DeepL: translate and write with AI

Extensions with the cookies permission can retrieve and modify cookies (requires host permissions).

Access to network traffic

Extensions with the scripting permission can inject and execute code in web pages, which can potentially be used for data exfiltration or session hijacking (requires host permissions, available since Manifest V3).

Extensions with the declarativeNetRequest permission can block network requests without requiring host permissions, and redirect requests and modify headers if it has host permissions.

Extensions with the tabs permission can query the url, pendingUrl, title, and favIconUrl of any tab.

Extensions with the alarms permission can schedule code to run periodically or at a specified time in the future.

Extensions with the contextMenus permission can add items to the browser's context menu (also known as the right-click menu).

Extensions with the nativeMessaging permission can communicate with cooperating applications installed on the user's machine.

Extensions with the sidePanel permission can display content in the browser's side panel alongside the main content of a webpage, enabling a persistent interface that complement the user's browsing journey (available since Manifest V3).

Extensions with the storage permission can store and retrieve user data, which can persist even after clearing the cache and browsing history.

Extensions with the activeTab permission can temporarily access the active tab, including injecting scripts and modifying content, but only when explicitly invoked by a user gesture. Access is revoked when the user closes the tab or navigates away. Compared to <all_urls>, activeTab is safer as it does not grant persistent access.

Extensions with the identity permission can prompt users to authenticate with their Google accounts using OAuth 2.0, but the user must approve the request for the extension to obtain an access token.

Extensions with the tts permission can play synthesized text-to-speech (TTS).