Skip to content

v1.40.0.1 fix(browse): enable Chromium sandbox on headed launchPersistentContext#1617

Open
garrytan wants to merge 1 commit into
mainfrom
garrytan/headed-sandbox-on
Open

v1.40.0.1 fix(browse): enable Chromium sandbox on headed launchPersistentContext#1617
garrytan wants to merge 1 commit into
mainfrom
garrytan/headed-sandbox-on

Conversation

@garrytan
Copy link
Copy Markdown
Owner

@garrytan garrytan commented May 20, 2026

Summary

Playwright auto-adds --no-sandbox whenever chromiumSandbox !== true
(playwright-core/lib/server/chromium/chromium.js:291-292). The headless chromium.launch() site
set the option; the two headed sites — launchHeaded() and handoff() — did not. Every headed
launch on macOS and Linux therefore showed Chromium's yellow "unsupported command-line flag:
--no-sandbox" infobar across the top of the first tab.

This PR introduces shouldEnableChromiumSandbox() to centralize the Win32 / CI / CONTAINER /
root heuristic that previously lived only in the headless path's explicit --no-sandbox push
at :225. All three launch sites now share the same policy.

  • browse/src/browser-manager.ts:244 (launch()) — switches process.platform !== 'win32' to shouldEnableChromiumSandbox()
  • browse/src/browser-manager.ts:416 (launchPersistentContext()) — adds the helper
  • browse/src/browser-manager.ts:1304 (handoff()) — adds the helper

The explicit --no-sandbox push at :225 stays as a harmless defensive duplicate; Playwright
will auto-add --no-sandbox anyway when the helper returns false, but the redundancy makes the
intent obvious to readers in container/root environments.

Test plan

  • bun test browse/test/browser-manager-unit.test.ts — 8 tests pass, including 6 new pinning shouldEnableChromiumSandbox across darwin / linux / win32 / CI / CONTAINER / root
  • bun test browse/test/browser-manager-custom-chromium.test.ts — still green
  • Manual headed launch on macOS: yellow --no-sandbox infobar gone
  • Manual Linux non-root launch: no infobar
  • Manual Linux Docker/root: sandbox off, browser starts, no spurious warnings

🤖 Generated with Claude Code

@garrytan @claude
v1.40.0.1 fix(browse): enable Chromium sandbox on headed launchPersis…
a835de3 
…tentContext

Playwright auto-adds --no-sandbox whenever chromiumSandbox !== true
(playwright-core/lib/server/chromium/chromium.js:291-292). The headless
chromium.launch() site set the option; the two headed sites
(launchHeaded() and handoff()) did not. Every headed launch on macOS
and Linux showed Chromium's yellow "unsupported command-line flag:
--no-sandbox" infobar.

Introduces shouldEnableChromiumSandbox() — centralizes the Win32 / CI /
CONTAINER / root heuristic that previously lived only in the headless
path's explicit --no-sandbox push at :225. All three launch sites now
use the helper, and six unit tests pin the policy across darwin,
linux, win32, CI, CONTAINER, and root.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 20, 2026

E2E Evals: ✅ PASS

8/8 tests passed | $1.32 total cost | 12 parallel runners

Suite Result Status Cost
e2e-browse 2/2 $0.15
e2e-deploy 2/2 $0.31
e2e-qa-workflow 1/1 $0.53
llm-judge 1/1 $0.02
e2e-deploy 2/2 $0.31

12x ubicloud-standard-8 (Docker: pre-baked toolchain + deps) | wall clock ≈ slowest suite

garrytan added a commit that referenced this pull request May 20, 2026
@garrytan @claude
fix(browse): enable Chromium sandbox on headed launchPersistentContext
ec7d88e 
Mirrors v1.40.0.1 from main lineage (PR #1617). Cherry-picked onto
gbrowser-anti-detection so the GBrowser submodule can consume the fix
without waiting for main to merge.

Playwright auto-adds --no-sandbox whenever chromiumSandbox !== true
(playwright-core/lib/server/chromium/chromium.js:291-292). The headless
chromium.launch() site set the option; the two headed sites
(launchHeaded() and handoff()) did not. Every headed launch on macOS
and Linux showed Chromium's yellow "unsupported command-line flag:
--no-sandbox" infobar.

shouldEnableChromiumSandbox() centralizes the Win32 / CI / CONTAINER /
root heuristic that previously lived only in the headless path's
explicit --no-sandbox push at :225. All three launch sites now use the
helper, and six unit tests pin the policy across darwin, linux, win32,
CI, CONTAINER, and root.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@garrytan garrytan mentioned this pull request May 20, 2026
Open
5 tasks
@garrytan
Copy link
Copy Markdown
Owner Author

garrytan commented May 20, 2026

Bundled into #1629 as the v1.42.1.1 fix wave, along with PR #1626 and an additional exit-code propagation fix that Codex caught (PR #1626 alone didn't actually fix the headed-mode respawn bug because browse/src/server.ts hardcoded activeShutdown?.(2) — the bundled PR wires onDisconnect(exitCode) end-to-end through server.ts:688).

Leaving this PR open until #1629 merges so we have a working fallback if the bundle is rejected or surfaces an integration bug. Will close with a final "merged via #1629" once landed.

@garrytan garrytan mentioned this pull request May 20, 2026
Open
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@garrytan