Skip to content

feat: add --headers support for CDP connect #397

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
pahud wants to merge 3 commits into
base: main
Choose a base branch
from
Open

feat: add --headers support for CDP connect #397

pahud wants to merge 3 commits into from
+353 −10

Conversation

@pahud
Copy link

@pahud pahud commented Feb 9, 2026
edited
Loading

Summary

Add support for custom headers when connecting to remote browsers via CDP, and introduce a new agentcore browser provider for native integration with AWS Bedrock AgentCore Browser.

Closes #396

Changes

CDP Headers Support

  • Add headers parameter to connectViaCDP() in browser.ts
  • Pass headers to Playwright's connectOverCDP()
  • Support --headers flag in CLI for connect command
  • Support --headers flag with --cdp global option

AgentCore Browser Provider (-p agentcore)

  • Add connectToAgentCore() method with SigV4-signed session creation and CDP connection
  • Add closeAgentCoreSession() for proper session cleanup on close
  • Add signAgentCoreRequest() helper for AWS SigV4 request signing
  • Wire into launch() and close() lifecycle
  • Update CLI help text to include agentcore provider
  • Add AWS SDK dependencies: @aws-sdk/credential-providers, @smithy/signature-v4, @smithy/protocol-http, @aws-crypto/sha256-js

Usage

CDP Headers (low-level)

agent-browser connect "wss://..." --headers '{"Authorization":"AWS4-HMAC-SHA256...", "X-Amz-Date":"..."}'

AgentCore Provider (recommended)

# Single command - no external scripts or Python needed
agent-browser -p agentcore open https://example.com

# Search Amazon and extract data
agent-browser -p agentcore open https://www.amazon.com
agent-browser type "#twotabsearchtextbox" "1tb nvme ssd"
agent-browser click "#nav-search-submit-button"
agent-browser eval "document.title"

# Clean up
agent-browser close

Environment Variables

Variable Description Default
AGENTCORE_REGION AWS region for AgentCore us-east-1 (falls back to AWS_REGION)
AGENTCORE_BROWSER_ID Browser identifier aws.browser.v1
AGENTCORE_SESSION_TIMEOUT Session timeout in seconds 3600

Uses standard AWS credential chain (env vars, ~/.aws/credentials, IAM roles, etc).

Architecture

agent-browser -p agentcore open

├─ 1. Create session via AgentCore REST API (SigV4-signed)
│ PUT /browsers/{id}/sessions/start

├─ 2. Connect to remote browser via CDP WebSocket (SigV4-signed headers)
│ wss://bedrock-agentcore.{region}.amazonaws.com/browser-streams/...

├─ 3. Control browser via Playwright (navigate, click, type, eval, etc.)

└─ 4. On close: stop session via AgentCore REST API
PUT /browsers/{id}/sessions/stop

This follows the same pattern as existing providers (Browserbase, Kernel, BrowserUse).

Testing

  • Unit tests added for CDP headers support
  • Unit tests added for AgentCore provider (credential validation, region config, API path, error handling)
  • Manually tested with AWS Bedrock AgentCore Browser in us-east-1 and us-west-2

@vercel
Copy link
Contributor

vercel bot commented Feb 9, 2026

@pahud is attempting to deploy a commit to the Vercel Labs Team on Vercel.

A member of the Team first needs to authorize it.

@socket-security
Copy link

socket-security bot commented Feb 9, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addednpm/​@​smithy/​protocol-http@​5.3.81001007294100
Addednpm/​@​smithy/​signature-v4@​5.3.81001007694100
Addednpm/​@​aws-crypto/​sha256-js@​5.2.01001008182100
Addednpm/​@​aws-sdk/​credential-providers@​3.985.09910010098100

View full report

pahud added 3 commits February 9, 2026 12:18
@pahud
feat: add --headers support for CDP connect
ccf3661 
Enable custom headers for WebSocket CDP connections, allowing integration
with authenticated browser services like AWS Bedrock AgentCore Browser.

Changes:
- Add headers parameter to connectViaCDP() in browser.ts
- Pass headers to Playwright's connectOverCDP()
- Support --headers flag in CLI for connect command
- Support --headers flag with --cdp global option
- Update help documentation with examples

Usage:
  agent-browser connect "wss://..." --headers '{"Authorization":"..."}'
@pahud
test: add unit tests for CDP headers support
d7b1cd7
@pahud
feat: add AWS Bedrock AgentCore browser provider
c916307 
Add 'agentcore' as a new browser provider (-p agentcore) that creates
and connects to AWS Bedrock AgentCore Browser sessions via CDP with
SigV4-signed WebSocket headers.

Usage: agent-browser -p agentcore open https://example.com

Env vars:
- AGENTCORE_REGION / AWS_REGION (default: us-east-1)
- AGENTCORE_BROWSER_ID (default: aws.browser.v1)
- AGENTCORE_SESSION_TIMEOUT (default: 3600)

This eliminates the need for external session management scripts and
Python dependencies - session lifecycle is handled natively.
@pahud pahud force-pushed the feat/cdp-connect-headers branch from c8c8f97 to c916307 Compare February 9, 2026 17:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Feature Request: Support custom headers for CDP connect (enables AWS AgentCore Browser integration)

1 participant

@pahud