Is "Roblox Rewind" on Firefox Add-ons Safe to Install?

Cosisety · firefox · v0.4.0

Track your Roblox spending and get a beautiful yearly rewind Roblox Rewind securely analyzes your transaction history and generates interactive charts, totals, and fun insights like your biggest spending day, favorite games, Premium history, and long‑term trends. Everything runs locally in your browser using your existing Roblox login. Features include: Total Robux and USD spent over your lifetime Year‑by‑year and category breakdowns Premium and Builders Club history tracking Top games, items, and creators you supported “Fun Facts & Insights” section Interactive charts and a clean analytics dashboard Privacy & optional features: Your Roblox transaction data stays on your device. If enabled, the extension sends minimal anonymous usage events (for example load success, fetch duration, and rate‑limit counts) to help improve reliability. No Roblox usernames, user IDs, cookies, or raw transaction history are sent. You can opt out anytime in the privacy modal. If you choose “Generate Game Code”, a small summary of your Rewind is uploaded to a temporary Cloudflare endpoint so the Roblox game can load it by code (codes expire after 24 hours and are deleted after first successful use). For more info (privacy policy, changelog, etc.), check out the GitHub page: https://github.com/Cosisety/Roblox-Rewind/tree/main The only way to spend money is to send a tip, which is completely optional. You gain nothing in the extension by tipping. This is available within the extension, or through the following link: https://ko-fi.com/cosisety PSA!! This extension is very, very new. It is early in development. I’ve released it since the basic function is done, but I do plan on updating this and including additional features. If you find any bugs, please email me at [email protected] Roblox Rewind is not affiliated with, endorsed by, or connected to Roblox Corporation. “Roblox” and the Roblox logo are trademarks of Roblox Corporation.

Risk Assessment

Analyzed
100
out of 100
CRITICAL

117 security findings detected across all analyzers

Firefox extension requesting 9 permissions

Severity Breakdown

1
Critical
106
High
10
Medium
0
Low
0
Info

Finding Categories

85
Malware Signatures
22
Obfuscation
10
Network

YARA Rules Matched

8 rules(85 hits)
postinstall system command postinstall obfuscation postinstall file download postinstall file manipulation postinstall network communication postinstall persistence mechanism LocalStorageShouldNotBeUsed NoUseWeakRandom

Requested Permissions

9 permissions
downloads

Manage, modify, and monitor downloads

High
storage
Low
https://users.roblox.com/*
Low
https://economy.roblox.com/*
Low
https://thumbnails.roblox.com/*
Low
https://www.roblox.com/*
Low
https://api.frankfurter.app/*
Low
https://rwx-f1.rbxrwnd.workers.dev/*
Low
https://rwx-f2.rbxrwnd.workers.dev/*
Low

About This Extension

Track your Roblox spending and get a beautiful yearly rewind Roblox Rewind securely analyzes your transaction history and generates interactive charts, totals, and fun insights like your biggest spending day, favorite games, Premium history, and long‑term trends. Everything runs locally in your browser using your existing Roblox login. Features include: <ul><li>Total Robux and USD spent over your lifetime</li><li>Year‑by‑year and category breakdowns</li><li>Premium and Builders Club history tracking</li><li>Top games, items, and creators you supported</li><li>“Fun Facts &amp; Insights” section</li><li>Interactive charts and a clean analytics dashboard</li></ul> Privacy &amp; optional features: Your Roblox transaction data stays on your device. If enabled, the extension sends minimal anonymous usage events (for example load success, fetch duration, and rate‑limit counts) to help improve reliability. No Roblox usernames, user IDs, cookies, or raw transaction history are sent. You can opt out anytime in the privacy modal. If you choose “Generate Game Code”, a small summary of your Rewind is uploaded to a temporary Cloudflare endpoint so the Roblox game can load it by code (codes expire after 24 hours and are deleted after first successful use). For more info (privacy policy, changelog, etc.), check out the GitHub page: <a href="https://prod.outgoing.prod.webservices.mozgcp.net/v1/2a90c959becc6702937c5b4348a3f4aeaea3fe61f27bf3f69383c0b3dc1609f8/https%3A//github.com/Cosisety/Roblox-Rewind/tree/main" rel="nofollow">https://github.com/Cosisety/Roblox-Rewind/tree/main</a> The only way to spend money is to send a tip, which is completely optional. You gain nothing in the extension by tipping. This is available within the extension, or through the following link: <a href="https://prod.outgoing.prod.webservices.mozgcp.net/v1/6cc40e6c35e61f3fff8f33ed2288ecdc05497ccc88793583ad8cb794caba795f/https%3A//ko-fi.com/cosisety" rel="nofollow">https://ko-fi.com/cosisety</a> PSA!! This extension is very, very new. It is early in development. I’ve released it since the basic function is done, but I do plan on updating this and including additional features. If you find any bugs, please email me at [email protected] Roblox Rewind is not affiliated with, endorsed by, or connected to Roblox Corporation. “Roblox” and the Roblox logo are trademarks of Roblox Corporation.

Detailed Findings

117 total

YARA Rule Matches

8 rules

Security Analysis Summary

Security Analysis Overview

Roblox Rewind is a Firefox Add-ons extension published by Cosisety. Version 0.4.0 has been analyzed by the Risky Plugins security platform, receiving a risk score of 100/100 (CRITICAL risk) based on 117 security findings.

Risk Assessment

This extension presents critical security risk. Severe issues were detected, potentially including malware indicators, exposed secrets, or dangerous behaviors. Installation is strongly discouraged until these issues are addressed.

Findings Breakdown

  • Critical: 1 finding(s)
  • High: 106 finding(s)
  • Medium: 10 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

  • Malware Detection: YARA rule matching against 2,400+ malware signatures
  • Secret Detection: Scanning for exposed API keys, tokens, and credentials
  • Static Analysis: Code-level security analysis for common vulnerability patterns
  • Network Analysis: Detection of suspicious network communications and endpoints
  • Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

Roblox Rewind is published by Cosisety on the Firefox Add-ons marketplace. The extension has approximately 3 users.

Recommendation

This extension is not recommended for installation without thorough manual review. Consider alternatives with lower risk scores, or contact the developer to address the identified security concerns.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

NativeMind

XMIND LIMITED

CRITICAL 352 users

eOffice Notes Summarizer

Rachayita Labs

CRITICAL 8 users

CNote – Save Web Content as Markdown

itcwc

CRITICAL 4 users

Study Tools voor Magister

QkeleQ10

CRITICAL 1K users

GMX MailCheck for Firefox

1&1 Mail & Media GmbH

CRITICAL 17K users

upStart Neo

Fabio Rodrigues

CRITICAL 4 users