Is io.github.zhiqi-li/browser-mcp-cdp safe to use?

io.github.zhiqi-li/browser-mcp-cdp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.github.zhiqi-li/browser-mcp-cdp?

io.github.zhiqi-li/browser-mcp-cdp can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with io.github.zhiqi-li/browser-mcp-cdp?

io.github.zhiqi-li/browser-mcp-cdp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.

io.github.zhiqi-li/browser-mcp-cdp

Local Chrome via CDP with profile-snapshot isolation and shared-broker multi-client support

0 tools GitHub

No known CVEs

No license

Maintenance unknown

No commit data

Untested

Transport: stdio

0 tools

Grade F

Other

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Untested on Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-zhiqi-li-browser-mcp-cdp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-zhiqi-li-browser-mcp-cdp)](https://mcppedia.org/s/io-github-zhiqi-li-browser-mcp-cdp)

Read me

What io.github.zhiqi-li/browser-mcp-cdp does

Local Chrome via CDP with profile-snapshot isolation and shared-broker multi-client support

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

16/100across 5 weighted dimensions

How we score →

0255075100

−84

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.zhiqi-li/browser-mcp-cdp safe to use?: io.github.zhiqi-li/browser-mcp-cdp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.zhiqi-li/browser-mcp-cdp?: io.github.zhiqi-li/browser-mcp-cdp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.zhiqi-li/browser-mcp-cdp?: io.github.zhiqi-li/browser-mcp-cdp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.

Similar servers

Others in other

View all →

Memory MCP Server96

Persistent memory using a knowledge graph

84.5k 5

Context Mode94

Privacy-first. MCP is the protocol for tool access. We're the virtualization layer for context.

10.2k 6

io.github.miroapp/mcp-server93

Official Miro MCP server - Supports context to code and creating diagrams, docs, and data tables.

89 7

Mcp Gitlab93

MCP server for using the GitLab API

1.4k 12

MCP Security Weekly

Get CVE alerts and security updates for io.github.zhiqi-li/browser-mcp-cdp and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Other

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Untested on Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-zhiqi-li-browser-mcp-cdp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-zhiqi-li-browser-mcp-cdp)](https://mcppedia.org/s/io-github-zhiqi-li-browser-mcp-cdp)

Read me

What io.github.zhiqi-li/browser-mcp-cdp does

Local Chrome via CDP with profile-snapshot isolation and shared-broker multi-client support

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

browser-mcp-cdp

A Model Context Protocol (MCP) server that drives your real local Chrome via the Chrome DevTools Protocol. Designed for agents that need access to your logged-in sessions (Gmail, internal dashboards, banking, etc.) without uploading credentials to a cloud service.

Why another browser MCP?

Different tradeoffs from the alternatives:

	browser-mcp-cdp	Playwright MCP	Chrome DevTools MCP
Browser	Your local Chrome	Managed Playwright Chromium	Your local Chrome
Login state	✅ Snapshot of your profile (cookies, logins, IndexedDB)	❌ Fresh profile	✅ Real profile (modifies it)
Profile isolation	✅ Copy-on-start, real profile untouched	N/A	⚠️ Direct attach
Multi-client	✅ Shared broker across MCP clients	❌ Per-client	❌ Per-client
Dependencies	Node only (no Playwright download)	Playwright + browsers	Node only

The profile snapshot pattern means you can ask an agent to "check my email" — it sees your Gmail logged in — but the agent's actions never modify your real Chrome profile. Each session gets a disposable copy.

Install

claude mcp add browser -- npx -y browser-mcp-cdp

Or add manually to ~/.claude.json / Claude Desktop config:

{
  "mcpServers": {
    "browser": {
      "command": "npx",
      "args": ["-y", "browser-mcp-cdp"]
    }
  }
}

Requires Node 18+ and Google Chrome installed.

Tools

Tool	Purpose
`browser_navigate`	Load a URL, return final URL + title
`browser_evaluate`	Run JS in the page, return result
`browser_screenshot`	PNG of current page
`browser_click`	Click via CSS selector
`browser_click_at`	Click at pixel coordinates (pierces iframes / overlays)
`browser_fill`	Set value on input/textarea/select
`browser_wait_for`	Wait for a selector to appear
`browser_get_url`	Current URL
`browser_get_text`	Visible text of page or element
`browser_get_html`	`outerHTML` of page or element
`browser_scroll`	Scroll by `(x, y)` pixels
`browser_tabs`	List open tabs
`browser_new_tab`	Open a new tab

Environment variables

Var	Default
`BROWSER_MCP_CHROME_PATH`	Auto-detected per OS
`BROWSER_MCP_CHROME_PROFILE_ROOT`	OS-standard Chrome profile dir
`BROWSER_MCP_BROKER_SOCKET_PATH`	`~/.browser-mcp/broker.sock`
`BROWSER_MCP_BROKER_LOCK_PATH`	`~/.browser-mcp/broker.lock`
`BROWSER_MCP_BROKER_IDLE_TIMEOUT_MS`	`600000` (10 min)

How it works

First MCP client connection spawns a broker subprocess (detached).
Broker copies your Chrome profile's cookies/local storage/login data to a temp dir.
Broker launches Chrome with --user-data-dir=<temp> and --remote-debugging-port.
Subsequent MCP clients connect to the same broker over a Unix socket → they share one Chrome.
Broker exits after BROKER_IDLE_TIMEOUT_MS of no activity; temp profile is deleted.

Security

This server lets an LLM execute arbitrary JavaScript in a browser that is logged into your accounts. Only use with models and prompts you trust. Profile snapshotting limits damage (no persistent mutations to your real Chrome), but the agent can read cookies, session tokens, and any data visible to logged-in you for the duration of the session.

License

MIT

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

16/100across 5 weighted dimensions

How we score →

0255075100

−84

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.zhiqi-li/browser-mcp-cdp safe to use?: io.github.zhiqi-li/browser-mcp-cdp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.zhiqi-li/browser-mcp-cdp?: io.github.zhiqi-li/browser-mcp-cdp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.zhiqi-li/browser-mcp-cdp?: io.github.zhiqi-li/browser-mcp-cdp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.