← Back to Skills Marketplace
femto

mcp-chrome

by femto · GitHub ↗ · v0.1.1
cross-platform ⚠ suspicious
925
Downloads
2
Stars
3
Active Installs
1
Versions
Install in OpenClaw
/install mcp-chrome
Description
Control Chrome browser with AI using MCP protocol. Use when users want to automate browser tasks, take screenshots, fill forms, click elements, navigate page...
Usage Guidance
This skill appears to do what it says (control your existing Chrome), but it requires installing an unpacked Chrome extension and a global native bridge that can read cookies, history, bookmarks, and capture network traffic — this is powerful and risky. Before installing: 1) Verify the publisher and repository (inspect the GitHub repo and npm package author, recent commits, and issues). 2) Review the extension and bridge source code (or ask a trusted reviewer) to confirm they do only the advertised MCP work and do not exfiltrate data. 3) Load and test in a dedicated/sandbox Chrome profile with no sensitive logins or data (or in a disposable VM/container). 4) Limit the agent's autonomy (require user invocation or disable automatic invocation) while you evaluate behavior. 5) After testing, remove the extension and uninstall the global package if not needed. 6) Prefer signed extensions or official store distribution and integrity checks (checksums, signatures). If you cannot verify the code and provenance, treat this as high-risk and avoid installing it in your main browser profile.
Capability Analysis
Type: OpenClaw Skill Name: mcp-chrome Version: 0.1.1 This skill is classified as suspicious due to its extremely broad and high-privilege access to the user's Chrome browser, including existing login sessions, browsing history, bookmarks, and network traffic. Tools like `chrome_get_web_content` can extract any page content, `chrome_history` accesses sensitive browsing data, and `chrome_network_request` can send HTTP requests with browser cookies to arbitrary external endpoints. While these capabilities are described as part of legitimate browser automation, they present a significant risk for data exfiltration and unauthorized actions if the AI agent is compromised via prompt injection. The installation process also involves globally installing an npm package (`mcp-chrome-bridger`) and loading an unpacked Chrome extension from GitHub, requiring substantial trust in these external components.
Capability Assessment
Purpose & Capability
The name/description (Chrome automation using MCP) matches the SKILL.md: it documents navigation, screenshots, form filling, history/bookmark access, and network capture. The capabilities requested are consistent with automating and interacting with an existing Chrome instance.
Instruction Scope
The runtime instructions instruct the user to install a global npm native bridge and load an unpacked Chrome extension that will connect to a local MCP server. Those components explicitly enable access to browsing history, bookmarks, existing login sessions (cookies), console output, and network request capture — all highly sensitive. The SKILL.md does not instruct the agent to exfiltrate data, but it gives the skill the ability to read and act on personal data in the browser (and to send requests using browser cookies). There is no guidance in the document about limiting scope or auditing the extension/bridge code.
Install Mechanism
There is no formal install spec in the skill bundle, but SKILL.md instructs the user to install an npm package globally (mcp-chrome-bridger) and to load a Chrome extension from a GitHub Releases archive. npm and GitHub Releases are common distribution channels, but the referenced repo/author (femto/mcp-chrome) and package are not accompanied by provenance, integrity checks, or a homepage. Installing a global binary and an unpacked extension is persistent and can be abused if the source is untrusted.
Credentials
The declared requirements list no environment variables or binaries, but the SKILL.md effectively requires installing software that will access browser internals (cookies, history, bookmarks) and run a local server. The skill requests broad, sensitive browser-level privileges that are proportionate to implementing 'use existing sessions' but are not explicitly declared or constrained in the metadata — there is a mismatch between the metadata (no credentials/config) and the real runtime privileges the extension + bridge will gain.
Persistence & Privilege
Although always:false, the installation flow includes a persistent Chrome extension and a globally installed native bridge that can run a background local server (e.g., listening on localhost:12306). These create ongoing local presence and a long‑lived channel into the browser if left installed. The skill does not describe uninstall/verification steps or least-privilege controls.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install mcp-chrome
  3. After installation, invoke the skill by name or use /mcp-chrome
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.1
- Added comprehensive SKILL.md with clear setup instructions, usage examples, and tool documentation. - Detailed feature comparison with Playwright MCP and outlined unique advantages. - Provided troubleshooting tips and multi-client support information. - Listed over 20 available browser automation tools and their descriptions. - Included resource links for GitHub, npm, and releases.
Metadata
Slug mcp-chrome
Version 0.1.1
License
All-time Installs 3
Active Installs 3
Total Versions 1
Frequently Asked Questions

What is mcp-chrome?

Control Chrome browser with AI using MCP protocol. Use when users want to automate browser tasks, take screenshots, fill forms, click elements, navigate page... It is an AI Agent Skill for Claude Code / OpenClaw, with 925 downloads so far.

How do I install mcp-chrome?

Run "/install mcp-chrome" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is mcp-chrome free?

Yes, mcp-chrome is completely free (open-source). You can download, install and use it at no cost.

Which platforms does mcp-chrome support?

mcp-chrome is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created mcp-chrome?

It is built and maintained by femto (@femto); the current version is v0.1.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments