Automatically check the status of extensions in the Chrome Web Store.
Sometimes the browser extensions we install can be acquired by people with ulterior motives and thus do evil. This extension is a lifesaver when Chrome Web Store alerts are not forthcoming. This extension will alert you when an installed extension has been taken down by the Chrome Web Store.
- Background full scan runs on install, browser startup, and every 60 minutes.
- Opening the popup no longer triggers a full scan.
- Opening the popup now silently re-checks only extensions that are already flagged as risky.
- Popup UI shows only unresolved risky extensions (high/medium/low), and supports dismissing an alert fingerprint.
- High risk: Removed from Chrome Web Store.
- High risk: Sensitive permissions include
debuggerornativeMessaging. - High risk: Broad host access includes
<all_urls>,*://*/*,http://*/*,https://*/*. - Medium risk: Sideloaded or unknown install source.
- Medium risk: At least two medium-sensitive permissions detected.
- Medium risk: New permissions or host permissions added compared with previous snapshot.
- Low risk: Installed in developer mode.
- Low risk: Version changed without higher-priority findings.
- Popup open performs silent refresh only for already-flagged extensions, to keep refresh fast and avoid full list flashing.
- Dismiss is fingerprint-based: if the exact same reasons reappear, the alert stays dismissed.
- Dismiss is fingerprint-based: if reasons change (fingerprint changes), the alert becomes visible again.
- Badge and icon state are computed only in background logic.
- Extension status requests use retry with backoff.
- If some status requests still fail due to network issues, popup shows a weak warning and keeps available results.
- Run regression tests:
npm test