Version 1.2.3 — URL Shortener Resolution & Popup Fix

What's new:

• URL shortener links now scan the real destination: links using shorteners like t.co, bit.ly, tinyurl.com, ow.ly, and 25 other services are automatically resolved to their final destination URL before scanning. Previously, a t.co link in a spam email would show t.co's trusted score (100) instead of the scam site it redirects to. This is now fixed.

• Popup message updated: the Gmail popup now correctly reads "Links in this email are being scanned automatically. Click any chip next to a link to see its full report." instead of the outdated hover instruction.

Bug fixes:
• Shortener domains covered: t.co, bit.ly, tinyurl.com, ow.ly, buff.ly, dlvr.it, ift.tt, goo.gl, rb.gy, cutt.ly, shorturl.at, tiny.cc, is.gd, v.gd, bl.ink, rebrand.ly, and more

Version 1.2.0 — Inline Chips, Card Bars & Smart Email Scanning

What's new:

• Always-visible trust scores: links are now scanned automatically and show a small colored badge (chip) right next to each link — no hovering required. Green = safe, amber = suspicious, red = dangerous. Click any chip to open the full report.

• Card bars for news results: links inside Google Top Stories and news carousels now show a full-width colored bar at the bottom of the card instead of an inline chip, so every card in a section looks consistent.

• Smart email scanning in Gmail: the extension now scans high-risk call-to-action links in Gmail emails (e.g. "Verify your account", "Track Your Package", "Reset your password") while skipping low-risk links like unsubscribe footers, image links, and navigation buttons. This helps catch phishing attempts without cluttering your inbox.

Bug fixes:
• Fixed chips appearing upside-down on Google Knowledge Panel rows
• Fixed card bars rendering narrower than the card on right-column news results
• Fixed button-styled links in HTML emails not being detected when styling is on the parent table cell rather than the anchor itself

Bug Fix: Gmail (and other webmail) link scores now match

Root cause: Gmail wraps every link in a Google redirect URL (https://www.google.com/url?q=https://actual-site.com ). The hover tooltip was scanning the wrapped redirect URL and caching it under that key. The popup was scanning the Gmail tab URL (mail.google.com) — a completely different thing — so the two results never matched.

What was fixed:
1. URL unwrapping — All three scripts (content.js, background.js, popup.js) now extract the real destination URL from known redirect wrappers before scanning. Supported wrappers:
Google: google.com/url?q= and links.google.com
Microsoft SafeLinks: safelinks.protection.outlook.com?url=
Facebook: l.facebook.com/l.php?u=
Mailchimp click tracking
Generic: any ?url=, ?redirect=, ?to=, ?dest= parameters

1. Webmail-aware popup — When the popup is opened on a webmail tab (Gmail, Outlook, Yahoo Mail, ProtonMail, Fastmail), it now scans the last link you hovered in that email, not the tab URL. The content script reports the hovered link URL to the background, and the popup retrieves it.
2. Consistent cache keys — Both the hover tooltip and the popup now look up and store results under the same unwrapped URL, so the hover cache hit works correctly in the popup.

Behaviour in Gmail:
Hover over a link → tooltip shows the score for the real destination site
Click the extension icon → popup shows the same score for the same real destination site, then updates with the full scan result
If you open the popup without having hovered a link first → a prompt appears: "Hover over a link in the email to scan it, then click the extension icon"

The popup now shows an instant preliminary score when you've recently hovered over a link on the page, then updates to the full accurate result automatically. This eliminates the score discrepancy between the hover badge and the popup report.

Significantly reduced hover tooltip latency. The safety badge now appears in under 1 second on first hover, and instantly on repeat visits to the same site. Achieved by using a dedicated lightweight scan path for hover checks.

Fixed the toolbar icon always showing a grey question mark regardless of scan result. The icon badge now correctly displays a green checkmark for Safe, amber exclamation for Suspicious, and red X for Dangerous sites.

Fixed hover badge not showing the correct colour — the safety circle now correctly displays green for Safe, amber for Suspicious, and red for Dangerous. Fixed the popup verdict label showing "Unknown" instead of the correct rating. The "Full Report" button now opens directly to the detailed scan results page on unsitely.com. Updated check labels to use generic names for improved compliance.

v1.0.5 — Hover tooltip fix
Fixed the link hover safety badge not displaying the correct color. The circle now correctly shows green for Safe, amber for Suspicious, and red for Dangerous sites. Previously all results appeared gray regardless of the safety rating.

Version 1.0.4 — Release Notes:
This update resolves a packaging issue that prevented the initial submission from installing correctly, and includes several improvements to the extension's core functionality.

Bug fixes:
Fixed a packaging structure issue that caused the "appears to be corrupt" installation error on Firefox — manifest.json is now correctly placed at the root of the archive
Removed browser_specific_settings fields that were causing manifest parsing conflicts on some Firefox versions

Improvements:
Hover-over link scanning now triggers more reliably on dynamically loaded pages (single-page apps, infinite scroll feeds)
Trust score badge on hovered links now respects the user's preferred color scheme (dark/light mode)
Popup loads faster on first open after browser restart

Permissions:
No permission changes from the previous submission. The extension uses only activeTab, storage, and tabs.