{SafeJSON}

SafeJSON Extension: How It Works

The SafeJSON browser extension auto-detects and formats raw JSON responses on any URL. All formatting is local — no pasted content is uploaded. The source code is open and auditable on GitHub.

What the extension does

When you open a URL that returns raw JSON, most browsers show a wall of unformatted text. The SafeJSON extension detects JSON responses and renders them with syntax highlighting, collapsible tree view, and copy-to-clipboard — all in your browser.

The extension does not send the JSON to any server. It reads the page content, formats it locally using client-side JavaScript, and replaces the raw text display. When you click the extension icon, it opens the full SafeJSON toolkit in a new tab.

Permissions explained

storage

Used only to save local preferences: theme (dark/light mode), tree view collapse state, and Pro license activation status. No data is synced or transmitted. Everything stays in your browser.

clipboardWrite

Used only when you click the Copy button to copy formatted JSON to your clipboard. The extension never reads your clipboard. Writes happen only on your explicit action.

Content script / host access

The extension reads the current page only to detect and format JSON responses. No page content is stored, transmitted to any server, or collected for analytics. The host permission scope is broad so the extension can format JSON on any URL you visit, but it only activates on pages that return JSON content.

Remote code

The SafeJSON extension does not load any remote code. All scripts are bundled with the extension package. The full source is available on GitHub under the MIT license — every line is auditable.

Ads and affiliate

The extension does not inject ads, affiliate links, checkout popups, or tracking scripts into any page. It does one thing: detects JSON and formats it locally. There is no pasted-content analytics, no advertising network, and no data broker integration.

How to verify

  1. Open any URL that returns raw JSON
  2. Open DevTools (F12) → Network tab
  3. The extension formats the JSON in your browser — check that no new network request contains the page content or JSON data
  4. For a stronger test, switch the Network tab to Offline mode before loading the page — the extension still works

Detailed verification guide: How to verify SafeJSON does not upload your JSON

Use the same DevTools approach to check online JSON tools

Source audit

The extension source code is in the same public repository as the web app. Every permission, content script, and formatting routine is auditable. View source on GitHub

Install

Edge Add-ons: Install from Microsoft Edge Add-ons

Chrome Web Store: Pending review. Until approved, you can install manually from source:

git clone https://github.com/Json-Lee-git/SafeJSON
# Open chrome://extensions → Enable Developer Mode
# Load unpacked → select the extension/ folder

FAQ

Does the extension upload JSON content?
No. All formatting happens locally in your browser. The extension detects raw JSON responses on the page and formats them using client-side JavaScript. No page content or pasted JSON is uploaded to any server. You can verify this by opening DevTools Network tab while the extension formats a JSON response.
Why does the extension need content script / host access?
The host permission allows the extension to detect raw JSON responses on any URL you visit. When it finds JSON, it formats it for readability — entirely in your browser. The extension does not store, transmit, or collect page content. It only reads the current page to check whether the response is JSON.
How can I verify the extension behavior?
Open DevTools (F12) and go to the Network tab. Visit any URL that returns raw JSON. The extension formats it — and no network request contains your page content or the JSON data. For a stronger test, switch the Network tab to Offline mode before loading the page. The extension still works because all processing is local.