Is Gemini side pilot safe to use?

Gemini side pilot has a security risk score of 54.04/100 (MEDIUM risk). Our security analysis detected 276 findings. Review the detailed security assessment below to understand the specific risks before installation.

What are the security risks of Gemini side pilot?

Based on our automated security analysis, Gemini side pilot presents medium risk level. The extension is analyzed for malware patterns, secret exposure, network communications, permissions, and supply chain vulnerabilities.

How is the security score calculated?

Risky Plugins calculates security scores using weighted categories: severity of findings (25 points max), malware detections (35 points), secret exposure (28 points), network communications (10 points), and obfuscation (10 points). Scores range from 0-100, with higher scores indicating greater risk.

What does CRITICAL, HIGH, MEDIUM, LOW, MINIMAL risk mean?

CRITICAL (80-100): Severe security issues like malware. HIGH (60-79): Significant vulnerabilities. MEDIUM (40-59): Moderate security concerns. LOW (20-39): Minor issues. MINIMAL (0-19): Very low risk. Always review findings before installing any extension.

Is "Gemini side pilot" on Chrome Web Store Safe to Install?

[email protected] · chrome · v0.0.1

🚀 Geminiの潜在能力を、100%引き出す。 SidePilot（サイドパイロット）は、Google Geminiに「深掘りスレッド」「フォルダ管理」「高機能テンプレート」を追加し、いつものAIチャットを「最強のワークスペース」へと進化させるChrome拡張機能です。「以前の重要なチャットが見つからない」「一つのチャットで話題が散らかりすぎて、文脈がおかしくなる」「同じようなプロンプトを毎回手入力している」そんな悩みは、今日で終わりです。 SidePilotは、あなたの思考を止めず、Geminiとの対話を資産に変えます。 ━━━━━━━━━━━━━━━━━ ✨ 主な機能 ━━━━━━━━━━━━━━━━━ 1️⃣ 思考を止めない「深掘りスレッド」メインの会話フローを汚すことなく、気になった回答に対してサイドバーで別枠の質問を重ねることができます。・本流のチャットはクリーンなまま維持・枝葉の議論はサイドバーのスレッドで完結・Geminiの回答の一部を引用して、そこだけを深掘り可能 2️⃣ チャット履歴を「資産」に変える「フォルダ管理」増え続けるチャット履歴を、PCのファイル管理のように直感的に整理整頓できます。・階層構造のフォルダ作成に対応・ドラッグ＆ドロップでの簡単整理・重要な発言をピン留めできるブックマーク機能・プロジェクトや案件ごとのナレッジベース構築に最適 3️⃣ 定型作業を自動化する「高機能テンプレート」よく使うプロンプトをテンプレートとして保存し、ワンクリックで呼び出せます。・{{変数}} を使った動的な入力フォーム作成が可能・「要約」「翻訳」「コードレビュー」「メール作成」などのルーチンワークを爆速化・毎回プロンプトを打ち込む時間をゼロに 4️⃣ コンテキスト認識 & 最新モデル搭載・現在開いているGeminiの会話内容を自動で認識し、最適なサポートを提供・Googleの高性能モデルを標準搭載・思考を妨げない、高速レスポンス ━━━━━━━━━━━━━━━━━ 🔒 プライバシーとセキュリティ ━━━━━━━━━━━━━━━━━ SidePilotは「Local-First（ローカルファースト）」設計を採用しています。企業の機密情報や個人のプライバシーを守るため、セキュリティには最大限の配慮を行っています。 ✅ データは外部送信されません会話データ、フォルダ構成、テンプレートなどの情報は、すべてあなたのブラウザ内（IndexedDB）にのみ暗号化して保存されます。開発者や第三者の外部サーバーへチャット内容が送信されることは一切ありません。 ✅ APIキーの安全管理ご自身のGemini APIキーを使用する場合も、キーはブラウザ内にのみ保存され、Google公式APIとの通信以外には使用されません。 ━━━━━━━━━━━━━━━━━ 💼 こんな方におすすめ ━━━━━━━━━━━━━━━━━ ・エンジニア：コードレビュー、エラー調査、技術選定のログをプロジェクトごとに整理したい方・ライター / マーケター：記事構成の壁打ちや、複数のクライアント案件を並行して進める方・ビジネスパーソン：議事録の要約、メールの代筆、ブレインストーミングを効率化したい方・Geminiヘビーユーザー：過去の会話を「第二の脳」として活用したいすべての方 ━━━━━━━━━━━━━━━━━ 💎 料金プラン ━━━━━━━━━━━━━━━━━ ・Freeプラン：基本機能を無料でお試しいただけます（ご自身のAPIキー設定が必要です）。・Standard / Proプラン：制限を解除し、SidePilotのすべての能力を解放します。APIキー不要ですぐに使えるプランもご用意しています。※APIモデルは予告なく変更される場合があります。公式サイト https://side-pilot.daiki-nagashima.com

Risk Assessment

Analyzed

54.04

out of 100

MEDIUM

276 security findings detected across all analyzers

Chrome extension requesting 2 permissions

Severity Breakdown

Critical

High

259

Medium

Low

Info

Finding Categories

249

IoC Indicators

YARA Rules Matched

10 rules(17 hits)

postinstall crypto operations postinstall obfuscation NoUseWeakRandom SQLInjection LocalStorageShouldNotBeUsed postinstall file manipulation AlertStatementsShouldNotBeUsed postinstall system command postinstall file download postinstall network communication

Requested Permissions

2 permissions

storage

Low

https://generativelanguage.googleapis.com/*

Low

About This Extension

Detailed Findings

17 total

YARA Rule Matches

10 rules

Indicators of Compromise

Network indicators, suspicious strings, and potential IoCs extracted during analysis

URLs

IP Addresses

Domains

226

Strings

249

All Indicators · 249

Domain

detected Domain: i.open

XIOC detected Domain: i.open

extracted_from_files

Domain

detected Domain: www.w3.org

XIOC detected Domain: www.w3.org

extracted_from_files

Domain

detected Domain: reactjs.org

XIOC detected Domain: reactjs.org

extracted_from_files

detected IP: 9::

XIOC detected IP: 9::

extracted_from_files

detected IP: 300::

XIOC detected IP: 300::

extracted_from_files

detected IP: ::bac

XIOC detected IP: ::bac

extracted_from_files

detected IP: ea::

XIOC detected IP: ea::

extracted_from_files

Domain

detected Domain: this.id

XIOC detected Domain: this.id

extracted_from_files

Domain

detected Domain: www.apache.org

XIOC detected Domain: www.apache.org

extracted_from_files

Domain

detected Domain: fonts.googleapis.com

XIOC detected Domain: fonts.googleapis.com

extracted_from_files

Domain

detected Domain: developer.mozilla.org

XIOC detected Domain: developer.mozilla.org

extracted_from_files

Domain

detected Domain: feross.org

XIOC detected Domain: feross.org

extracted_from_files

Domain

detected Domain: github.com

XIOC detected Domain: github.com

extracted_from_files

detected Domain: billing.stripe.com

XIOC detected Domain: billing.stripe.com

extracted_from_files

Domain

detected Domain: t.call

XIOC detected Domain: t.call

extracted_from_files

Domain

detected Domain: t.next

XIOC detected Domain: t.next

extracted_from_files

Domain

detected Domain: x.call

XIOC detected Domain: x.call

extracted_from_files

Domain

detected Domain: k.call

XIOC detected Domain: k.call

extracted_from_files

Domain

detected Domain: i.call

XIOC detected Domain: i.call

extracted_from_files

Domain

detected Domain: c.watch

XIOC detected Domain: c.watch

extracted_from_files

Domain

detected Domain: t.map

XIOC detected Domain: t.map

extracted_from_files

Domain

detected Domain: t.style

XIOC detected Domain: t.style

extracted_from_files

Domain

detected Domain: e.style

XIOC detected Domain: e.style

extracted_from_files

Domain

detected Domain: n.call

XIOC detected Domain: n.call

extracted_from_files

Domain

detected Domain: a.call

XIOC detected Domain: a.call

extracted_from_files

Domain

detected Domain: e.name

XIOC detected Domain: e.name

extracted_from_files

Domain

detected Domain: e.call

XIOC detected Domain: e.call

extracted_from_files

Domain

detected Domain: m.call

XIOC detected Domain: m.call

extracted_from_files

Domain

detected Domain: object.is

XIOC detected Domain: object.is

extracted_from_files

Domain

detected Domain: e.data

XIOC detected Domain: e.data

extracted_from_files

Domain

detected Domain: date.now

XIOC detected Domain: date.now

extracted_from_files

Domain

detected Domain: this.target

XIOC detected Domain: this.target

extracted_from_files

Domain

detected Domain: array.prototype.slice.call

XIOC detected Domain: array.prototype.slice.call

extracted_from_files

Domain

detected Domain: e.target

XIOC detected Domain: e.target

extracted_from_files

Domain

detected Domain: t.is

XIOC detected Domain: t.is

extracted_from_files

Domain

detected Domain: as.next

XIOC detected Domain: as.next

extracted_from_files

Domain

detected Domain: r.name

XIOC detected Domain: r.name

extracted_from_files

Domain

detected Domain: t.name

XIOC detected Domain: t.name

extracted_from_files

Domain

detected Domain: a.data

XIOC detected Domain: a.data

extracted_from_files

Domain

detected Domain: t.data

XIOC detected Domain: t.data

extracted_from_files

Domain

detected Domain: w.data

XIOC detected Domain: w.data

extracted_from_files

Domain

detected Domain: t.target

XIOC detected Domain: t.target

extracted_from_files

Domain

detected Domain: s.next

XIOC detected Domain: s.next

extracted_from_files

Domain

detected Domain: i.next

XIOC detected Domain: i.next

extracted_from_files

Domain

detected Domain: l.next

XIOC detected Domain: l.next

extracted_from_files

Domain

detected Domain: e.next

XIOC detected Domain: e.next

extracted_from_files

Domain

detected Domain: n.next

XIOC detected Domain: n.next

extracted_from_files

Domain

detected Domain: a.next

XIOC detected Domain: a.next

extracted_from_files

Domain

detected Domain: r.next

XIOC detected Domain: r.next

extracted_from_files

Domain

detected Domain: np.next

XIOC detected Domain: np.next

extracted_from_files

Domain

detected Domain: r.data

XIOC detected Domain: r.data

extracted_from_files

Domain

detected Domain: u.call

XIOC detected Domain: u.call

extracted_from_files

Domain

detected Domain: object.prototype.tostring.call

XIOC detected Domain: object.prototype.tostring.call

extracted_from_files

Domain

detected Domain: p.next

XIOC detected Domain: p.next

extracted_from_files

Domain

detected Domain: h.call

XIOC detected Domain: h.call

extracted_from_files

Domain

detected Domain: c.next

XIOC detected Domain: c.next

extracted_from_files

Domain

detected Domain: o.next

XIOC detected Domain: o.next

extracted_from_files

Domain

detected Domain: n.name

XIOC detected Domain: n.name

extracted_from_files

Domain

detected Domain: a.style

XIOC detected Domain: a.style

extracted_from_files

Domain

detected Domain: e.id

XIOC detected Domain: e.id

extracted_from_files

Domain

detected Domain: r.compare

XIOC detected Domain: r.compare

extracted_from_files

Domain

detected Domain: u.next

XIOC detected Domain: u.next

extracted_from_files

Domain

detected Domain: nf.next

XIOC detected Domain: nf.next

extracted_from_files

Domain

detected Domain: l.now

XIOC detected Domain: l.now

extracted_from_files

Domain

detected Domain: performance.now

XIOC detected Domain: performance.now

extracted_from_files

Domain

detected Domain: e.id-t.id

XIOC detected Domain: e.id-t.id

extracted_from_files

Domain

detected Domain: s.call

XIOC detected Domain: s.call

extracted_from_files

Domain

detected Domain: e.top

XIOC detected Domain: e.top

extracted_from_files

Domain

detected Domain: o.is

XIOC detected Domain: o.is

extracted_from_files

Domain

detected Domain: p.memoizedprops.style

XIOC detected Domain: p.memoizedprops.style

extracted_from_files

Domain

detected Domain: o.top

XIOC detected Domain: o.top

extracted_from_files

Domain

detected Domain: t.top

XIOC detected Domain: t.top

extracted_from_files

Domain

detected Domain: t.observer

XIOC detected Domain: t.observer

extracted_from_files

Domain

detected Domain: g.map

XIOC detected Domain: g.map

extracted_from_files

Domain

detected Domain: r.id

XIOC detected Domain: r.id

extracted_from_files

Domain

detected Domain: o.id

XIOC detected Domain: o.id

extracted_from_files

Domain

detected Domain: u.now

XIOC detected Domain: u.now

extracted_from_files

Domain

detected Domain: a.date

XIOC detected Domain: a.date

extracted_from_files

Domain

detected Domain: u.star

XIOC detected Domain: u.star

extracted_from_files

Domain

detected Domain: a.name

XIOC detected Domain: a.name

extracted_from_files

Domain

detected Domain: u.link

XIOC detected Domain: u.link

extracted_from_files

Domain

detected Domain: u.plus

XIOC detected Domain: u.plus

extracted_from_files

Domain

detected Domain: x.free

XIOC detected Domain: x.free

extracted_from_files

Domain

detected Domain: o.map

XIOC detected Domain: o.map

extracted_from_files

Domain

detected Domain: window.location.search

XIOC detected Domain: window.location.search

extracted_from_files

Domain

detected Domain: z.map

XIOC detected Domain: z.map

extracted_from_files

Domain

detected Domain: n.date

XIOC detected Domain: n.date

extracted_from_files

Domain

detected Domain: l.map

XIOC detected Domain: l.map

extracted_from_files

Domain

detected Domain: t.id

XIOC detected Domain: t.id

extracted_from_files

Domain

detected Domain: r.map

XIOC detected Domain: r.map

extracted_from_files

Domain

detected Domain: window.open

XIOC detected Domain: window.open

extracted_from_files

Domain

detected Domain: u.creditcard

XIOC detected Domain: u.creditcard

extracted_from_files

Domain

detected Domain: ef.user.email

XIOC detected Domain: ef.user.email

extracted_from_files

Domain

detected Domain: a.show

XIOC detected Domain: a.show

extracted_from_files

Domain

detected Domain: u.search

XIOC detected Domain: u.search

extracted_from_files

Domain

detected Domain: t.user.id

XIOC detected Domain: t.user.id

extracted_from_files

Domain

detected Domain: e.user.id

XIOC detected Domain: e.user.id

extracted_from_files

Domain

detected Domain: e.session.user.id

XIOC detected Domain: e.session.user.id

extracted_from_files

Domain

detected Domain: this.storage

XIOC detected Domain: this.storage

extracted_from_files

Domain

detected Domain: this.rest

XIOC detected Domain: this.rest

extracted_from_files

Domain

detected Domain: r.call

XIOC detected Domain: r.call

extracted_from_files

Domain

detected Domain: kzosixifxbhwmevtfdby.supabase.co

XIOC detected Domain: kzosixifxbhwmevtfdby.supabase.co

extracted_from_files

Domain

detected Domain: c.map

XIOC detected Domain: c.map

extracted_from_files

Domain

detected Domain: h.map

XIOC detected Domain: h.map

extracted_from_files

Domain

detected Domain: d.map

XIOC detected Domain: d.map

extracted_from_files

Domain

detected Domain: r.dispose.call

XIOC detected Domain: r.dispose.call

extracted_from_files

Domain

detected Domain: o.call

XIOC detected Domain: o.call

extracted_from_files

Domain

detected Domain: o.name

XIOC detected Domain: o.name

extracted_from_files

Domain

detected Domain: object.prototype.propertyisenumerable.call

XIOC detected Domain: object.prototype.propertyisenumerable.call

extracted_from_files

Domain

detected Domain: object.prototype.hasownproperty.call

XIOC detected Domain: object.prototype.hasownproperty.call

extracted_from_files

Domain

detected Domain: this.realtime.channel

XIOC detected Domain: this.realtime.channel

extracted_from_files

Domain

detected Domain: r.storage

XIOC detected Domain: r.storage

extracted_from_files

Domain

detected Domain: i.ws

XIOC detected Domain: i.ws

extracted_from_files

Domain

detected Domain: state.open

XIOC detected Domain: state.open

extracted_from_files

Domain

detected Domain: states.open

XIOC detected Domain: states.open

extracted_from_files

Domain

detected Domain: this.channels.map

XIOC detected Domain: this.channels.map

extracted_from_files

Domain

detected Domain: not.in

XIOC detected Domain: not.in

extracted_from_files

Domain

detected Domain: l.name

XIOC detected Domain: l.name

extracted_from_files

Domain

detected Domain: this.name

XIOC detected Domain: this.name

extracted_from_files

Domain

detected Domain: a.int

XIOC detected Domain: a.int

extracted_from_files

Domain

detected Domain: o.money

XIOC detected Domain: o.money

extracted_from_files

Domain

detected Domain: o.int

XIOC detected Domain: o.int

extracted_from_files

Domain

detected Domain: o.date

XIOC detected Domain: o.date

extracted_from_files

Domain

detected Domain: p.auto

XIOC detected Domain: p.auto

extracted_from_files

detected IP: ::

XIOC detected IP: ::

extracted_from_files

Domain

detected Domain: i.channel

XIOC detected Domain: i.channel

extracted_from_files

Domain

detected Domain: t.new

XIOC detected Domain: t.new

extracted_from_files

Domain

detected Domain: d.data

XIOC detected Domain: d.data

extracted_from_files

Domain

detected Domain: p.id

XIOC detected Domain: p.id

extracted_from_files

Domain

detected Domain: o.open

XIOC detected Domain: o.open

extracted_from_files

Domain

detected Domain: c.channel

XIOC detected Domain: c.channel

extracted_from_files

Domain

detected Domain: n.channel

XIOC detected Domain: n.channel

extracted_from_files

Domain

detected Domain: a.money

XIOC detected Domain: a.money

extracted_from_files

Domain

detected Domain: r.download

XIOC detected Domain: r.download

extracted_from_files

Domain

detected Domain: d.id

XIOC detected Domain: d.id

extracted_from_files

Domain

detected Domain: e.map

XIOC detected Domain: e.map

extracted_from_files

Domain

detected Domain: o.metas.map

XIOC detected Domain: o.metas.map

extracted_from_files

Domain

detected Domain: this.map

XIOC detected Domain: this.map

extracted_from_files

Domain

detected Domain: t.events

XIOC detected Domain: t.events

extracted_from_files

Domain

detected Domain: this.channel

XIOC detected Domain: this.channel

extracted_from_files

Domain

detected Domain: super.getbucket.call

XIOC detected Domain: super.getbucket.call

extracted_from_files

Domain

detected Domain: super.createbucket.call

XIOC detected Domain: super.createbucket.call

extracted_from_files

Domain

detected Domain: o.post

XIOC detected Domain: o.post

extracted_from_files

Domain

detected Domain: t.search

XIOC detected Domain: t.search

extracted_from_files

Domain

detected Domain: e.search

XIOC detected Domain: e.search

extracted_from_files

Domain

detected Domain: t.download

XIOC detected Domain: t.download

extracted_from_files

Domain

detected Domain: a.map

XIOC detected Domain: a.map

extracted_from_files

Domain

detected Domain: super.putvectors.call

XIOC detected Domain: super.putvectors.call

extracted_from_files

Domain

detected Domain: super.deleteindex.call

XIOC detected Domain: super.deleteindex.call

extracted_from_files

Domain

detected Domain: super.getindex.call

XIOC detected Domain: super.getindex.call

extracted_from_files

Domain

detected Domain: super.listindexes.call

XIOC detected Domain: super.listindexes.call

extracted_from_files

Domain

detected Domain: super.createindex.call

XIOC detected Domain: super.createindex.call

extracted_from_files

Domain

detected Domain: super.deletebucket.call

XIOC detected Domain: super.deletebucket.call

extracted_from_files

Domain

detected Domain: super.listbuckets.call

XIOC detected Domain: super.listbuckets.call

extracted_from_files

Domain

detected Domain: uint8array.prototype.indexof.call

XIOC detected Domain: uint8array.prototype.indexof.call

extracted_from_files

Domain

detected Domain: e.read

XIOC detected Domain: e.read

extracted_from_files

Domain

detected Domain: c.call

XIOC detected Domain: c.call

extracted_from_files

Domain

detected Domain: super.deletevectors.call

XIOC detected Domain: super.deletevectors.call

extracted_from_files

Domain

detected Domain: super.queryvectors.call

XIOC detected Domain: super.queryvectors.call

extracted_from_files

Domain

detected Domain: super.listvectors.call

XIOC detected Domain: super.listvectors.call

extracted_from_files

Domain

detected Domain: super.getvectors.call

XIOC detected Domain: super.getvectors.call

extracted_from_files

Domain

detected Domain: e.constructor.name

XIOC detected Domain: e.constructor.name

extracted_from_files

Domain

detected Domain: r.read

XIOC detected Domain: r.read

extracted_from_files

Domain

detected Domain: n.prototype.compare

XIOC detected Domain: n.prototype.compare

extracted_from_files

Domain

detected Domain: uint8array.prototype.set.call

XIOC detected Domain: uint8array.prototype.set.call

extracted_from_files

Domain

detected Domain: n.compare

XIOC detected Domain: n.compare

extracted_from_files

Domain

detected Domain: e.foo

XIOC detected Domain: e.foo

extracted_from_files

Domain

detected Domain: uint8array.prototype.lastindexof.call

XIOC detected Domain: uint8array.prototype.lastindexof.call

extracted_from_files

Domain

detected Domain: i.storage

XIOC detected Domain: i.storage

extracted_from_files

Domain

detected Domain: s.total

XIOC detected Domain: s.total

extracted_from_files

Domain

detected Domain: e.page

XIOC detected Domain: e.page

extracted_from_files

Domain

detected Domain: n.new

XIOC detected Domain: n.new

extracted_from_files

Domain

detected Domain: t.data.properties

XIOC detected Domain: t.data.properties

extracted_from_files

Domain

detected Domain: o.data

XIOC detected Domain: o.data

extracted_from_files

Domain

detected Domain: r.data.namespaces.map

XIOC detected Domain: r.data.namespaces.map

extracted_from_files

Domain

detected Domain: c.data

XIOC detected Domain: c.data

extracted_from_files

Domain

detected Domain: r.channel

XIOC detected Domain: r.channel

extracted_from_files

Domain

detected Domain: g.signinwithsolana.resources.map

XIOC detected Domain: g.signinwithsolana.resources.map

extracted_from_files

Domain

detected Domain: w.host

XIOC detected Domain: w.host

extracted_from_files

Domain

detected Domain: i.data

XIOC detected Domain: i.data

extracted_from_files

Domain

detected Domain: n.data

XIOC detected Domain: n.data

extracted_from_files

Domain

detected Domain: a.storage

XIOC detected Domain: a.storage

extracted_from_files

Domain

detected Domain: i.id

XIOC detected Domain: i.id

extracted_from_files

Domain

detected Domain: r.email

XIOC detected Domain: r.email

extracted_from_files

Domain

detected Domain: e.phone

XIOC detected Domain: e.phone

extracted_from_files

Domain

detected Domain: 1e3-date.now

XIOC detected Domain: 1e3-date.now

extracted_from_files

Domain

detected Domain: i.auto

XIOC detected Domain: i.auto

extracted_from_files

Domain

detected Domain: e.email

XIOC detected Domain: e.email

extracted_from_files

URL

detected URL: http://www.w3.org/XML/1998/namespace

XIOC detected URL: http://www.w3.org/XML/1998/namespace

extracted_from_files

URL

detected URL: https://reactjs.org/docs/error-decoder.html?invariant=

XIOC detected URL: https://reactjs.org/docs/error-decoder.html?invariant=

extracted_from_files

URL

detected URL: https://gemini.google.com/*

XIOC detected URL: https://gemini.google.com/*

extracted_from_files

Domain

detected Domain: c.safety

XIOC detected Domain: c.safety

extracted_from_files

Domain

detected Domain: u.safety

XIOC detected Domain: u.safety

extracted_from_files

Domain

detected Domain: u.map

XIOC detected Domain: u.map

extracted_from_files

Domain

detected Domain: s.rp.id

XIOC detected Domain: s.rp.id

extracted_from_files

Domain

detected Domain: n.id

XIOC detected Domain: n.id

extracted_from_files

Domain

detected Domain: s.stream

XIOC detected Domain: s.stream

extracted_from_files

Domain

detected Domain: o.content.parts

XIOC detected Domain: o.content.parts

extracted_from_files

Domain

detected Domain: v.safety

XIOC detected Domain: v.safety

extracted_from_files

Domain

detected Domain: a.parts

XIOC detected Domain: a.parts

extracted_from_files

Domain

detected Domain: r.parts

XIOC detected Domain: r.parts

extracted_from_files

Domain

detected Domain: generativelanguage.googleapis.com

XIOC detected Domain: generativelanguage.googleapis.com

extracted_from_files

Domain

detected Domain: this.stream

XIOC detected Domain: this.stream

extracted_from_files

Domain

detected Domain: e.tools

XIOC detected Domain: e.tools

extracted_from_files

Domain

detected Domain: t.tools

XIOC detected Domain: t.tools

extracted_from_files

Domain

detected Domain: this.tools

XIOC detected Domain: this.tools

extracted_from_files

Domain

detected Domain: r.requests.map

XIOC detected Domain: r.requests.map

extracted_from_files

Domain

detected Domain: a.tools

XIOC detected Domain: a.tools

extracted_from_files

Domain

detected Domain: e.parts

XIOC detected Domain: e.parts

extracted_from_files

Domain

detected Domain: t.read

XIOC detected Domain: t.read

extracted_from_files

Domain

detected Domain: n.target

XIOC detected Domain: n.target

extracted_from_files

Domain

detected Domain: n.is

XIOC detected Domain: n.is

extracted_from_files

Domain

detected Domain: n.style

XIOC detected Domain: n.style

extracted_from_files

Domain

detected Domain: l.call

XIOC detected Domain: l.call

extracted_from_files

Domain

detected Domain: v.call

XIOC detected Domain: v.call

extracted_from_files

Domain

detected Domain: clients2.google.com

XIOC detected Domain: clients2.google.com

extracted_from_files

Domain

detected Domain: i.pn

XIOC detected Domain: i.pn

extracted_from_files

Domain

detected Domain: t.compare

XIOC detected Domain: t.compare

extracted_from_files

Domain

detected Domain: ap.next

XIOC detected Domain: ap.next

extracted_from_files

Domain

detected Domain: ad.next

XIOC detected Domain: ad.next

extracted_from_files

Domain

detected Domain: d.next

XIOC detected Domain: d.next

extracted_from_files

Domain

detected Domain: lc.next

XIOC detected Domain: lc.next

extracted_from_files

Domain

detected Domain: l.data

XIOC detected Domain: l.data

extracted_from_files

Domain

detected Domain: b.data

XIOC detected Domain: b.data

extracted_from_files

Domain

detected Domain: s.now

XIOC detected Domain: s.now

extracted_from_files

Domain

detected Domain: i.now

XIOC detected Domain: i.now

extracted_from_files

Domain

detected Domain: e.id-n.id

XIOC detected Domain: e.id-n.id

extracted_from_files

Domain

detected Domain: r.is

XIOC detected Domain: r.is

extracted_from_files

Domain

detected Domain: d.memoizedprops.style

XIOC detected Domain: d.memoizedprops.style

extracted_from_files

Domain

detected Domain: l.style

XIOC detected Domain: l.style

extracted_from_files

URL

detected URL: http://www.w3.org/1999/xhtml

XIOC detected URL: http://www.w3.org/1999/xhtml

extracted_from_files

URL

detected URL: http://www.w3.org/2000/svg

XIOC detected URL: http://www.w3.org/2000/svg

extracted_from_files

URL

detected URL: http://www.w3.org/1999/xlink

XIOC detected URL: http://www.w3.org/1999/xlink

extracted_from_files

URL

detected URL: https://feross.org

XIOC detected URL: https://feross.org

extracted_from_files

URL

detected URL: https://feross.org/opensource

XIOC detected URL: https://feross.org/opensource

extracted_from_files

URL

detected URL: https://github.com/orgs/supabase/discussions/37217

XIOC detected URL: https://github.com/orgs/supabase/discussions/37217

extracted_from_files

URL

detected URL: https://kzosixifxbhwmevtfdby.supabase.co

XIOC detected URL: https://kzosixifxbhwmevtfdby.supabase.co

extracted_from_files

URL

detected URL: https://billing.stripe.com/p/login/6oUdRag4r4Nc6g8dvNasg00

XIOC detected URL: https://billing.stripe.com/p/login/6oUdRag4r4Nc6g8dvNasg00

extracted_from_files

URL

detected URL: https://gemini.google.com/app/$

XIOC detected URL: https://gemini.google.com/app/$

extracted_from_files

URL

detected URL: https://clients2.google.com/service/update2/crx

XIOC detected URL: https://clients2.google.com/service/update2/crx

extracted_from_files

URL

detected URL: https://generativelanguage.googleapis.com

XIOC detected URL: https://generativelanguage.googleapis.com

extracted_from_files

URL

detected URL: http://www.apache.org/licenses/LICENSE-2.0

XIOC detected URL: http://www.apache.org/licenses/LICENSE-2.0

extracted_from_files

URL

detected URL: https://fonts.googleapis.com/css2?family=Inter:wght@400;500;700&display=swap

XIOC detected URL: https://fonts.googleapis.com/css2?family=Inter:wght@400;500;700&display=swap

extracted_from_files

URL

detected URL: https://developer.mozilla.org/en-US/docs/Web/API/LockManager/request

XIOC detected URL: https://developer.mozilla.org/en-US/docs/Web/API/LockManager/request

extracted_from_files

URL

detected URL: http://localhost:9999

XIOC detected URL: http://localhost:9999

extracted_from_files

Domain

detected Domain: at-date.now

XIOC detected Domain: at-date.now

extracted_from_files

Domain

detected Domain: h.stream

XIOC detected Domain: h.stream

extracted_from_files

Domain

detected Domain: gemini.google.com

XIOC detected Domain: gemini.google.com

extracted_from_files

Domain

detected Domain: l.channel

XIOC detected Domain: l.channel

extracted_from_files

Security Analysis Summary

Security Analysis Overview

Gemini side pilot is a Chrome Web Store extension published by [email protected]. Version 0.0.1 has been analyzed by the Risky Plugins security platform, receiving a risk score of 54.04/100 (MEDIUM risk) based on 276 security findings.

Risk Assessment

This extension presents moderate security risk. Several findings were detected that may warrant attention. Users should carefully review the permissions and findings before installation.

Findings Breakdown

Medium: 259 finding(s)
Low: 17 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

Malware Detection: YARA rule matching against 2,400+ malware signatures
Secret Detection: Scanning for exposed API keys, tokens, and credentials
Static Analysis: Code-level security analysis for common vulnerability patterns
Network Analysis: Detection of suspicious network communications and endpoints
Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

Gemini side pilot is published by [email protected] on the Chrome Web Store marketplace. The extension has approximately 2 users.

Recommendation

Exercise caution with this extension. Review the detailed findings and ensure the requested permissions align with the extension's stated functionality before installation.

Source Code Viewer

Source Code Not Available

Source code is not available for this version of the extension.