4.2 KiB
summary, read_when
| summary | read_when | |||
|---|---|---|---|---|
| Chrome extension: let Clawdbot drive your existing Chrome tab |
|
Chrome extension (browser relay)
The Clawdbot Chrome extension lets the agent control your existing Chrome tabs (your normal Chrome window) instead of launching a separate clawd-managed Chrome profile.
Attach/detach happens via a single Chrome toolbar button.
What it is (concept)
There are three parts:
- Browser control server (HTTP): the API the agent/tool calls (
browser.controlUrl) - Local relay server (loopback CDP): bridges between the control server and the extension (
http://127.0.0.1:18792by default) - Chrome MV3 extension: attaches to the active tab using
chrome.debuggerand pipes CDP messages to the relay
Clawdbot then controls the attached tab through the normal browser tool surface (selecting the right profile).
Install / load (unpacked)
- Install the extension to a stable local path:
clawdbot browser extension install
- Print the installed extension directory path:
clawdbot browser extension path
- Chrome →
chrome://extensions
- Enable “Developer mode”
- “Load unpacked” → select the directory printed above
- Pin the extension.
Updates (no build step)
The extension ships inside the Clawdbot release (npm package) as static files. There is no separate “build” step.
After upgrading Clawdbot:
- Re-run
clawdbot browser extension installto refresh the installed files under your Clawdbot state directory. - Chrome →
chrome://extensions→ click “Reload” on the extension.
Create a browser profile for the extension
clawdbot browser create-profile \
--name chrome \
--driver extension \
--cdp-url http://127.0.0.1:18792 \
--color "#00AA00"
Then target it:
- CLI:
clawdbot browser --browser-profile chrome tabs - Agent tool:
browserwithprofile="chrome"
Attach / detach (toolbar button)
- Open the tab you want Clawdbot to control.
- Click the extension icon.
- Badge shows
ONwhen attached.
- Badge shows
- Click again to detach.
Remote Gateway (recommended: Tailscale Serve)
Goal: Gateway runs on one machine, but Chrome runs somewhere else.
On the browser machine:
clawdbot browser serve --bind 127.0.0.1 --port 18791 --token <token>
tailscale serve https / http://127.0.0.1:18791
On the Gateway machine:
- Set
browser.controlUrlto the HTTPS Serve URL (MagicDNS/ts.net). - Provide the token (prefer env):
export CLAWDBOT_BROWSER_CONTROL_TOKEN="<token>"
Then the agent can drive the browser by calling the remote browser.controlUrl API, while the extension + relay stay local on the browser machine.
How “extension path” works
clawdbot browser extension path prints the installed on-disk directory containing the extension files.
The CLI intentionally does not print a node_modules path. Always run clawdbot browser extension install first to copy the extension to a stable location under your Clawdbot state directory.
If you move or delete that install directory, Chrome will mark the extension as broken until you reload it from a valid path.
Security implications (read this)
This is powerful and risky. Treat it like giving the model “hands on your browser”.
- The extension uses Chrome’s debugger API (
chrome.debugger). When attached, the model can:- click/type/navigate in that tab
- read page content
- access whatever the tab’s logged-in session can access
- This is not isolated like the dedicated clawd-managed profile.
- If you attach to your daily-driver profile/tab, you’re granting access to that account state.
Recommendations:
- Prefer a dedicated Chrome profile (separate from your personal browsing) for extension relay usage.
- Keep the browser control server tailnet-only (Tailscale) and require a token.
- Avoid exposing browser control over LAN (
0.0.0.0) and avoid Funnel (public).
Related: