firefox-devtools-mcp
Verified Safeby freema
Overview
Automate Firefox browser interactions and inspect DevTools features for AI agents via Model Context Protocol (MCP).
Installation
npx firefox-devtools-mcp@latest --headless --viewport 1280x720Environment Variables
- NODE_ENV
- FIREFOX_HEADLESS
- START_URL
- FIREFOX_PATH
- ACCEPT_INSECURE_CERTS
- DEBUG
Security Notes
The `evaluate_script` tool (currently disabled but fully implemented) allows executing arbitrary JavaScript code within the browser context. While this is a core 'DevTools' feature, it presents a significant security risk if the server itself is compromised or if a malicious agent is allowed to use this tool without proper vetting of the script input. Other operations like navigating to URLs or uploading files also carry inherent risks but are generally expected in a browser automation tool. The project implements internal token limits and truncation to mitigate large outputs, which can indirectly prevent some forms of resource exhaustion attacks via oversized responses.
Similar Servers
mcp
This server provides Hyperbrowser's Model Context Protocol (MCP) interface, offering tools for web scraping, structured data extraction, crawling, and general-purpose browser automation using AI agents like OpenAI's CUA and Anthropic's Claude Computer Use.
blueprint-mcp
Enables AI agents to control and automate a user's real browser session (Chrome, Firefox, Opera) for tasks like web scraping, form filling, and general web interaction, preserving user context like logins and extensions.
mcp-framework
A Rust framework implementing the Model Context Protocol for building production-ready MCP servers, clients, and intelligent AI agents that integrate with LLMs for tool use and browser automation.
agentic-browser
This server powers a model-agnostic browser extension designed for intelligent, adaptive web automation and interaction through LLM-driven action plans, supporting various external APIs for specialized tasks.