// SCAN REPORT

Termux Browser Pilot

148 tools. 100 can modify or destroy data without limits.

18 destructive tools with no built-in limits. Policy required.

Last updated:

100 can modify or destroy data
48 read-only
148 tools total

Community server · catalogue entry verified 12/06/2026

How to control Termux Browser Pilot ↓

TOOL MAP

What Termux Browser Pilot exposes to your agents

Read (48) Write / Execute (82) Destructive / Financial (18)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
Critical Risk

The most dangerous Termux Browser Pilot tools

Destructive · Low browser_console_clear Clearing console logs irreversibly removes captured log data. Destructive · High browser_cookies_clear Clearing all browser cookies is a destructive operation that cannot be easily undone. Destructive · Medium browser_dialog_clear Clearing all captured dialog messages is an irreversible action — once cleared, the captured dialog history is permanently lost and cannot be recovered. Destructive · Medium browser_events_clear Clearing all captured DOM events is an irreversible action — once cleared, the event history is permanently lost and cannot be recovered.

100 of Termux Browser Pilot's 148 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control Termux Browser Pilot

PolicyLayer is an MCP gateway — it sits between your AI agents and Termux Browser Pilot, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "browser_auth_delete": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "browser_geo_clear": {
    "limits": [
      {
        "counter": "browser_geo_clear_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "browser_a11y": {
    "limits": [
      {
        "counter": "browser_a11y_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Termux Browser Pilot — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON TERMUX BROWSER PILOT →

Free to start. No card required.

FULL CATALOGUE

All 148 Termux Browser Pilot tools

DESTRUCTIVE 18 tools
Destructive browser_auth_delete Delete a saved auth session. Destructive browser_console_clear Clear all captured console log messages. Destructive browser_cookies_clear Clear all browser cookies. Destructive browser_dialog_clear Clear all captured dialog messages. Destructive browser_events_clear Clear all captured DOM events. Destructive browser_headers_clear Clear all custom HTTP headers and remove fetch/XHR hooks. Destructive browser_mock_clear Remove response mock(s). Destructive browser_mutations_clear Clear all captured DOM mutations. Destructive browser_network_clear Clear all captured network requests. Destructive browser_profile_delete Delete a saved browser profile. Destructive browser_responses_clear Clear all captured response bodies. Destructive browser_session_delete Delete a saved session. Destructive browser_storage_clear Clear all items in localStorage or sessionStorage. Destructive browser_storage_remove Remove a key from localStorage or sessionStorage. Destructive browser_unblock Remove URL patterns from the blocklist. Destructive browser_snapshot_delete Delete a named snapshot. Destructive browser_tab_close Close the current browser tab. Destructive browser_window_close Close the current browser window (popup).
EXECUTE 70 tools
Execute browser_attr_remove Remove an attribute from an element. Execute browser_css_remove Remove injected stylesheet(s). Execute browser_throttle_clear Remove network throttling. Execute browser_console_start Start capturing browser console output (log, warn, error, info). Execute browser_console_stop Stop capturing browser console output (stops re-injection after navigation). Execute browser_eval Execute JavaScript in the browser and return the result. Execute browser_events_start browser_events_start Execute browser_events_stop Stop capturing DOM events and remove listeners. Execute browser_network_start Start logging network requests via PerformanceObserver. Execute browser_network_stop Stop logging network requests. Execute browser_responses_start Start capturing fetch/XHR response bodies. Execute browser_responses_stop Stop capturing response bodies (stops re-injection). Execute browser_restart Restart the browser daemon (stop + start fresh). Execute browser_stop Gracefully stop the browser daemon. Saves session and cleans up. Execute browser_tab_new Open a new browser tab, optionally navigating to URL. Execute browser_wait Wait for a specified number of seconds. Execute browser_wait_for Wait for an element matching CSS selector to appear. Execute browser_auth_load Load auth session: restore cookies and navigate to saved URL. Execute browser_back Navigate back in browser history. Returns new URL and title. Execute browser_block Block URLs matching patterns (substring match on fetch/XHR). Execute browser_check Check, uncheck, or toggle a checkbox or radio button. Execute browser_cookies_load Load cookies from a JSON file into the browser. Execute browser_css_inject Inject a custom stylesheet into the page. Execute browser_dblclick Double-click an element by CSS selector. Execute browser_focus browser_focus Execute browser_forward Navigate forward in browser history. Returns new URL and title. Execute browser_goto Navigate browser to URL. Use cloudflare=True for CF-protected sites. Execute browser_highlight Highlight elements matching a CSS selector with colored outline. Execute browser_hover browser_hover Execute browser_iframe_eval Evaluate JavaScript inside a specific iframe. Execute browser_macro browser_macro Execute browser_mouse_locate browser_mouse_locate Execute browser_observe_start Start watching DOM mutations (childList, attributes, characterData). Execute browser_observe_stop Stop watching DOM mutations. Execute browser_pdf browser_pdf Execute browser_profile_load Load a saved browser profile (restores cookies + localStorage). Execute browser_reload Reload current page. Returns URL and title. Execute browser_search_next Navigate to the next search match and scroll into view. Execute browser_search_prev Navigate to the previous search match and scroll into view. Execute browser_session_load Load a saved session (opens tabs and navigates to saved URLs). Execute browser_tab_goto Switch to a specific tab by index (1-9). Execute browser_tab_next Switch to the next browser tab. Execute browser_tab_prev Switch to the previous browser tab. Execute browser_tab_to browser_tab_to Execute browser_waitact browser_waitact Execute browser_waitfor_response browser_waitfor_response Execute browser_attr_set Set an attribute on an element. Execute browser_click browser_click Execute browser_dialog_dismiss Configure dialogs to be dismissed (shortcut for accept=False). Execute browser_dialog_handle browser_dialog_handle Execute browser_drag browser_drag Execute browser_form_fill browser_form_fill Execute browser_geo_set Override browser geolocation (navigator.geolocation). Execute browser_headers_set Set custom HTTP headers injected into fetch/XHR requests. Execute browser_iframe_click browser_iframe_click Execute browser_mock_set Add a response mock: matching fetch/XHR requests return fake data. Execute browser_mouse_move browser_mouse_move Execute browser_press Press a keyboard key. Execute browser_scroll Scroll the page. Execute browser_scroll_to Scroll an element into view using scrollIntoView. Execute browser_select browser_select Execute browser_shadow_click Click an element inside shadow DOM. Execute browser_swipe browser_swipe Execute browser_throttle_set Set network throttling to simulate slow connections. Execute browser_type browser_type Execute browser_type_otp browser_type_otp Execute browser_upload Upload a file to an input[type=file] element. Execute browser_useragent_set Override navigator.userAgent (JS-side). Re-injected after navigation. Execute browser_viewport_set Resize the browser window. Execute browser_window_switch Switch focus to a different browser window.
WRITE 12 tools
Write browser_geo_clear Clear geolocation override (restore real behavior). Write browser_highlight_clear Remove element highlights. Write browser_useragent_clear Clear user agent override (restore original navigator.userAgent). Write browser_search_clear Clear all search highlights and reset search state. Write browser_auth_save Save cookies for current domain as a named auth session. Write browser_clipboard_write Write text to the Xvfb system clipboard. Write browser_cookie_set browser_cookie_set Write browser_cookies_save Save browser cookies to a JSON file. Write browser_profile_save Save current browser state (cookies + localStorage + URL) as a profile. Write browser_session_save Save all open tabs as a named session. Write browser_set_content Replace entire page content with raw HTML (no navigation). Write browser_storage_set Set a value in localStorage or sessionStorage.
READ 48 tools
Read browser_a11y Get the accessibility tree of the current page. Read browser_attr_get Get attribute(s) from an element. Read browser_audit One-command page health report. Read browser_auth_list List all saved auth sessions. Read browser_blocklist List all currently blocked URL patterns. Read browser_bounding_box Get element position and dimensions via getBoundingClientRect. Read browser_clipboard_read Read text from the Xvfb system clipboard. Read browser_console_logs Get captured console log messages. Read browser_cookies_list List all browser cookies. Read browser_css_list List all injected custom stylesheets. Read browser_detect_challenge browser_detect_challenge Read browser_dialog_logs Get captured dialog messages (alert/confirm/prompt). Read browser_downloads List files in the browser download directory (~/.tbp/downloads/). Read browser_element_state Query element visibility, enabled, checked, and editable state. Read browser_elements browser_elements Read browser_events_logs Get captured DOM events. Read browser_find browser_find Read browser_headers_list List currently active custom HTTP headers. Read browser_html Get HTML source of the page or a specific element. Read browser_iframe_list List all iframes on the current page. Read browser_iframe_text Get text content from inside an iframe. Read browser_input_value Read the current value of an input, select, or textarea element. Read browser_links Get all links on the current page. Returns list of {text, href}. Read browser_mock_list List all active response mocks. Read browser_mutations Get captured DOM mutations. Read browser_network_logs Get captured network requests. Read browser_perf Get page performance metrics. Read browser_profile_list List all saved browser profiles. Read browser_responses_logs Get captured response bodies. Read browser_screenshot Take a screenshot of the current page. Read browser_screenshot_annotate browser_screenshot_annotate Read browser_screenshot_element Screenshot a specific element by CSS selector. Read browser_search Find text on the page and highlight all matches. Read browser_session_list List all saved multi-tab sessions. Read browser_shadow_query Find an element by CSS selector, piercing shadow DOM boundaries. Read browser_shadow_text Get text content from an element inside shadow DOM. Read browser_snapshot_diff Compare two snapshots and return structured diff. Read browser_snapshot_list List all in-memory snapshots. Read browser_snapshot_take Capture current page state as a named snapshot. Read browser_status Get daemon status: PID, browser type, current URL, uptime. Read browser_storage_get Get a value from localStorage or sessionStorage. Read browser_storage_list List all items in localStorage or sessionStorage. Read browser_text Get visible text content of the page or a specific element. Read browser_throttle_get Get current network throttle configuration. Read browser_title Get current page title. Read browser_url Get current page URL. Read browser_viewport_get Get current window and viewport dimensions. Read browser_window_list List all open browser windows (main + popups).
EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Sperax Ecosystem Crypto & DeFI MCP Server 1318 tools
adminautomation
Mcp Afip 1300 tools
adminautomation
Mcp Ap2 1300 tools
adminautomation
BNB Chain MCP 1240 tools
adminautomation
Nodebench 824 tools
adminautomation
Amazon Bedrock Knowledge Base Retrieval MCP Server 805 tools
adminautomation
Amazon Data Processing MCP Server 805 tools
adminautomation
Amazon ECS MCP Server 805 tools
adminautomation
FAQ

Questions about Termux Browser Pilot

Can an AI agent delete data through the Termux Browser Pilot MCP server? +

Yes. The Termux Browser Pilot server exposes 18 destructive tools including browser_auth_delete, browser_console_clear, browser_cookies_clear. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through Termux Browser Pilot? +

The Termux Browser Pilot server has 12 write tools including browser_geo_clear, browser_highlight_clear, browser_useragent_clear. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Termux Browser Pilot.

How many tools does the Termux Browser Pilot MCP server expose? +

148 tools across 4 categories: Destructive, Execute, Read, Write. 48 are read-only. 100 can modify, create, or delete data.

How do I enforce a policy on Termux Browser Pilot? +

Register the Termux Browser Pilot MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Termux Browser Pilot tool call.

Deterministic rules across all 148 Termux Browser Pilot tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON TERMUX BROWSER PILOT →

Free to start. No card required.

148 Termux Browser Pilot tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.