mirror of https://github.com/browser-use/browser-use synced 2026-05-06 17:52:15 +02:00

Go to file

Magnus Müller 4c2952d640 Squashed commit of the following:

commit a9cf53a1b1
Merge: 5aa62c11 0f9ffa10
Author: Magnus Müller <67061560+MagMueller@users.noreply.github.com>
Date:   Fri Jun 20 10:41:19 2025 +0200

    Set user_data_dir to None (#2015)

    <!-- This is an auto-generated description by cubic. -->
    Changed browser session setup to use incognito mode by setting
    user_data_dir to None, preventing persistent state between evaluation
    runs.

    <!-- End of auto-generated description by cubic. -->

commit 0f9ffa1072
Author: Magnus Müller <67061560+MagMueller@users.noreply.github.com>
Date:   Fri Jun 20 10:38:01 2025 +0200

    Set user_data_dir to None

commit 5aa62c1113
Merge: d8a9d21b e559ff5e
Author: Nick Sweeting <git@sweeting.me>
Date:   Thu Jun 19 23:01:49 2025 -0700

    Fix cross-origin iframe DOM retrieval (#1965)

commit d8a9d21b00
Merge: 3e5f3049 b6be1583
Author: Nick Sweeting <git@sweeting.me>
Date:   Thu Jun 19 23:01:21 2025 -0700

    Fix critical domain restriction bypass vulnerability (#2006)

commit b6be158319
Author: Sahar <saharhashai@gmail.com>
Date:   Thu Jun 19 02:28:34 2025 -0700

    Delete tests/ci/test_security_url_validation.py

commit aca4b57329
Author: Sahar <saharhashai@gmail.com>
Date:   Thu Jun 19 02:27:57 2025 -0700

    Delete SECURITY_FIX_REPORT.md

commit 45872c1e45
Author: Your Name <your.email@example.com>
Date:   Thu Jun 19 11:24:50 2025 +0200

    fix(security): prevent domain restriction bypass in controller actions

    - Add domain validation to controller.click() and controller.type() methods
    - Implement comprehensive security checks before executing actions
    - Prevent potential prompt injection and unauthorized data access
    - Add extensive test coverage for domain validation scenarios
    - Update documentation with security considerations

    This critical fix prevents complete bypass of domain restrictions that
    could enable attackers to perform unauthorized actions on any domain.

commit e559ff5eaa
Merge: 19ae8a11 f348e0c5
Author: Nick Sweeting <git@sweeting.me>
Date:   Sat Jun 14 01:56:09 2025 -0700

    Merge branch 'main' into main

commit 19ae8a1146
Merge: e1b3ff9e 08ed0be3
Author: Nick Sweeting <git@sweeting.me>
Date:   Sat Jun 14 00:31:30 2025 -0700

    Merge branch 'main' into main

commit e1b3ff9e9d
Author: Ilya Biryukov <ilbiryuk@microsoft.com>
Date:   Thu Jun 12 17:40:40 2025 -0700

    Revert changes to  examples/features/multiple_agents_same_browser.py

commit d20a3b55d6
Author: Ilya Biryukov <ilbiryuk@microsoft.com>
Date:   Thu Jun 12 17:30:59 2025 -0700

    Fix pre-commit lint issues and compile error in multiple_agents_same_browser

commit 13d5468aa2
Author: Ilya Biryukov <ilbiryuk@microsoft.com>
Date:   Thu Jun 12 14:07:21 2025 -0700

    Fix cross-origin iframe DOM retrieval

2025-06-20 10:51:06 +02:00

.cursor/rules

tweak cursorrules

2025-05-27 17:09:28 -07:00

.github

Merge branch 'main' into mert/new_everything

2025-06-19 14:11:56 +02:00

bin

parallelize playwright tests using loop scope=session and pytest-xdist

2025-06-06 02:03:25 -07:00

browser_use

Squashed commit of the following:

2025-06-20 10:51:06 +02:00

docs

docs improvements

2025-06-14 15:44:53 -07:00

eval

Squashed commit of the following:

2025-06-20 10:51:06 +02:00

examples

Refactor ActionResult to standardize the inclusion of extracted content, replacing update_only_read_state with include_extracted_content_only_once across multiple services. This change enhances clarity in memory management and ensures consistent handling of extracted content.

2025-06-19 23:18:30 +02:00

static

Dark mode logo (#184 )

2025-01-10 07:37:40 -08:00

tests

Update test case for max string length validation to use MAX_TASK_LENGTH constant, improving maintainability and clarity in error messages.

2025-06-20 01:21:49 +02:00

.dockerignore

tweak .gitignore

2025-05-13 22:08:21 -07:00

.env.example

add note about API key rename

2025-05-13 17:46:08 -07:00

.gitattributes

Remove mp4 files and update gitattributes

2024-11-18 20:49:06 +01:00

.gitignore

ignore .bak files

2025-06-10 02:29:25 -07:00

.pre-commit-config.yaml

fix ruff issues

2025-05-02 20:40:55 +08:00

.python-version

bump dependency versions

2025-06-03 16:03:08 -07:00

CLAUDE.md

update CLAUDE code rules

2025-05-26 16:57:15 -07:00

Dockerfile

bump default version in docker to 3.12

2025-06-03 16:12:41 -07:00

LICENSE

Added MIT license

2024-11-05 19:07:17 +01:00

pyproject.toml

Enhance tab identification logic in prompts.py for improved accuracy and clarity. Update pyproject.toml to include a missing comma in dev-dependencies.

2025-06-19 18:46:13 +02:00

README.md

Update README.md

2025-06-07 01:04:43 +02:00

README.md

Enable AI to control your browser 🤖

🌐 Browser-use is the easiest way to connect your AI agents with the browser.

💡 See what others are building and share your projects in our Discord! Want Swag? Check out our Merch store.

🌤️ Skip the setup - try our hosted version for instant browser automation! Try the cloud ☁︎.

Quick start

With pip (Python>=3.11):

pip install browser-use

For memory functionality (requires Python<3.13 due to PyTorch compatibility):

pip install "browser-use[memory]"

Install the browser:

playwright install chromium --with-deps --no-shell

Spin up your agent:

import asyncio
from dotenv import load_dotenv
load_dotenv()
from browser_use import Agent
from langchain_openai import ChatOpenAI

async def main():
    agent = Agent(
        task="Compare the price of gpt-4o and DeepSeek-V3",
        llm=ChatOpenAI(model="gpt-4o"),
    )
    await agent.run()

asyncio.run(main())

Add your API keys for the provider you want to use to your .env file.

OPENAI_API_KEY=
ANTHROPIC_API_KEY=
AZURE_OPENAI_ENDPOINT=
AZURE_OPENAI_KEY=
GOOGLE_API_KEY=
DEEPSEEK_API_KEY=
GROK_API_KEY=
NOVITA_API_KEY=

For other settings, models, and more, check out the documentation 📕.

Test with UI

You can test browser-use using its Web UI or Desktop App.

Test with an interactive CLI

You can also use our browser-use interactive CLI (similar to claude code):

pip install browser-use[cli]
browser-use

Demos

Task: Add grocery items to cart, and checkout.

Prompt: Add my latest LinkedIn follower to my leads in Salesforce.

Prompt: Read my CV & find ML jobs, save them to a file, and then start applying for them in new tabs, if you need help, ask me.'

https://github.com/user-attachments/assets/171fb4d6-0355-46f2-863e-edb04a828d04

Prompt: Write a letter in Google Docs to my Papa, thanking him for everything, and save the document as a PDF.

Prompt: Look up models with a license of cc-by-sa-4.0 and sort by most likes on Hugging face, save top 5 to file.

https://github.com/user-attachments/assets/de73ee39-432c-4b97-b4e8-939fd7f323b3

More examples

For more examples see the examples folder or join the Discord and show off your project. You can also see our awesome-prompts repo for prompting inspiration.

Vision

Tell your computer what to do, and it gets it done.

Roadmap

Agent

Improve agent memory to handle +100 steps
Enhance planning capabilities (load website specific context)
Reduce token consumption (system prompt, DOM state)

DOM Extraction

Enable detection for all possible UI elements
Improve state representation for UI elements so that all LLMs can understand what's on the page

Workflows

Let user record a workflow - which we can rerun with browser-use as a fallback
Make rerunning of workflows work, even if pages change

User Experience

Create various templates for tutorial execution, job application, QA testing, social media, etc. which users can just copy & paste.
Improve docs
Make it faster

Parallelization

Human work is sequential. The real power of a browser agent comes into reality if we can parallelize similar tasks. For example, if you want to find contact information for 100 companies, this can all be done in parallel and reported back to a main agent, which processes the results and kicks off parallel subtasks again.

Contributing

We love contributions! Feel free to open issues for bugs or feature requests. To contribute to the docs, check out the /docs folder.

🧪 How to make your agents robust?

We offer to run your tasks in our CI—automatically, on every update!

Add your task: Add a YAML file in tests/agent_tasks/ (see the README there for details).
Automatic validation: Every time we push updates, your task will be run by the agent and evaluated using your criteria.

Local Setup

To learn more about the library, check out the local setup 📕.

main is the primary development branch with frequent changes. For production use, install a stable versioned release instead.

Swag

Want to show off your Browser-use swag? Check out our Merch store. Good contributors will receive swag for free 👀.

Citation

If you use Browser Use in your research or project, please cite:

@software{browser_use2024,
  author = {Müller, Magnus and Žunič, Gregor},
  title = {Browser Use: Enable AI to control your browser},
  year = {2024},
  publisher = {GitHub},
  url = {https://github.com/browser-use/browser-use}
}

Made with ❤️ in Zurich and San Francisco