Extension Details
Rating:
5.0 ★
(6 ratings)
Users:
34
Context-Aware Verdict
This section provides a Claude-based AI analysis that applies additional context to the risk. Results are not guaranteed to be accurate.
CRITICAL
Overall Risk
Trust Factors: This extension has extremely low trustworthiness indicators. With only 34 users and 6 ratings, it lacks the user base that would typically validate a legitimate extension. The absence of clear author and developer information raises significant red flags about accountability and transparency. While the 5.0 rating appears positive, with such a small sample size, this could easily be manipulated.
Concerns: The extension exhibits several alarming characteristics that justify the critical risk rating. The combination of tabs and cookies permissions creates a dangerous capability set that could enable session hijacking, credential theft, and comprehensive user tracking across websites. The broad host permissions extending beyond LinkedIn to localhost domains and the developer's own sites suggest potential data exfiltration capabilities. The inclusion of localhost permissions is particularly suspicious, as this could indicate testing infrastructure or backdoor access methods. The extension's focus on LinkedIn, a professional networking platform containing sensitive career and personal information, amplifies the potential impact of any malicious activity.
Recommendations: Do not install this extension. The risk-to-benefit ratio is unacceptable given the minimal user base, lack of developer transparency, and excessive permissions. If you absolutely must use AI response functionality for LinkedIn, seek well-established alternatives with transparent developers, substantial user bases, and more limited permission sets. Consider using LinkedIn's native features or browser-based AI tools that don't require extension installation.
Findings
This section provides a detailed analysis of the extension's security posture, without broader context. Assumes worst-case impact.
HIGH
Broad Host Permissions
This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.
HIGH
High-Risk Permission: cookies
This extension has the cookies permission. Can access and modify browser cookies. This could potentially be used maliciously to compromise security or privacy.
HIGH
High-Risk Permission: tabs
This extension has the tabs permission. Can access browser tab information and manipulate tabs. This could potentially be used maliciously to compromise security or privacy.
HIGH
High-Risk Permission: tabs
This extension has the tabs permission. Can access browser tab information and manipulate tabs. This could potentially be used maliciously to compromise security or privacy.
MEDIUM
Access to Sensitive Domains
This extension requests access to sensitive domains: *://linkedin.com/*, https://www.linkedin.com/. Ensure you trust this extension with access to these sites.
MEDIUM
Medium-Risk Permission: storage
This extension has the storage permission. Can store data locally.
Security Analysis Details
Required Permissions:
- tabs
- storage
- cookies
- tabs
Host Permissions:
- *://linkedin.com/*
- https://www.linkedin.com/
- http://localhost:3002/*
- https://app.airesponder.io/*
- https://airesponder.io/*
- http://localhost:3002/*
Embedded URLs (266 total):
| https://github.com/facebook/metro/blob/907d6af22ac6ebe58572be418e9253a90665ecbd/packages/metro/src/lib/polyfills/require.js#L795-L816 | https://github.com/facebook/metro/blob/febdba2383113c88296c61e28e4ef6a7f4939fda/packages/metro/src/lib/polyfills/require.js#L748-L774 | |
| https://github.com/webpack/webpack/blob/b93048643fe74de2a6931755911da1212df55897/lib/MainTemplate.js#L281 | https://github.com/facebook/metro/blob/febdba2383113c88296c61e28e4ef6a7f4939fda/packages/metro/src/lib/polyfills/require.js#L818-L835 | |
| https://github.com/facebook/metro/blob/907d6af22ac6ebe58572be418e9253a90665ecbd/packages/metro/src/lib/polyfills/require.js#L776-L792 | https://github.com/facebook/react/issues/17626 | |
| https://github.com/facebook/react/issues/20417. | http://www.opensource.org/licenses/mit-license.php | |
| https://github.com/zloirock/core-js/issues/1128 | https://github.com/zloirock/core-js/issues/1130 | |
| https://tc39.es/ecma262/#sec-getmethod | https://github.com/zloirock/core-js/issues/86#issuecomment-115759028 | |
| https://tc39.es/ecma262/#sec-hasownproperty | https://github.com/mozilla/rhino/issues/346 | |
| https://tc39.es/ecma262/#sec-IsHTMLDDA-internal-slot | https://tc39.es/ecma262/#sec-iscallable | |
| https://tc39.es/ecma262/#sec-IsHTMLDDA-internal-slot-aec | https://tc39.es/ecma262/#sec-object.defineproperty | |
| https://tc39.es/ecma262/#sec-object.getownpropertydescriptor | https://tc39.es/ecma262/#sec-object.prototype.propertyisenumerable | |
| https://tc39.es/ecma262/#sec-ordinarytoprimitive | https://tc39.es/ecma262/#sec-requireobjectcoercible | |
| https://github.com/zloirock/core-js/blob/v3.38.1/LICENSE | https://github.com/zloirock/core-js | |
| https://tc39.es/ecma262/#sec-toobject | https://tc39.es/ecma262/#sec-toprimitive | |
| https://tc39.es/ecma262/#sec-topropertykey | https://bugs.chromium.org/p/v8/issues/detail?id=3334 | |
| https://tc39.es/ecma262/#sec-globalthis | https://forms.gle/yDGpWvVu5qkmmo638 | |
| https://app.airesponder.io | http://www.w3.org/2000/svg | |
| https://fontawesome.com | https://fontawesome.com/license/free | |
| https://api.openai.com/v1/chat/completions | https://www.linkedin.com/oauth/v2/authorization?response_type=code&client_id= | |
| https://github.com/sindresorhus/ansi-regex | http://www.w3.org/2000/svg%27 | |
| http://www.w3.org/2000/svg%27%3e%3cpath | http://www.w3.org/2000/svg%27%3e%3ccircle | |
| https://tailwindcss.com | https://github.com/mozdevs/cssremedy/issues/4 | |
| https://github.com/tailwindcss/tailwindcss/pull/116 | https://bugzilla.mozilla.org/show_bug.cgi?id=190655 | |
| https://bugs.chromium.org/p/chromium/issues/detail?id=999088 | https://bugs.webkit.org/show_bug.cgi?id=201297 | |
| https://bugs.chromium.org/p/chromium/issues/detail?id=935729 | https://bugs.webkit.org/show_bug.cgi?id=195016 | |
| https://github.com/mozilla/gecko-dev/blob/2f9eacd9d3d995c937b4251a5557d95d494c9be1/layout/style/res/forms.css#L728-L737 | https://github.com/tailwindlabs/tailwindcss/issues/3300 | |
| https://github.com/mozdevs/cssremedy/issues/14 | https://github.com/jensimmons/cssremedy/issues/14#issuecomment-634934210 | |
| https://drafts.csswg.org/css-values-3/#urls | https://github.com/facebook/react/issues/13610 | |
| https://github.com/facebook/react/issues/11347 | https://github.com/facebook/react/pull/22064. | |
| http://www.w3.org/1999/xlink | http://www.w3.org/XML/1998/namespace | |
| https://url.spec.whatwg.org/#url-parsing | https://infra.spec.whatwg.org/#ascii-tab-or-newline | |
| https://infra.spec.whatwg.org/#c0-control-or-space | https://github.com/facebook/react/issues/19099 | |
| https://github.com/facebook/react/issues/11768 | http://www.w3.org/TR/2012/WD-html5-20121025/the-input-element.html | |
| https://reactjs.org/link/controlled-components | https://bugs.chromium.org/p/chromium/issues/detail?id=608416 | |
| https://github.com/facebook/react/issues/7253 | https://developer.microsoft.com/microsoft-edge/platform/issues/101525/ | |
| http://www.w3.org/1999/xhtml | http://www.w3.org/1998/Math/MathML | |
| https://github.com/mozilla/gecko-dev/blob/4e638efc71/layout/style/test/property_database.js | https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet | |
| http://www.thespanner.co.uk/2007/11/26/ultimate-xss-css-injection/ | http://modernizr.com/docs/#prefixed | |
| http://www.andismith.com/blog/2012/02/modernizr-prefixed/ | https://reactjs.org/link/dangerously-set-inner-html | |
| https://w3c.github.io/webcomponents/spec/custom/#custom-elements-core-concepts | https://reactjs.org/link/invalid-aria-props | |
| https://reactjs.org/link/attribute-behavior | https://github.com/facebook/react/issues/12506 |
Page 1 of 4
Raw Manifest
{ "name": "AiResponder", "icons": { "32": "icon32.png", "128": "icon128.png" }, "action": { "default_icon": "icon128.png", "default_popup": "popup.html" }, "version": "2.0", "background": { "service_worker": "background.bundle.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "Unleash LinkedIn Superpowers with AI-Driven Automation for Unparalleled Networking", "permissions": [ "tabs", "storage", "cookies", "tabs" ], "content_scripts": [ { "js": [ "linkedinMessagingScript.bundle.js", "linkedinCommentsScript.bundle.js" ], "type": "module", "run_at": "document_end", "matches": [ "*://linkedin.com/*", "*://*.linkedin.com/*", "http://localhost:3002/*", "https://app.airesponder.io/*", "http://localhost:3003/*", "https://airesponder.io/*" ] } ], "host_permissions": [ "*://linkedin.com/*", "https://www.linkedin.com/", "http://localhost:3002/*", "https://app.airesponder.io/*", "https://airesponder.io/*", "http://localhost:3002/*" ], "manifest_version": 3, "externally_connectable": { "matches": [ "http://localhost:3002/*", "https://app.airesponder.io/*" ] }, "web_accessible_resources": [ { "matches": [], "resources": [ "content.styles.css", "icon32.png", "logo.png", "icon128.png" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
Loading Secure Annex data...
Unable to load Secure Annex data.
This extension may not yet be analyzed by Secure Annex.
Detections
0Critical
0
High
0
Medium
0
Low
0
Has Verdicts
Yes
Manifest Findings
0Critical
0
High
0
Medium
0
Low
0
Secure Annex analyzed version: -