Is "Focusly — Website Blocker for Focus" on Chrome Web Store Safe to Install?
Focusly — ADHD Website Blocker Stop doomscrolling. Not with hard blocks — with friction. Focusly is a Chrome extension designed for ADHD brains. Instead of blocking websites completely, it adds a brief friction pause before you access distracting sites. This gives your brain a moment to reflect: "Do I really need this right now?" How it works: 1. Add distracting sites to your blocklist (or use popular presets like Reddit, Twitter, YouTube, TikTok) 2. When you visit a blocked site, Focusly shows a friction overlay with a countdown timer 3. Write why you want to visit the site (minimum character requirement) 4. Decide: go back to what you were doing, or proceed with awareness Key Features: • 3 friction levels — Light (10s), Medium (30s), Intense (60s) • Blocklist with popular site presets • Stats dashboard — streak, cancelled visits, reflected visits, time saved • 7-day bar chart showing your progress • Strict Mode — password protection + schedule, prevents removing sites or bypassing friction • Privacy-first — all data stays in your browser, nothing is sent anywhere • Beautiful, modern UI with smooth animations • Incognito mode support Free tier: Up to 3 blocked sites Pro tier: Unlimited sites + Strict Mode Built with love for the ADHD community.
Risk Assessment
Analyzed103 security findings detected across all analyzers
Chrome extension requesting 4 permissions
Severity Breakdown
Finding Categories
YARA Rules Matched
9 rules(27 hits)Requested Permissions
4 permissionsAbout This Extension
Detailed Findings
31 totalYARA Rule Matches
9 rulesIndicators of Compromise
Network indicators, suspicious strings, and potential IoCs extracted during analysis
All Indicators · 71
detected Domain: s.next XIOC detected Domain: s.next
extracted_from_files
detected Domain: e.map XIOC detected Domain: e.map
extracted_from_files
detected URL: https://github.com/wxt-dev/wxt/issues/371 XIOC detected URL: https://github.com/wxt-dev/wxt/issues/371
extracted_from_files
detected URL: https://wxt.dev/guide/go-further/testing.html XIOC detected URL: https://wxt.dev/guide/go-further/testing.html
extracted_from_files
detected URL: http://www.w3.org/2000/svg XIOC detected URL: http://www.w3.org/2000/svg
extracted_from_files
detected URL: http:// XIOC detected URL: http://
extracted_from_files
detected URL: https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap XIOC detected URL: https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap
extracted_from_files
detected URL: https://developer.mozilla.org/en-US/docs/Web/API/Element/attachShadow#elements_you_can_attach_a_shadow_to XIOC detected URL: https://developer.mozilla.org/en-US/docs/Web/API/Element/attachShadow#elements_you_can_attach_a_shadow_to
extracted_from_files
detected Domain: this.id XIOC detected Domain: this.id
extracted_from_files
detected Domain: this.locationwatcher.run XIOC detected Domain: this.locationwatcher.run
extracted_from_files
detected Domain: clients2.google.com XIOC detected Domain: clients2.google.com
extracted_from_files
detected Domain: popup.tab XIOC detected Domain: popup.tab
extracted_from_files
detected Domain: gmail.com XIOC detected Domain: gmail.com
extracted_from_files
detected Domain: welcome.how XIOC detected Domain: welcome.how
extracted_from_files
detected URL: https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&family=DM+Serif+Display:ital@0;1&display=swap XIOC detected URL: https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&family=DM+Serif+Display:ital@0;1&display=swap
extracted_from_files
detected Domain: e.name XIOC detected Domain: e.name
extracted_from_files
detected URL: https://clients2.google.com/service/update2/crx XIOC detected URL: https://clients2.google.com/service/update2/crx
extracted_from_files
detected Domain: ie.call XIOC detected Domain: ie.call
extracted_from_files
detected Domain: l.map XIOC detected Domain: l.map
extracted_from_files
detected Domain: a.name XIOC detected Domain: a.name
extracted_from_files
detected Domain: g.map XIOC detected Domain: g.map
extracted_from_files
detected Domain: c.date XIOC detected Domain: c.date
extracted_from_files
detected Domain: twitch.tv XIOC detected Domain: twitch.tv
extracted_from_files
detected Domain: s.date XIOC detected Domain: s.date
extracted_from_files
detected Domain: vk.com XIOC detected Domain: vk.com
extracted_from_files
detected Domain: developer.mozilla.org XIOC detected Domain: developer.mozilla.org
extracted_from_files
detected Domain: object.prototype.tostring.call XIOC detected Domain: object.prototype.tostring.call
extracted_from_files
detected Domain: e.style.top XIOC detected Domain: e.style.top
extracted_from_files
detected Domain: object.prototype.hasownproperty.call XIOC detected Domain: object.prototype.hasownproperty.call
extracted_from_files
detected Domain: twitter.com XIOC detected Domain: twitter.com
extracted_from_files
detected Domain: x.com XIOC detected Domain: x.com
extracted_from_files
detected Domain: youtube.com XIOC detected Domain: youtube.com
extracted_from_files
detected Domain: tiktok.com XIOC detected Domain: tiktok.com
extracted_from_files
detected Domain: facebook.com XIOC detected Domain: facebook.com
extracted_from_files
detected Domain: fonts.googleapis.com XIOC detected Domain: fonts.googleapis.com
extracted_from_files
detected Domain: news.ycombinator.com XIOC detected Domain: news.ycombinator.com
extracted_from_files
detected Domain: n.call XIOC detected Domain: n.call
extracted_from_files
detected Domain: a.watch XIOC detected Domain: a.watch
extracted_from_files
detected Domain: a.map XIOC detected Domain: a.map
extracted_from_files
detected Domain: o.storage XIOC detected Domain: o.storage
extracted_from_files
detected Domain: d.map XIOC detected Domain: d.map
extracted_from_files
detected Domain: r.map XIOC detected Domain: r.map
extracted_from_files
detected Domain: reddit.com XIOC detected Domain: reddit.com
extracted_from_files
detected Domain: www.w3.org XIOC detected Domain: www.w3.org
extracted_from_files
detected Domain: popup.day XIOC detected Domain: popup.day
extracted_from_files
detected Domain: o.date XIOC detected Domain: o.date
extracted_from_files
detected Domain: n.map XIOC detected Domain: n.map
extracted_from_files
detected Domain: c.map XIOC detected Domain: c.map
extracted_from_files
detected Domain: s.name XIOC detected Domain: s.name
extracted_from_files
detected Domain: r.next XIOC detected Domain: r.next
extracted_from_files
detected Domain: browser.storage XIOC detected Domain: browser.storage
extracted_from_files
detected Domain: t.map XIOC detected Domain: t.map
extracted_from_files
detected Domain: g.date XIOC detected Domain: g.date
extracted_from_files
detected Domain: date.now XIOC detected Domain: date.now
extracted_from_files
detected Domain: instagram.com XIOC detected Domain: instagram.com
extracted_from_files
detected Domain: l.storage XIOC detected Domain: l.storage
extracted_from_files
detected Domain: g.watch XIOC detected Domain: g.watch
extracted_from_files
detected Domain: s.watch XIOC detected Domain: s.watch
extracted_from_files
detected Domain: o.map XIOC detected Domain: o.map
extracted_from_files
detected Domain: s.map XIOC detected Domain: s.map
extracted_from_files
detected Domain: t.storage XIOC detected Domain: t.storage
extracted_from_files
detected Domain: f.map XIOC detected Domain: f.map
extracted_from_files
detected Domain: i.map XIOC detected Domain: i.map
extracted_from_files
detected Domain: y.map XIOC detected Domain: y.map
extracted_from_files
detected Domain: strict-badge.off XIOC detected Domain: strict-badge.off
extracted_from_files
detected Domain: strict-lock-icon.off XIOC detected Domain: strict-lock-icon.off
extracted_from_files
detected Domain: github.com XIOC detected Domain: github.com
extracted_from_files
detected Domain: wxt.dev XIOC detected Domain: wxt.dev
extracted_from_files
detected Domain: globalthis.chrome XIOC detected Domain: globalthis.chrome
extracted_from_files
detected Domain: t.next XIOC detected Domain: t.next
extracted_from_files
detected Domain: r.call XIOC detected Domain: r.call
extracted_from_files
Security Analysis Summary
Security Analysis Overview
Focusly — Website Blocker for Focus is a Chrome Web Store extension published by [email protected]. Version 0.1.0 has been analyzed by the Risky Plugins security platform, receiving a risk score of 84.9/100 (HIGH risk) based on 103 security findings.
Risk Assessment
This extension presents critical security risk. Severe issues were detected, potentially including malware indicators, exposed secrets, or dangerous behaviors. Installation is strongly discouraged until these issues are addressed.
Findings Breakdown
- High: 28 finding(s)
- Medium: 75 finding(s)
What Was Analyzed
The security assessment covers multiple analysis categories:
- Malware Detection: YARA rule matching against 2,400+ malware signatures
- Secret Detection: Scanning for exposed API keys, tokens, and credentials
- Static Analysis: Code-level security analysis for common vulnerability patterns
- Network Analysis: Detection of suspicious network communications and endpoints
- Obfuscation Detection: Identification of code obfuscation techniques
Developer Information
Focusly — Website Blocker for Focus is published by [email protected] on the Chrome Web Store marketplace. The extension has approximately 3 users.
Recommendation
This extension is not recommended for installation without thorough manual review. Consider alternatives with lower risk scores, or contact the developer to address the identified security concerns.
Source Code Not Available
Source code is not available for this version of the extension.
Frequently Asked Questions
Similar Extensions
Related extensions from the same publisher or marketplace
KPN Password Manager
[email protected]
MAGgie - An AI Assistant
[email protected]
Aintivirus Privacy and Wallet
[email protected]
BugZap — Visual Bug Reporter
[email protected]
FormGenieAI
[email protected]
OmniChat
[email protected]