mymind — An extension for your mindSecurity Analysis

Chromev3.2.0MV3March 1, 2026 at 05:17 AM

Use with caution

This extension requests significant permissions. It has 100K+ users, is published by MYMIND, INC., but review the findings below.

4.9MEDIUM

4.9 MEDIUMRaw: 6.1

This extension shows some risk signals that are common in legitimate extensions but worth reviewing. Check the details below.

Based on 8 permissions including high-risk ones, 15 code findings, 1 dangerous combination.

Trust Signals(5.5/10)

Users

100K

Rating

4.7(67 reviews)

Developer

MYMIND, INC.

Status

Featured

Dangerous Combinations(1)

HIGHCookie access + external network

Extension has cookie access and sends data to external servers — potential session token theft.

cookies+external network request

Permissions

7.5/10

Code

5.8/10

Combinations

7.0/10

Manifest/CSP

3.1/10

Permissions(8 analyzed)

Code Findings(7 patterns, 15 total)

Libraries(1 detected)

1 library detected

Content Security Policy

No CSP Defined(1 issue)

MEDIUM

N/ANo CSP defined

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Manifest Analysis(1 finding)

MEDIUM

web_accessible_resources.matchesOverly broad match patterns

Web-accessible resources use <all_urls> or wildcard patterns, exposing resources to every website.

External Domains(8)

${host${mymind.host${this.hostaccess.mymind.comgithub.commymind.helpscoutdocs.comprosemirror.netwww.instagram.com

Indicators of Compromise

6 indicators of compromise found

File Statistics

29

Total Files

10

JS Files

656.6 KB

Total Size

Other Scanned Extensions

Obsidian Web Clipper

Save Image As...

Image downloader - Imageye

uBlock Origin Lite