Browser extensionFirefox
Firefox add-ons, checked before and after every release.
Extuno diffs each Firefox add-on update and flags new WebExtension permissions, content-script injection, and exfiltration - with static, dynamic, and AI analysis on every scan.
Firefox - live inspectionInspecting
Tab Suspender 4.0.2
firefox add-on
4.0.1->4.0.2firefox add-on
Static
Dynamic
AI
Analyzing update
What Extuno catches in Firefox
Evidence, not guesswork.
Each finding names the change, why it is dangerous, and the recommended action.
Diff finding
Content-script injection
A new content script injects markup that loads code from a remote origin.
Critical
Diff finding
New optional permissions
An update requests clipboard and history access not present before.
Review
Diff finding
Form-field harvesting
The add-on reads password fields and posts values off-domain.
Critical
See it on a poisoned update
A trusted add-on turns on its users
The permission diff surfaces new access; the sandbox records the data leaving the browser.
- + Vulnerability and secret-leak testing on every version
- + Static analysis reads the code without running it
- + Dynamic sandbox runs it live and records behavior
- + AI code analysis reads the full source and correlates the change against prior versions
Firefoxmanifest diffv4.0.1 -> v4.0.2
- tabs
- storage
- + host permission: *://*/*
- + scripting (remote code)
extensiontelemetry-ff.net
Scan your first Firefox extension free.
Your first 5 credits are free - that is 5 full scans, no card required.