Model Context Protocol moderate risk

Browser Control

This MCP server and Firefox extension enables AI assistants to manage browser tabs, search history, and read webpage content with user consent, enhancing browsing.

Connections & Capabilities

Connects To

GitHubDocker

Capabilities

readwrite

Quickstart

Install

npm install
npm run build

Config

{
    "mcpServers": {
        "browser-control": {
            "command": "node",
            "args": [
                "/path/to/repo/mcp-server/dist/server.js"
            ],
            "env": {
                "EXTENSION_SECRET": "<secret_on_firefox_extension_options_page>",
                "EXTENSION_PORT": "8089" 
            }
        }
    }
}

Exposed MCP Tools (7)

moderate

Open or close tabs

Opens or closes specified tabs in the browser.

Closing important tabs could lead to data loss.

safe

Get the list of opened tabs

Retrieves a list of all currently opened tabs.

Read-only operation, no side effects.

moderate

Create tab groups with name and color

Creates a new tab group with a specified name and color.

Could potentially create confusing or misleading tab groups.

moderate

Reorder opened tabs

Reorders the currently opened tabs in the browser.

Incorrect reordering could disrupt workflow.

safe

Read and search the browser's history

Reads and searches the browser's history for specific entries.

Read-only access to browsing history.

safe

Read a webpage's text content and links

Reads the text content and links from a webpage.

Requires user consent per domain, limiting potential abuse.

moderate

Find and highlight text in a browser tab

Finds and highlights specific text within a browser tab.

Highlighting could be used to mislead or phish users.

Safety Assessment

This MCP server offers a relatively safe way to interact with a browser, as it requires user consent for sensitive operations and uses local communication. However, the ability to manipulate tabs and access browsing history introduces some risk, especially if the shared secret is compromised. Exercise caution and monitor tool calls carefully.

Requires explicit user consent for reading webpage content per domain.
Uses a local-only connection with a shared secret.
Provides an extension-side audit log for tool calls.
Does not support arbitrary scripting or webpage modification.
No remote data collection or tracking.

Still experimental, use at your own risk.
Potential for unauthorized access to browsing history if the secret is compromised.
Ability to close tabs and rearrange them could lead to data loss or disruption.
Text highlighting in browser tabs could be used maliciously.