LINESecurity Analysis

Extension has cookie access and sends data to external servers — potential session token theft.

Creates functions from strings, similar to eval(), often used to hide malicious code.

Dynamically sets a script's src attribute to load external code at runtime.

Dynamically creates script elements, potentially loading external malicious code.

Creates a function from a string (new Function()), similar to eval().

Decodes base64 data, commonly used to hide malicious payloads.

Opens WebSocket connections, which can be used for persistent command-and-control channels.

Uses XMLHttpRequest to make network calls.

Dynamically creates iframe elements, which can be used to load external content or hide malicious UI.

Modifies window.location to redirect the user, potentially to phishing or malicious pages.

JavaScript file could not be parsed. May contain obfuscated or minified code.

Line exceeds 5000 characters (entropy: 4.059182173170691)

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Sets innerHTML directly, which can lead to XSS if used with untrusted data.

Encodes data to base64, may be used for data exfiltration.

Reads or writes to localStorage, which may contain sensitive site data.

Creates a Web Worker, which runs code in a separate thread — can be used for background computation or crypto mining.

String with entropy 6 bits — may be encoded/encrypted data