Is AI Chat to PDF safe to use?

AI Chat to PDF has a risk level of HIGH with an overall risk score of 6.6/10. Our scan detected 33 security findings. This extension has significant security concerns — review the full report before installing.

What permissions does AI Chat to PDF request?

AI Chat to PDF requests the following permissions: tabs, storage, debugger, downloads. It also requests host access to: http://*/*, https://*/*, .

What is AI Chat to PDF's risk score?

AI Chat to PDF has an overall risk score of 6.6/10 (HIGH). Breakdown: Permissions 9.5/10, Code 7.9/10, Combinations 4.0/10, CSP 5.6/10.

ExtSafe

AI Chat to PDFSecurity Analysis

Chromev3.5.1MV3March 15, 2026 at 10:42 PM

Potentially unsafe

This extension shows concerning patterns that may indicate risky behavior. Proceed with caution.

6.6HIGH

6.6 HIGHRaw: 7.3

This extension shows significant risk signals. Review the findings below carefully before installing or continuing to use it.

Based on 7 permissions including high-risk ones, 27 code findings, 1 dangerous combination.

Trust Signals(3.5/10)

Users

20K

Rating

4.1(357 reviews)

Status

Featured

Dangerous Combinations(1)

MEDIUMTab tracking API + external communication

Extension uses tab tracking APIs (onUpdated/query) and communicates with external servers — potential browsing surveillance.

tabs+tabs API usage + external network

Permissions

9.5/10

Code

7.9/10

Combinations

4.0/10

Manifest/CSP

5.6/10

Permissions(7 analyzed)

Code Findings(14 patterns, 27 total)

Libraries(1 detected)

1 library detected

Content Security Policy

CSP Present(1 issue)

LOW

object-srcobject-src not restricted

object-src is not set to 'none'. Plugins like Flash can be embedded, which may allow code execution.

Manifest Analysis(4 findings)

Resolved from __MSG_* i18n placeholders:

Name: AI Chat to PDF

Description: Instantly export your Gemini chats to PDF: smart conversion for perfect results.

HIGH

web_accessible_resourcesJS files exposed to web pages

JavaScript files are accessible to ALL websites. Any page can load and interact with these scripts, enabling web→extension attacks.

MEDIUM

web_accessible_resources.matchesOverly broad match patterns

Web-accessible resources use <all_urls> or wildcard patterns, exposing resources to every website.

LOW

externally_connectableExternal messaging enabled

Extension accepts messages from 2 external pattern(s). Verify these are trusted origins.

MEDIUM

content_scriptsContent script injected on all URLs

Content script matches <all_urls>, executing on every website the user visits.

External Domains(6)

ai-chat-to-pdf.comappbox.spacechromewebstore.google.comdocs.google.comgeminitopdf.featurebase.appreactjs.org

Indicators of Compromise

8 indicators of compromise found

File Statistics

Total Files

JS Files

703.1 KB

Total Size

Other Scanned Extensions

1Password – Password Manager

7.4 HIGH

WebP / Avif image converter

6.3 HIGH

1Password – Password Manager

7.4 HIGH

AI Exporter: Save ChatGPT, Gemini to PDF, Word, MD and Notion

6.6 HIGH