Netflix Double Subtitles
Version 1.5 View in Chrome Web Store
Extension Details
Context-Aware Verdict
The extension has a relatively small user base of 531 users and a moderate rating of 3.7 stars from 30 reviews, which suggests limited community validation. The lack of clear developer information raises transparency concerns. However, the specific focus on Netflix subtitle functionality aligns with its stated purpose.
The extension requests overly broad permissions that far exceed what's necessary for Netflix subtitle enhancement. The wildcard host permission (*://*/*) grants access to all websites, not just Netflix, creating significant privacy and security risks. The tabs permission allows manipulation of browser tabs beyond what subtitle functionality requires. Access to Google Translate API suggests translation features, but the broad permissions could enable data harvesting from any website you visit.
The combination of broad host permissions with tabs access creates potential for cross-site data collection, browsing behavior tracking, and unauthorized access to sensitive information on banking, email, and other personal websites.
Consider running this extension in a separate Chrome profile dedicated to Netflix viewing only. Before installation, verify if Netflix's built-in subtitle features meet your needs. If you proceed, regularly review the extension's behavior and consider alternatives with more restrictive permissions. Monitor your browsing activity for any unusual behavior and remove the extension immediately if you notice suspicious activity across non-Netflix websites.
Security Analysis
Security Analysis Details
Required Permissions:
- storage
- tabs
- scripting
Host Permissions:
- *://*.netflix.com/*
- https://translate.googleapis.com/*
- *://*/*
Embedded URLs (11 total):
| https://translate.googleapis.com/translate_a/single?client=gtx&sl= | https://developer.mozilla.org/docs/Mozilla/Add-ons/WebExtensions/API/runtime/onMessage | |
| https://github.com/mozilla/webextension-polyfill/issues/130 | https://extensionpay.com | |
| https://stackoverflow.com/a/68456858 | https://developer.mozilla.org/en-US/docs/Web/API/Window/open | |
| https://github.com/Glench/ExtPay#2-configure-your-manifestjson | https://clients2.google.com/service/update2/crx | |
| https://translate.googleapis.com/ | https://fonts.googleapis.com/css2?family=Barlow:wght@300 | |
| https://www.netflix.com |
Raw Manifest
{ "name": "__MSG_name__", "icons": { "48": "icons/logo.png", "128": "icons/logo.png" }, "action": { "default_icon": "icons/logo.png", "default_popup": "popup/popup.html" }, "version": "1.5", "background": { "service_worker": "js/bk.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_description__", "permissions": [ "storage", "tabs", "scripting" ], "default_locale": "en", "content_scripts": [ { "js": [ "js/opt.js", "js/eng.js" ], "css": [ "css/inj.css" ], "matches": [ "*://*.netflix.com/*" ] } ], "host_permissions": [ "*://*.netflix.com/*", "https://translate.googleapis.com/*", "*://*/*" ], "manifest_version": 3 }