browserbase-secure

Security-hardened Browserbase node for n8n — session recording and logging permanently disabled

Package Information

Downloads: 1 weekly / 31 monthly
Latest Version: 1.1.1
Author: SODA inc.

Available Nodes

Browserbase Agent (Secure) icon
Browserbase Agent (Secure)
AI-powered browser automation. Provide a URL and instruction, get results. Supports CUA (vision), DOM (selectors), and Hybrid modes.

Documentation

n8n-nodes-browserbase-secure

A security-hardened fork of browserbase/n8n-node for organizations that handle sensitive data in browser automation workflows.

Why This Fork Exists

The official Browserbase n8n node enables session recording and session logging by default. These features capture browser screenshots, click coordinates, input values, and DOM operations — all stored on Browserbase servers for up to 30 days.

For back-office automation (expense processing, internal tool operations, HR workflows, etc.), browser sessions routinely display employee personal information and confidential business data. Having this data recorded and stored on a third-party server is an unacceptable security risk.

This fork permanently disables these features at the code level and removes the corresponding UI parameters, ensuring that no workflow builder can accidentally or intentionally re-enable them.

Disabled Features

Feature Upstream Default This Fork Why Disabled
Session Recording (recordSession) true false (hardcoded) Browser screen recordings are stored on Browserbase servers for 30 days. Internal system screens would be exposed to a third party.
Session Logging (logSession) true false (hardcoded) Operation logs (click coordinates, input content, DOM operations) are recorded and stored. Sensitive data can be inferred from input values and page structure.

Both UI parameters are removed entirely — users cannot re-enable these features from the n8n interface.

Changes from Upstream

Only nodes/Browserbase/Browserbase.node.ts is modified:

  1. browserSettings hardcodes recordSession: false and logSession: false
  2. Record Session and Log Session UI parameter definitions removed from Browser Options
  3. Corresponding TypeScript type definitions removed

Package renamed to n8n-nodes-browserbase-secure to avoid conflicts with the official package.

This is an n8n community node that lets you automate browsers using Browserbase powered by Stagehand in your n8n workflows.

n8n is a fair-code licensed workflow automation platform.

Installation

Follow the installation guide in the n8n community nodes documentation.

Development / Testing with Docker

# Install dependencies
npm install

# Build the node
npm run build

# Run n8n with your node in Docker
docker-compose up --build

# Open http://localhost:5678 and search for "Browserbase" node

To rebuild after changes:

npm run build && docker-compose up --build

How It Works

The Browserbase Agent node is a single, self-contained node that:

  1. Creates a browser session
  2. Navigates to your starting URL
  3. Executes an AI agent to complete your task
  4. Closes the session automatically

Just provide a URL and an instruction - the node handles everything else.

Configuration

Required Fields

Field Description
Starting URL The page where the agent begins (e.g., https://example.com)
Instruction Natural language task for the agent to complete

Driver Model

The driver model powers the browser session (navigation, DOM interactions). Choose from:

  • google/gemini-2.5-flash (Recommended - fast & cheap)
  • google/gemini-2.5-pro
  • openai/gpt-4o
  • openai/gpt-4o-mini
  • anthropic/claude-sonnet-4-5-20250929

Agent Mode

Mode Description Best For
CUA Computer Use Agent - uses vision and coordinates Complex UIs, visual interactions
DOM Uses DOM selectors - works with any LLM Speed, simple pages
Hybrid Combines both approaches Fallback reliability

Agent Models

Models available depend on the selected mode:

CUA Mode:

  • google/gemini-2.5-computer-use-preview-10-2025
  • openai/computer-use-preview
  • anthropic/claude-sonnet-4-20250514
  • anthropic/claude-sonnet-4-5-20250929
  • anthropic/claude-haiku-4-5-20251001

DOM Mode:

  • google/gemini-2.5-flash
  • google/gemini-2.5-pro
  • openai/gpt-4o
  • openai/gpt-4o-mini
  • anthropic/claude-sonnet-4-5-20250929

Hybrid Mode:

  • google/gemini-3-flash-preview
  • anthropic/claude-sonnet-4-20250514
  • anthropic/claude-haiku-4-5-20251001

Credentials

You need three credentials:

Credential Description
Browserbase API Key Your Browserbase API key
Browserbase Project ID Your Browserbase project ID
Model API Key API key for your chosen model provider

Important: The Model API Key must match the provider of your models. If using Google models, provide a Google API key. If using OpenAI, provide an OpenAI key.

Getting Credentials

  1. Sign up at Browserbase
  2. Navigate to your dashboard for API key and Project ID
  3. Get an API key from your model provider:

Example Usage

Simple extraction:

  • URL: https://news.ycombinator.com
  • Instruction: Find the top 3 stories and return their titles and URLs

Form filling:

  • URL: https://example.com/contact
  • Instruction: Fill out the contact form with name "John Doe" and email "john@example.com", then submit

Navigation + action:

  • URL: https://github.com
  • Instruction: Search for "stagehand" and click on the first repository result

Output

The node returns an AgentResult object:

{
  "success": true,
  "message": "Task completed successfully",
  "actions": [
    { "type": "act", "action": "clicked submit button" }
  ],
  "completed": true,
  "usage": {
    "input_tokens": 1250,
    "output_tokens": 340,
    "inference_time_ms": 2500
  },
  "sessionId": "abc-123"
}

Compatibility

Compatible with n8n@1.60.0 or later

Resources

Discussion