CRXcavator scans extensions in real time based on factors including permissions, external calls, third-party libraries, content security, and metadata. Duo Security researchers scanned 120,463 extensions and apps in January and found that many developers have used poor programming practices in their software. For example, 38,289 extensions used third party libraries that contain publicly known vulnerabilities, wrote the researchers. The tool is free from Duo Security and is available in the U.S. market for $99,000.”]
Source: https://www.darkreading.com/application-security/new-free-tool-scans-for-chrome-extension-safety