Minimum Viable Malicious Extension

This extension sends SHA256 hashes of page titles you browse to, to example.com. You should absolutely not install it. Don't do it.

Upgrade to view and diff full source code

Additional files are visible only to premium users

manifest.json

{
  "update_url": "https://clients2.google.com/service/update2/crx",
  "name": "Minimum Viable Malicious Extension",
  "description": "This extension sends SHA256 hashes of page titles you browse to, to example.com. You should absolutely not install it. Don't do it.",
  "version": "1.0",
  "manifest_version": 2,
  "short_name": "MVME",
  "content_scripts": [
    {
      "matches": [
        "<all_urls>"
      ],
      "js": [
        "inline.js"
      ]
    }
  ],
  "icons": {
    "48": "48.png",
    "128": "128.png"
  }
}