GStars
    vercel-labs

    vercel-labs/agent-browser

    Browser automation CLI for AI agents

    cli
    Rust
    Apache-2.0
    22.3K stars
    1.3K forks
    22.3K watching
    Updated 3/15/2026
    View on GitHub
    Backblaze Advertisement

    Loading star history...

    Health Score

    75

    Weekly Growth

    +2.2K

    +10.0% this week

    Contributors

    1

    Total contributors

    Open Issues

    276

    Generated Insights

    About agent-browser

    agent-browser

    Headless browser automation CLI for AI agents. Fast Rust CLI with Node.js fallback.

    Installation

    Installs the native Rust binary for maximum performance:

    npm install -g agent-browser
agent-browser install  # Download Chromium

    This is the fastest option -- commands run through the native Rust CLI directly with sub-millisecond parsing overhead.

    Quick Start (no install)

    Run directly with npx if you want to try it without installing globally:

    npx agent-browser install   # Download Chromium (first time only)
npx agent-browser open example.com

    Note: npx routes through Node.js before reaching the Rust CLI, so it is noticeably slower than a global install. For regular use, install globally.

    Project Installation (local dependency)

    For projects that want to pin the version in package.json:

    npm install agent-browser
npx agent-browser install

    Then use via npx or package.json scripts:

    npx agent-browser open example.com

    Homebrew (macOS)

    brew install agent-browser
agent-browser install  # Download Chromium

    From Source

    git clone https://github.com/vercel-labs/agent-browser
cd agent-browser
pnpm install
pnpm build
pnpm build:native   # Requires Rust (https://rustup.rs)
pnpm link --global  # Makes agent-browser available globally
agent-browser install

    Linux Dependencies

    On Linux, install system dependencies:

    agent-browser install --with-deps
# or manually: npx playwright install-deps chromium

    Quick Start

    agent-browser open example.com
agent-browser snapshot                    # Get accessibility tree with refs
agent-browser click @e2                   # Click by ref from snapshot
agent-browser fill @e3 "[email protected]" # Fill by ref
agent-browser get text @e1                # Get text by ref
agent-browser screenshot page.png
agent-browser close

    Traditional Selectors (also supported)

    agent-browser click "#submit"
agent-browser fill "#email" "[email protected]"
agent-browser find role button click --name "Submit"

    Commands

    Core Commands

    agent-browser open <url>              # Navigate to URL (aliases: goto, navigate)
agent-browser click <sel>             # Click element (--new-tab to open in new tab)
agent-browser dblclick <sel>          # Double-click element
agent-browser focus <sel>             # Focus element
agent-browser type <sel> <text>       # Type into element
agent-browser fill <sel> <text>       # Clear and fill
agent-browser press <key>             # Press key (Enter, Tab, Control+a) (alias: key)
agent-browser keyboard type <text>    # Type with real keystrokes (no selector, current focus)
agent-browser keyboard inserttext <text>  # Insert text without key events (no selector)
agent-browser keydown <key>           # Hold key down
agent-browser keyup <key>             # Release key
agent-browser hover <sel>             # Hover element
agent-browser select <sel> <val>      # Select dropdown option
agent-browser check <sel>             # Check checkbox
agent-browser uncheck <sel>           # Uncheck checkbox
agent-browser scroll <dir> [px]       # Scroll (up/down/left/right, --selector <sel>)
agent-browser scrollintoview <sel>    # Scroll element into view (alias: scrollinto)
agent-browser drag <src> <tgt>        # Drag and drop
agent-browser upload <sel> <files>    # Upload files
agent-browser screenshot [path]       # Take screenshot (--full for full page, saves to a temporary directory if no path)
agent-browser screenshot --annotate   # Annotated screenshot with numbered element labels
agent-browser pdf <path>              # Save as PDF
agent-browser snapshot                # Accessibility tree with refs (best for AI)
agent-browser eval <js>               # Run JavaScript (-b for base64, --stdin for piped input)
agent-browser connect <port>          # Connect to browser via CDP
agent-browser close                   # Close browser (aliases: quit, exit)

    Get Info

    agent-browser get text <sel>          # Get text content
agent-browser get html <sel>          # Get innerHTML
agent-browser get value <sel>         # Get input value
agent-browser get attr <sel> <attr>   # Get attribute
agent-browser get title               # Get page title
agent-browser get url                 # Get current URL
agent-browser get count <sel>         # Count matching elements
agent-browser get box <sel>           # Get bounding box
agent-browser get styles <sel>        # Get computed styles

    Check State

    agent-browser is visible <sel>        # Check if visible
agent-browser is enabled <sel>        # Check if enabled
agent-browser is checked <sel>        # Check if checked

    Find Elements (Semantic Locators)

    agent-browser find role <role> <action> [value]       # By ARIA role
agent-browser find text <text> <action>               # By text content
agent-browser find label <label> <action> [value]     # By label
agent-browser find placeholder <ph> <action> [value]  # By placeholder
agent-browser find alt <text> <action>                # By alt text
agent-browser find title <text> <action>              # By title attr
agent-browser find testid <id> <action> [value]       # By data-testid
agent-browser find first <sel> <action> [value]       # First match
agent-browser find last <sel> <action> [value]        # Last match
agent-browser find nth <n> <sel> <action> [value]     # Nth match

    Actions: click, fill, type, hover, focus, check, uncheck, text

    Options: --name <name> (filter role by accessible name), --exact (require exact text match)

    Examples:

    agent-browser find role button click --name "Submit"
agent-browser find text "Sign In" click
agent-browser find label "Email" fill "[email protected]"
agent-browser find first ".item" click
agent-browser find nth 2 "a" text

    Wait

    agent-browser wait <selector>         # Wait for element to be visible
agent-browser wait <ms>               # Wait for time (milliseconds)
agent-browser wait --text "Welcome"   # Wait for text to appear
agent-browser wait --url "**/dash"    # Wait for URL pattern
agent-browser wait --load networkidle # Wait for load state
agent-browser wait --fn "window.ready === true"  # Wait for JS condition

    Load states: load, domcontentloaded, networkidle

    Mouse Control

    agent-browser mouse move <x> <y>      # Move mouse
agent-browser mouse down [button]     # Press button (left/right/middle)
agent-browser mouse up [button]       # Release button
agent-browser mouse wheel <dy> [dx]   # Scroll wheel

    Browser Settings

    agent-browser set viewport <w> <h> [scale]  # Set viewport size (scale for retina, e.g. 2)
agent-browser set device <name>       # Emulate device ("iPhone 14")
agent-browser set geo <lat> <lng>     # Set geolocation
agent-browser set offline [on|off]    # Toggle offline mode
agent-browser set headers <json>      # Extra HTTP headers
agent-browser set credentials <u> <p> # HTTP basic auth
agent-browser set media [dark|light]  # Emulate color scheme

    Cookies & Storage

    agent-browser cookies                 # Get all cookies
agent-browser cookies set <name> <val> # Set cookie
agent-browser cookies clear           # Clear cookies

agent-browser storage local           # Get all localStorage
agent-browser storage local <key>     # Get specific key
agent-browser storage local set <k> <v>  # Set value
agent-browser storage local clear     # Clear all

agent-browser storage session         # Same for sessionStorage

    Network

    agent-browser network route <url>              # Intercept requests
agent-browser network route <url> --abort      # Block requests
agent-browser network route <url> --body <json>  # Mock response
agent-browser network unroute [url]            # Remove routes
agent-browser network requests                 # View tracked requests
agent-browser network requests --filter api    # Filter requests

    Tabs & Windows

    agent-browser tab                     # List tabs
agent-browser tab new [url]           # New tab (optionally with URL)
agent-browser tab <n>                 # Switch to tab n
agent-browser tab close [n]           # Close tab
agent-browser window new              # New window

    Frames

    agent-browser frame <sel>             # Switch to iframe
agent-browser frame main              # Back to main frame

    Dialogs

    agent-browser dialog accept [text]    # Accept (with optional prompt text)
agent-browser dialog dismiss          # Dismiss

    Diff

    agent-browser diff snapshot                              # Compare current vs last snapshot
agent-browser diff snapshot --baseline before.txt        # Compare current vs saved snapshot file
agent-browser diff snapshot --selector "#main" --compact # Scoped snapshot diff
agent-browser diff screenshot --baseline before.png      # Visual pixel diff against baseline
agent-browser diff screenshot --baseline b.png -o d.png  # Save diff image to custom path
agent-browser diff screenshot --baseline b.png -t 0.2    # Adjust color threshold (0-1)
agent-browser diff url https://v1.com https://v2.com     # Compare two URLs (snapshot diff)
agent-browser diff url https://v1.com https://v2.com --screenshot  # Also visual diff
agent-browser diff url https://v1.com https://v2.com --wait-until networkidle  # Custom wait strategy
agent-browser diff url https://v1.com https://v2.com --selector "#main"  # Scope to element

    Debug

    agent-browser trace start [path]      # Start recording trace
agent-browser trace stop [path]       # Stop and save trace
agent-browser profiler start          # Start Chrome DevTools profiling
agent-browser profiler stop [path]    # Stop and save profile (.json)
agent-browser console                 # View console messages (log, error, warn, info)
agent-browser console --clear         # Clear console
agent-browser errors                  # View page errors (uncaught JavaScript exceptions)
agent-browser errors --clear          # Clear errors
agent-browser highlight <sel>         # Highlight element
agent-browser state save <path>       # Save auth state
agent-browser state load <path>       # Load auth state
agent-browser state list              # List saved state files
agent-browser state show <file>       # Show state summary
agent-browser state rename <old> <new> # Rename state file
agent-browser state clear [name]      # Clear states for session
agent-browser state clear --all       # Clear all saved states
agent-browser state clean --older-than <days>  # Delete old states

    agent-browser back                    # Go back
agent-browser forward                 # Go forward
agent-browser reload                  # Reload page

    Setup

    agent-browser install                 # Download Chromium browser
agent-browser install --with-deps     # Also install system deps (Linux)

    Sessions

    Run multiple isolated browser instances:

    # Different sessions
agent-browser --session agent1 open site-a.com
agent-browser --session agent2 open site-b.com

# Or via environment variable
AGENT_BROWSER_SESSION=agent1 agent-browser click "#btn"

# List active sessions
agent-browser session list
# Output:
# Active sessions:
# -> default
#    agent1

# Show current session
agent-browser session

    Each session has its own:

    • Browser instance
    • Cookies and storage
    • Navigation history
    • Authentication state

    Persistent Profiles

    By default, browser state (cookies, localStorage, login sessions) is ephemeral and lost when the browser closes. Use --profile to persist state across browser restarts:

    # Use a persistent profile directory
agent-browser --profile ~/.myapp-profile open myapp.com

# Login once, then reuse the authenticated session
agent-browser --profile ~/.myapp-profile open myapp.com/dashboard

# Or via environment variable
AGENT_BROWSER_PROFILE=~/.myapp-profile agent-browser open myapp.com

    The profile directory stores:

    • Cookies and localStorage
    • IndexedDB data
    • Service workers
    • Browser cache
    • Login sessions

    Tip: Use different profile paths for different projects to keep their browser state isolated.

    Session Persistence

    Alternatively, use --session-name to automatically save and restore cookies and localStorage across browser restarts:

    # Auto-save/load state for "twitter" session
agent-browser --session-name twitter open twitter.com

# Login once, then state persists automatically
# State files stored in ~/.agent-browser/sessions/

# Or via environment variable
export AGENT_BROWSER_SESSION_NAME=twitter
agent-browser open twitter.com

    State Encryption

    Encrypt saved session data at rest with AES-256-GCM:

    # Generate key: openssl rand -hex 32
export AGENT_BROWSER_ENCRYPTION_KEY=<64-char-hex-key>

# State files are now encrypted automatically
agent-browser --session-name secure open example.com
    VariableDescription
    AGENT_BROWSER_SESSION_NAMEAuto-save/load state persistence name
    AGENT_BROWSER_ENCRYPTION_KEY64-char hex key for AES-256-GCM encryption
    AGENT_BROWSER_STATE_EXPIRE_DAYSAuto-delete states older than N days (default: 30)

    Security

    agent-browser includes security features for safe AI agent deployments. All features are opt-in -- existing workflows are unaffected until you explicitly enable a feature:

    • Authentication Vault -- Store credentials locally (always encrypted), reference by name. The LLM never sees passwords. A key is auto-generated at ~/.agent-browser/.encryption-key if AGENT_BROWSER_ENCRYPTION_KEY is not set: echo "pass" | agent-browser auth save github --url https://github.com/login --username user --password-stdin then agent-browser auth login github
    • Content Boundary Markers -- Wrap page output in delimiters so LLMs can distinguish tool output from untrusted content: --content-boundaries
    • Domain Allowlist -- Restrict navigation to trusted domains (wildcards like *.example.com also match the bare domain): --allowed-domains "example.com,*.example.com". Sub-resource requests (scripts, images, fetch) and WebSocket/EventSource connections to non-allowed domains are also blocked. Include any CDN domains your target pages depend on (e.g., *.cdn.example.com).
    • Action Policy -- Gate destructive actions with a static policy file: --action-policy ./policy.json
    • Action Confirmation -- Require explicit approval for sensitive action categories: --confirm-actions eval,download
    • Output Length Limits -- Prevent context flooding: --max-output 50000
    VariableDescription
    AGENT_BROWSER_CONTENT_BOUNDARIESWrap page output in boundary markers
    AGENT_BROWSER_MAX_OUTPUTMax characters for page output
    AGENT_BROWSER_ALLOWED_DOMAINSComma-separated allowed domain patterns
    AGENT_BROWSER_ACTION_POLICYPath to action policy JSON file
    AGENT_BROWSER_CONFIRM_ACTIONSAction categories requiring confirmation
    AGENT_BROWSER_CONFIRM_INTERACTIVEEnable interactive confirmation prompts

    See Security documentation for details.

    Snapshot Options

    The snapshot command supports filtering to reduce output size:

    agent-browser snapshot                    # Full accessibility tree
agent-browser snapshot -i                 # Interactive elements only (buttons, inputs, links)
agent-browser snapshot -i -C              # Include cursor-interactive elements (divs with onclick, etc.)
agent-browser snapshot -c                 # Compact (remove empty structural elements)
agent-browser snapshot -d 3               # Limit depth to 3 levels
agent-browser snapshot -s "#main"         # Scope to CSS selector
agent-browser snapshot -i -c -d 5         # Combine options
    OptionDescription
    -i, --interactiveOnly show interactive elements (buttons, links, inputs)
    -C, --cursorInclude cursor-interactive elements (cursor:pointer, onclick, tabindex)
    -c, --compactRemove empty structural elements
    -d, --depth <n>Limit tree depth
    -s, --selector <sel>Scope to CSS selector

    The -C flag is useful for modern web apps that use custom clickable elements (divs, spans) instead of standard buttons/links.

    Annotated Screenshots

    The --annotate flag overlays numbered labels on interactive elements in the screenshot. Each label [N] corresponds to ref @eN, so the same refs work for both visual and text-based workflows.

    agent-browser screenshot --annotate
# -> Screenshot saved to /tmp/screenshot-2026-02-17T12-00-00-abc123.png
#    [1] @e1 button "Submit"
#    [2] @e2 link "Home"
#    [3] @e3 textbox "Email"

    After an annotated screenshot, refs are cached so you can immediately interact with elements:

    agent-browser screenshot --annotate ./page.png
agent-browser click @e2     # Click the "Home" link labeled [2]

    This is useful for multimodal AI models that can reason about visual layout, unlabeled icon buttons, canvas elements, or visual state that the text accessibility tree cannot capture.

    Options

    OptionDescription
    --session <name>Use isolated session (or AGENT_BROWSER_SESSION env)
    --session-name <name>Auto-save/restore session state (or AGENT_BROWSER_SESSION_NAME env)
    --profile <path>Persistent browser profile directory (or AGENT_BROWSER_PROFILE env)
    --state <path>Load storage state from JSON file (or AGENT_BROWSER_STATE env)
    --headers <json>Set HTTP headers scoped to the URL's origin
    --executable-path <path>Custom browser executable (or AGENT_BROWSER_EXECUTABLE_PATH env)
    --extension <path>Load browser extension (repeatable; or AGENT_BROWSER_EXTENSIONS env)
    --args <args>Browser launch args, comma or newline separated (or AGENT_BROWSER_ARGS env)
    --user-agent <ua>Custom User-Agent string (or AGENT_BROWSER_USER_AGENT env)
    --proxy <url>Proxy server URL with optional auth (or AGENT_BROWSER_PROXY env)
    --proxy-bypass <hosts>Hosts to bypass proxy (or AGENT_BROWSER_PROXY_BYPASS env)
    --ignore-https-errorsIgnore HTTPS certificate errors (useful for self-signed certs)
    --allow-file-accessAllow file:// URLs to access local files (Chromium only)
    -p, --provider <name>Cloud browser provider (or AGENT_BROWSER_PROVIDER env)
    --device <name>iOS device name, e.g. "iPhone 15 Pro" (or AGENT_BROWSER_IOS_DEVICE env)
    --jsonJSON output (for agents)
    --full, -fFull page screenshot
    --annotateAnnotated screenshot with numbered element labels (or AGENT_BROWSER_ANNOTATE env)
    --headedShow browser window (not headless) (or AGENT_BROWSER_HEADED env)
    --cdp <port|url>Connect via Chrome DevTools Protocol (port or WebSocket URL)
    --auto-connectAuto-discover and connect to running Chrome (or AGENT_BROWSER_AUTO_CONNECT env)
    --color-scheme <scheme>Color scheme: dark, light, no-preference (or AGENT_BROWSER_COLOR_SCHEME env)
    --download-path <path>Default download directory (or AGENT_BROWSER_DOWNLOAD_PATH env)
    --content-boundariesWrap page output in boundary markers for LLM safety (or AGENT_BROWSER_CONTENT_BOUNDARIES env)
    --max-output <chars>Truncate page output to N characters (or AGENT_BROWSER_MAX_OUTPUT env)
    --allowed-domains <list>Comma-separated allowed domain patterns (or AGENT_BROWSER_ALLOWED_DOMAINS env)
    --action-policy <path>Path to action policy JSON file (or AGENT_BROWSER_ACTION_POLICY env)
    --confirm-actions <list>Action categories requiring confirmation (or AGENT_BROWSER_CONFIRM_ACTIONS env)
    --confirm-interactiveInteractive confirmation prompts; auto-denies if stdin is not a TTY (or AGENT_BROWSER_CONFIRM_INTERACTIVE env)
    --engine <name>Browser engine: chrome (default), lightpanda; implies --native (or AGENT_BROWSER_ENGINE env)
    --native[Experimental] Use native Rust daemon instead of Node.js (or AGENT_BROWSER_NATIVE env)
    --config <path>Use a custom config file (or AGENT_BROWSER_CONFIG env)
    --debugDebug output

    Configuration

    Create an agent-browser.json file to set persistent defaults instead of repeating flags on every command.

    Locations (lowest to highest priority):

    1. ~/.agent-browser/config.json -- user-level defaults
    2. ./agent-browser.json -- project-level overrides (in working directory)
    3. AGENT_BROWSER_* environment variables override config file values
    4. CLI flags override everything

    Example agent-browser.json:

    {
  "headed": true,
  "proxy": "http://localhost:8080",
  "profile": "./browser-data",
  "userAgent": "my-agent/1.0",
  "ignoreHttpsErrors": true
}

    Use --config <path> or AGENT_BROWSER_CONFIG to load a specific config file instead of the defaults:

    agent-browser --config ./ci-config.json open example.com
AGENT_BROWSER_CONFIG=./ci-config.json agent-browser open example.com

    All options from the table above can be set in the config file using camelCase keys (e.g., --executable-path becomes "executablePath", --proxy-bypass becomes "proxyBypass"). Unknown keys are ignored for forward compatibility.

    Boolean flags accept an optional true/false value to override config settings. For example, --headed false disables "headed": true from config. A bare --headed is equivalent to --headed true.

    Auto-discovered config files that are missing are silently ignored. If --config <path> points to a missing or invalid file, agent-browser exits with an error. Extensions from user and project configs are merged (concatenated), not replaced.

    Tip: If your project-level agent-browser.json contains environment-specific values (paths, proxies), consider adding it to .gitignore.

    Default Timeout

    The default Playwright timeout for standard operations (clicks, waits, fills, etc.) is 25 seconds. This is intentionally below the CLI's 30-second IPC read timeout so that Playwright returns a proper error instead of the CLI timing out with EAGAIN.

    Override the default timeout via environment variable:

    # Set a longer timeout for slow pages (in milliseconds)
export AGENT_BROWSER_DEFAULT_TIMEOUT=45000

    Note: Setting this above 30000 (30s) may cause EAGAIN errors on slow operations because the CLI's read timeout will expire before Playwright responds. The CLI retries transient errors automatically, but response times will increase.

    VariableDescription
    AGENT_BROWSER_DEFAULT_TIMEOUTDefault Playwright timeout in ms (default: 25000)

    Selectors

    Refs provide deterministic element selection from snapshots:

    # 1. Get snapshot with refs
agent-browser snapshot
# Output:
# - heading "Example Domain" [ref=e1] [level=1]
# - button "Submit" [ref=e2]
# - textbox "Email" [ref=e3]
# - link "Learn more" [ref=e4]

# 2. Use refs to interact
agent-browser click @e2                   # Click the button
agent-browser fill @e3 "[email protected]" # Fill the textbox
agent-browser get text @e1                # Get heading text
agent-browser hover @e4                   # Hover the link

    Why use refs?

    • Deterministic: Ref points to exact element from snapshot
    • Fast: No DOM re-query needed
    • AI-friendly: Snapshot + ref workflow is optimal for LLMs

    CSS Selectors

    agent-browser click "#id"
agent-browser click ".class"
agent-browser click "div > button"

    Text & XPath

    agent-browser click "text=Submit"
agent-browser click "xpath=//button"

    Semantic Locators

    agent-browser find role button click --name "Submit"
agent-browser find label "Email" fill "[email protected]"

    Agent Mode

    Use --json for machine-readable output:

    agent-browser snapshot --json
# Returns: {"success":true,"data":{"snapshot":"...","refs":{"e1":{"role":"heading","name":"Title"},...}}}

agent-browser get text @e1 --json
agent-browser is visible @e2 --json

    Optimal AI Workflow

    # 1. Navigate and get snapshot
agent-browser open example.com
agent-browser snapshot -i --json   # AI parses tree and refs

# 2. AI identifies target refs from snapshot
# 3. Execute actions using refs
agent-browser click @e2
agent-browser fill @e3 "input text"

# 4. Get new snapshot if page changed
agent-browser snapshot -i --json

    Command Chaining

    Commands can be chained with && in a single shell invocation. The browser persists via a background daemon, so chaining is safe and more efficient:

    # Open, wait for load, and snapshot in one call
agent-browser open example.com && agent-browser wait --load networkidle && agent-browser snapshot -i

# Chain multiple interactions
agent-browser fill @e1 "[email protected]" && agent-browser fill @e2 "pass" && agent-browser click @e3

# Navigate and screenshot
agent-browser open example.com && agent-browser wait --load networkidle && agent-browser screenshot page.png

    Use && when you don't need intermediate output. Run commands separately when you need to parse output first (e.g., snapshot to discover refs before interacting).

    Headed Mode

    Show the browser window for debugging:

    agent-browser open example.com --headed

    This opens a visible browser window instead of running headless.

    Note: Browser extensions work in both headed and headless mode (Chrome's --headless=new).

    Authenticated Sessions

    Use --headers to set HTTP headers for a specific origin, enabling authentication without login flows:

    # Headers are scoped to api.example.com only
agent-browser open api.example.com --headers '{"Authorization": "Bearer <token>"}'

# Requests to api.example.com include the auth header
agent-browser snapshot -i --json
agent-browser click @e2

# Navigate to another domain - headers are NOT sent (safe!)
agent-browser open other-site.com

    This is useful for:

    • Skipping login flows - Authenticate via headers instead of UI
    • Switching users - Start new sessions with different auth tokens
    • API testing - Access protected endpoints directly
    • Security - Headers are scoped to the origin, not leaked to other domains

    To set headers for multiple origins, use --headers with each open command:

    agent-browser open api.example.com --headers '{"Authorization": "Bearer token1"}'
agent-browser open api.acme.com --headers '{"Authorization": "Bearer token2"}'

    For global headers (all domains), use set headers:

    agent-browser set headers '{"X-Custom-Header": "value"}'

    Custom Browser Executable

    Use a custom browser executable instead of the bundled Chromium. This is useful for:

    • Serverless deployment: Use lightweight Chromium builds like @sparticuz/chromium (~50MB vs ~684MB)
    • System browsers: Use an existing Chrome/Chromium installation
    • Custom builds: Use modified browser builds

    CLI Usage

    # Via flag
agent-browser --executable-path /path/to/chromium open example.com

# Via environment variable
AGENT_BROWSER_EXECUTABLE_PATH=/path/to/chromium agent-browser open example.com

    Serverless (Vercel)

    Run agent-browser + Chrome in an ephemeral Vercel Sandbox microVM. No external server needed:

    import { Sandbox } from "@vercel/sandbox";

const sandbox = await Sandbox.create({ runtime: "node24" });
await sandbox.runCommand("agent-browser", ["open", "https://example.com"]);
const result = await sandbox.runCommand("agent-browser", ["screenshot", "--json"]);
await sandbox.stop();

    See the environments example for a working demo with a UI and deploy-to-Vercel button.

    Serverless (AWS Lambda)

    import chromium from '@sparticuz/chromium';
import { BrowserManager } from 'agent-browser';

export async function handler() {
  const browser = new BrowserManager();
  await browser.launch({
    executablePath: await chromium.executablePath(),
    headless: true,
  });
  // ... use browser
}

    Local Files

    Open and interact with local files (PDFs, HTML, etc.) using file:// URLs:

    # Enable file access (required for JavaScript to access local files)
agent-browser --allow-file-access open file:///path/to/document.pdf
agent-browser --allow-file-access open file:///path/to/page.html

# Take screenshot of a local PDF
agent-browser --allow-file-access open file:///Users/me/report.pdf
agent-browser screenshot report.png

    The --allow-file-access flag adds Chromium flags (--allow-file-access-from-files, --allow-file-access) that allow file:// URLs to:

    • Load and render local files
    • Access other local files via JavaScript (XHR, fetch)
    • Load local resources (images, scripts, stylesheets)

    Note: This flag only works with Chromium. For security, it's disabled by default.

    CDP Mode

    Connect to an existing browser via Chrome DevTools Protocol:

    # Start Chrome with: google-chrome --remote-debugging-port=9222

# Connect once, then run commands without --cdp
agent-browser connect 9222
agent-browser snapshot
agent-browser tab
agent-browser close

# Or pass --cdp on each command
agent-browser --cdp 9222 snapshot

# Connect to remote browser via WebSocket URL
agent-browser --cdp "wss://your-browser-service.com/cdp?token=..." snapshot

    The --cdp flag accepts either:

    • A port number (e.g., 9222) for local connections via http://localhost:{port}
    • A full WebSocket URL (e.g., wss://... or ws://...) for remote browser services

    This enables control of:

    • Electron apps
    • Chrome/Chromium instances with remote debugging
    • WebView2 applications
    • Any browser exposing a CDP endpoint

    Auto-Connect

    Use --auto-connect to automatically discover and connect to a running Chrome instance without specifying a port:

    # Auto-discover running Chrome with remote debugging
agent-browser --auto-connect open example.com
agent-browser --auto-connect snapshot

# Or via environment variable
AGENT_BROWSER_AUTO_CONNECT=1 agent-browser snapshot

    Auto-connect discovers Chrome by:

    1. Reading Chrome's DevToolsActivePort file from the default user data directory
    2. Falling back to probing common debugging ports (9222, 9229)

    This is useful when:

    • Chrome 144+ has remote debugging enabled via chrome://inspect/#remote-debugging (which uses a dynamic port)
    • You want a zero-configuration connection to your existing browser
    • You don't want to track which port Chrome is using

    Streaming (Browser Preview)

    Stream the browser viewport via WebSocket for live preview or "pair browsing" where a human can watch and interact alongside an AI agent.

    Enable Streaming

    Set the AGENT_BROWSER_STREAM_PORT environment variable:

    AGENT_BROWSER_STREAM_PORT=9223 agent-browser open example.com

    This starts a WebSocket server on the specified port that streams the browser viewport and accepts input events.

    WebSocket Protocol

    Connect to ws://localhost:9223 to receive frames and send input:

    Receive frames:

    {
  "type": "frame",
  "data": "<base64-encoded-jpeg>",
  "metadata": {
    "deviceWidth": 1280,
    "deviceHeight": 720,
    "pageScaleFactor": 1,
    "offsetTop": 0,
    "scrollOffsetX": 0,
    "scrollOffsetY": 0
  }
}

    Send mouse events:

    {
  "type": "input_mouse",
  "eventType": "mousePressed",
  "x": 100,
  "y": 200,
  "button": "left",
  "clickCount": 1
}

    Send keyboard events:

    {
  "type": "input_keyboard",
  "eventType": "keyDown",
  "key": "Enter",
  "code": "Enter"
}

    Send touch events:

    {
  "type": "input_touch",
  "eventType": "touchStart",
  "touchPoints": [{ "x": 100, "y": 200 }]
}

    Programmatic API

    For advanced use, control streaming directly via the protocol:

    import { BrowserManager } from 'agent-browser';

const browser = new BrowserManager();
await browser.launch({ headless: true });
await browser.navigate('https://example.com');

// Start screencast
await browser.startScreencast((frame) => {
  // frame.data is base64-encoded image
  // frame.metadata contains viewport info
  console.log('Frame received:', frame.metadata.deviceWidth, 'x', frame.metadata.deviceHeight);
}, {
  format: 'jpeg',
  quality: 80,
  maxWidth: 1280,
  maxHeight: 720,
});

// Inject mouse events
await browser.injectMouseEvent({
  type: 'mousePressed',
  x: 100,
  y: 200,
  button: 'left',
});

// Inject keyboard events
await browser.injectKeyboardEvent({
  type: 'keyDown',
  key: 'Enter',
  code: 'Enter',
});

// Stop when done
await browser.stopScreencast();

    Architecture

    agent-browser uses a client-daemon architecture:

    1. Rust CLI (fast native binary) - Parses commands, communicates with daemon
    2. Node.js Daemon (default) - Manages Playwright browser instance
    3. Native Daemon (experimental, --native) - Pure Rust daemon using direct CDP, no Node.js required
    4. Fallback - If native binary unavailable, uses Node.js directly

    The daemon starts automatically on first command and persists between commands for fast subsequent operations.

    Browser Engine: Uses Chromium by default. The default Node.js daemon also supports Firefox and WebKit via Playwright. The experimental native daemon speaks Chrome DevTools Protocol (CDP) directly and supports Chromium-based browsers and Safari (via WebDriver).

    Experimental: Native Mode

    The native daemon is a pure Rust implementation that communicates with Chrome directly via CDP, eliminating the Node.js and Playwright dependencies. It is currently experimental and opt-in.

    Enabling Native Mode

    # Via flag
agent-browser --native open example.com

# Via environment variable (recommended for persistent use)
export AGENT_BROWSER_NATIVE=1
agent-browser open example.com

    Or add to your config file (agent-browser.json):

    {"native": true}

    What's Different

    Default (Node.js)Native (--native)
    RuntimeNode.js + PlaywrightPure Rust binary
    ProtocolPlaywright protocolDirect CDP / WebDriver
    Install sizeLarger (Node.js + npm deps)Smaller (single binary)
    Browser supportChromium, Firefox, WebKitChromium, Safari (via WebDriver)
    StabilityStableExperimental

    Known Limitations

    • Firefox and WebKit are not yet supported (Chromium and Safari only)
    • Some Playwright-specific features (tracing format, HAR export) are not available
    • The native daemon and Node.js daemon share the same session socket, so you cannot run both simultaneously for the same session. Use agent-browser close before switching modes.

    Platforms

    PlatformBinaryFallback
    macOS ARM64Native RustNode.js
    macOS x64Native RustNode.js
    Linux ARM64Native RustNode.js
    Linux x64Native RustNode.js
    Windows x64Native RustNode.js

    Usage with AI Agents

    Just ask the agent

    The simplest approach -- just tell your agent to use it:

    Use agent-browser to test the login flow. Run agent-browser --help to see available commands.

    The --help output is comprehensive and most agents can figure it out from there.

    Add the skill to your AI coding assistant for richer context:

    npx skills add vercel-labs/agent-browser

    This works with Claude Code, Codex, Cursor, Gemini CLI, GitHub Copilot, Goose, OpenCode, and Windsurf. The skill is fetched from the repository, so it stays up to date automatically -- do not copy SKILL.md from node_modules as it will become stale.

    Claude Code

    Install as a Claude Code skill:

    npx skills add vercel-labs/agent-browser

    This adds the skill to .claude/skills/agent-browser/SKILL.md in your project. The skill teaches Claude Code the full agent-browser workflow, including the snapshot-ref interaction pattern, session management, and timeout handling.

    AGENTS.md / CLAUDE.md

    For more consistent results, add to your project or global instructions file:

    ## Browser Automation

Use `agent-browser` for web automation. Run `agent-browser --help` for all commands.

Core workflow:
1. `agent-browser open <url>` - Navigate to page
2. `agent-browser snapshot -i` - Get interactive elements with refs (@e1, @e2)
3. `agent-browser click @e1` / `fill @e2 "text"` - Interact using refs
4. Re-snapshot after page changes

    Integrations

    iOS Simulator

    Control real Mobile Safari in the iOS Simulator for authentic mobile web testing. Requires macOS with Xcode.

    Setup:

    # Install Appium and XCUITest driver
npm install -g appium
appium driver install xcuitest

    Usage:

    # List available iOS simulators
agent-browser device list

# Launch Safari on a specific device
agent-browser -p ios --device "iPhone 16 Pro" open https://example.com

# Same commands as desktop
agent-browser -p ios snapshot -i
agent-browser -p ios tap @e1
agent-browser -p ios fill @e2 "text"
agent-browser -p ios screenshot mobile.png

# Mobile-specific commands
agent-browser -p ios swipe up
agent-browser -p ios swipe down 500

# Close session
agent-browser -p ios close

    Or use environment variables:

    export AGENT_BROWSER_PROVIDER=ios
export AGENT_BROWSER_IOS_DEVICE="iPhone 16 Pro"
agent-browser open https://example.com
    VariableDescription
    AGENT_BROWSER_PROVIDERSet to ios to enable iOS mode
    AGENT_BROWSER_IOS_DEVICEDevice name (e.g., "iPhone 16 Pro", "iPad Pro")
    AGENT_BROWSER_IOS_UDIDDevice UDID (alternative to device name)

    Supported devices: All iOS Simulators available in Xcode (iPhones, iPads), plus real iOS devices.

    Note: The iOS provider boots the simulator, starts Appium, and controls Safari. First launch takes ~30-60 seconds; subsequent commands are fast.

    Real Device Support

    Appium also supports real iOS devices connected via USB. This requires additional one-time setup:

    1. Get your device UDID:

    xcrun xctrace list devices
# or
system_profiler SPUSBDataType | grep -A 5 "iPhone\|iPad"

    2. Sign WebDriverAgent (one-time):

    # Open the WebDriverAgent Xcode project
cd ~/.appium/node_modules/appium-xcuitest-driver/node_modules/appium-webdriveragent
open WebDriverAgent.xcodeproj

    In Xcode:

    • Select the WebDriverAgentRunner target
    • Go to Signing & Capabilities
    • Select your Team (requires Apple Developer account, free tier works)
    • Let Xcode manage signing automatically

    3. Use with agent-browser:

    # Connect device via USB, then:
agent-browser -p ios --device "<DEVICE_UDID>" open https://example.com

# Or use the device name if unique
agent-browser -p ios --device "John's iPhone" open https://example.com

    Real device notes:

    • First run installs WebDriverAgent to the device (may require Trust prompt)
    • Device must be unlocked and connected via USB
    • Slightly slower initial connection than simulator
    • Tests against real Safari performance and behavior

    Browserbase

    Browserbase provides remote browser infrastructure to make deployment of agentic browsing agents easy. Use it when running the agent-browser CLI in an environment where a local browser isn't feasible.

    To enable Browserbase, use the -p flag:

    export BROWSERBASE_API_KEY="your-api-key"
export BROWSERBASE_PROJECT_ID="your-project-id"
agent-browser -p browserbase open https://example.com

    Or use environment variables for CI/scripts:

    export AGENT_BROWSER_PROVIDER=browserbase
export BROWSERBASE_API_KEY="your-api-key"
export BROWSERBASE_PROJECT_ID="your-project-id"
agent-browser open https://example.com

    When enabled, agent-browser connects to a Browserbase session instead of launching a local browser. All commands work identically.

    Get your API key and project ID from the Browserbase Dashboard.

    Browser Use

    Browser Use provides cloud browser infrastructure for AI agents. Use it when running agent-browser in environments where a local browser isn't available (serverless, CI/CD, etc.).

    To enable Browser Use, use the -p flag:

    export BROWSER_USE_API_KEY="your-api-key"
agent-browser -p browseruse open https://example.com

    Or use environment variables for CI/scripts:

    export AGENT_BROWSER_PROVIDER=browseruse
export BROWSER_USE_API_KEY="your-api-key"
agent-browser open https://example.com

    When enabled, agent-browser connects to a Browser Use cloud session instead of launching a local browser. All commands work identically.

    Get your API key from the Browser Use Cloud Dashboard. Free credits are available to get started, with pay-as-you-go pricing after.

    Kernel

    Kernel provides cloud browser infrastructure for AI agents with features like stealth mode and persistent profiles.

    To enable Kernel, use the -p flag:

    export KERNEL_API_KEY="your-api-key"
agent-browser -p kernel open https://example.com

    Or use environment variables for CI/scripts:

    export AGENT_BROWSER_PROVIDER=kernel
export KERNEL_API_KEY="your-api-key"
agent-browser open https://example.com

    Optional configuration via environment variables:

    VariableDescriptionDefault
    KERNEL_HEADLESSRun browser in headless mode (true/false)false
    KERNEL_STEALTHEnable stealth mode to avoid bot detection (true/false)true
    KERNEL_TIMEOUT_SECONDSSession timeout in seconds300
    KERNEL_PROFILE_NAMEBrowser profile name for persistent cookies/logins (created if it doesn't exist)(none)

    When enabled, agent-browser connects to a Kernel cloud session instead of launching a local browser. All commands work identically.

    Profile Persistence: When KERNEL_PROFILE_NAME is set, the profile will be created if it doesn't already exist. Cookies, logins, and session data are automatically saved back to the profile when the browser session ends, making them available for future sessions.

    Get your API key from the Kernel Dashboard.

    License

    Apache-2.0

    Discover Repositories

    Search across tracked repositories by name or description