This extension auto-checks GitHub repositories and gives immediate security-risk hints.
- Automatic in-page risk panel when you open a repo.
- Clear risk score (0-100) and confidence score.
- Contributor drill-down (why each account looks normal or suspicious).
- Script-pattern scan for common malware delivery commands.
- Repository trust metadata (README/license/issues/description)
- Popularity anomalies (fork/star mismatch)
- Contributor-account anomalies (new account, follower/following behavior, weak profile, mostly-fork accounts)
- Suspicious script patterns (
curl|bash, encoded PowerShell, risky downloader patterns)
- Open
chrome://extensions - Enable Developer mode
- Click Load unpacked and select
extension/
This is heuristic triage, not guaranteed malware detection.
- Open extension settings (Details -> Extension options).
- Add a GitHub Personal Access Token to raise API rate limits.
- Required permissions are already present:
storage(save token locally) andhttps://api.github.com/*in host permissions (send authenticated API requests).