*.google.com.tw/*, https://*.google.co.tz/*, https://*.google.com.ua/*, https://*.google.co.ug/*, https://*.google.co.uk/*, https://*.google.com.uy/*, https://*.google.co.uz/*, https://*.google.com.vc/*, https://*.google.co.ve/*, https://*.google.vg/*, https://*.google.co.vi/*, https://*.google.com.vn/*, https://*.google.vu/*, https://*.google.ws/*, https://*.google.rs/*, https://*.google.co.za/*, https://*.google.co.zm/*, https://*.google.co.zw/*, https://*.google.cat/*. Ensure you trust this extension with access to these sites.
MEDIUM
Medium-Risk Permission: storage
This extension has the storage permission. Can store data locally.
Security Analysis Details
Required Permissions:
- scripting
- storage
Host Permissions:
- https://*.custom-doodle.com/*
- https://*.google.com/*
- https://*.google.ad/*
- https://*.google.ae/*
- https://*.google.com.af/*
- https://*.google.com.ag/*
- https://*.google.com.ai/*
- https://*.google.al/*
- https://*.google.am/*
- https://*.google.co.ao/*
- https://*.google.com.ar/*
- https://*.google.as/*
- https://*.google.at/*
- https://*.google.com.au/*
- https://*.google.az/*
- https://*.google.ba/*
- https://*.google.com.bd/*
- https://*.google.be/*
- https://*.google.bf/*
- https://*.google.bg/*
- https://*.google.com.bh/*
- https://*.google.bi/*
- https://*.google.bj/*
- https://*.google.com.bn/*
- https://*.google.com.bo/*
- https://*.google.com.br/*
- https://*.google.bs/*
- https://*.google.bt/*
- https://*.google.co.bw/*
- https://*.google.by/*
- https://*.google.com.bz/*
- https://*.google.ca/*
- https://*.google.cd/*
- https://*.google.cf/*
- https://*.google.cg/*
- https://*.google.ch/*
- https://*.google.ci/*
- https://*.google.co.ck/*
- https://*.google.cl/*
- https://*.google.cm/*
- https://*.google.cn/*
- https://*.google.com.co/*
- https://*.google.co.cr/*
- https://*.google.com.cu/*
- https://*.google.cv/*
- https://*.google.com.cy/*
- https://*.google.cz/*
- https://*.google.de/*
- https://*.google.dj/*
- https://*.google.dk/*
- https://*.google.dm/*
- https://*.google.com.do/*
- https://*.google.dz/*
- https://*.google.com.ec/*
- https://*.google.ee/*
- https://*.google.com.eg/*
- https://*.google.es/*
- https://*.google.com.et/*
- https://*.google.fi/*
- https://*.google.com.fj/*
- https://*.google.fm/*
- https://*.google.fr/*
- https://*.google.ga/*
- https://*.google.ge/*
- https://*.google.gg/*
- https://*.google.com.gh/*
- https://*.google.com.gi/*
- https://*.google.gl/*
- https://*.google.gm/*
- https://*.google.gr/*
- https://*.google.com.gt/*
- https://*.google.gy/*
- https://*.google.com.hk/*
- https://*.google.hn/*
- https://*.google.hr/*
- https://*.google.ht/*
- https://*.google.hu/*
- https://*.google.co.id/*
- https://*.google.ie/*
- https://*.google.co.il/*
- https://*.google.im/*
- https://*.google.co.in/*
- https://*.google.iq/*
- https://*.google.is/*
- https://*.google.it/*
- https://*.google.je/*
- https://*.google.com.jm/*
- https://*.google.jo/*
- https://*.google.co.jp/*
- https://*.google.co.ke/*
- https://*.google.com.kh/*
- https://*.google.ki/*
- https://*.google.kg/*
- https://*.google.co.kr/*
- https://*.google.com.kw/*
- https://*.google.kz/*
- https://*.google.la/*
- https://*.google.com.lb/*
- https://*.google.li/*
- https://*.google.lk/*
- https://*.google.co.ls/*
- https://*.google.lt/*
- https://*.google.lu/*
- https://*.google.lv/*
- https://*.google.com.ly/*
- https://*.google.co.ma/*
- https://*.google.md/*
- https://*.google.me/*
- https://*.google.mg/*
- https://*.google.mk/*
- https://*.google.ml/*
- https://*.google.com.mm/*
- https://*.google.mn/*
- https://*.google.ms/*
- https://*.google.com.mt/*
- https://*.google.mu/*
- https://*.google.mv/*
- https://*.google.mw/*
- https://*.google.com.mx/*
- https://*.google.com.my/*
- https://*.google.co.mz/*
- https://*.google.com.na/*
- https://*.google.com.ng/*
- https://*.google.com.ni/*
- https://*.google.ne/*
- https://*.google.nl/*
- https://*.google.no/*
- https://*.google.com.np/*
- https://*.google.nr/*
- https://*.google.nu/*
- https://*.google.co.nz/*
- https://*.google.com.om/*
- https://*.google.com.pa/*
- https://*.google.com.pe/*
- https://*.google.com.pg/*
- https://*.google.com.ph/*
- https://*.google.com.pk/*
- https://*.google.pl/*
- https://*.google.pn/*
- https://*.google.com.pr/*
- https://*.google.ps/*
- https://*.google.pt/*
- https://*.google.com.py/*
- https://*.google.com.qa/*
- https://*.google.ro/*
- https://*.google.ru/*
- https://*.google.rw/*
- https://*.google.com.sa/*
- https://*.google.com.sb/*
- https://*.google.sc/*
- https://*.google.se/*
- https://*.google.com.sg/*
- https://*.google.sh/*
- https://*.google.si/*
- https://*.google.sk/*
- https://*.google.com.sl/*
- https://*.google.sn/*
- https://*.google.so/*
- https://*.google.sm/*
- https://*.google.sr/*
- https://*.google.st/*
- https://*.google.com.sv/*
- https://*.google.td/*
- https://*.google.tg/*
- https://*.google.co.th/*
- https://*.google.com.tj/*
- https://*.google.tl/*
- https://*.google.tm/*
- https://*.google.tn/*
- https://*.google.to/*
- https://*.google.com.tr/*
- https://*.google.tt/*
- https://*.google.com.tw/*
- https://*.google.co.tz/*
- https://*.google.com.ua/*
- https://*.google.co.ug/*
- https://*.google.co.uk/*
- https://*.google.com.uy/*
- https://*.google.co.uz/*
- https://*.google.com.vc/*
- https://*.google.co.ve/*
- https://*.google.vg/*
- https://*.google.co.vi/*
- https://*.google.com.vn/*
- https://*.google.vu/*
- https://*.google.ws/*
- https://*.google.rs/*
- https://*.google.co.za/*
- https://*.google.co.zm/*
- https://*.google.co.zw/*
- https://*.google.cat/*
Content Security Policy:
- extension_pages: script-src 'self'; object-src 'self';
Embedded URLs (67 total):
| https://custom-doodle.com/wp-content/uploads/doodle/funny-duck-twirls-tail/funny-duck-twirls-tail-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/totoro-catbus-running/totoro-catbus-running-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/sailor-moon-sailor-mars/sailor-moon-sailor-mars-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/pokemon-gengar-8-bit/pokemon-gengar-8-bit-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/one-piece-luffy-straw-hat/one-piece-luffy-straw-hat-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/dragon-ball-super-saiyan-blue-kick/dragon-ball-super-saiyan-blue-kick-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/batman-says-no-doodle/batman-says-no-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/spongebob-awesome-squidward-pixel/spongebob-awesome-squidward-pixel-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/auto-draft/spongebob-gary-the-snail-crawling-in-circles-pixel-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/auto-draft/simpsons-lisa-dance-hands-up-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/winter-spongebob-pixel/winter-spongebob-pixel-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/rick-and-morty-rick-sanchez-burp/rick-and-morty-rick-sanchez-burp-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/mortal-kombat-fatality/mortal-kombat-fatality-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/sonic-running/sonic-running-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/legend-of-zelda-link-pixel/legend-of-zelda-link-pixel-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/fnf-girlfriend-at-the-speakers/fnf-girlfriend-at-the-speakers-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/sonic-gold-ring-pixel-doodle/sonic-gold-ring-pixel-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/fortnite-llama-and-gum-doodle/fortnite-llama-and-gum-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/minecraft-diamond-sword-doodle/minecraft-diamond-sword-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/among-us-purple-ninja-skin/among-us-purple-ninja-skin-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/pink-and-orange-floppy-disk/pink-and-orange-floppy-disk-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/google-dial-up/google-dial-up-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/white-cursor-clicks/white-cursor-clicks-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/pink-chrome-mercedes-benz-coupe/pink-chrome-mercedes-benz-coupe-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/swag-goose-with-sunglasses/swag-goose-with-sunglasses-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/cute-kitty-plays-with-heart-pixel/cute-kitty-plays-with-heart-pixel-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/spinning-pixel-heart/spinning-pixel-heart-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/pulp-fiction-vincent-vega-and-mia-wallace-dancing-neon/pulp-fiction-vincent-vega-and-mia-wallace-dancing-neon-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/the-mandalorian-baby-yoda-in-pram/the-mandalorian-baby-yoda-in-pram-doodle.gif | https://custom-doodle.com/wp-content/uploads/doodle/the-matrix-follow-the-white-rabbit/the-matrix-follow-the-white-rabbit-doodle.gif | |
| https://custom-doodle.com/wp-content/uploads/doodle/bruce-almighty-typing-on-he-keyboard/bruce-almighty-typing-on-the-keyboard-doodle.gif | https://github.com/uuidjs/uuid#getrandomvalues-not-supported | |
| http://www.example.com | https://bf6c30a27d8115cb53b1758528eed077@o4505124615749632.ingest.sentry.io/4506013938876416 | |
| https://www.google.com/ | https://custom-doodle.com/extension-uninstalled/ | |
| https://introjs.com | https://github.com/facebook/regenerator/blob/main/LICENSE | |
| http://jedwatson.github.io/classnames | https://github.com/zloirock/core-js/blob/v3.23.3/LICENSE | |
| https://github.com/zloirock/core-js | https://custom-doodle.com/wp-content/uploads/ext-intro/pin-extension-icon.gif | |
| https://custom-doodle.com/wp-content/uploads/ext-intro/keep-it-button.gif | https://custom-doodle.com/ | |
| https://fontawesome.com | https://fontawesome.com/license/free | |
| https://clients2.google.com/service/update2/crx | https://www.google. | |
| https://dev.custom-doodle.com/ | https://www.google.com | |
| https://google.com | http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd | |
| http://www.w3.org/2000/svg | http://www.w3.org/1999/xlink | |
| https://mui.com/production-error/?code= | http://fb.me/use-check-prop-types | |
| https://reactjs.org/docs/error-decoder.html?invariant= | http://www.w3.org/XML/1998/namespace | |
| http://www.w3.org/1998/Math/MathML | http://www.w3.org/1999/xhtml | |
| https://bugs.webkit.org/show_bug.cgi?id=68196 | https://custom-doodle.com | |
| https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types/Common_types | https://developer.mozilla.org/en-US/docs/Web/API/File_System_Access_API | |
| https://chromewebstore.google.com/detail/sweezy-custom-doodle-for/jeiahlnhacbbdkaniaednfjpaemaghol/reviews | https://chrome.google.com/webstore/detail/custom-doodle-logo-for-ch/jeiahlnhacbbdkaniaednfjpaemaghol | |
| https://www.google-analytics.com/mp/collect?measurement_id=G-TQ4TSN2P91&api_secret= |
Raw Manifest
{ "key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FUTmeYk8czD8n1ru2X1ugq0+1bi/hMxV8IYdZ9wMK2cum7ojGo6rQFEwtyc8WRZFWNGFmwbmCavwqFJ8bHU4dZVJcSdhdMlDUoUs+Dg2hqx4holr2D+F9+5+I/kFEUeKFIPXyVvOcdQNaM4JyTcRd7fyQa01UnWxaxQx+iqOL0rbJwbct6eOjf5nHsVn2FNImszb1hhSeowhkppoQLiH8haXODvD9Z1NebQ7ryxvyilbbOu7qxRAZZF1IdS1KWofkJnqELz5hm2eFVzoJPe5N51CgbT4FtHnsYVhJL8hCbew2rOjNn5ypyWTJfnTIA19JxnM8PVSNzLPdL/CI8e1QIDAQAB", "name": "__MSG_extName__", "icons": { "32": "assets/manifest_icons/icon32.png", "48": "assets/manifest_icons/icon48.png", "96": "assets/manifest_icons/icon96.png", "128": "assets/manifest_icons/icon128.png", "256": "assets/manifest_icons/icon256.png" }, "action": { "default_popup": "popup.html" }, "version": "2.3.5", "background": { "service_worker": "background.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_extDescription__", "permissions": [ "scripting", "storage" ], "default_locale": "en", "content_scripts": [ { "js": [ "content_script.js" ], "run_at": "document_start", "matches": [ "https://*.google.com/*", "https://*.google.ad/*", "https://*.google.ae/*", "https://*.google.com.af/*", "https://*.google.com.ag/*", "https://*.google.com.ai/*", "https://*.google.al/*", "https://*.google.am/*", "https://*.google.co.ao/*", "https://*.google.com.ar/*", "https://*.google.as/*", "https://*.google.at/*", "https://*.google.com.au/*", "https://*.google.az/*", "https://*.google.ba/*", "https://*.google.com.bd/*", "https://*.google.be/*", "https://*.google.bf/*", "https://*.google.bg/*", "https://*.google.com.bh/*", "https://*.google.bi/*", "https://*.google.bj/*", "https://*.google.com.bn/*", "https://*.google.com.bo/*", "https://*.google.com.br/*", "https://*.google.bs/*", "https://*.google.bt/*", "https://*.google.co.bw/*", "https://*.google.by/*", "https://*.google.com.bz/*", "https://*.google.ca/*", "https://*.google.cd/*", "https://*.google.cf/*", "https://*.google.cg/*", "https://*.google.ch/*", "https://*.google.ci/*", "https://*.google.co.ck/*", "https://*.google.cl/*", "https://*.google.cm/*", "https://*.google.cn/*", "https://*.google.com.co/*", "https://*.google.co.cr/*", "https://*.google.com.cu/*", "https://*.google.cv/*", "https://*.google.com.cy/*", "https://*.google.cz/*", "https://*.google.de/*", "https://*.google.dj/*", "https://*.google.dk/*", "https://*.google.dm/*", "https://*.google.com.do/*", "https://*.google.dz/*", "https://*.google.com.ec/*", "https://*.google.ee/*", "https://*.google.com.eg/*", "https://*.google.es/*", "https://*.google.com.et/*", "https://*.google.fi/*", "https://*.google.com.fj/*", "https://*.google.fm/*", "https://*.google.fr/*", "https://*.google.ga/*", "https://*.google.ge/*", "https://*.google.gg/*", "https://*.google.com.gh/*", "https://*.google.com.gi/*", "https://*.google.gl/*", "https://*.google.gm/*", "https://*.google.gr/*", "https://*.google.com.gt/*", "https://*.google.gy/*", "https://*.google.com.hk/*", "https://*.google.hn/*", "https://*.google.hr/*", "https://*.google.ht/*", "https://*.google.hu/*", "https://*.google.co.id/*", "https://*.google.ie/*", "https://*.google.co.il/*", "https://*.google.im/*", "https://*.google.co.in/*", "https://*.google.iq/*", "https://*.google.is/*", "https://*.google.it/*", "https://*.google.je/*", "https://*.google.com.jm/*", "https://*.google.jo/*", "https://*.google.co.jp/*", "https://*.google.co.ke/*", "https://*.google.com.kh/*", "https://*.google.ki/*", "https://*.google.kg/*", "https://*.google.co.kr/*", "https://*.google.com.kw/*", "https://*.google.kz/*", "https://*.google.la/*", "https://*.google.com.lb/*", "https://*.google.li/*", "https://*.google.lk/*", "https://*.google.co.ls/*", "https://*.google.lt/*", "https://*.google.lu/*", "https://*.google.lv/*", "https://*.google.com.ly/*", "https://*.google.co.ma/*", "https://*.google.md/*", "https://*.google.me/*", "https://*.google.mg/*", "https://*.google.mk/*", "https://*.google.ml/*", "https://*.google.com.mm/*", "https://*.google.mn/*", "https://*.google.ms/*", "https://*.google.com.mt/*", "https://*.google.mu/*", "https://*.google.mv/*", "https://*.google.mw/*", "https://*.google.com.mx/*", "https://*.google.com.my/*", "https://*.google.co.mz/*", "https://*.google.com.na/*", "https://*.google.com.ng/*", "https://*.google.com.ni/*", "https://*.google.ne/*", "https://*.google.nl/*", "https://*.google.no/*", "https://*.google.com.np/*", "https://*.google.nr/*", "https://*.google.nu/*", "https://*.google.co.nz/*", "https://*.google.com.om/*", "https://*.google.com.pa/*", "https://*.google.com.pe/*", "https://*.google.com.pg/*", "https://*.google.com.ph/*", "https://*.google.com.pk/*", "https://*.google.pl/*", "https://*.google.pn/*", "https://*.google.com.pr/*", "https://*.google.ps/*", "https://*.google.pt/*", "https://*.google.com.py/*", "https://*.google.com.qa/*", "https://*.google.ro/*", "https://*.google.ru/*", "https://*.google.rw/*", "https://*.google.com.sa/*", "https://*.google.com.sb/*", "https://*.google.sc/*", "https://*.google.se/*", "https://*.google.com.sg/*", "https://*.google.sh/*", "https://*.google.si/*", "https://*.google.sk/*", "https://*.google.com.sl/*", "https://*.google.sn/*", "https://*.google.so/*", "https://*.google.sm/*", "https://*.google.sr/*", "https://*.google.st/*", "https://*.google.com.sv/*", "https://*.google.td/*", "https://*.google.tg/*", "https://*.google.co.th/*", "https://*.google.com.tj/*", "https://*.google.tl/*", "https://*.google.tm/*", "https://*.google.tn/*", "https://*.google.to/*", "https://*.google.com.tr/*", "https://*.google.tt/*", "https://*.google.com.tw/*", "https://*.google.co.tz/*", "https://*.google.com.ua/*", "https://*.google.co.ug/*", "https://*.google.co.uk/*", "https://*.google.com.uy/*", "https://*.google.co.uz/*", "https://*.google.com.vc/*", "https://*.google.co.ve/*", "https://*.google.vg/*", "https://*.google.co.vi/*", "https://*.google.com.vn/*", "https://*.google.vu/*", "https://*.google.ws/*", "https://*.google.rs/*", "https://*.google.co.za/*", "https://*.google.co.zm/*", "https://*.google.co.zw/*", "https://*.google.cat/*" ], "include_globs": [ "https://www.google.*/", "https://www.google.*/webhp*", "https://www.google.*/?gws_rd=ssl" ] }, { "js": [ "google_guide.js" ], "css": [ "google_guide.css" ], "matches": [ "https://*.google.com/*", "https://*.google.ad/*", "https://*.google.ae/*", "https://*.google.com.af/*", "https://*.google.com.ag/*", "https://*.google.com.ai/*", "https://*.google.al/*", "https://*.google.am/*", "https://*.google.co.ao/*", "https://*.google.com.ar/*", "https://*.google.as/*", "https://*.google.at/*", "https://*.google.com.au/*", "https://*.google.az/*", "https://*.google.ba/*", "https://*.google.com.bd/*", "https://*.google.be/*", "https://*.google.bf/*", "https://*.google.bg/*", "https://*.google.com.bh/*", "https://*.google.bi/*", "https://*.google.bj/*", "https://*.google.com.bn/*", "https://*.google.com.bo/*", "https://*.google.com.br/*", "https://*.google.bs/*", "https://*.google.bt/*", "https://*.google.co.bw/*", "https://*.google.by/*", "https://*.google.com.bz/*", "https://*.google.ca/*", "https://*.google.cd/*", "https://*.google.cf/*", "https://*.google.cg/*", "https://*.google.ch/*", "https://*.google.ci/*", "https://*.google.co.ck/*", "https://*.google.cl/*", "https://*.google.cm/*", "https://*.google.cn/*", "https://*.google.com.co/*", "https://*.google.co.cr/*", "https://*.google.com.cu/*", "https://*.google.cv/*", "https://*.google.com.cy/*", "https://*.google.cz/*", "https://*.google.de/*", "https://*.google.dj/*", "https://*.google.dk/*", "https://*.google.dm/*", "https://*.google.com.do/*", "https://*.google.dz/*", "https://*.google.com.ec/*", "https://*.google.ee/*", "https://*.google.com.eg/*", "https://*.google.es/*", "https://*.google.com.et/*", "https://*.google.fi/*", "https://*.google.com.fj/*", "https://*.google.fm/*", "https://*.google.fr/*", "https://*.google.ga/*", "https://*.google.ge/*", "https://*.google.gg/*", "https://*.google.com.gh/*", "https://*.google.com.gi/*", "https://*.google.gl/*", "https://*.google.gm/*", "https://*.google.gr/*", "https://*.google.com.gt/*", "https://*.google.gy/*", "https://*.google.com.hk/*", "https://*.google.hn/*", "https://*.google.hr/*", "https://*.google.ht/*", "https://*.google.hu/*", "https://*.google.co.id/*", "https://*.google.ie/*", "https://*.google.co.il/*", "https://*.google.im/*", "https://*.google.co.in/*", "https://*.google.iq/*", "https://*.google.is/*", "https://*.google.it/*", "https://*.google.je/*", "https://*.google.com.jm/*", "https://*.google.jo/*", "https://*.google.co.jp/*", "https://*.google.co.ke/*", "https://*.google.com.kh/*", "https://*.google.ki/*", "https://*.google.kg/*", "https://*.google.co.kr/*", "https://*.google.com.kw/*", "https://*.google.kz/*", "https://*.google.la/*", "https://*.google.com.lb/*", "https://*.google.li/*", "https://*.google.lk/*", "https://*.google.co.ls/*", "https://*.google.lt/*", "https://*.google.lu/*", "https://*.google.lv/*", "https://*.google.com.ly/*", "https://*.google.co.ma/*", "https://*.google.md/*", "https://*.google.me/*", "https://*.google.mg/*", "https://*.google.mk/*", "https://*.google.ml/*", "https://*.google.com.mm/*", "https://*.google.mn/*", "https://*.google.ms/*", "https://*.google.com.mt/*", "https://*.google.mu/*", "https://*.google.mv/*", "https://*.google.mw/*", "https://*.google.com.mx/*", "https://*.google.com.my/*", "https://*.google.co.mz/*", "https://*.google.com.na/*", "https://*.google.com.ng/*", "https://*.google.com.ni/*", "https://*.google.ne/*", "https://*.google.nl/*", "https://*.google.no/*", "https://*.google.com.np/*", "https://*.google.nr/*", "https://*.google.nu/*", "https://*.google.co.nz/*", "https://*.google.com.om/*", "https://*.google.com.pa/*", "https://*.google.com.pe/*", "https://*.google.com.pg/*", "https://*.google.com.ph/*", "https://*.google.com.pk/*", "https://*.google.pl/*", "https://*.google.pn/*", "https://*.google.com.pr/*", "https://*.google.ps/*", "https://*.google.pt/*", "https://*.google.com.py/*", "https://*.google.com.qa/*", "https://*.google.ro/*", "https://*.google.ru/*", "https://*.google.rw/*", "https://*.google.com.sa/*", "https://*.google.com.sb/*", "https://*.google.sc/*", "https://*.google.se/*", "https://*.google.com.sg/*", "https://*.google.sh/*", "https://*.google.si/*", "https://*.google.sk/*", "https://*.google.com.sl/*", "https://*.google.sn/*", "https://*.google.so/*", "https://*.google.sm/*", "https://*.google.sr/*", "https://*.google.st/*", "https://*.google.com.sv/*", "https://*.google.td/*", "https://*.google.tg/*", "https://*.google.co.th/*", "https://*.google.com.tj/*", "https://*.google.tl/*", "https://*.google.tm/*", "https://*.google.tn/*", "https://*.google.to/*", "https://*.google.com.tr/*", "https://*.google.tt/*", "https://*.google.com.tw/*", "https://*.google.co.tz/*", "https://*.google.com.ua/*", "https://*.google.co.ug/*", "https://*.google.co.uk/*", "https://*.google.com.uy/*", "https://*.google.co.uz/*", "https://*.google.com.vc/*", "https://*.google.co.ve/*", "https://*.google.vg/*", "https://*.google.co.vi/*", "https://*.google.com.vn/*", "https://*.google.vu/*", "https://*.google.ws/*", "https://*.google.rs/*", "https://*.google.co.za/*", "https://*.google.co.zm/*", "https://*.google.co.zw/*", "https://*.google.cat/*" ], "include_globs": [ "https://www.google.*/", "https://www.google.*/webhp*", "https://www.google.*/?gws_rd=ssl" ] } ], "host_permissions": [ "https://*.custom-doodle.com/*", "https://*.google.com/*", "https://*.google.ad/*", "https://*.google.ae/*", "https://*.google.com.af/*", "https://*.google.com.ag/*", "https://*.google.com.ai/*", "https://*.google.al/*", "https://*.google.am/*", "https://*.google.co.ao/*", "https://*.google.com.ar/*", "https://*.google.as/*", "https://*.google.at/*", "https://*.google.com.au/*", "https://*.google.az/*", "https://*.google.ba/*", "https://*.google.com.bd/*", "https://*.google.be/*", "https://*.google.bf/*", "https://*.google.bg/*", "https://*.google.com.bh/*", "https://*.google.bi/*", "https://*.google.bj/*", "https://*.google.com.bn/*", "https://*.google.com.bo/*", "https://*.google.com.br/*", "https://*.google.bs/*", "https://*.google.bt/*", "https://*.google.co.bw/*", "https://*.google.by/*", "https://*.google.com.bz/*", "https://*.google.ca/*", "https://*.google.cd/*", "https://*.google.cf/*", "https://*.google.cg/*", "https://*.google.ch/*", "https://*.google.ci/*", "https://*.google.co.ck/*", "https://*.google.cl/*", "https://*.google.cm/*", "https://*.google.cn/*", "https://*.google.com.co/*", "https://*.google.co.cr/*", "https://*.google.com.cu/*", "https://*.google.cv/*", "https://*.google.com.cy/*", "https://*.google.cz/*", "https://*.google.de/*", "https://*.google.dj/*", "https://*.google.dk/*", "https://*.google.dm/*", "https://*.google.com.do/*", "https://*.google.dz/*", "https://*.google.com.ec/*", "https://*.google.ee/*", "https://*.google.com.eg/*", "https://*.google.es/*", "https://*.google.com.et/*", "https://*.google.fi/*", "https://*.google.com.fj/*", "https://*.google.fm/*", "https://*.google.fr/*", "https://*.google.ga/*", "https://*.google.ge/*", "https://*.google.gg/*", "https://*.google.com.gh/*", "https://*.google.com.gi/*", "https://*.google.gl/*", "https://*.google.gm/*", "https://*.google.gr/*", "https://*.google.com.gt/*", "https://*.google.gy/*", "https://*.google.com.hk/*", "https://*.google.hn/*", "https://*.google.hr/*", "https://*.google.ht/*", "https://*.google.hu/*", "https://*.google.co.id/*", "https://*.google.ie/*", "https://*.google.co.il/*", "https://*.google.im/*", "https://*.google.co.in/*", "https://*.google.iq/*", "https://*.google.is/*", "https://*.google.it/*", "https://*.google.je/*", "https://*.google.com.jm/*", "https://*.google.jo/*", "https://*.google.co.jp/*", "https://*.google.co.ke/*", "https://*.google.com.kh/*", "https://*.google.ki/*", "https://*.google.kg/*", "https://*.google.co.kr/*", "https://*.google.com.kw/*", "https://*.google.kz/*", "https://*.google.la/*", "https://*.google.com.lb/*", "https://*.google.li/*", "https://*.google.lk/*", "https://*.google.co.ls/*", "https://*.google.lt/*", "https://*.google.lu/*", "https://*.google.lv/*", "https://*.google.com.ly/*", "https://*.google.co.ma/*", "https://*.google.md/*", "https://*.google.me/*", "https://*.google.mg/*", "https://*.google.mk/*", "https://*.google.ml/*", "https://*.google.com.mm/*", "https://*.google.mn/*", "https://*.google.ms/*", "https://*.google.com.mt/*", "https://*.google.mu/*", "https://*.google.mv/*", "https://*.google.mw/*", "https://*.google.com.mx/*", "https://*.google.com.my/*", "https://*.google.co.mz/*", "https://*.google.com.na/*", "https://*.google.com.ng/*", "https://*.google.com.ni/*", "https://*.google.ne/*", "https://*.google.nl/*", "https://*.google.no/*", "https://*.google.com.np/*", "https://*.google.nr/*", "https://*.google.nu/*", "https://*.google.co.nz/*", "https://*.google.com.om/*", "https://*.google.com.pa/*", "https://*.google.com.pe/*", "https://*.google.com.pg/*", "https://*.google.com.ph/*", "https://*.google.com.pk/*", "https://*.google.pl/*", "https://*.google.pn/*", "https://*.google.com.pr/*", "https://*.google.ps/*", "https://*.google.pt/*", "https://*.google.com.py/*", "https://*.google.com.qa/*", "https://*.google.ro/*", "https://*.google.ru/*", "https://*.google.rw/*", "https://*.google.com.sa/*", "https://*.google.com.sb/*", "https://*.google.sc/*", "https://*.google.se/*", "https://*.google.com.sg/*", "https://*.google.sh/*", "https://*.google.si/*", "https://*.google.sk/*", "https://*.google.com.sl/*", "https://*.google.sn/*", "https://*.google.so/*", "https://*.google.sm/*", "https://*.google.sr/*", "https://*.google.st/*", "https://*.google.com.sv/*", "https://*.google.td/*", "https://*.google.tg/*", "https://*.google.co.th/*", "https://*.google.com.tj/*", "https://*.google.tl/*", "https://*.google.tm/*", "https://*.google.tn/*", "https://*.google.to/*", "https://*.google.com.tr/*", "https://*.google.tt/*", "https://*.google.com.tw/*", "https://*.google.co.tz/*", "https://*.google.com.ua/*", "https://*.google.co.ug/*", "https://*.google.co.uk/*", "https://*.google.com.uy/*", "https://*.google.co.uz/*", "https://*.google.com.vc/*", "https://*.google.co.ve/*", "https://*.google.vg/*", "https://*.google.co.vi/*", "https://*.google.com.vn/*", "https://*.google.vu/*", "https://*.google.ws/*", "https://*.google.rs/*", "https://*.google.co.za/*", "https://*.google.co.zm/*", "https://*.google.co.zw/*", "https://*.google.cat/*" ], "manifest_version": 3, "chrome_url_overrides": { "newtab": "new_tab.html" }, "externally_connectable": { "matches": [ "https://custom-doodle.com/*", "https://dev.custom-doodle.com/*", "http://localhost/*" ] }, "content_security_policy": { "extension_pages": "script-src 'self'; object-src 'self';" }, "web_accessible_resources": [ { "matches": [ "*://*/*" ], "resources": [ "assets/images/*" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
Loading Secure Annex data...
Unable to load Secure Annex data.
This extension may not yet be analyzed by Secure Annex.
Detections
0Critical
0
High
0
Medium
0
Low
0
Has Verdicts
Yes
Manifest Findings
0Critical
0
High
0
Medium
0
Low
0
Secure Annex analyzed version: -