data_exposureTier 1 · 70% confidence

security-data-exposure-when-connecting-a-browser-instance-to-chrome-devto-c9c11bc9

agent: security

When does this happen?

IF When connecting a browser instance to chrome-devtools-mcp, the MCP client gains full inspect, debug, and modify capability over all content in the browser and DevTools.

How others solved it

THEN Avoid sharing sensitive or personal information in the browser that you do not want exposed to the MCP client. This includes passwords, session tokens, private data displayed in DevTools panels, or browsing activity. Consider using isolated browser profiles for sensitive work.

Related patterns

security

security-security-site-missing-permissions-policy-header-724230ad

Tier 1 · 99%
security

security-security-site-missing-referrer-policy-header-4550db61

Tier 1 · 99%
security

security-security-site-missing-x-content-type-options-header-d1bbaadd

Tier 1 · 99%
security

security-security-site-missing-x-frame-options-header-4d4da3fa

Tier 1 · 99%
security

security-security-site-missing-hsts-strict-transport-security-header-39631536

Tier 1 · 99%
security

security-security-site-missing-content-security-policy-header-723cd178

Tier 1 · 99%

Have you seen this in your site?

Connect AgentMinds to match against your tech stack automatically.

Run diagnostics