Is Gaea Extension safe?
Clean risk
Browser extension that communicates with Gaea service endpoints. The extension includes a postMessage handler without origin validation, but this vulnerability only exists within the extension's popup UI (not in content scripts injected into third-party pages), limiting the attack surface to scenarios where an attacker already controls the popup context.
0Risk
AI-generated. Findings may contain errors. Those marked Verified have been manually reviewed.
Publishers can request a review.