mcp-chrome
by hangwin
Overview
Turns a Chrome browser into an AI-controlled automation tool, enabling complex browser automation, content analysis, and semantic search via a Model Context Protocol (MCP) server.
Installation
npx mcp-chrome-stdioEnvironment Variables
- CHROME_EXTENSION_KEY
Security Notes
CRITICAL VULNERABILITY: The native Fastify server (`app/native-server/src/server/index.ts`) sets `cors: true` for all origins (`SERVER_CONFIG.CORS_ORIGIN`). This allows any website to send requests to the native server's HTTP endpoints (`/ask-extension`, `/mcp`), which then relays these requests to the Chrome extension to execute powerful browser automation tools (e.g., inject scripts, capture network, control browser tabs, manage history/bookmarks). This bypasses Chrome's Native Messaging security model and creates a severe Cross-Site Request Forgery (CSRF) vulnerability, allowing malicious websites to control the user's browser. Furthermore, the `chrome_inject_script` tool can inject arbitrary JavaScript into any URL if an attacker gains control, potentially leading to widespread compromise. The `file-handler.ts` allows arbitrary file downloads/saves to a temporary directory without file type validation, which could be exploited in conjunction with other vulnerabilities.
Similar Servers
mcp
This server provides Hyperbrowser's Model Context Protocol (MCP) interface, offering tools for web scraping, structured data extraction, crawling, and general-purpose browser automation using AI agents like OpenAI's CUA and Anthropic's Claude Computer Use.
chunkhound
ChunkHound transforms codebases into searchable knowledge bases for AI assistants, enabling deep semantic and regex-based code research.
AgentBoard
Enhances web browsing with AI-driven automation, allowing LLMs to interact with web pages, extract content, and execute custom tools.
blueprint-mcp
Enables AI assistants to control a real browser (Chrome, Firefox, Opera) through a browser extension, ideal for interacting with logged-in sessions and avoiding bot detection.