Browse Security AI Extensions Collections
๐Ÿ“ฆ

X1 Wallet

๐Ÿ” Security Report Available
by jack
๐Ÿ“ฆ v0.10.84
โž• Add to Chrome

Overview

Secure, non-custodial cryptocurrency wallet for the Solana blockchain and X1 network. Provides token management, DeFi access, and hardware wallet integration.

Developer

๐Ÿ‘ค jack
โœ‰๏ธ jack@faircrypto.org

Security Analysis

Analyzed v0.10.84 ยท Feb 21, 2026 ยท 16 JS files ยท 3060 KB scanned

Permissions

storage clipboardWrite clipboardRead sidePanel

Code Patterns Detected

innerHTML assignment โ€” potential XSS vector Makes HTTP requests Potential crypto-mining code detected

External Connections

www.w3.org raw.githubusercontent.com rpc.mainnet.x1.xyz solscan.io api.xdex.xyz ipfs.io explorer.mainnet.x1.xyz connect.trezor.io dev.suite.sldev.cz explorer.testnet.x1.xyz lite-api.jup.ag arweave.net +8 more

What This Extension Does

The X1 Wallet Chrome extension appears to be a cryptocurrency wallet, providing token management, DeFi access, and hardware wallet integration for the Solana blockchain and X1 network.

Permissions Explained

  • storage: Allows the extension to store data locally on the user's device.
+ Standard for this type of extension, as it needs to manage user's private keys and tokens.
  • clipboardRead and clipboardWrite: Allow the extension to read from and write to the system clipboard.
+ Unusual for a wallet extension, but could be used for copying or pasting sensitive information (e.g., private keys).
  • sidePanel: Allows the extension to create a panel in the browser's sidebar.
+ Standard for this type of extension, as it can provide an easy-to-access interface for users.
  • Various RPC and API permissions: Allow the extension to communicate with specific blockchain nodes and APIs.
+ Expected for a wallet extension that needs to interact with various blockchain services.

What We Found in the Code

  • [medium] innerHTML assignment โ€” potential XSS vector: The extension uses innerHTML to update its UI, which can be a potential cross-site scripting (XSS) vulnerability if used with untrusted data. However, without more context, it's difficult to say whether this is an actual issue.
+ InnerHTML is often used for UI rendering; the concern here is whether the extension uses it safely.
  • [info] Makes HTTP requests: The extension makes HTTP requests to various APIs and blockchain nodes, which is a normal behavior for a wallet extension that needs to interact with external services.
  • [critical] Potential crypto-mining code detected: This flag suggests that the extension may be using CPU-intensive code for cryptocurrency mining. However, without more context or information about the specific code in question, it's difficult to say whether this is an actual issue.

External Connections

The extension communicates with various domains, including:
  • Blockchain nodes (e.g., rpc.mainnet.x1.xyz, api.xdex.xyz)
  • APIs for token management and DeFi access (e.g., lite-api.jup.ag, tokens.jup.ag)
  • UI rendering services (e.g., ipfs.io, gateway.pinata.cloud)
These connections appear expected for a wallet extension that needs to interact with various blockchain services.

Things to Consider

Based on the extension's description and permissions, it appears to be designed for managing cryptocurrency wallets. The unusual permission clipboardRead and clipboardWrite may raise concerns about data security. Additionally, the potential XSS vector in the code could be a concern if not properly addressed. Users should carefully review the extension's functionality and permissions before installing it.