Code Verify

Overview An extension to verify that the code running in your browser matches what was published.

VERIFY AUTHENTICITY OF YOUR CLIENT The new Code Verify is an open-source browser extension that lets you verify the authenticity of the WhatsApp, Facebook, Instagram, or Messenger client that you are being served when you use them on the web. Code Verify will immediately alert you if your web version is inauthentic or has been modified.

NEED FOR WEB TRANSPARENCY Mobile phones have security verification protocols in place to ensure that the client you’re downloading is authentic and hasn’t been modified. Unfortunately, those assurances haven’t existed for web-based implementations of apps (those that run on web browsers). Code Verify was created as a solution.

When people use messaging apps via the web, they’re being served Javascript rather than a binary application. This means it's technically possible to serve people a different experience than what they were expecting.

We know that bad actors may want to alter an app and distribute that app to unsuspecting targets. For example, a bad actor could serve someone a version that was created to spy on them – without them ever knowing the difference.

DESIGNED FOR SECURITY-CONSCIOUS USERS Code Verify was designed with our most security-conscious users in mind — those who might want additional peace of mind about their message security. Millions of people use WhatsApp, Facebook, Instagram, and Messenger on the web each month, and this type of independent verification and redundancy (also known as binary transparency) on the web is a huge step forward for online privacy.