This component performs static information flow analysis on the JavaScript code found in an extension. After intercepting the xpi file from the XPInstall process, this component decompresses and extracts the JavaScript files from it. The tool then scans the files for requests to download JavaScript files. Malware authors seeking to sneak their malware into the official Firefox repository often places explicitly malicious code outside of the extension. The extension can then pass inspection and be placed in the official repository. To protect against this, any requests to download JavaScript files are downloaded for inspection.