mcp-framework
Verified Safeby nbence94
Overview
This project enables Large Language Models (LLMs) to perform browser automation for web application testing and interaction by exposing Playwright actions as callable tools.
Installation
python main.pyEnvironment Variables
- LOG_LEVEL
- LOG_TO_FILE
Security Notes
The server stores demo application credentials (usernames and passwords for Saucedemo and OrangeHRM) directly in YAML configuration files. While these specific credentials are for public demo sites and are not highly sensitive, this pattern of storing credentials in plaintext configuration files is generally discouraged for production environments with sensitive data. No 'eval' or obvious obfuscation found. The primary security consideration for a browser automation framework controlled by an LLM is the potential for misuse by the LLM itself (e.g., navigating to arbitrary sites or performing unintended actions), which is an inherent risk of such a system rather than a vulnerability in the server's code.
Similar Servers
playwright-mcp
Provides a Model Context Protocol (MCP) server for LLMs to automate browser interactions using Playwright's accessibility tree, avoiding pixel-based vision models.
qa-use
Provides comprehensive browser automation and QA testing capabilities, integrating with a backend platform for automated tests, interactive debugging, and batch test execution.
verdex-mcp
AI-first browser automation for Playwright test authoring, enabling AI coding assistants to generate robust, container-scoped, and content-filtered Playwright selectors for end-to-end tests.
playwright-mcp-server
Provides a robust, token-aware Playwright browser automation server for Large Language Models (LLMs) and coding agents to interact with web content, supporting advanced features like anti-detection and multi-page management.