Blue Prism 7.4 Browser Extension
Version 7.4.0.14058 View in Chrome Web Store
Extension Details
Context-Aware Verdict
Blue Prism is a legitimate robotic process automation (RPA) company, and this appears to be their official browser extension for version 7.4 of their platform. The 4.5-star rating and 3,000 users suggest reasonable adoption within their user base. However, the enterprise nature of this tool means it requires extensive permissions to function properly for automation purposes.
The extension's permission set is extremely broad and powerful, which is typical for RPA tools but creates significant security exposure. The combination of tabs, webNavigation, and scripting permissions with unrestricted host access means this extension can monitor all browsing activity, inject code into any website, and potentially access sensitive data across all sites. The nativeMessaging permission allows communication with local applications, expanding the attack surface. While these permissions are likely necessary for Blue Prism's automation functionality, they create substantial risk if the extension is compromised or misused.
Given the critical risk level, install this extension only in a dedicated Chrome profile used exclusively for Blue Prism automation tasks. Never use this profile for general browsing, banking, or accessing sensitive websites. Ensure you're downloading from the official Chrome Web Store and verify it's the legitimate Blue Prism extension. Only install if you're actively using Blue Prism RPA software and require browser automation capabilities. Regularly audit which websites this extension accesses and remove it immediately when no longer needed for RPA activities.
Findings
Security Analysis Details
Required Permissions:
- tabs
- webNavigation
- nativeMessaging
- storage
- scripting
Host Permissions:
- <all_urls>
Embedded URLs (12 total):
| http://stackoverflow.com/users/938089/rob-w | https://clients2.google.com/service/update2/crx | |
| http://github.com/brix/crypto-js | http://github.com/brix/crypto-js.git | |
| https://github.com/nvie/gitflow | http://opensource.org/licenses/MIT | |
| https://registry.npmjs.org/crypto-js/-/crypto-js-3.2.1.tgz | http://github.com/evanvosberg | |
| https://github.com/brix/crypto-js/issues | https://travis-ci.org/brix/crypto-js.svg?branch=develop | |
| https://travis-ci.org/brix/crypto-js | https://cryptojs.gitbook.io/docs/ |
Raw Manifest
{ "name": "Blue Prism 7.4 Browser Extension", "icons": { "16": "icons/BluePrism_16x16.png", "32": "icons/BluePrism_32x32.png", "48": "icons/BluePrism_48x48.png", "128": "icons/BluePrism_128x128.png" }, "author": "Blue Prism Ltd", "version": "7.4.0.14058", "background": { "service_worker": "bluePrismServiceWorker.js" }, "options_ui": { "page": "extensionOptions/Options.html", "open_in_tab": true }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "This extension provides connectivity between the browser and Blue Prism.", "permissions": [ "tabs", "webNavigation", "nativeMessaging", "storage", "scripting" ], "version_name": "7.4.0.14058", "content_scripts": [ { "js": [ "crypto-js/crypto-js.js", "crypto-js/core.js", "crypto-js/x64-core.js", "crypto-js/lib-typedarrays.js", "crypto-js/enc-base64.js", "crypto-js/enc-hex.js", "crypto-js/enc-latin1.js", "crypto-js/enc-utf8.js", "crypto-js/enc-utf16.js", "crypto-js/md5.js", "crypto-js/evpkdf.js", "crypto-js/cipher-core.js", "crypto-js/sha256.js", "crypto-js/aes.js", "crypto-js/pad-ansix923.js", "crypto-js/pad-iso10126.js", "crypto-js/pad-iso97971.js", "crypto-js/pad-nopadding.js", "crypto-js/pad-pkcs7.js", "crypto-js/pad-zeropadding.js", "bluePrismPlugin.js" ], "run_at": "document_idle", "matches": [ "<all_urls>" ], "all_frames": true } ], "host_permissions": [ "<all_urls>" ], "manifest_version": 3 }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.