Proton VPN: Fast & SecureSecurity Analysis

Chromev1.2.15MV3March 16, 2026 at 06:05 PM

Potentially unsafe

This extension shows concerning patterns that may indicate risky behavior. Proceed with caution.

6.4HIGH

6.4 HIGHRaw: 8.0

This extension shows significant risk signals. Review the findings below carefully before installing or continuing to use it.

Based on 14 permissions including high-risk ones, 37 code findings, 1 dangerous combination.

Trust Signals(5.0/10)

Users

1.0M

Rating

4.1(2K reviews)

Developer

Proton AG

Dangerous Combinations(1)

CRITICALNetwork interception + external communication

Extension intercepts network traffic and sends data externally — potential man-in-the-middle behavior.

webRequest/webRequestBlocking+external network request

Permissions

8.5/10

Code

9.4/10

Combinations

10.0/10

Manifest/CSP

1.2/10

Permissions(14 analyzed)

Code Findings(15 patterns, 37 total)

Content Security Policy

CSP Present(1 issue)

LOW

object-srcobject-src not restricted

object-src is not set to 'none'. Plugins like Flash can be embedded, which may allow code execution.

Manifest Analysis(1 finding)

LOW

externally_connectableExternal messaging enabled

Extension accepts messages from 1 external pattern(s). Verify these are trusted origins.

External Domains(10)

*account.proton.meaccount.protonvpn.comaddons.mozilla.orgchromewebstore.google.comip.meproton.meprotonvpn.comreports.proton.mevivaldi.com

Indicators of Compromise

14 indicators of compromise found

File Statistics

332

Total Files

8

JS Files

5.9 MB

Total Size

Other Scanned Extensions

Permanent clipboard

Snippet Manager

1Password – Password Manager

WebP / Avif image converter

1Password – Password Manager

AI Exporter: Save ChatGPT, Gemini to PDF, Word, MD and Notion