Is Xdebug helper safe to use?

Xdebug helper has a risk level of MEDIUM with an overall risk score of 4.4/10. Our scan detected 12 security findings. This extension has some risks worth reviewing.

What permissions does Xdebug helper request?

Xdebug helper requests the following permissions: tabs, *://*/*. It also requests host access to: *://*/*.

What is Xdebug helper's risk score?

Xdebug helper has an overall risk score of 4.4/10 (MEDIUM). Breakdown: Permissions 7.0/10, Code 6.8/10, Combinations 0.0/10, CSP 3.1/10.

ExtSafe

Xdebug helperSecurity Analysis

Chromev1.6.1MV2March 1, 2026 at 05:08 PM

Use with caution

This extension requests significant permissions. It has 100K+ users, but review the findings below.

4.4MEDIUM

4.4 MEDIUMRaw: 4.9

This extension shows some risk signals that are common in legitimate extensions but worth reviewing. Check the details below.

Based on 3 permissions including high-risk ones, 10 code findings.

Trust Signals(2.0/10)

Users

100K

Permissions

7.0/10

Code

6.8/10

Combinations

0.0/10

Manifest/CSP

3.1/10

Permissions(2 analyzed)

Code Findings(7 patterns, 10 total)

Libraries(1 detected)

1 library detected, 1 with known vulnerabilities

Content Security Policy

No CSP Defined(1 issue)

MEDIUM

N/ANo CSP defined

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Manifest Analysis(1 finding)

MEDIUM

content_scriptsContent script injected on all URLs

Content script matches <all_urls>, executing on every website the user visits.

External Domains(2)

github.comwww.xdebug.org

Indicators of Compromise

4 indicators of compromise found

File Statistics

Total Files

JS Files

139.0 KB

Total Size

Other Scanned Extensions

Image downloader - Imageye