We all know that Google does not get its act together and often times failed to detect, when Extensions contained malicious code – and that the culprits have become are very creative in evading the inspection bots.
As happened multiple times in the past, extensions changed their owner and a short time after that started to contain malicious code. Because Google “prevents” downloading of extensions for inspection without installing them first, we must convince them, that it is a legitimate download. In the past there were websites like “Chrome Extensions downloader”, which provided a convenient was to download them, but since Google changed the usual address scheme, those sited broke – but no worry, It is still possible by using a simple bookmarklet.
- Create a new bookmark in Vivaldis Bookmark
- Give it a recognizable name, e.g. “Download Chrome Extension”
- Add a shortcut like e.g. crx
- Copy the following as address:
After all that is done and checked, you can visit the Google Webstore, search for an extension you want to inspect before install, and type “crx” in the address bar, hit “save as” and rename extension_[version number].crx to something sensible.
If successful, you can unpack the Extension with e.g. 7zip and open the files with a Editor of your choice.