Is Zadein safe to use?

Zadein has a security risk score of 43.58/100 (MEDIUM risk). Our security analysis detected 12 findings. Review the detailed security assessment below to understand the specific risks before installation.

What are the security risks of Zadein?

Based on our automated security analysis, Zadein presents medium risk level. The extension is analyzed for malware patterns, secret exposure, network communications, permissions, and supply chain vulnerabilities.

How is the security score calculated?

Risky Plugins calculates security scores using weighted categories: severity of findings (25 points max), malware detections (35 points), secret exposure (28 points), network communications (10 points), and obfuscation (10 points). Scores range from 0-100, with higher scores indicating greater risk.

What does CRITICAL, HIGH, MEDIUM, LOW, MINIMAL risk mean?

CRITICAL (80-100): Severe security issues like malware. HIGH (60-79): Significant vulnerabilities. MEDIUM (40-59): Moderate security concerns. LOW (20-39): Minor issues. MINIMAL (0-19): Very low risk. Always review findings before installing any extension.

Is "Zadein" on Chrome Web Store Safe to Install?

[email protected] · chrome · v1.0.1

Zadein — AI Tools, Right Where You Browse Zadein brings a full suite of AI tools directly into your browser. Highlight text, right-click, and run AI instantly — no tab switching, no copy-pasting, no interruptions. Highlight Text. Run AI. Stay in Flow. Select any text on any webpage and access powerful AI tools through the right-click menu — in seconds, without leaving the page. What you can do: • Summarize long articles into key points • Rewrite or improve text in any tone • Translate content across languages • Draft or fix emails on the spot • Explain complex concepts in plain language • Ask questions about anything you're reading Floating AI Assistant Every page gets a floating AI panel — one click to open a full set of tools wherever you are on the web. No new tabs. No distractions. Works Everywhere Articles, research papers, emails, documents, blogs, PDFs, social media — Zadein works across the entire web. Built for People Who Work with Text Whether you're a student parsing dense reading, a professional drafting communications, or a researcher processing information — Zadein cuts the friction out of working with AI. Stop switching tabs. Start getting things done. Privacy First Zadein only activates when you explicitly run a tool. It does not read pages in the background, monitor browsing activity, or collect browsing history. Your data is processed only to generate the response you asked for. Full details at zadein.com/privacy Key changes: tightened the copy, removed redundancy, stronger opening hook, reordered sections by impact, made the privacy section feel like a feature rather than a disclaimer, and dropped the passive voice throughout.

Risk Assessment

Analyzed

43.58

out of 100

MEDIUM

12 security findings detected across all analyzers

Chrome extension requesting 9 permissions

Severity Breakdown

Critical

High

Medium

Low

Info

Finding Categories

Network

Requested Permissions

9 permissions

Read and modify cookies on all sites

High

activeTab

Medium

storage

Low

contextMenus

Low

scripting

Low

offscreen

Low

https://api.zadein.com/*

Low

https://zadein.com/*

Low

http://localhost:8787/*

Low

About This Extension

Detailed Findings

12 total

AI Security Report

AI Security Review

Risky Plugins reviewed this extension with an AI-assisted security workflow on 2026-04-27. The review verdict is likely false positive with 85% confidence.

Recommended action: suppress false positive.
Risk context: MEDIUM risk, score 44/100.
Evidence context: threat category none; evidence quality weak.

This extension shows no evidence of malicious behavior. The findings bundle contains 12 network findings, all of type NET-FETCH, distributed across offscreen.js:12, background.js (lines 155, 366, 572, 595, 626, 663, 687, 710), lib/streaming.js (lines 16, 88), and popup/tool.js:122. These are generic fetch call detections without any associated suspicious domains or URLs.

For an extension described as "AI-powered tools — summarize, rewrite, translate, explain, chat with PDFs & more," fetch calls are required functionality to communicate with AI APIs. The findings summary shows 0 malware-signature findings, 0 malware findings, 0 obfuscation findings, 0 code-smell findings, and 0 IoC findings. This is the expected profile for a legitimate AI utility extension.

The developer email [email protected] is generic rather than a verified publisher identity, and the user count of 3 indicates this is a new or niche extension. However, neither factor constitutes evidence of malicious intent without corroborating technical indicators.

Counterargument: A skeptic might argue that the low user count (3 users) combined with a generic developer email suggests this could be a new malicious extension avoiding scrutiny. However, this reasoning fails because the technical evidence shows zero actual threat indicators. There are no malware signatures, no obfuscation patterns, no suspicious domains in the network findings, and no code-smell detections. The 12 network findings are all the same benign type (fetch calls) that any AI-powered extension requires. Without specific evidence of malicious behavior—such as credential harvesting, browser hijacking, data exfiltration to suspicious domains, or obfuscated payloads—there is no basis to classify this as malicious. The extension's behavior matches its stated purpose, and the findings represent expected functionality rather than security concerns.

Key Reasons

All 12 findings are generic fetch calls required for AI API communication
Zero malware signatures or malware findings detected
Zero obfuscation findings in any file
Zero code-smell findings indicating suspicious patterns
Network findings contain no suspicious domains, only fetch detection

False Positive Considerations

Generic fetch detection flags normal API calls as network findings
No actual IoC extraction occurred (0 IoC findings)
AI extension functionality requires network communication

Source Code Viewer

Source Code Not Available

Source code is not available for this version of the extension.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

Ship Xanh copy sản phẩm, nhân bản shop, hiển thị % phí sàn, lượt bán tháng

[email protected]

CRITICAL 20K users

SVG to AVIF Converter [ShiftShift]

[email protected]

CRITICAL 4 users

ChromeCompare

[email protected]

CRITICAL 16 users

CAI Tools

[email protected]

CRITICAL 40K users

MAGgie - An AI Assistant

[email protected]

CRITICAL 1K users

EC Seller Tools

[email protected]

CRITICAL 1K users

Is "Zadein" on Chrome Web Store Safe to Install?

Risk Assessment

Severity Breakdown

Finding Categories

Requested Permissions

About This Extension

Detailed Findings

NET-FETCH-lib/streaming.js-16

NET-FETCH-background.js-572

NET-FETCH-background.js-626

NET-FETCH-offscreen.js-12

NET-FETCH-background.js-663

NET-FETCH-lib/streaming.js-88

NET-FETCH-background.js-595

NET-FETCH-background.js-687

NET-FETCH-background.js-366

NET-FETCH-popup/tool.js-122

NET-FETCH-background.js-710

NET-FETCH-background.js-155

AI Security Report

AI Security Review

Key Reasons

False Positive Considerations

Frequently Asked Questions

Similar Extensions

Ship Xanh copy sản phẩm, nhân bản shop, hiển thị % phí sàn, lượt bán tháng

SVG to AVIF Converter [ShiftShift]

ChromeCompare

CAI Tools

MAGgie - An AI Assistant

EC Seller Tools