BrowserStack MCP tools can launch real browser and device sessions, run web and app automation, start accessibility scans, fetch screenshots and logs, and create or update Test Management assets., Access is bounded by the BrowserStack account, plan, product access, and user permissions connected to the MCP server. Use a dedicated account or least-privilege access key when possible., Review prompts before allowing Claude to start sessions, run tests, upload apps, upload PRDs or screenshots, create test cases, update test results, or change BrowserStack project state., BrowserStack Local can expose localhost, staging, VPN, or internal application traffic to BrowserStack's cloud testing infrastructure for the duration of a session. Use it only for approved environments., Test runs, device minutes, accessibility scans, and automation sessions can consume BrowserStack quota or incur account usage. Keep automated loops and retry behavior explicit.
Privacy notes
BrowserStack may receive URLs, app binaries, test packages, screenshots, videos, console logs, network logs, accessibility scan results, failure logs, Test Management records, and uploaded PRD or screenshot files, depending on the tools invoked., Store `BROWSERSTACK_USERNAME` and `BROWSERSTACK_ACCESS_KEY` in MCP environment configuration or your client's secret-management flow, not in prompts, chat transcripts, or checked-in files., The local MCP server runs on the user's machine and can keep credentials in local environment configuration. The remote MCP option uses OAuth and avoids manually passing an access key to the client., Returned session links, screenshots, logs, test results, and AI-generated fixes can become visible to the connected MCP client and model session.
Author
BrowserStack
Submitted by
oktofeesh1
Claim status
unclaimed
Last verified
2026-06-03
Decision playbook
Review trust signals before you adopt
Signals are present but mixed. Use the checklist below to confirm the source and operational safety for your environment.
Compare context
Selected
0
Current score
78
Baseline
—
Delta
No baseline selected
No major trust-signal divergence detected in the current selection.
Source and provenance checks
Complete
Confirm ownership and provenance before trusting install instructions.
Source link availableRequired
Open the canonical repository and verify ownership.
Done
Source provenance statusRequired
Marked as source-backed.
Done
Metadata reviewed
Registry metadata indicates a reviewed listing.
Done
Safety and privacy checks
Complete
Validate risk disclosures before installation or API wiring.
Safety notes presentRequired
Review the listed safety guidance before running commands.
Done
Privacy notes presentRequired
Review data handling notes before connecting accounts or secrets.
Done
Trust level risk gateRequired
Trust level does not block evaluation.
Done
Package and install checks
Needs review
Check package metadata and artifact integrity signals.
Install payload available
Install or copy payload is available for review.
Done
Package verification flag
No package verification flag provided.
Pending
Checksum metadata
No checksum provided for downloaded artifact.
Pending
Compare-driven decision checks
Needs review
Use compare context to validate trade-offs before adoption.
Compare tray has multiple entries
Add at least one more entry to compare trust differences.
5 safety and 4 privacy notes across 2 risk areas. Review closely: credentials & tokens, network access.
2 areas
SafetyCredentials & tokensBrowserStack MCP tools can launch real browser and device sessions, run web and app automation, start accessibility scans, fetch screenshots and logs, and create or update Test Management assets.
SafetyCredentials & tokensAccess is bounded by the BrowserStack account, plan, product access, and user permissions connected to the MCP server. Use a dedicated account or least-privilege access key when possible.
SafetyCredentials & tokensReview prompts before allowing Claude to start sessions, run tests, upload apps, upload PRDs or screenshots, create test cases, update test results, or change BrowserStack project state.
SafetyCredentials & tokensBrowserStack Local can expose localhost, staging, VPN, or internal application traffic to BrowserStack's cloud testing infrastructure for the duration of a session. Use it only for approved environments.
SafetyCredentials & tokensTest runs, device minutes, accessibility scans, and automation sessions can consume BrowserStack quota or incur account usage. Keep automated loops and retry behavior explicit.
PrivacyNetwork accessBrowserStack may receive URLs, app binaries, test packages, screenshots, videos, console logs, network logs, accessibility scan results, failure logs, Test Management records, and uploaded PRD or screenshot files, depending on the tools invoked.
PrivacyCredentials & tokensStore `BROWSERSTACK_USERNAME` and `BROWSERSTACK_ACCESS_KEY` in MCP environment configuration or your client's secret-management flow, not in prompts, chat transcripts, or checked-in files.
PrivacyCredentials & tokensThe local MCP server runs on the user's machine and can keep credentials in local environment configuration. The remote MCP option uses OAuth and avoids manually passing an access key to the client.
PrivacyCredentials & tokensReturned session links, screenshots, logs, test results, and AI-generated fixes can become visible to the connected MCP client and model session.
Safety notes
BrowserStack MCP tools can launch real browser and device sessions, run web and app automation, start accessibility scans, fetch screenshots and logs, and create or update Test Management assets.
Access is bounded by the BrowserStack account, plan, product access, and user permissions connected to the MCP server. Use a dedicated account or least-privilege access key when possible.
Review prompts before allowing Claude to start sessions, run tests, upload apps, upload PRDs or screenshots, create test cases, update test results, or change BrowserStack project state.
BrowserStack Local can expose localhost, staging, VPN, or internal application traffic to BrowserStack's cloud testing infrastructure for the duration of a session. Use it only for approved environments.
Test runs, device minutes, accessibility scans, and automation sessions can consume BrowserStack quota or incur account usage. Keep automated loops and retry behavior explicit.
Privacy notes
BrowserStack may receive URLs, app binaries, test packages, screenshots, videos, console logs, network logs, accessibility scan results, failure logs, Test Management records, and uploaded PRD or screenshot files, depending on the tools invoked.
Store `BROWSERSTACK_USERNAME` and `BROWSERSTACK_ACCESS_KEY` in MCP environment configuration or your client's secret-management flow, not in prompts, chat transcripts, or checked-in files.
The local MCP server runs on the user's machine and can keep credentials in local environment configuration. The remote MCP option uses OAuth and avoids manually passing an access key to the client.
Returned session links, screenshots, logs, test results, and AI-generated fixes can become visible to the connected MCP client and model session.
Prerequisites
BrowserStack account with access to the products and projects you want Claude to use
BrowserStack username and access key for local MCP setup, or OAuth access for the remote MCP server
Node.js 18+ for the npm package; BrowserStack recommends the current Node.js LTS release
Claude Desktop, VS Code, Cursor, Cline, or another MCP-capable client
Local Testing setup when you need BrowserStack to reach localhost, staging, VPN, or firewall-restricted sites through the local server path
The BrowserStack MCP server connects Claude and other MCP-capable clients to
BrowserStack's testing platform. It can start real browser and device sessions,
run web and app automation workflows, fetch screenshots and failure logs, launch
accessibility scans, and manage BrowserStack Test Management assets from a
coding assistant.
This entry is focused on browser and device automation where permission
boundaries matter. BrowserStack access is scoped by the account credentials or
OAuth identity used by the MCP server, plus the BrowserStack products and
projects available to that user. Treat the MCP server as a bridge into a real
testing account, not a sandboxed toy browser.
BrowserStack supports both local and remote MCP setup. The local server runs
through @browserstack/mcp-server and uses a BrowserStack username and access
key. The remote MCP server is hosted by BrowserStack, uses OAuth, and is useful
when users cannot or do not want to install a local package.
Features
Start manual web testing sessions on BrowserStack Live across desktop and
mobile browser combinations.
Start manual app testing sessions on real iOS and Android devices through App
Live.
Set up and run BrowserStack Automate and App Automate workflows for Selenium,
Playwright, Appium, Espresso, XCUITest, and related testing stacks.
Fetch automation screenshots and failure logs for BrowserStack sessions.
Start web accessibility scans and ask BrowserStack's Accessibility Expert for
WCAG-oriented guidance.
Create projects, folders, test cases, test runs, and test results in
BrowserStack Test Management.
Upload PRDs, screenshots, or test-case files for BrowserStack AI-assisted test
generation workflows.
Use BrowserStack Local through the local MCP setup when testing localhost,
staging, VPN, or internal sites is approved.
Use remote MCP with OAuth when local installation is not practical and Local
Testing support is not required.
Use Cases
Ask Claude to open a website on a specific desktop browser or mobile device
combination for manual verification.
Run existing Playwright, Selenium, Appium, Espresso, or XCUITest suites on
BrowserStack infrastructure from an AI-enabled development environment.
Fetch screenshots or failure logs for a failed Automate or App Automate
session and summarize the likely cause.
Launch an accessibility scan for a target page and turn results into
actionable implementation tasks.
Create or update Test Management projects, cases, runs, and results during a
QA workflow.
Test a local development site on remote browsers through BrowserStack Local
when the environment is approved for cloud-device access.
Installation
Claude Code
Confirm Node.js is installed: node --version.
Create or select a BrowserStack account with access only to the products and
projects Claude should use.
Add the local MCP server with BrowserStack credentials:
BrowserStack also documents a hosted remote MCP endpoint:
https://mcp.browserstack.com/mcp
Use the remote option when OAuth-based setup is preferred or local package
installation is blocked. Use the local MCP server when BrowserStack Local is
needed for localhost, staging, VPN, or firewall-restricted test targets.
Examples
Open a browser session
Ask Claude to launch a specific browser and operating system combination for a
single approved URL.
Open the staging login page on the latest Chrome version on Windows 11 in BrowserStack Live.
Run automated web tests
Use BrowserStack Automate for an existing browser test suite.
Set up this Playwright test suite to run on BrowserStack and run the checkout smoke tests on Chrome and Firefox.
Fetch failure artifacts
Ask Claude to retrieve screenshots or logs for a known failed session.
Fetch screenshots and failure logs for this BrowserStack Automate session ID and summarize the likely failing step.
Start an accessibility scan
Run a focused scan for one URL instead of broad crawling.
Start an accessibility scan for the pricing page and summarize critical WCAG issues only.
Manage test cases
Create or update test assets only when the target project and folder are
specified.
Add a high-priority invalid-login test case to the Checkout QA project under the Login folder.
Security
Use a dedicated BrowserStack account or access key with only the products,
projects, and team permissions needed for MCP workflows.
Keep credentials in environment configuration or OAuth flows, not prompts or
repository files.
Confirm the target site, device, browser, project, and action before allowing
Claude to start sessions, upload app packages, run automation, or update Test
Management records.
Treat BrowserStack Local as an approved network bridge. Do not expose
internal apps, VPN-only systems, staging data, or localhost services unless
the environment owner has approved cloud testing.
Avoid unbounded automation loops. Test sessions, screenshots, scans, and
retries consume account quota and may create operational noise.
Troubleshooting
Claude cannot start the local server
Confirm Node.js is installed and available to the MCP client process. Then run
the package through npx -y @browserstack/mcp-server@latest from the same user
environment.
Authentication fails
Verify BROWSERSTACK_USERNAME and BROWSERSTACK_ACCESS_KEY against the
BrowserStack Account Settings page. For remote MCP, reconnect through the OAuth
flow instead of pasting access keys into prompts.
A tool is unavailable or denied
Check whether the BrowserStack account has access to that product, project, or
team feature. The MCP server cannot grant access beyond the connected
BrowserStack identity.
Local site testing does not work
Use the local MCP path and configure BrowserStack Local. The remote MCP path does
not support Local Testing for localhost, VPN, firewall-restricted, or internal
sites.
Session artifacts expose too much data
Restrict the target URL, device session, test suite, and time window. Review
screenshots, logs, uploaded files, and generated summaries before sharing them
outside the team.
Show that BrowserStack MCP Server for Claude is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.
[](https://heyclau.de/entry/mcp/browserstack-mcp-server)
How it compares
BrowserStack MCP Server for Claude side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
Official MCP server for agent-device, Callstack's device automation CLI for inspecting, controlling, debugging, recording, and collecting evidence from iOS, Android, TV, macOS, Linux, React Native, Expo, Flutter, and native apps.
MCP server from HttpRunner that exposes UIXT device and browser automation tools for Android, iOS, Harmony, and Web testing through the `hrp mcp-server` command.
✓BrowserStack MCP tools can launch real browser and device sessions, run web and app automation, start accessibility scans, fetch screenshots and logs, and create or update Test Management assets.
Access is bounded by the BrowserStack account, plan, product access, and user permissions connected to the MCP server. Use a dedicated account or least-privilege access key when possible.
Review prompts before allowing Claude to start sessions, run tests, upload apps, upload PRDs or screenshots, create test cases, update test results, or change BrowserStack project state.
BrowserStack Local can expose localhost, staging, VPN, or internal application traffic to BrowserStack's cloud testing infrastructure for the duration of a session. Use it only for approved environments.
Test runs, device minutes, accessibility scans, and automation sessions can consume BrowserStack quota or incur account usage. Keep automated loops and retry behavior explicit.
✓Agent Device MCP exposes structured tools backed by `AgentDeviceClient`; the docs state it does not expose generic shell execution over MCP.
Tools and CLI workflows can open apps, inspect UI, tap, type, scroll, perform gestures, wait, assert state, handle alerts, and close sessions.
Evidence workflows can capture screenshots, recordings, logs, traces, network traffic, performance samples, crash context, React profiles, and replay files.
Mutating commands should run serially against one session, and separate sessions or devices should be used for parallel work.
Prefer dedicated test devices or simulators, and require approval before entering credentials, submitting forms, changing settings, installing apps, sending messages, or touching production accounts.
✓HttpRunner UIXT MCP Server can control real devices and browsers through taps, swipes, text input, hardware buttons, selectors, OCR, CV, and AI action tools.
App tools can launch, terminate, cold launch, install, uninstall, clear data, and inspect foreground apps on connected devices.
Screen tools can capture screenshots, screen recordings, screen size, and UI hierarchy/source data.
Media and utility tools can modify test-device albums, close popups, wait randomly, and interact with system UI state.
Simulated gesture options and anti-risk-style behavior should be used only in authorized test automation environments.
Require human review before running actions against logged-in accounts, payment flows, device settings, production apps, or customer data.
✓BrowserMCP can navigate pages, click controls, type text, submit forms, capture screenshots, inspect accessibility snapshots, read console logs, and automate the connected tab.
Because it uses the user's real browser profile, logged-in sessions and account permissions may be available to the agent.
Require human approval before purchases, messages, account changes, destructive actions, or actions that violate a site's terms.
Use a test profile or non-production account for end-to-end testing and repetitive automation.
Privacy notes
✓BrowserStack may receive URLs, app binaries, test packages, screenshots, videos, console logs, network logs, accessibility scan results, failure logs, Test Management records, and uploaded PRD or screenshot files, depending on the tools invoked.
Store `BROWSERSTACK_USERNAME` and `BROWSERSTACK_ACCESS_KEY` in MCP environment configuration or your client's secret-management flow, not in prompts, chat transcripts, or checked-in files.
The local MCP server runs on the user's machine and can keep credentials in local environment configuration. The remote MCP option uses OAuth and avoids manually passing an access key to the client.
Returned session links, screenshots, logs, test results, and AI-generated fixes can become visible to the connected MCP client and model session.
✓Screenshots, recordings, traces, logs, network dumps, replay files, reports, UI snapshots, typed input, and React profiles can contain private UI state, tokens, request data, customer information, or credentials.
macOS, iOS, Android, and TV automation can expose local app state, notifications, device names, package identifiers, app content, system dialogs, and permission prompts.
Network inspection artifacts may include headers, payloads, session identifiers, URLs, and API data; review before sharing or committing.
Interactive CLI runs may check npm for newer package versions unless `AGENT_DEVICE_NO_UPDATE_NOTIFIER=1` is set.
✓Screenshots, screen recordings, UI hierarchy, package names, foreground app names, OCR text, selector data, and logs can expose sensitive app or account state.
Connected device identifiers, serial numbers, app package names, browser pages, and test artifacts may be visible to the MCP client.
Input and paste actions can expose credentials, one-time codes, chat text, forms, or clipboard-like data if used on personal sessions.
Test reports, MCP responses, and debugging logs may retain captured UI state after the session ends.
Keep test devices resettable, avoid personal accounts, and isolate artifacts produced by automated UI runs.
✓Connected tab content, screenshots, form fields, console logs, and page state may be exposed to the MCP client and model.
Logged-in pages can contain personal data, customer information, credentials, tokens, internal URLs, or private documents.
Although the project describes local automation, prompts and tool results still flow through the chosen AI application and model provider.
Prerequisites
BrowserStack account with access to the products and projects you want Claude to use
BrowserStack username and access key for local MCP setup, or OAuth access for the remote MCP server
Node.js 18+ for the npm package; BrowserStack recommends the current Node.js LTS release
Claude Desktop, VS Code, Cursor, Cline, or another MCP-capable client
Node.js 22 or newer and `agent-device` installed globally or project-locally.
Xcode tooling for iOS, tvOS, or macOS targets, or Android SDK and ADB for Android targets.
Device, simulator, emulator, TV, macOS, or Linux desktop target that the agent is allowed to automate.
Required local permissions such as Android device trust, iOS Developer Mode, macOS Accessibility, and Screen Recording where applicable.
Go 1.23 or newer for building the current v5 CLI from source.
A test Android, iOS, Harmony, or browser automation environment configured for HttpRunner UIXT.
A trusted MCP client that can launch local stdio servers.
Review of ADB, go-ios, WebDriver, OCR, computer-vision, and AI-action dependencies required by your target platform.
Node.js installed for the MCP server.
Chrome or compatible Chromium browser.
BrowserMCP extension installed from the project site.
MCP client such as Claude, Cursor, VS Code, Windsurf, or another compatible host.