browser-use 0.6.0 → 0.7.0

package/dist/agent/service.js

@@ -10,10 +10,11 @@ import { CONFIG } from '../config.js';
 import { EventBus } from '../event-bus.js';
 import { uuid7str, SignalHandler, get_browser_use_version, check_latest_browser_use_version, sanitize_surrogates, } from '../utils.js';
 import { Controller as DefaultController } from '../controller/service.js';
+import { isActionTimeoutError, runActionWithTimeout, } from '../controller/action-timeout.js';
 import { FileSystem as AgentFileSystem, DEFAULT_FILE_SYSTEM_PATH, } from '../filesystem/file-system.js';
 import { SystemPrompt, get_ai_step_system_prompt, get_ai_step_user_prompt, get_rerun_summary_message, get_rerun_summary_prompt, } from './prompts.js';
 import { MessageManager } from './message-manager/service.js';
-import { BrowserStateHistory } from '../browser/views.js';
+import { BrowserError, BrowserStateHistory, } from '../browser/views.js';
 import { BrowserSession } from '../browser/session.js';
 import { BrowserProfile, DEFAULT_BROWSER_PROFILE } from '../browser/profile.js';
 import { HistoryTreeProcessor } from '../dom/history-tree-processor/service.js';
@@ -24,7 +25,7 @@ import { ChatBrowserUse } from '../llm/browser-use/chat.js';
 import { ModelProviderError, ModelRateLimitError } from '../llm/exceptions.js';
 import { AssistantMessage, ContentPartTextParam, SystemMessage, UserMessage, } from '../llm/messages.js';
 import { getLlmByName } from '../llm/models.js';
-import { ActionResult, AgentHistory, AgentHistoryList, AgentOutput, AgentState, AgentStepInfo, AgentError, StepMetadata, ActionModel, PlanItem, defaultMessageCompactionSettings, normalizeMessageCompactionSettings, } from './views.js';
+import { ActionResult, AgentHistory, AgentHistoryList, AgentOutput, AgentState, AgentStepInfo, AgentError, StepMetadata, ActionModel, PlanItem, defaultMessageCompactionSettings, normalizeMessageCompactionSettings, redactSensitiveDataFromString, } from './views.js';
 import { detect_variables_in_history, substitute_in_dict, } from './variable-detector.js';
 import { CreateAgentOutputFileEvent, CreateAgentSessionEvent, CreateAgentTaskEvent, CreateAgentStepEvent, UpdateAgentTaskEvent, } from './cloud-events.js';
 import { create_history_gif } from './gif.js';
@@ -34,31 +35,33 @@ import { AgentTelemetryEvent } from '../telemetry/views.js';
 import { TokenCost } from '../tokens/service.js';
 import { construct_judge_messages, construct_simple_judge_messages, } from './judge.js';
 import { CloudSkillService, MissingCookieException, build_skill_parameters_schema, get_skill_slug, } from '../skills/index.js';
-loadEnv();
+loadEnv({ quiet: true });
 const logger = createLogger('browser_use.agent');
 const URL_PATTERN = /https?:\/\/[^\s<>"']+|www\.[^\s<>"']+|[^\s<>"']+\.[a-z]{2,}(?:\/[^\s<>"']*)?/gi;
-export const log_response = (response, registry, logInstance = logger) => {
+export const log_response = (response, registry, logInstance = logger, sensitive_data = null) => {
+    const redact = (value) => redactSensitiveDataFromString(value, sensitive_data);
     if (response.current_state.thinking) {
-        logInstance.debug(`💡 Thinking:\n${response.current_state.thinking}`);
+        logInstance.debug(`💡 Thinking:\n${redact(response.current_state.thinking)}`);
     }
     const evalGoal = response.current_state.evaluation_previous_goal;
     if (evalGoal) {
+        const redactedEvalGoal = redact(evalGoal);
         if (evalGoal.toLowerCase().includes('success')) {
-            logInstance.info(`  \x1b[32m👍 Eval: ${evalGoal}\x1b[0m`);
+            logInstance.info(`  \x1b[32m👍 Eval: ${redactedEvalGoal}\x1b[0m`);
         }
         else if (evalGoal.toLowerCase().includes('failure')) {
-            logInstance.info(`  \x1b[31m⚠️ Eval: ${evalGoal}\x1b[0m`);
+            logInstance.info(`  \x1b[31m⚠️ Eval: ${redactedEvalGoal}\x1b[0m`);
         }
         else {
-            logInstance.info(`  ❔ Eval: ${evalGoal}`);
+            logInstance.info(`  ❔ Eval: ${redactedEvalGoal}`);
         }
     }
     if (response.current_state.memory) {
-        logInstance.info(`  🧠 Memory: ${response.current_state.memory}`);
+        logInstance.info(`  🧠 Memory: ${redact(response.current_state.memory)}`);
     }
     const nextGoal = response.current_state.next_goal;
     if (nextGoal) {
-        logInstance.info(`  \x1b[34m🎯 Next goal: ${nextGoal}\x1b[0m`);
+        logInstance.info(`  \x1b[34m🎯 Next goal: ${redact(nextGoal)}\x1b[0m`);
     }
 };
 class AsyncMutex {
@@ -103,8 +106,10 @@ class ExecutionTimeoutError extends Error {
     }
 }
 const ensureDir = (target) => {
-    if (!fs.existsSync(target)) {
-        fs.mkdirSync(target, { recursive: true });
+    const existed = fs.existsSync(target);
+    fs.mkdirSync(target, { recursive: true, mode: 0o700 });
+    if (!existed && process.platform !== 'win32') {
+        fs.chmodSync(target, 0o700);
     }
 };
 const resolve_agent_llm = (llm) => {
@@ -183,6 +188,11 @@ const defaultAgentOptions = () => ({
     loop_detection_enabled: true,
     _url_shortening_limit: 25,
 });
+const chmodPrivateFile = async (filePath) => {
+    if (process.platform !== 'win32') {
+        await fs.promises.chmod(filePath, 0o600);
+    }
+};
 const AgentLLMOutputSchema = z.object({
     thinking: z.string().optional().nullable(),
     evaluation_previous_goal: z.string().optional().nullable(),
@@ -290,6 +300,9 @@ export class Agent {
     _url_shortening_limit = 25;
     skill_service = null;
     _skills_registered = false;
+    _redactSensitiveText(value) {
+        return redactSensitiveDataFromString(value, this.sensitive_data ?? null);
+    }
     constructor(params) {
         const { task, llm, page = null, browser = null, browser_context = null, browser_profile = null, browser_session = null, tools = null, controller = null, sensitive_data = null, initial_actions = null, directly_open_url = true, register_new_step_callback = null, register_done_callback = null, register_should_stop_callback = null, register_external_agent_status_raise_error_callback = null, output_model_schema = null, extraction_schema = null, use_vision = true, include_recent_events = false, sample_images = null, llm_screenshot_size = null, save_conversation_path = null, save_conversation_path_encoding = 'utf-8', max_failures = 3, override_system_message = null, extend_system_message = null, generate_gif = false, available_file_paths = [], include_attributes, max_actions_per_step = 5, use_thinking = true, flash_mode = false, use_judge = true, ground_truth = null, max_history_items = null, page_extraction_llm = null, fallback_llm = null, judge_llm = null, skill_ids = null, skills = null, skill_service = null, enable_planning = true, planning_replan_on_stall = 3, planning_exploration_limit = 5, context = null, source = null, file_system_path = null, task_id = null, cloud_sync = null, calculate_cost = false, display_files_in_done_text = true, include_tool_call_examples = false, vision_detail_level = 'auto', session_attachment_mode = 'copy', llm_timeout = null, step_timeout = 180, final_response_after_failure = true, message_compaction = true, loop_detection_window = 20, loop_detection_enabled = true, _url_shortening_limit = 25, } = { ...defaultAgentOptions(), ...params };
         const resolvedLlm = resolve_agent_llm(llm);
@@ -408,7 +421,7 @@ export class Agent {
             const extractedUrl = this._extract_start_url(task);
             if (extractedUrl) {
                 this.initial_url = extractedUrl;
-                this.logger.info(`🔗 Found URL in task: ${extractedUrl}, adding as initial action...`);
+                this.logger.info(`🔗 Found URL in task: ${this._redactSensitiveText(extractedUrl)}, adding as initial action...`);
                 resolvedInitialActions = [
                     { go_to_url: { url: extractedUrl, new_tab: false } },
                 ];
@@ -1189,7 +1202,7 @@ export class Agent {
                     }
                 }
                 if (shouldExclude) {
-                    this.logger.debug(`Excluding URL with file extension from auto-navigation: ${url}`);
+                    this.logger.debug(`Excluding URL with file extension from auto-navigation: ${this._redactSensitiveText(url)}`);
                     continue;
                 }
                 const contextStart = Math.max(0, startIndex - 20);
@@ -1197,7 +1210,7 @@ export class Agent {
                     .slice(contextStart, startIndex)
                     .toLowerCase();
                 if (excludedWords.some((word) => contextText.includes(word))) {
-                    this.logger.debug(`Excluding URL with word in excluded words from auto-navigation: ${url} (context: "${contextText.trim()}")`);
+                    this.logger.debug(`Excluding URL with word in excluded words from auto-navigation: ${this._redactSensitiveText(url)} (context: "${this._redactSensitiveText(contextText.trim())}")`);
                     continue;
                 }
                 if (!url.startsWith('http://') && !url.startsWith('https://')) {
@@ -1288,9 +1301,9 @@ export class Agent {
                 }
             }
             const paramStr = paramSummary.length > 0 ? `(${paramSummary.join(', ')})` : '';
-            actionDetails.push(`${actionName}${paramStr}`);
+            actionDetails.push(this._redactSensitiveText(`${actionName}${paramStr}`));
             lastActionName = actionName;
-            lastParamStr = paramStr;
+            lastParamStr = this._redactSensitiveText(paramStr);
         }
         // Create summary based on single vs multi-action
         if (actionCount === 1) {
@@ -1355,6 +1368,21 @@ export class Agent {
             this.DoneAgentOutput = AgentOutput.type_with_custom_actions_no_thinking(this.DoneActionModel);
         }
     }
+    _filter_cookies_for_domain_policy(browser_session, cookies) {
+        const checker = browser_session._get_cookie_access_denial_reason;
+        if (typeof checker !== 'function') {
+            return cookies;
+        }
+        return cookies.filter((cookie) => {
+            try {
+                return checker.call(browser_session, cookie) == null;
+            }
+            catch (error) {
+                this.logger.debug(`Skipping skill cookie because domain policy check failed: ${error.message}`);
+                return false;
+            }
+        });
+    }
     async _register_skills_as_actions() {
         if (!this.skill_service || this._skills_registered) {
             return;
@@ -1386,8 +1414,9 @@ export class Agent {
                 }
                 try {
                     const cookiesRaw = await browser_session.get_cookies();
-                    const cookies = Array.isArray(cookiesRaw)
-                        ? cookiesRaw
+                    const allowedCookies = this._filter_cookies_for_domain_policy(browser_session, Array.isArray(cookiesRaw) ? cookiesRaw : []);
+                    const cookies = allowedCookies.length > 0
+                        ? allowedCookies
                             .map((cookie) => {
                             const record = cookie && typeof cookie === 'object'
                                 ? cookie
@@ -1455,18 +1484,17 @@ export class Agent {
                 return '';
             }
             const currentCookies = await this.browser_session.get_cookies();
+            const allowedCookies = this._filter_cookies_for_domain_policy(this.browser_session, Array.isArray(currentCookies) ? currentCookies : []);
             const cookieNames = new Set();
-            if (Array.isArray(currentCookies)) {
-                for (const cookie of currentCookies) {
-                    if (!cookie || typeof cookie !== 'object') {
-                        continue;
-                    }
-                    const name = typeof cookie.name === 'string'
-                        ? String(cookie.name)
-                        : '';
-                    if (name) {
-                        cookieNames.add(name);
-                    }
+            for (const cookie of allowedCookies) {
+                if (!cookie || typeof cookie !== 'object') {
+                    continue;
+                }
+                const name = typeof cookie.name === 'string'
+                    ? String(cookie.name)
+                    : '';
+                if (name) {
+                    cookieNames.add(name);
                 }
             }
             const unavailableSkills = [];
@@ -1516,9 +1544,10 @@ export class Agent {
             return lines.join('\n');
         }
         catch (error) {
-            this.logger.error(`Error getting unavailable skills info: ${error instanceof Error
+            const message = error instanceof Error
                 ? `${error.name}: ${error.message}`
-                : String(error)}`);
+                : String(error);
+            this.logger.error(`Error getting unavailable skills info: ${this._redactSensitiveText(message)}`);
             return '';
         }
     }
@@ -1669,7 +1698,7 @@ export class Agent {
                     const isTimeout = error instanceof ExecutionTimeoutError;
                     if (isTimeout) {
                         const timeoutMessage = `Step ${currentStep + 1} timed out after ${this.settings.step_timeout} seconds`;
-                        this.logger.error(`⏰ ${timeoutMessage}`);
+                        this.logger.error(`⏰ ${this._redactSensitiveText(timeoutMessage)}`);
                         this.state.consecutive_failures += 1;
                         this.state.last_result = [
                             new ActionResult({ error: timeoutMessage }),
@@ -1680,7 +1709,7 @@ export class Agent {
                         agent_run_error = timeoutMessage;
                         break;
                     }
-                    this.logger.error(`❌ Unhandled step error at step ${currentStep + 1}: ${message}`);
+                    this.logger.error(`❌ Unhandled step error at step ${currentStep + 1}: ${this._redactSensitiveText(message)}`);
                     this.state.consecutive_failures += 1;
                     this.state.last_result = [
                         new ActionResult({
@@ -1718,7 +1747,7 @@ export class Agent {
                         include_in_memory: true,
                     }),
                 ], new BrowserStateHistory('', '', [], [], null), null));
-                this.logger.info(`❌ ${agent_run_error}`);
+                this.logger.info(`❌ ${this._redactSensitiveText(agent_run_error)}`);
             }
             this.logger.debug('📊 Collecting usage summary...');
             this.history.usage =
@@ -1731,7 +1760,7 @@ export class Agent {
         }
         catch (error) {
             agent_run_error = error instanceof Error ? error.message : String(error);
-            this.logger.error(`Agent run failed with exception: ${agent_run_error}`);
+            this.logger.error(`Agent run failed with exception: ${this._redactSensitiveText(agent_run_error)}`);
             throw error;
         }
         finally {
@@ -1813,7 +1842,7 @@ export class Agent {
             catch (error) {
                 if (signal?.aborted) {
                     const message = error instanceof Error ? error.message : String(error);
-                    this.logger.debug(`Step aborted before completion: ${message}`);
+                    this.logger.debug(`Step aborted before completion: ${this._redactSensitiveText(message)}`);
                 }
                 else {
                     await this._handle_step_error(error);
@@ -1890,7 +1919,7 @@ export class Agent {
         }
         catch (error) {
             const message = error instanceof Error ? error.message : String(error);
-            this.logger.error(`📸 Failed to store screenshot for step ${this.state.n_steps}: ${message}`);
+            this.logger.error(`📸 Failed to store screenshot for step ${this.state.n_steps}: ${this._redactSensitiveText(message)}`);
             this._current_screenshot_path = null;
         }
     }
@@ -1961,10 +1990,10 @@ export class Agent {
                 ? finalResult.extracted_content
                 : String(finalResult.extracted_content ?? '');
             if (success) {
-                this.logger.info(`\n📄 \x1b[32m Final Result:\x1b[0m \n${renderedContent}\n\n`);
+                this.logger.info(`\n📄 \x1b[32m Final Result:\x1b[0m \n${this._redactSensitiveText(renderedContent)}\n\n`);
             }
             else {
-                this.logger.info(`\n📄 \x1b[31m Final Result:\x1b[0m \n${renderedContent}\n\n`);
+                this.logger.info(`\n📄 \x1b[31m Final Result:\x1b[0m \n${this._redactSensitiveText(renderedContent)}\n\n`);
             }
             const attachments = Array.isArray(finalResult.attachments)
                 ? finalResult.attachments
@@ -1977,7 +2006,7 @@ export class Agent {
         }
     }
     async multi_act(actions, options = {}) {
-        const { signal = null } = options;
+        const { signal = null, action_timeout = null } = options;
         const results = [];
         if (!this.browser_session) {
             throw new Error('BrowserSession is not set up');
@@ -2014,7 +2043,7 @@ export class Agent {
                 const preActionFocusTargetId = this.browser_session.agent_focus_target_id ??
                     this.browser_session.active_tab?.page_id ??
                     null;
-                const actResult = await this.controller.registry.execute_action(actionName, actionParams, {
+                const actResult = await runActionWithTimeout(actionName, action_timeout, signal, (actionSignal) => this.controller.registry.execute_action(actionName, actionParams, {
                     browser_session: this.browser_session,
                     page_extraction_llm: this.settings.page_extraction_llm,
                     extraction_schema: this.extraction_schema,
@@ -2022,11 +2051,11 @@ export class Agent {
                     available_file_paths: this.available_file_paths,
                     file_system: this.file_system,
                     context: this.context ?? undefined,
-                    signal,
-                });
+                    signal: actionSignal,
+                }));
                 results.push(actResult);
                 // Log action execution
-                this.logger.info(`☑️ Executed action ${i + 1}/${actions.length}: ${actionName}(${JSON.stringify(actionParams)})`);
+                this.logger.info(`☑️ Executed action ${i + 1}/${actions.length}: ${actionName}(${this._redactSensitiveText(JSON.stringify(actionParams))})`);
                 // Break early if done, error, or last action
                 if (results[results.length - 1]?.is_done ||
                     results[results.length - 1]?.error ||
@@ -2055,14 +2084,87 @@ export class Agent {
                 this._capture_shared_pinned_tab();
             }
             catch (error) {
-                const message = error instanceof Error ? error.message : String(error);
-                this.logger.error(`❌ Action ${i + 1} failed: ${message}`);
                 this._capture_shared_pinned_tab();
-                throw error;
+                if (this._shouldPropagateActionError(error)) {
+                    throw error;
+                }
+                if (isActionTimeoutError(error)) {
+                    this.logger.error(`❌ Action ${i + 1} failed: ${this._redactSensitiveText(error.message)}`);
+                    results.push(new ActionResult({ error: error.message }));
+                    return results;
+                }
+                if (error instanceof BrowserError) {
+                    const browserErrorResult = this._actionResultFromBrowserError(error);
+                    if (browserErrorResult) {
+                        this.logger.error(`❌ Action ${i + 1} failed with BrowserError: ${this._redactSensitiveText(error.toString())}`);
+                        results.push(browserErrorResult);
+                        return results;
+                    }
+                    throw error;
+                }
+                const registryTimeoutResult = this._actionResultFromRegistryTimeout(actionName, error);
+                if (registryTimeoutResult) {
+                    this.logger.error(`❌ Action ${i + 1} failed: ${this._redactSensitiveText(registryTimeoutResult.error ?? '')}`);
+                    results.push(registryTimeoutResult);
+                    return results;
+                }
+                const message = this._formatActionExecutionError(error);
+                this.logger.error(`❌ Action ${i + 1} failed: ${this._redactSensitiveText(message)}`);
+                results.push(new ActionResult({ error: message }));
+                return results;
             }
         }
         return results;
     }
+    _shouldPropagateActionError(error) {
+        if (error instanceof Error) {
+            if (error.name === 'InterruptedError' || error.name === 'AbortError') {
+                return true;
+            }
+        }
+        return this._isConnectionLikeError(error);
+    }
+    _isConnectionLikeError(error) {
+        const name = error instanceof Error ? error.name : '';
+        const message = error instanceof Error ? error.message : String(error);
+        const text = `${name} ${message}`.toLowerCase();
+        return (name === 'ConnectionError' ||
+            text.includes('websocket connection closed') ||
+            text.includes('connection closed') ||
+            text.includes('browser has been closed') ||
+            text.includes('browser closed') ||
+            text.includes('no browser'));
+    }
+    _formatActionExecutionError(error) {
+        const typeName = error instanceof Error
+            ? error.name || error.constructor.name || 'Error'
+            : 'Error';
+        const message = error instanceof Error ? error.message : String(error);
+        return `${typeName}: ${message}`;
+    }
+    _actionResultFromBrowserError(error) {
+        if (error.long_term_memory == null) {
+            this.logger.warning('⚠️ A BrowserError was raised without long_term_memory - always set long_term_memory when raising BrowserError to propagate right messages to LLM.');
+            return null;
+        }
+        if (error.short_term_memory != null) {
+            return new ActionResult({
+                extracted_content: error.short_term_memory,
+                error: error.long_term_memory,
+                include_extracted_content_only_once: true,
+            });
+        }
+        return new ActionResult({ error: error.long_term_memory });
+    }
+    _actionResultFromRegistryTimeout(actionName, error) {
+        const message = error instanceof Error ? error.message : String(error);
+        if (message !== `Error executing action ${actionName} due to timeout.`) {
+            return null;
+        }
+        return new ActionResult({
+            error: `${actionName} was not executed due to timeout.`,
+        });
+    }
     async _generate_rerun_summary(originalTask, results, summaryLlm = null, signal = null) {
         if (!this.browser_session) {
             return new ActionResult({
@@ -2077,7 +2179,8 @@ export class Agent {
             screenshotB64 = await this.browser_session.take_screenshot(false);
         }
         catch (error) {
-            this.logger.warning(`Failed to capture screenshot for rerun summary: ${error instanceof Error ? error.message : String(error)}`);
+            const message = error instanceof Error ? error.message : String(error);
+            this.logger.warning(`Failed to capture screenshot for rerun summary: ${this._redactSensitiveText(message)}`);
         }
         const errorCount = results.filter((result) => Boolean(result.error)).length;
         const successCount = results.length - errorCount;
@@ -2105,7 +2208,7 @@ export class Agent {
                 !['complete', 'partial', 'failed'].includes(String(summary.completion_status))) {
                 throw new Error('Structured rerun summary response did not match expected schema');
             }
-            this.logger.info(`Rerun Summary: ${summary.summary}`);
+            this.logger.info(`Rerun Summary: ${this._redactSensitiveText(summary.summary)}`);
             this.logger.info(`Rerun Status: ${summary.completion_status} (success=${summary.success})`);
             return new ActionResult({
                 is_done: true,
@@ -2115,9 +2218,10 @@ export class Agent {
             });
         }
         catch (structuredError) {
-            this.logger.debug(`Structured rerun summary failed: ${structuredError instanceof Error
+            const message = structuredError instanceof Error
                 ? structuredError.message
-                : String(structuredError)}, falling back to text response`);
+                : String(structuredError);
+            this.logger.debug(`Structured rerun summary failed: ${this._redactSensitiveText(message)}, falling back to text response`);
         }
         try {
             const response = await llm.ainvoke([message], undefined, {
@@ -2135,7 +2239,8 @@ export class Agent {
             });
         }
         catch (error) {
-            this.logger.warning(`Failed to generate rerun summary: ${error instanceof Error ? error.message : String(error)}`);
+            const message = error instanceof Error ? error.message : String(error);
+            this.logger.warning(`Failed to generate rerun summary: ${this._redactSensitiveText(message)}`);
             return new ActionResult({
                 is_done: true,
                 success: errorCount === 0,
@@ -2159,10 +2264,17 @@ export class Agent {
             if (!page || typeof page.content !== 'function') {
                 throw new Error('No page available for markdown extraction');
             }
+            await this.browser_session.validate_page_after_action(page, signal);
             if (typeof page.url === 'function') {
                 currentUrl = page.url();
             }
-            const html = (await page.content()) || '';
+            let html = '';
+            try {
+                html = (await page.content()) || '';
+            }
+            finally {
+                await this.browser_session.validate_page_after_action(page, signal);
+            }
             const extracted = extractCleanMarkdownFromHtml(html, {
                 extract_links: extractLinks,
             });
@@ -2191,7 +2303,8 @@ export class Agent {
                     (await this.browser_session.take_screenshot?.(false)) ?? null;
             }
             catch (error) {
-                this.logger.warning(`Failed to capture screenshot for ai_step: ${error instanceof Error ? error.message : String(error)}`);
+                const message = error instanceof Error ? error.message : String(error);
+                this.logger.warning(`Failed to capture screenshot for ai_step: ${this._redactSensitiveText(message)}`);
             }
         }
         const userMessage = screenshotB64
@@ -2226,9 +2339,10 @@ export class Agent {
             });
         }
         catch (error) {
-            this.logger.warning(`Failed to execute AI step: ${error instanceof Error ? error.message : String(error)}`);
+            const message = error instanceof Error ? error.message : String(error);
+            this.logger.warning(`Failed to execute AI step: ${this._redactSensitiveText(message)}`);
             return new ActionResult({
-                error: `AI step failed: ${error instanceof Error ? error.message : String(error)}`,
+                error: `AI step failed: ${message}`,
             });
         }
     }
@@ -2261,7 +2375,7 @@ export class Agent {
                         delaySource = `using saved step_interval=${this._formatDelaySeconds(stepDelay)}`;
                     }
                 }
-                this.logger.info(`Replaying ${stepName} (${index + 1}/${history.history.length}) [${delaySource}]: ${goal}`);
+                this.logger.info(`Replaying ${stepName} (${index + 1}/${history.history.length}) [${delaySource}]: ${this._redactSensitiveText(goal)}`);
                 const actions = historyItem.model_output?.action ?? [];
                 const hasValidAction = actions.length && !actions.every((action) => action == null);
                 if (!historyItem.model_output || !hasValidAction) {
@@ -2279,7 +2393,7 @@ export class Agent {
                     const preview = firstError.length > 100
                         ? `${firstError.slice(0, 100)}...`
                         : firstError;
-                    this.logger.warning(`${stepName}: Original step had error(s), skipping (skip_failures=true): ${preview}`);
+                    this.logger.warning(`${stepName}: Original step had error(s), skipping (skip_failures=true): ${this._redactSensitiveText(preview)}`);
                     results.push(new ActionResult({
                         error: `Skipped - original step had error: ${preview}`,
                     }));
@@ -2332,7 +2446,7 @@ export class Agent {
                         }
                         if (attempt === max_retries) {
                             const message = `${stepName} failed after ${max_retries} attempts: ${errorMessage}`;
-                            this.logger.error(message);
+                            this.logger.error(this._redactSensitiveText(message));
                             const failure = new ActionResult({ error: message });
                             results.push(failure);
                             if (!skip_failures) {
@@ -2409,7 +2523,7 @@ export class Agent {
                 const params = actionPayload[actionName] ?? {};
                 const query = typeof params.query === 'string' ? params.query : '';
                 const extractLinks = Boolean(params.extract_links);
-                this.logger.info(`Using AI step for extract action: ${query.slice(0, 50)}...`);
+                this.logger.info(`Using AI step for extract action: ${this._redactSensitiveText(query.slice(0, 50))}...`);
                 const aiResult = await this._execute_ai_step(query, false, extractLinks, ai_step_llm, signal);
                 results.push(aiResult);
                 continue;
@@ -2674,7 +2788,8 @@ export class Agent {
             return true;
         }
         catch (error) {
-            this.logger.warning(`Failed to re-open dropdown: ${error instanceof Error ? error.message : String(error)}`);
+            const message = error instanceof Error ? error.message : String(error);
+            this.logger.warning(`Failed to re-open dropdown: ${this._redactSensitiveText(message)}`);
             return false;
         }
     }
@@ -2739,7 +2854,7 @@ export class Agent {
                 if (node?.xpath === historicalElement.xpath) {
                     currentNode = node;
                     matchLevel = 'XPATH';
-                    this.logger.info(`Element matched at XPATH fallback: ${historicalElement.xpath}`);
+                    this.logger.info(`Element matched at XPATH fallback: ${this._redactSensitiveText(historicalElement.xpath)}`);
                     break;
                 }
             }
@@ -2754,7 +2869,7 @@ export class Agent {
                     nodeAxName === targetAxName) {
                     currentNode = node;
                     matchLevel = 'AX_NAME';
-                    this.logger.info(`Element matched at AX_NAME fallback: ${targetAxName}`);
+                    this.logger.info(`Element matched at AX_NAME fallback: ${this._redactSensitiveText(targetAxName)}`);
                     break;
                 }
             }
@@ -2771,7 +2886,7 @@ export class Agent {
                         node?.attributes?.[attrKey] === attrValue) {
                         currentNode = node;
                         matchLevel = 'ATTRIBUTE';
-                        this.logger.info(`Element matched via ${attrKey} attribute fallback: ${attrValue}`);
+                        this.logger.info(`Element matched via ${attrKey} attribute fallback: ${this._redactSensitiveText(attrValue)}`);
                         break;
                     }
                 }
@@ -2994,7 +3109,8 @@ export class Agent {
                 }
             }
             catch (error) {
-                this.logger.error(`Error during agent cleanup: ${error instanceof Error ? error.message : String(error)}`);
+                const message = error instanceof Error ? error.message : String(error);
+                this.logger.error(`Error during agent cleanup: ${this._redactSensitiveText(message)}`);
             }
             if (this.skill_service &&
                 typeof this.skill_service.close === 'function') {
@@ -3002,7 +3118,8 @@ export class Agent {
                     await this.skill_service.close();
                 }
                 catch (error) {
-                    this.logger.error(`Error during skill service cleanup: ${error instanceof Error ? error.message : String(error)}`);
+                    const message = error instanceof Error ? error.message : String(error);
+                    this.logger.error(`Error during skill service cleanup: ${this._redactSensitiveText(message)}`);
                 }
             }
         })();
@@ -3089,7 +3206,7 @@ export class Agent {
         return { trace, trace_details };
     }
     async _log_agent_run() {
-        this.logger.info(`\x1b[34m🎯 Task: ${this.task}\x1b[0m`);
+        this.logger.info(`\x1b[34m🎯 Task: ${this._redactSensitiveText(this.task)}\x1b[0m`);
         this.logger.debug(`🤖 Browser-Use Library Version ${this.version} (${this.source})`);
         if (CONFIG.BROWSER_USE_VERSION_CHECK &&
             process.env.NODE_ENV !== 'test' &&
@@ -3131,15 +3248,20 @@ export class Agent {
         if (this.register_new_step_callback && this.state.last_model_output) {
             await this.register_new_step_callback(browser_state_summary, this.state.last_model_output, this.state.n_steps);
         }
-        log_response(this.state.last_model_output, this.controller, this.logger);
+        log_response(this.state.last_model_output, this.controller, this.logger, this.sensitive_data);
         if (this.settings.save_conversation_path) {
             const dir = this.settings.save_conversation_path;
             const filepath = path.join(dir, `step_${this.state.n_steps}.json`);
-            await fs.promises.mkdir(path.dirname(filepath), { recursive: true });
+            ensureDir(path.dirname(filepath));
             await fs.promises.writeFile(filepath, JSON.stringify({
                 messages: input_messages,
                 response: this.state.last_model_output?.model_dump(),
-            }, null, 2), this.settings.save_conversation_path_encoding);
+            }, null, 2), {
+                encoding: this.settings
+                    .save_conversation_path_encoding,
+                mode: 0o600,
+            });
+            await chmodPrivateFile(filepath);
         }
     }
     /** Handle all types of errors that can occur during a step (python c011 parity). */
@@ -3148,7 +3270,7 @@ export class Agent {
             const message = error.message
                 ? `The agent was interrupted mid-step - ${error.message}`
                 : 'The agent was interrupted mid-step';
-            this.logger.warning(message);
+            this.logger.warning(this._redactSensitiveText(message));
             return;
         }
         const include_trace = this.logger.level === 'debug';
@@ -3168,11 +3290,12 @@ export class Agent {
                 this.logger.warning(parseLog);
             }
         }
+        const redactedErrorMsg = this._redactSensitiveText(error_msg);
         if (isFinalFailure) {
-            this.logger.error(`${prefix}${error_msg}`);
+            this.logger.error(`${prefix}${redactedErrorMsg}`);
         }
         else {
-            this.logger.warning(`${prefix}${error_msg}`);
+            this.logger.warning(`${prefix}${redactedErrorMsg}`);
         }
         this.state.last_result = [new ActionResult({ error: error_msg })];
     }
@@ -3415,7 +3538,7 @@ export class Agent {
                 ? parsed.reason.trim()
                 : 'Task requirements not fully met';
             if (!isCorrect) {
-                this.logger.info(`⚠️  Simple judge overriding success to failure: ${reason}`);
+                this.logger.info(`⚠️  Simple judge overriding success to failure: ${this._redactSensitiveText(reason)}`);
                 lastResult.success = false;
                 const note = `[Simple judge: ${reason}]`;
                 if (lastResult.extracted_content) {
@@ -3427,7 +3550,8 @@ export class Agent {
             }
         }
         catch (error) {
-            this.logger.warning(`Simple judge failed with error: ${error instanceof Error ? error.message : String(error)}`);
+            const message = error instanceof Error ? error.message : String(error);
+            this.logger.warning(`Simple judge failed with error: ${this._redactSensitiveText(message)}`);
         }
     }
     async _judge_trace() {
@@ -3456,7 +3580,8 @@ export class Agent {
             return validation.data;
         }
         catch (error) {
-            this.logger.warning(`Judge trace failed: ${error instanceof Error ? error.message : String(error)}`);
+            const message = error instanceof Error ? error.message : String(error);
+            this.logger.warning(`Judge trace failed: ${this._redactSensitiveText(message)}`);
             return null;
         }
     }
@@ -3493,7 +3618,7 @@ export class Agent {
         if (judgement.reasoning) {
             judgeLog += `   ${judgement.reasoning}\n`;
         }
-        this.logger.info(judgeLog);
+        this.logger.info(this._redactSensitiveText(judgeLog));
     }
     _replace_urls_in_text(text) {
         const replacedUrls = {};
@@ -3788,7 +3913,7 @@ export class Agent {
     }
     _try_switch_to_fallback_llm(error) {
         if (this._using_fallback_llm) {
-            this.logger.warning(`⚠️ Fallback LLM also failed (${error.name}: ${error.message}), no more fallbacks available`);
+            this.logger.warning(`⚠️ Fallback LLM also failed (${error.name}: ${this._redactSensitiveText(error.message)}), no more fallbacks available`);
             return false;
         }
         const retryableStatusCodes = new Set([401, 402, 429, 500, 502, 503, 504]);
@@ -3799,7 +3924,7 @@ export class Agent {
             return false;
         }
         if (!this._fallback_llm) {
-            this.logger.warning(`⚠️ LLM error (${error.name}: ${error.message}) but no fallback_llm configured`);
+            this.logger.warning(`⚠️ LLM error (${error.name}: ${this._redactSensitiveText(error.message)}) but no fallback_llm configured`);
             return false;
         }
         this._log_fallback_switch(error, this._fallback_llm);
@@ -3886,7 +4011,16 @@ export class Agent {
                 {});
             const paramsResult = actionInfo.paramSchema.safeParse(rawParams);
             if (!paramsResult.success) {
-                throw new Error(`Invalid parameters for action '${requestedActionName}': ${paramsResult.error.message}`);
+                // Surface a human-readable issue list (zod v4 `prettifyError`) plus
+                // a corrective hint, rather than the default JSON dump of `.issues`.
+                // This Error propagates → `_handle_step_error` writes it into
+                // `state.last_result` → `create_state_messages` injects it into the
+                // next LLM turn, so the model knows exactly what shape it got wrong.
+                const pretty = z.prettifyError(paramsResult.error);
+                const sentParams = JSON.stringify(rawParams);
+                throw new Error(`Schema validation failed for action '${requestedActionName}'. ` +
+                    `You sent: ${sentParams}. Issues:\n${pretty}\n` +
+                    `Please retry with parameters matching the action's schema exactly.`);
             }
             normalizedActions.push(new modelForStep({
                 [actionName]: paramsResult.data,