Is Emoboard Emoji Keyboard safe to use?

Emoboard Emoji Keyboard has a risk level of HIGH with an overall risk score of 6.8/10. Our scan detected 13 security findings. This extension has significant security concerns — review the full report before installing.

What permissions does Emoboard Emoji Keyboard request?

Emoboard Emoji Keyboard requests the following permissions: alarms, storage, scripting. It also requests host access to: .

What is Emoboard Emoji Keyboard's risk score?

Emoboard Emoji Keyboard has an overall risk score of 6.8/10 (HIGH). Breakdown: Permissions 7.0/10, Code 7.9/10, Combinations 10.0/10, CSP 3.9/10.

ExtSafe

Emoboard Emoji KeyboardSecurity Analysis

Chromev1.0.3MV3February 18, 2026 at 11:34 AM

Potentially unsafe

This extension shows concerning patterns that may indicate risky behavior. Proceed with caution.

6.8HIGH

6.8 HIGHRaw: 7.5

This extension shows significant risk signals. Review the findings below carefully before installing or continuing to use it.

Based on 4 permissions including high-risk ones, 11 code findings, 1 dangerous combination.

Trust Signals(2.5/10)

Users

10K

Rating

4.3(26 reviews)

Status

Featured

Dangerous Combinations(1)

CRITICALAll-sites access + keyboard capture

Extension has access to all sites and captures keyboard input — behavior consistent with a keylogger.

<all_urls>+keylogger_pattern

Permissions

7.0/10

Code

7.9/10

Combinations

10.0/10

Manifest/CSP

3.9/10

Permissions(4 analyzed)

Code Findings(10 patterns, 11 total)

Content Security Policy

No CSP Defined(1 issue)

MEDIUM

N/ANo CSP defined

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Manifest Analysis(1 finding)

Resolved from __MSG_* i18n placeholders:

Name: Emoboard Emoji Keyboard

Description: Express Yourself with EmoBoard: The Ultimate Emoji Keyboard with Auto Search, Auto Insert, Emoji History, Shortcuts, and Dark Mode!

HIGH

content_scriptsAggressive content script injection

Content script runs at document_start in ALL frames on ALL URLs. This gives the extension deep access to every page load, including iframes.

External Domains(3)

github.comnpms.ioreactjs.org

Indicators of Compromise

7 indicators of compromise found

File Statistics

Total Files

JS Files

1.4 MB

Total Size

Other Scanned Extensions

1Password – Password Manager

7.4 HIGH

WebP / Avif image converter

6.3 HIGH

1Password – Password Manager

7.4 HIGH

AI Exporter: Save ChatGPT, Gemini to PDF, Word, MD and Notion

6.6 HIGH