ExtSafe

Minesweeper OriginalSecurity Analysis

Chromev1.0.2MV3February 18, 2026 at 11:33 AM
Use with caution

This extension requests significant permissions. It has 60K+ users, but review the findings below.

4.8MEDIUM
4.8 MEDIUMRaw: 5.3

This extension shows some risk signals that are common in legitimate extensions but worth reviewing. Check the details below.

Based on 4 permissions including high-risk ones, 10 code findings.

Trust Signals(2.0/10)

Users
60K
Rating
5.0(44 reviews)
Permissions
7.0/10
Code
7.3/10
Combinations
0.0/10
Manifest/CSP
4.3/10

Permissions(4 analyzed)

Code Findings(9 patterns, 10 total)

Content Security Policy

No CSP Defined(1 issue)
MEDIUM
N/ANo CSP defined

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Manifest Analysis(2 findings)

Resolved from __MSG_* i18n placeholders:

Name: Minesweeper Original

Description: Rediscover Classic Gaming with the Minesweeper Original as a Browser Extension!

MEDIUM
web_accessible_resources.matchesOverly broad match patterns

Web-accessible resources use <all_urls> or wildcard patterns, exposing resources to every website.

MEDIUM
content_scriptsContent script injected on all URLs

Content script matches <all_urls>, executing on every website the user visits.

External Domains(3)

fb.megithub.comreactjs.org

Indicators of Compromise

33 indicators of compromise found

File Statistics

65
Total Files
3
JS Files
284.5 KB
Total Size

Other Scanned Extensions

Obsidian Web Clipper
4.8 MEDIUM
ProKeys
5.2 MEDIUM
Save Image As...
3.7 MEDIUM
Image downloader - Imageye
4.2 MEDIUM
uBlock Origin Lite
5.7 MEDIUM
Stream Cleaner
4.3 MEDIUM