Extension Details
Context-Aware Verdict
The extension has a moderate user base of 20,000 users with a decent 4.0 rating from 33 reviews. However, the developer information is minimal, with only "gopeed.com" listed as the author and no additional developer details provided. The lack of comprehensive developer information reduces trust, especially given the extensive permissions requested.
The extension exhibits several red flags that justify the critical risk rating. The combination of broad host permissions across all websites, content script injection capabilities on all URLs, and powerful API access creates a dangerous permission profile. The webRequest permission allows complete interception and modification of web traffic, while the downloads permission provides access to file downloads and history. The nativeMessaging permission is particularly concerning as it enables communication with native applications outside the browser sandbox. These permissions collectively grant the extension unprecedented access to user data, browsing activity, and system resources.
Given the critical risk level, avoid installing this extension unless absolutely necessary. If you must use it, run it in a completely isolated Chrome profile with no access to personal accounts or sensitive data. Regularly monitor your download history and network activity for suspicious behavior. Consider using network monitoring tools to track any unusual traffic patterns. Before installation, research the developer more thoroughly and verify the extension's legitimacy through official channels. Alternative download managers with more limited permissions should be strongly considered.
Findings
Security Analysis Details
Required Permissions:
- storage
- downloads
- webRequest
- nativeMessaging
- notifications
- contextMenus
Host Permissions:
- http://*/*
- https://*/*
Embedded URLs (15 total):
| https://clients2.google.com/service/update2/crx | https://gopeed.com | |
| https://reactjs.org/docs/error-decoder.html?invariant= | http://www.w3.org/1999/xlink | |
| http://www.w3.org/XML/1998/namespace | http://www.w3.org/2000/svg | |
| http://www.w3.org/1998/Math/MathML | http://www.w3.org/1999/xhtml | |
| https://github.com/GopeedLab/browser-extension | https://mui.com/r/caveat-with-refs-guide | |
| http://fb.me/use-check-prop-types | https://mui.com/production-error/?code= | |
| http://127.0.0.1:9999 | https://feross.org/opensource | |
| https://feross.org |
Raw Manifest
{ "name": "Gopeed", "icons": { "16": "icon16.plasmo.6c567d50.png", "32": "icon32.plasmo.76b92899.png", "48": "icon48.plasmo.aced7582.png", "64": "icon64.plasmo.8bb5e6e0.png", "128": "icon128.plasmo.3c1ed2d2.png" }, "action": { "default_icon": { "16": "icon16.plasmo.6c567d50.png", "32": "icon32.plasmo.76b92899.png", "48": "icon48.plasmo.aced7582.png", "64": "icon64.plasmo.8bb5e6e0.png", "128": "icon128.plasmo.3c1ed2d2.png" }, "default_popup": "popup.html" }, "author": "Levi", "version": "1.1.4", "background": { "service_worker": "static/background/index.js" }, "options_ui": { "page": "options.html", "open_in_tab": true }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "Gopeed browser extension", "permissions": [ "storage", "downloads", "webRequest", "nativeMessaging", "notifications", "contextMenus" ], "homepage_url": "https://gopeed.com", "default_locale": "de", "content_scripts": [ { "js": [ "skip.825b5828.js" ], "css": [], "matches": [ "<all_urls>" ] }, { "js": [ "server-selector.b55d1a85.js" ], "css": [], "matches": [ "<all_urls>" ] } ], "host_permissions": [ "http://*/*", "https://*/*" ], "manifest_version": 3, "web_accessible_resources": [ { "matches": [ "<all_urls>" ], "resources": [ "assets/icon.png" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.