Is Scribe: AI Documentation, SOPs & Screenshots safe to use?

Scribe: AI Documentation, SOPs & Screenshots has a risk level of MEDIUM with an overall risk score of 5.5/10. Our scan detected 205 security findings. This extension has some risks worth reviewing.

What permissions does Scribe: AI Documentation, SOPs & Screenshots request?

Scribe: AI Documentation, SOPs & Screenshots requests the following permissions: tabs, cookies, storage, scripting, sidePanel, alarms, notifications. It also requests host access to: , *://mail.google.com/*, *://calendly.com/*, *://*.automatebusiness.com/*, *://eat2win.mysportsd.com/*.

What is Scribe: AI Documentation, SOPs & Screenshots's risk score?

Scribe: AI Documentation, SOPs & Screenshots has an overall risk score of 5.5/10 (MEDIUM). Breakdown: Permissions 7.0/10, Code 8.6/10, Combinations 10.0/10, CSP 8.8/10.

ExtSafe

Scribe: AI Documentation, SOPs & ScreenshotsSecurity Analysis

Chromev2.79.1MV3February 18, 2026 at 11:44 AM

Potentially unsafe

This extension shows concerning patterns that may indicate risky behavior. Proceed with caution.

5.5MEDIUM

5.5 MEDIUMRaw: 8.4

This extension shows some risk signals that are common in legitimate extensions but worth reviewing. Check the details below.

Based on 12 permissions including high-risk ones, 197 code findings, 3 dangerous combinations.

Trust Signals(6.0/10)

Users

1.0M

Rating

4.9(813 reviews)

Developer

Colony Labs, Inc.

Status

Featured

Dangerous Combinations(3)

CRITICALBulk cookie access + external network

Extension uses chrome.cookies.getAll for bulk cookie access and sends data to external servers — high risk of session token theft.

cookies+chrome.cookies.getAll + external network

MEDIUMTab tracking API + external communication

Extension uses tab tracking APIs (onUpdated/query) and communicates with external servers — potential browsing surveillance.

tabs+tabs API usage + external network

CRITICALAll-sites access + keyboard capture

Extension has access to all sites and captures keyboard input — behavior consistent with a keylogger.

<all_urls>+keylogger_pattern

Permissions

7.0/10

Code

8.6/10

Combinations

10.0/10

Manifest/CSP

8.8/10

Permissions(12 analyzed)

Code Findings(29 patterns, 197 total)

Content Security Policy

CSP Present(1 issue)

LOW

object-srcobject-src not restricted

object-src is not set to 'none'. Plugins like Flash can be embedded, which may allow code execution.

Manifest Analysis(11 findings)

HIGH

web_accessible_resourcesJS files exposed to web pages

JavaScript files are accessible to ALL websites. Any page can load and interact with these scripts, enabling web→extension attacks.

MEDIUM

web_accessible_resources.matchesOverly broad match patterns

Web-accessible resources use <all_urls> or wildcard patterns, exposing resources to every website.

MEDIUM

web_accessible_resourcesJS files exposed to web pages

JavaScript files are exposed as web-accessible resources. Matched websites can load and interact with extension scripts.

MEDIUM

web_accessible_resourcesJS files exposed to web pages

JavaScript files are exposed as web-accessible resources. Matched websites can load and interact with extension scripts.

MEDIUM

web_accessible_resourcesJS files exposed to web pages

JavaScript files are exposed as web-accessible resources. Matched websites can load and interact with extension scripts.

LOW

externally_connectableExternal messaging enabled

Extension accepts messages from 8 external pattern(s). Verify these are trusted origins.

MEDIUM

content_scriptsContent script injected on all URLs