mirror of
https://github.com/agent0ai/agent-zero.git
synced 2026-05-19 07:59:34 +00:00
983d431a5e
Introduce the new built-in Browser plugin for Agent Zero, replacing the legacy browser-use-based browser agent with a direct Playwright-powered browser tool, live WebUI viewer, browser session controls, status APIs, configuration, and extension-management support. Add browser-specific modal behavior so the browser can run as a floating, resizable, no-backdrop window, including modal focus, toggle, and idempotent open helpers for richer WebUI surfaces. Remove the old `_browser_agent` core plugin and the `browser-use` dependency, then clean up stale browser-model wiring and references across agent code, model configuration docs, setup guides, troubleshooting docs, skills, and Agent Zero knowledge. Update regression and WebUI extension-surface coverage for the new browser architecture and modal behavior. The legacy browser-use implementation has been extracted from core so it can continue separately as a community plugin published through the A0 Plugin Index for any user or professional that were relying on it for workflow.
62 lines
1.6 KiB
Text
62 lines
1.6 KiB
Text
a2wsgi==1.10.8
|
|
ansio==0.0.1
|
|
docker==7.1.0
|
|
duckduckgo-search==6.1.12
|
|
faiss-cpu==1.11.0
|
|
fastmcp==3.2.4
|
|
fasta2a==0.5.0
|
|
flask[async]==3.0.3
|
|
flask-basicauth==0.2.0
|
|
flaredantic==0.1.5
|
|
GitPython==3.1.43
|
|
giturlparse==0.14.0
|
|
inputimeout==1.0.4
|
|
kokoro>=0.9.2
|
|
simpleeval==1.0.3
|
|
langchain-core==0.3.49
|
|
langchain-community==0.3.19
|
|
langchain-unstructured==0.1.6
|
|
openai-whisper==20250625
|
|
lxml_html_clean>=0.4.0 # CVE-2024-52595 fix: XSS CWE-79 CVSS 8.4
|
|
markdown==3.7
|
|
mcp==1.27.0
|
|
newspaper3k==0.2.8
|
|
paramiko==3.5.0
|
|
playwright==1.52.0
|
|
pypdf==6.0.0
|
|
python-dotenv==1.1.0
|
|
pytz==2024.2
|
|
sentence-transformers==3.0.1
|
|
tiktoken==0.8.0
|
|
unstructured[all-docs]==0.16.23
|
|
unstructured-client==0.31.0
|
|
webcolors==24.6.0
|
|
nest-asyncio==1.6.0
|
|
crontab==1.0.1
|
|
markdownify==1.1.0
|
|
pydantic==2.11.7
|
|
pymupdf==1.25.3
|
|
pytesseract==0.3.13
|
|
pdf2image==1.17.0
|
|
crontab==1.0.1
|
|
pathspec>=0.12.1
|
|
psutil>=7.0.0
|
|
soundfile==0.13.1
|
|
imapclient>=3.0.1
|
|
html2text>=2024.2.26
|
|
beautifulsoup4>=4.12.3
|
|
boto3>=1.35.0
|
|
exchangelib>=5.4.3
|
|
pywinpty==3.0.2; sys_platform == "win32"
|
|
python-socketio>=5.14.2
|
|
uvicorn>=0.38.0
|
|
watchdog==6.0.0
|
|
wsproto>=1.2.0
|
|
# Security floor pins for transitive dependencies
|
|
# These packages are pulled transitively — floor pins prevent resolver regressions
|
|
Pillow>=10.2.0 # security floor: heap buffer overflow CWE-122, eval injection CWE-95, DoS CWE-400
|
|
nltk>=3.9.3 # security floor: RCE CWE-94, code injection CWE-94
|
|
h11>=0.16.0 # security floor: HTTP request smuggling CWE-444
|
|
urllib3>=2.6.0 # security floor: resource exhaustion CWE-770, data amplification CWE-409
|
|
cryptography>=46.0.0 # security floor: insufficient data authenticity CWE-345
|
|
werkzeug>=3.0.3 # security floor: RCE CWE-94
|