The browser automation studio that runs in your real Chrome, not a fresh Chromium sandbox

In April 2026, the term covers two non-overlapping things. One: a developer IDE for recording and replaying browser scripts (Selenium IDE, Playwright Codegen, Cypress Studio, BrowserStack Low Code Automation, the Russian-language Browser Automation Studio bot framework). Two: an RPA visual canvas for browser-centric workflows (UiPath Studio Web, Power Automate Desktop, Bardeen, Workato). All of them, with one structural exception, drive a fresh sandboxed Chromium that has no cookies, no extensions, and no fingerprint. Fazm is the structural exception. It is a consumer Mac app whose 'studio' is a chat surface, and the browser it drives is the Chrome window you already have open.

Because almost everything that breaks a browser automation flow in 2026 breaks at the gate, not in the script. Cloudflare Turnstile, Google's 'this browser may not be secure' interstitial, hCaptcha, Akamai Bot Manager, and Datadome all fingerprint Chromium signatures, look at session age, and treat clean Chromium profiles with hostility. A studio running in a fresh Chromium instance has to fight that battle every run with stealth plugins and residential proxies. A studio running inside your real Chrome session inherits a fingerprint that gates already trust because it has been on the machine for a year, signed into Google, with extensions and bookmarks and a real Chrome profile directory.

Through the Chrome Web Store extension named 'Playwright MCP Bridge' with extension ID `mmlmfjhmonkocbjadbfplnigmagldckm`. The exact URL is hard-coded in `Desktop/Sources/BrowserExtensionSetup.swift` line 220: `chromewebstore.google.com/detail/playwright-mcp-bridge/mmlmfjhmonkocbjadbfplnigmagldckm`. When the Fazm onboarding asks you to set up browser access, it opens that URL inside Chrome via AppleScript (so it lands in your active Chrome profile, not a fresh one), waits for you to install the extension, and verifies installation by scanning `~/Library/Application Support/Google/Chrome/<profile>/Extensions/<id>` until it appears. After that the bridge passes `--extension` to the bundled Playwright MCP CLI and Playwright connects to your live Chrome over the Chrome DevTools Protocol.

`Desktop/Sources/Chat/ACPBridge.swift` lines 369-377. The Swift bridge reads the user's preference (default on), exports `PLAYWRIGHT_USE_EXTENSION=true` and `PLAYWRIGHT_MCP_EXTENSION_TOKEN=<token>` into the spawned Node subprocess, and the Node subprocess at `acp-bridge/src/index.ts` line 1028 then constructs the Playwright args with `--extension` appended. That single flag flips Playwright MCP from 'launch a fresh Chromium' to 'connect to the running Chrome over CDP using this auth token'.

An on-page overlay. Every page Fazm controls gets a glowing border and a status pill rendered into the DOM with the exact text 'Browser controlled by Fazm · Feel free to switch tabs or use other apps'. The overlay code is at `acp-bridge/browser-overlay-init.js`, the pill text is on line 58 of that file. It is injected by Playwright's --init-page mechanism (registered in `acp-bridge/src/index.ts` line 1037) and re-injected on every navigation by a patched `extensionContextFactory.js`. You can install Fazm, ask it to open google.com, and watch the overlay appear inside the Chrome tab you already had open. That is not a thing a sandboxed Chromium can do, because a sandboxed Chromium does not share a process tree with your existing Chrome.

Because the underlying capability set matches the RPA studio category, the surface is just a chat box instead of a drag-and-drop canvas. UiPath Studio Web exposes activities like 'open browser', 'click selector', 'type into', 'extract table', and you wire them with a mouse. Fazm exposes the same primitives via a Playwright MCP tool surface (`browser_navigate`, `browser_click`, `browser_type`, `browser_snapshot`, plus accessibility tools `mcp__macos-use__*` for the parts that are not in a browser), and the studio surface is a natural-language chat that the model translates into a tool call sequence. For a non-developer building an automation, the chat box is faster than the canvas; for a developer who wants reproducibility, the tool call log is the artifact you save.

Yes, and that is the second thing every other studio on the SERP misses. The same Fazm session that runs `browser_navigate` to load a Cloudflare-gated page can also run `mcp__macos-use__macos-use_open_application_and_traverse` to open Numbers, paste the scraped table into a sheet, and save the file. The Mac side is wired in `acp-bridge/src/index.ts` line 1057 with `mcp-server-macos-use`, a Rust binary inside `/Applications/Fazm.app/Contents/MacOS/`. So a single chat command can scrape a logged-in dashboard, transform the data in Numbers, and post the summary into Telegram, with no glue script and no separate tool.

It is the official `@playwright/mcp` Chrome extension (Microsoft, MIT-licensed). Fazm bundles a pinned version of `@playwright/mcp` as a Node module (path: `acp-bridge/node_modules/@playwright/mcp/cli.js`), and the Chrome side is the matching extension from the Chrome Web Store at the ID above. The auth token is a base64url string at least 20 characters long; `BrowserExtensionSetup.swift` lines 574-587 implement a parser that strips a `PLAYWRIGHT_MCP_EXTENSION_TOKEN=` prefix if you accidentally paste the env var line, and validates the character set. The token is stored only in macOS UserDefaults under the key `playwrightExtensionToken` and never leaves your machine.

All real and useful, all built around a fresh-browser model, all aimed at a different user. Cypress Studio and Playwright Codegen are recorder/replay tools for developers writing test specs. BrowserStack Low Code Automation is a cloud test platform. BAS (Browser Automation Studio, Russian-language) is a Windows app for compiling botting scripts that emulate browser fingerprints. UiPath Studio Web is enterprise RPA. Bardeen is a Chrome extension that runs simple recipes inside your browser but is not capable of cross-app actions outside the browser. Fazm is the only one of the group that runs as a consumer Mac app, attaches to your real Chrome through a CDP extension, AND drives any other native Mac app through accessibility APIs in the same session.

Three places. One: the on-page overlay is a literal visible signal. Two: every Playwright tool call ID is logged to the chat thread and the log is queryable. Three: snapshots are written to `/tmp/playwright-mcp/` (set in `acp-bridge/src/index.ts` line 712, `PLAYWRIGHT_OUTPUT_DIR`). The studio uses `--output-mode file --image-responses omit --output-dir /tmp/playwright-mcp` (line 1033), which keeps the chat context small and dumps the full snapshots to disk where you can inspect them. The post-tool log line in the bridge prints the relative path so you can `open /tmp/playwright-mcp/<file>.yml`.

It is the same risk model as any Chrome extension you choose to install: the extension can interact with tabs you have open. Fazm reduces blast radius by injecting the visible 'Browser controlled by Fazm' overlay so you always know the session is being driven, by writing every action into the chat history, and by routing every tool call through Claude's permission model so destructive actions are auditable. The opposite trade is also real: a sandboxed-Chromium studio cannot accidentally touch your logged-in Gmail because it does not have access to it, but it also cannot DO anything useful in your logged-in Gmail without you also logging it in fresh, which most users find more annoying than the audit trail.

Yes. Every file path here is a real path in the public repo. The relevant files: `Desktop/Sources/BrowserExtensionSetup.swift` (extension ID, install flow, token validation), `Desktop/Sources/Chat/ACPBridge.swift` (env var wiring), `acp-bridge/src/index.ts` (Playwright + macos-use MCP server registration), `acp-bridge/browser-overlay-init.js` (the visible 'Browser controlled by Fazm' overlay). Run `rg -n mmlmfjhmonkocbjadbfplnigmagldckm Desktop/Sources` and `rg -n PLAYWRIGHT_USE_EXTENSION` against a fresh clone and the lines line up with this page.