jo-inc

jo-inc/camofox-browser

JavaScript MIT AI & ML

Stealth headless browser for AI agents — bypass Cloudflare, bot detection, and anti-scraping. Drop-in Puppeteer/Playwright replacement.

7.5k stars
781 forks
recent
GitHub +164 / week

7.5k

Stars

781

Forks

158

Open issues

27

Contributors

v1.11.2 24 May 2026

AI Analysis

Camofox-browser is a REST API wrapper around Camoufox (a Firefox fork with C++-level fingerprint spoofing) designed for AI agents to browse the web while evading bot detection and anti-scraping measures. It replaces Puppeteer/Playwright for agents that need reliable access to Cloudflare-protected or detection-heavy sites, and serves teams building AI systems that require web automation at scale without detection.

AI & ML Infrastructure Discovery value: 6/10
Documentation 8/10
Activity 9/10
Community 8/10
Code quality 5/10

Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.

Overall score 8/10

AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.

bot-detection-bypass web-automation ai-agent-infrastructure stealth-browsing anti-fingerprinting
Actively maintained MIT licensed Well documented Niche/specialized use case Production ready
Deep Analysis · Based on README and public signals
3w ago

REST API wrapper around Camoufox bringing anti-detection browsing to AI agents via accessibility snapshots

camofox-browser is a Node.js HTTP server that wraps the Camoufox Firefox fork (which patches fingerprinting at the C++ level) and exposes a REST API designed for AI agent pipelines. Instead of returning raw HTML, it delivers accessibility tree snapshots with stable element references — dramatically reducing token consumption. It targets AI agent developers who need to browse real websites without being blocked by Cloudflare or bot-detection systems, and who want a lightweight, deployable server rather than a Python/Playwright script.

Origin

Created in January 2026 by jo-inc, the team behind the askjo.ai personal AI agent product. It builds directly on daijro/camoufox (a well-established C++ Firefox fork) rather than reimplementing anti-detection. The project emerged as AI agent web-browsing tooling matured into a distinct infrastructure concern.

Growth

Accumulated ~7,000 stars in roughly five months — a healthy pace for a developer tool in a niche category. Growth appears driven by the AI agent wave, the credibility borrowed from Camoufox's proven anti-detection track record, and practical packaging (npx, Docker, OpenClaw plugin, OpenAPI docs). The 84 stars/week rate as of evaluation date suggests ongoing but moderating organic discovery.

In production

The project is used internally by the askjo.ai product (stated in README), which provides at least one confirmed production deployment. An OpenClaw plugin distribution path suggests some ecosystem integration. NPM package exists (@askjo/camofox-browser). Beyond internal usage, independent third-party production adoption is not verified from available metadata.

Code analysis
Architecture

Appears to be a thin JavaScript/Express (or similar) REST server that drives Camoufox via Playwright's browser-control protocol. Likely uses Playwright's accessibility snapshot API to generate the token-efficient tree output. Session isolation, proxy routing, and cookie injection are likely thin middleware layers around Playwright session management. The ~40MB idle footprint claim is consistent with lazy browser launch (no persistent Chrome process). Telemetry is implemented via GitHub Issues API — an unconventional but transparent choice documented in the README.

Tests

Not documented in README.

Maintenance

Last push was June 16 2026, five days before evaluation date — actively maintained. Created only five months ago, so the changelog depth is limited, but commit recency is strong. The README is detailed and feature-rich, suggesting ongoing investment. No evidence of abandonment; the commercial backing from jo-inc provides a plausible sustainability motive.

Honest verdict

ADOPT IF: you are building AI agent pipelines that need to browse real websites behind Cloudflare or aggressive bot detection, and you want a self-hosted REST API rather than managing Playwright/Python directly. AVOID IF: you need enterprise-grade uptime guarantees, extensive community support, or multi-year maintenance history — the project is five months old and primary production evidence is the vendor's own product. MONITOR IF: you are evaluating anti-detection browser infrastructure for production AI agents but want to wait for broader community validation, more documented third-party deployments, or a more established release cadence.

Independent dimensions

Mainstream potential

4/10

Technical importance

7/10

Adoption evidence

3/10

Risks
  • Single-vendor dependency: primary production evidence is jo-inc's own askjo.ai product; if that product pivots or shuts down, maintenance motivation weakens.
  • Anti-detection is an arms race: Cloudflare and bot-detection vendors continuously update their signals; even C++-level spoofing can fall behind, and patching cadence depends entirely on upstream Camoufox responsiveness.
  • Telemetry via GitHub Issues is unconventional and could inadvertently expose behavioral patterns of private deployments despite stated hashing — users should verify the implementation before deploying in sensitive contexts.
  • ~300MB binary download on first install (Camoufox binary) may conflict with certain CI/CD environments or resource-constrained deployments despite the low idle memory claim.
  • Project is five months old with no documented long-term API stability guarantees; breaking API changes in the REST interface are plausible as the project matures.
Prediction

Likely to grow steadily within the AI agent tooling niche over the next 12 months, driven by demand for web-browsing agents. Mainstream dominance is unlikely given the specialized problem space and strong upstream dependency on Camoufox's continued maintenance.

0 found this helpful

Newsletter

Get analyses like this every Monday

Free weekly digest of the most interesting open-source discoveries.

Languages

JavaScript
93.9%
TypeScript
4.1%
Shell
0.9%
PowerShell
0.6%
Dockerfile
0.3%
Makefile
0.2%

Information

Language
JavaScript
License
MIT
Last updated
3w ago
Created
6mo ago
Analyzed with
anthropic/claude-haiku-4-5

Stars over time

Loading…

Contributors over time

Top 100 contributors only — repos with more will plateau at 100.

Loading…

Similar repos

daijro

daijro/camoufox

Camoufox is an open-source anti-detect browser built on Firefox for web...

9.9k C++ Security
CloakHQ

CloakHQ/CloakBrowser

CloakBrowser is a stealth Chromium browser with source-level C++ fingerprint...

28k Python Dev Tools
saifyxpro

saifyxpro/HeadlessX

HeadlessX is a self-hosted browser automation platform built on Camoufox...

2k TypeScript DevOps
h4ckf0r0day

h4ckf0r0day/obscura

Obscura is a headless browser engine written in Rust designed for AI agents and...

18.6k Rust Dev Tools
botswin

botswin/BotBrowser

BotBrowser is a privacy-focused browser core written in TypeScript that defends...

2.5k TypeScript Security
vs. alternatives
daijro/camoufox

camofox-browser's direct upstream dependency. Camoufox is the C++ Firefox fork doing the actual anti-detection work. camofox-browser adds a REST API layer on top — they are complementary, not competing. Camoufox targets Python/Playwright developers directly; camofox-browser targets agent pipelines and HTTP consumers.

CloakHQ/CloakBrowser

3.8x more stars; Python-centric and appears to target a broader audience including manual anti-detect browser use cases. camofox-browser is more narrowly focused on AI agent REST API consumption, which may give it better fit for that specific workflow despite smaller reach.

lightpanda-io/browser

A Zig-based headless browser focused on performance and memory efficiency rather than anti-detection. lightpanda prioritizes legitimate scraping speed; camofox-browser prioritizes bypassing bot defenses. Different primary problems despite superficial overlap.

ntegrals/openbrowser

TypeScript, similar star count tier. Likely targets Playwright-adjacent developer workflows. Without more metadata it is unclear how deeply openbrowser addresses anti-detection versus general browser automation. camofox-browser's C++ fingerprint spoofing via Camoufox is a structural differentiator if anti-detection is the priority.

niespodd/browser-fingerprinting

An educational/reference repo documenting fingerprinting techniques rather than a deployable tool. Useful context but not a direct operational competitor to camofox-browser.