Clipus asks for the minimum permissions needed to capture your live product. The full manifest is below.
The full permission set
activeTabRead the page you have open when you press Start Capture.storageSave your local capture session before upload.offscreenRun on-device OCR in an offscreen browser document.
Host permission: https://*/* — only used during an active capture session.
What we deliberately do not ask for
tabs— would let us see all open tabs. We only need the active one.cookies— would let us read your sessions. We do not.webRequest— would let us intercept network calls. We do not.bookmarks,history,downloads— none of these are useful for our job.