Remote Chrome CDP
v1.0.0Control Chrome/Chromium via CDP (Chrome DevTools Protocol) — open tabs, navigate URLs, take screenshots, execute JS. Supports local and remote machines via S...
⭐ 1· 134·0 current·0 all-time
byNoé Rivera@noestelar
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name and description match the content of SKILL.md: instructions and examples all focus on enabling Chrome's remote debugging port, connecting to it (locally or via SSH tunnel), and issuing CDP commands (including a Python WebSocket example). The skill requires no unrelated binaries or credentials.
Instruction Scope
Instructions stay within the stated purpose, but they explicitly recommend logging into a Google account or using a real profile to enable sync/shortcuts. That is functional for the feature but increases the danger surface because CDP access to a profile can expose cookies, stored credentials, extensions, and browsing data. The document also advises SSH tunneling (correct) — forward the port only to trusted endpoints.
Install Mechanism
This is instruction-only with no install spec or downloads — lowest install risk. The only third-party dependency mentioned is 'websocket-client' (pip), which is reasonable for the provided Python example.
Credentials
No environment variables, credentials, or config paths are required by the skill metadata. The SKILL.md does instruct creating a user-data-dir under the user's home, which is expected and proportional to the goal.
Persistence & Privilege
Skill is not always-enabled and allows normal user invocation; it does not request or change other skills' configurations or system-wide settings. The Raycast script example will start Chrome when invoked, which is reasonable and scoped to the user's environment.
Assessment
This skill appears to do what it says, but be careful: enabling Chrome's remote debugging port gives full programmatic control of the browser (navigate pages, run JS, read DOM, access cookies/localStorage and extensions). Before using: (1) Prefer a dedicated profile (--user-data-dir) that does NOT contain your primary logged-in profile or saved credentials unless you understand the risk; (2) never expose the remote-debugging port to the public internet — use an SSH tunnel or secure mesh (Tailscale) and only to/from trusted hosts; (3) protect SSH access with strong keys and limit forwarding; (4) remove or kill tunnels when done and ensure Chrome is launched with the intended profile; (5) review commands/scripts (pkill, ssh, etc.) before running; (6) consider using ephemeral or sandboxed environments if you will connect this to untrusted code. The skill itself requests no secrets, but CDP access can be used to exfiltrate sensitive browser data, so treat the capability as highly privileged.Like a lobster shell, security has layers — review code before you run it.
latest
Noé Rivera@noestelar
DownloadChrome CDP Remote Control
Use when: automating browser tasks programmatically — navigate pages, capture screenshots, run searches, execute JavaScript — without a full Playwright/Puppeteer dependency.
Setup: Launch Chrome with CDP enabled
Linux
google-chrome \
--remote-debugging-port=9222 \
--remote-allow-origins=* \
--user-data-dir=~/.config/chrome-cdp
macOS
/Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome \
--remote-debugging-port=9222 \
--remote-allow-origins=* \
--user-data-dir="$HOME/.config/chrome-cdp"
Note: Use a dedicated --user-data-dir (e.g. ~/.config/chrome-cdp) — Chrome 126+ blocks CDP on the default profile by design. Log in with your Google account once to enable sync.
Note: On macOS, omit --user-data-dir only if you don't need sync — it gives you your real profile with extensions and custom shortcuts.
Verify CDP is running
curl http://localhost:9222/json/version
Should return browser version and a webSocketDebuggerUrl.
Kill and relaunch
pkill -f 'chrome.*remote-debugging-port=9222'
sleep 2
# relaunch with flags above
Setup: Remote machine via SSH tunnel (recommended)
Forward the remote machine's CDP port to localhost:
ssh -L 9223:localhost:9222 user@remote-host -N &
Then use PORT = 9223 in your scripts. Works great over Tailscale.
macOS: Raycast Script Command
Save as ~/.config/raycast/scripts/chrome-cdp.sh and chmod +x:
#!/bin/bash
# @raycast.schemaVersion 1
# @raycast.title Chrome CDP
# @raycast.mode silent
# @raycast.icon 🌐
# @raycast.description Launch Chrome with CDP enabled
pkill -f "Google Chrome.*remote-debugging-port" 2>/dev/null
sleep 1
/Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome \
--remote-debugging-port=9222 \
--remote-allow-origins=* \
--user-data-dir="$HOME/.config/chrome-cdp" &
echo "Chrome CDP started on port 9222"
Python: WebSocket control pattern
Install dependency (once):
pip install websocket-client
import json, urllib.request, websocket, time, base64
PORT = 9222 # use 9223 if connecting via SSH tunnel
def send_recv(ws, method, params, msg_id):
"""Send a CDP command and wait for its response, draining intermediate events."""
ws.send(json.dumps({"id": msg_id, "method": method, "params": params}))
for _ in range(30):
msg = json.loads(ws.recv())
if msg.get("id") == msg_id:
return msg
return None
# Open a new tab
req = urllib.request.Request(f"http://localhost:{PORT}/json/new", method="PUT")
tab = json.loads(urllib.request.urlopen(req).read())
# Connect via WebSocket — origin header is required
ws = websocket.WebSocket()
ws.connect(tab["webSocketDebuggerUrl"], origin=f"http://localhost:{PORT}")
ws.settimeout(15)
msg_id = 1
send_recv(ws, "Page.enable", {}, msg_id); msg_id += 1
# Navigate to a URL
send_recv(ws, "Page.navigate", {"url": "https://example.com"}, msg_id); msg_id += 1
time.sleep(5) # wait for page load
# Take a screenshot
# Use fromSurface + scale=2 on Retina/HiDPI displays (e.g. MacBook Pro)
result = send_recv(ws, "Page.captureScreenshot", {
"format": "jpeg",
"quality": 70,
"fromSurface": True,
"scale": 2 # remove on non-Retina displays
}, msg_id); msg_id += 1
img = base64.b64decode(result["result"]["data"])
with open("/tmp/cdp_screenshot.jpg", "wb") as f:
f.write(img)
ws.close()
print("Screenshot saved.")
Custom search engine shortcuts (bangs)
If Chrome is launched with a real user profile, custom search engine shortcuts are available.
Configure in Chrome → Settings → Search engine → Manage search engines.
Example — add Perplexity as !ppx:
- Shortcut:
!ppx - URL:
https://www.perplexity.ai/search?q=%s
Trigger via address bar: type !ppx then Tab, then your query.
When controlling via CDP from a different machine, use the full URL directly:
https://www.perplexity.ai/search?q=YOUR+QUERY
https://www.google.com/search?q=YOUR+QUERY
CDP patterns
- Never connect to
ws://localhost:9222/devtools/browserdirectly — always fetchhttp://localhost:9222/json/listand usewebSocketDebuggerUrlfrom the target tab Runtime.enableandPage.enablemust be called before anyRuntime.evaluateorPage.navigateNetwork.responseReceiveddoesn't include body — callNetwork.getResponseBodywith requestId after response completes- Block URLs before navigate: call
Network.setBlockedURLsbeforePage.navigate, not after
Pitfalls
--remote-allow-origins=*is required — omitting it causes403 Forbiddenon WebSocket handshake- Chrome 126+ blocks CDP on the default profile — always use a dedicated
--user-data-dir - Always filter
ws.recv()by message ID — CDP sends intermediate events between your command and its response - SSH tunnel holds the port after Chrome dies — kill the tunnel before relaunching (
kill %1orpkill ssh) - macOS: omit
--user-data-dironly if you want your real profile with bangs/extensions (and don't mind Chrome not starting if already open) - Chromium-based alternatives (Helium, Brave, etc.) support CDP but may behave inconsistently — Chrome is most reliable
Comments
Loading comments...