[ new scan ] [ statistics ] [ github ] [ twitter ] [ help ]

Copy as Markdown for AI

Version 1.2.1 View in Chrome Web Store

Last scanned: about 16 hours ago

Extension Details

Rating: 5.0 ★ (6 ratings)

Users: 1,000

Context-Aware Verdict

MEDIUM

Overall Risk

Trust Factors:

The extension has a small user base of only 1,000 users, which limits community validation. The perfect 5.0 rating is based on just 6 reviews, making it statistically insignificant. The lack of developer information and company details raises transparency concerns. However, the extension's specific purpose of copying content as Markdown for AI tools appears legitimate and the permissions generally align with this functionality.

Concerns:

The clipboardWrite permission poses the highest risk as it allows the extension to modify clipboard content, potentially enabling malicious data injection or sensitive information replacement. While contextMenus and activeTab permissions are reasonable for the stated functionality, the combination of these permissions with clipboard access creates potential attack vectors. The small user base and limited review history make it difficult to assess real-world security performance. The absence of detailed developer information reduces accountability.

Recommendations:

Consider running this extension in a separate Chrome profile to isolate potential risks from your main browsing environment. Monitor clipboard content after using the extension to ensure no unexpected modifications occur. Verify that copied content matches your expectations before pasting into AI tools or other applications. Consider alternative extensions with larger user bases and more established developer credentials if available. Regularly review the extension's behavior and disable it if you notice any suspicious clipboard activity.

Findings

HIGH

High-Risk Permission: clipboardWrite

This extension has the clipboardWrite permission. Can modify clipboard content. This could potentially be used maliciously to compromise security or privacy.

MEDIUM

Medium-Risk Permission: activeTab

This extension has the activeTab permission. Can access the active tab when clicking the extension icon.

MEDIUM

Medium-Risk Permission: contextMenus

This extension has the contextMenus permission. Can add items to the context menu.

Raw Manifest

{
  "name": "Copy as Markdown for AI",
  "icons": {
    "16": "assets/icons/icon16.png",
    "32": "assets/icons/icon32.png",
    "48": "assets/icons/icon48.png",
    "128": "assets/icons/icon128.png"
  },
  "action": {
    "default_icon": {
      "16": "assets/icons/icon16.png",
      "32": "assets/icons/icon32.png"
    },
    "default_popup": "dist/popup.html",
    "default_title": "Copy full page text in Markdown"
  },
  "version": "1.2.1",
  "background": {
    "type": "module",
    "service_worker": "dist/background.js"
  },
  "update_url": "https://clients2.google.com/service/update2/crx",
  "permissions": [
    "contextMenus",
    "scripting",
    "activeTab",
    "clipboardWrite"
  ],
  "manifest_version": 3,
  "web_accessible_resources": [
    {
      "matches": [
        "<all_urls>"
      ],
      "resources": [
        "vendor/turndown.js",
        "dist/copyPage.js",
        "dist/popup.js",
        "dist/popup.css"
      ]
    }
  ]
}

by ✦ Astarte

Copy as Markdown for AI

Extension Details

Context-Aware Verdict

Findings

Security Analysis Details

Required Permissions:

Embedded URLs (2 total):

Raw Manifest

Detections

Manifest Findings