thumbgate 1.27.12 → 1.27.13

package/public/guides/browser-automation-safety.html

@@ -1,342 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-  <meta charset="UTF-8" />
-  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-  <title>Browser Automation Safety | Prompt Injection, Permissions, and Pre-Action Checks</title>
-  <meta name="description" content="Browser agents can click, type, and navigate for you, but they also widen prompt-injection and cross-app integration risk. ThumbGate adds approval boundaries..." />
-  <meta property="og:title" content="Browser Automation Safety | Prompt Injection, Permissions, and Pre-Action Checks" />
-  <meta property="og:description" content="Browser agents can click, type, and navigate for you, but they also widen prompt-injection and cross-app integration risk. ThumbGate adds approval boundaries..." />
-  <meta property="og:type" content="article" />
-  <meta property="og:url" content="https://thumbgate.ai/guides/browser-automation-safety" />
-  <link rel="canonical" href="https://thumbgate.ai/guides/browser-automation-safety" />
-  <link rel="llm-context" href="/llm-context.md" type="text/markdown" />
-  <link rel="icon" type="image/svg+xml" href="/thumbgate-icon.png" />
-  <link rel="apple-touch-icon" href="/assets/brand/thumbgate-mark.svg" />
-  <meta property="og:image" content="/og.png" />
-  <style>
-    :root {
-      --bg: #0a0a0b;
-      --bg-raised: #111113;
-      --bg-card: #161618;
-      --line: #222225;
-      --text: #e8e8ec;
-      --muted: #8b8b96;
-      --cyan: #22d3ee;
-      --green: #4ade80;
-      --red: #f87171;
-    }
-    * { box-sizing: border-box; }
-    body {
-      margin: 0;
-      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif;
-      background: var(--bg);
-      color: var(--text);
-      line-height: 1.65;
-    }
-    a { color: var(--cyan); text-decoration: none; }
-    a:hover { text-decoration: underline; }
-    .container { max-width: 980px; margin: 0 auto; padding: 0 24px; }
-    .topbar {
-      position: sticky;
-      top: 0;
-      z-index: 20;
-      backdrop-filter: blur(12px);
-      background: rgba(10, 10, 11, 0.88);
-      border-bottom: 1px solid var(--line);
-    }
-    .topbar .container {
-      display: flex;
-      justify-content: space-between;
-      align-items: center;
-      padding-top: 14px;
-      padding-bottom: 14px;
-    }
-    .brand {
-      font-weight: 700;
-      color: var(--text);
-      display: inline-flex;
-      align-items: center;
-      gap: 8px;
-      text-decoration: none;
-    }
-    .brand .logo-mark { width: 28px; height: 28px; display: block; }
-    .hero { padding: 72px 0 32px; }
-    .eyebrow {
-      display: inline-flex;
-      align-items: center;
-      gap: 8px;
-      padding: 6px 12px;
-      border-radius: 999px;
-      border: 1px solid rgba(34, 211, 238, 0.22);
-      background: rgba(34, 211, 238, 0.1);
-      color: var(--cyan);
-      text-transform: uppercase;
-      letter-spacing: 0.08em;
-      font-size: 12px;
-      font-weight: 700;
-    }
-    h1 {
-      font-size: clamp(34px, 5vw, 56px);
-      line-height: 1.06;
-      letter-spacing: -0.04em;
-      margin: 16px 0;
-      max-width: 760px;
-    }
-    .hero p {
-      max-width: 720px;
-      color: var(--muted);
-      font-size: 18px;
-    }
-    .signal-row {
-      display: flex;
-      flex-wrap: wrap;
-      gap: 12px;
-      margin: 28px 0 0;
-    }
-    .signal-pill {
-      display: inline-flex;
-      align-items: center;
-      gap: 8px;
-      padding: 10px 14px;
-      border-radius: 999px;
-      border: 1px solid var(--line);
-      background: var(--bg-raised);
-      font-weight: 600;
-      font-size: 14px;
-    }
-    .signal-pill.up {
-      border-color: rgba(74, 222, 128, 0.28);
-      color: #b8f7c8;
-      background: rgba(74, 222, 128, 0.1);
-    }
-    .signal-pill.down {
-      border-color: rgba(248, 113, 113, 0.28);
-      color: #ffc0c0;
-      background: rgba(248, 113, 113, 0.1);
-    }
-    .grid {
-      display: grid;
-      grid-template-columns: minmax(0, 2fr) minmax(280px, 1fr);
-      gap: 24px;
-      padding-bottom: 72px;
-    }
-    .card, .detail-section, .sidebar-card {
-      background: var(--bg-card);
-      border: 1px solid var(--line);
-      border-radius: 16px;
-    }
-    .card { padding: 24px; }
-    .detail-section { padding: 24px; margin-bottom: 18px; }
-    .detail-section h2 { margin: 0 0 12px; font-size: 24px; letter-spacing: -0.03em; }
-    .detail-section p { color: var(--muted); }
-    .detail-section ul, .card ul { padding-left: 18px; color: var(--muted); }
-    .card h2 { margin-top: 0; }
-    .sidebar {
-      display: flex;
-      flex-direction: column;
-      gap: 18px;
-    }
-    .sidebar-card {
-      padding: 20px;
-    }
-    /* Only the first sidebar card sticks. Stacking multiple stickies at the
-       same top offset makes them overlap each other on scroll. The related-
-       pages card flows normally below. */
-    .sidebar-card:first-child {
-      position: sticky;
-      top: 84px;
-      max-height: calc(100vh - 104px);
-      overflow-y: auto;
-      -webkit-overflow-scrolling: touch;
-    }
-    .proof-links {
-      display: flex;
-      flex-wrap: wrap;
-      gap: 12px;
-      margin-top: 16px;
-    }
-    .cta-button {
-      display: inline-flex;
-      align-items: center;
-      justify-content: center;
-      margin-top: 18px;
-      padding: 12px 16px;
-      border-radius: 10px;
-      background: var(--cyan);
-      color: #071116;
-      font-weight: 700;
-      text-decoration: none;
-    }
-    .faq-item {
-      border-top: 1px solid var(--line);
-      padding: 14px 0;
-    }
-    .faq-item summary {
-      cursor: pointer;
-      font-weight: 600;
-    }
-    .faq-item p {
-      color: var(--muted);
-    }
-    .related-card {
-      display: block;
-      padding: 14px;
-      border-radius: 12px;
-      border: 1px solid var(--line);
-      background: var(--bg-raised);
-      margin-top: 12px;
-      color: var(--text);
-    }
-    .related-label {
-      display: block;
-      color: var(--muted);
-      font-size: 12px;
-      text-transform: uppercase;
-      letter-spacing: 0.08em;
-      margin-bottom: 4px;
-    }
-    @media (max-width: 860px) {
-      .grid {
-        grid-template-columns: 1fr;
-      }
-      .sidebar-card:first-child {
-        position: static;
-        max-height: none;
-        overflow: visible;
-      }
-    }
-  </style>
-  <script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "Browser automation safety needs explicit approval boundaries",
-  "description": "Browser agents can click, type, and navigate for you, but they also widen prompt-injection and cross-app integration risk. ThumbGate adds approval boundaries...",
-  "about": [
-    "claude code masterclass guardrails",
-    "cursor prevent repeated mistakes",
-    "claude code prevent repeated mistakes",
-    "codex cli guardrails"
-  ],
-  "url": "https://thumbgate.ai/guides/browser-automation-safety",
-  "publisher": {
-    "@type": "Organization",
-    "name": "ThumbGate",
-    "url": "https://thumbgate.ai"
-  },
-  "mainEntityOfPage": "https://thumbgate.ai/guides/browser-automation-safety"
-}
-  </script>
-  <script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "FAQPage",
-  "mainEntity": [
-    {
-      "@type": "Question",
-      "name": "Why is browser automation riskier than ordinary chat?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Because the agent can take real actions in a browser and may also reach local executables through native messaging bridges. That turns prompt injection and permission drift into operational risk, not just output-quality risk."
-      }
-    },
-    {
-      "@type": "Question",
-      "name": "What should a team do before enabling browser-use broadly?",
-      "acceptedAnswer": {
-        "@type": "Answer",
-        "text": "Audit native messaging hosts, review extension permissions, keep ask-before-acting enabled by default, and require explicit approval for any cross-app connector that expands the agent runtime beyond the browser sandbox."
-      }
-    }
-  ]
-}
-  </script>
-</head>
-<body>
-  <div class="topbar">
-    <div class="container">
-      <a class="brand" href="/"><img src="/assets/brand/thumbgate-mark-inline.svg" alt="ThumbGate" class="logo-mark" width="28" height="28"><span class="logo-text">ThumbGate</span></a>
-      <a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/docs/VERIFICATION_EVIDENCE.md" target="_blank" rel="noopener">Verification evidence</a>
-    </div>
-  </div>
-
-  <main class="container">
-    <section class="hero">
-      <div class="eyebrow">guide | browser automation safety</div>
-      <h1>Browser automation safety needs explicit approval boundaries</h1>
-      <p>Browser agents can click, type, and navigate for you, but they also widen prompt-injection and cross-app integration risk. ThumbGate adds approval boundaries, auditability, and a native messaging audit before those bridges turn into silent blast-radius expansion.</p>
-      <div class="signal-row">
-        <div class="signal-pill up">👍 Thumbs up reinforces good behavior</div>
-        <div class="signal-pill down">👎 Thumbs down blocks repeated mistakes</div>
-      </div>
-    </section>
-
-    <section class="grid">
-      <div>
-        <div class="card">
-          <h2>Why this page exists</h2>
-          <ul><li>Browser automation is useful because it has real permissions, which is exactly why it needs governance.</li><li>Prompt injection becomes more dangerous when an extension can reach a local executable through a browser bridge.</li><li>ThumbGate gives teams a first action now: audit native messaging hosts, then require explicit approval before browser-use connectors expand.</li></ul>
-        </div>
-
-      <section class="detail-section">
-        <h2>Why browser-use changes the threat model</h2>
-        <p>Browser agents do not just read text. They can click buttons, fill forms, switch tabs, and sometimes bridge into local binaries. That means the blast radius is no longer only &quot;bad output&quot; but &quot;real actions on live websites and local systems.&quot;</p><p>Once browser automation enters the stack, prompt injection stops being an abstract model weakness and becomes a workflow-governance problem. The right control is not more prompt advice. It is a hard boundary around what the agent is allowed to connect, install, and execute.</p>
-
-      </section>
-      <section class="detail-section">
-        <h2>What to audit first</h2>
-
-        <ul><li>Which browser extensions hold automation permissions such as debugger, tabs, downloads, and nativeMessaging.</li><li>Whether the desktop app or CLI has registered native messaging hosts for browsers you did not explicitly connect.</li><li>Whether host manifests point to live local binaries and whether those binaries sit outside the browser sandbox.</li><li>Whether browser-use runs default to ask-before-acting or silently expand capability before a human approves them.</li></ul>
-      </section>
-      <section class="detail-section">
-        <h2>How ThumbGate fits</h2>
-        <p>ThumbGate is the approval and enforcement layer around browser-use. Start by running npx thumbgate native-messaging-audit. Then gate future connector installs, record who approved them, and turn browser-bridge mistakes into Pre-Action Checks before the same pattern repeats.</p>
-
-      </section>
-        <div class="detail-section">
-          <h2>FAQ</h2>
-
-      <details class="faq-item">
-        <summary>Why is browser automation riskier than ordinary chat?</summary>
-        <p>Because the agent can take real actions in a browser and may also reach local executables through native messaging bridges. That turns prompt injection and permission drift into operational risk, not just output-quality risk.</p>
-      </details>
-      <details class="faq-item">
-        <summary>What should a team do before enabling browser-use broadly?</summary>
-        <p>Audit native messaging hosts, review extension permissions, keep ask-before-acting enabled by default, and require explicit approval for any cross-app connector that expands the agent runtime beyond the browser sandbox.</p>
-      </details>
-        </div>
-      </div>
-
-      <aside class="sidebar">
-
-
-
-
-        <div class="sidebar-card">
-          <h2>GSD execution brief</h2>
-          <p>This page was prioritized because it captures high-intent demand around browser automation safety and feeds directly into ThumbGate's proof-led conversion path.</p>
-          <p><strong>Opportunity score:</strong> 75</p>
-          <p><strong>Primary persona:</strong> ai-engineer</p>
-          <p><strong>Keyword cluster:</strong> claude code masterclass guardrails, cursor prevent repeated mistakes, claude code prevent repeated mistakes, codex cli guardrails</p>
-          <p><strong>Pricing:</strong> Pro $19/mo or $149/yr. Team $49/seat/mo.</p>
-          <div class="proof-links"><a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/docs/VERIFICATION_EVIDENCE.md" target="_blank" rel="noopener">Verification evidence</a><a href="https://github.com/IgorGanapolsky/ThumbGate/blob/main/proof/automation/report.json" target="_blank" rel="noopener">Automation proof</a><a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub repository</a></div>
-          <a class="cta-button" href="/checkout/pro?utm_source=website&amp;utm_medium=seo_page&amp;utm_campaign=guides_browser-automation-safety&amp;cta_placement=seo_brief&amp;plan_id=pro" target="_blank" rel="noopener">Go Pro — $19/mo</a>
-        </div>
-        <div class="sidebar-card">
-          <h2>Related pages</h2>
-
-        <a class="related-card" href="/guides/native-messaging-host-security">
-          <span class="related-label">Related page</span>
-          <strong>Native messaging host security for AI browser bridges</strong>
-        </a>
-        <a class="related-card" href="/guides/pre-action-checks">
-          <span class="related-label">Related page</span>
-          <strong>What Are Pre-Action Checks?</strong>
-        </a>
-        </div>
-      </aside>
-    </section>
-  </main>
-</body>
-</html>