Every AI Browser Tool Is Broken Except One
I tested Playwright, playwright-cli, OpenClaw's browser tool, and tappi on real tasks. Only one went 3/3 with correct data — and it wasn't close.
Playwright couldn't log into Gmail. playwright-cli got CAPTCHA'd by Reddit on the first page. OpenClaw's browser tool burned 252K tokens doing what tappi did in 59K. And Playwright "scripted" its way to wrong answers on 4 out of 5 Reddit posts without even knowing.
I ran a controlled experiment — 4 AI agents, 4 browser tools, 3 real-world tasks — same model, same thinking level, same instructions. Here's every token counted and every failure documented.
Then you can tell me I'm wrong.
The Scorecard (Skip Ahead If You Want)
Before the breakdown — here's the final result. If you only read one table, make it this one:
| 🔹 tappi | 🔸 Browser Tool | 🔷 Playwright | 🔶 playwright-cli | |
|---|---|---|---|---|
| Success Rate | 🟢 3/3 | 🟢 3/3 | 🟡 1/3* | 🔴 1/3 |
| Total Context | 59K | 252K | 44K | 52K |
| Total Time | 4m13s | 8m38s | 3m42s | 3m36s |
| Auth Tasks | ✅ | ✅ | ❌ | ❌ |
| Bot Detection | ✅ | ✅ | ✅ | ❌ |
| Shadow DOM | ✅ | ⚠️ Workaround | N/A | N/A |
| Data Quality | ⭐ High | ⭐ High | ⚠️ Low | N/A |
| Verdict | 🏆 Best overall | Reliable but heavy | Cheap but brittle | Too limited |
*Playwright's Reddit "success" returned automod bot comments instead of actual top comments on 4 out of 5 posts — functionally incorrect.
tappi: only tool to complete every task, with correct data, at reasonable token cost. Now let me show you how each one played out.
What Are These Tools?
These are the four browser automation tools I tested, each representing a fundamentally different approach to letting AI agents control a browser.
🔹 tappi
tappi is a lightweight CDP (Chrome DevTools Protocol) browser control tool designed specifically for AI agents. Available as both a Python package (pip install tappi) and a CLI (tappi / bjs), it connects to an already-running Chrome instance via CDP and exposes simple shell commands: tappi open "url", tappi elements, tappi click 5, tappi type "hello", tappi text.
The key design philosophy: give the agent only what it needs. Instead of dumping an entire DOM or accessibility tree into the LLM's context, tappi returns compact, indexed element lists. It also pierces shadow DOM boundaries — critical for modern web apps like Reddit, Gmail, and GitHub that use web components extensively.
Because it connects to your existing Chrome via CDP, it inherits all your signed-in sessions, cookies, and extensions. No fresh browser. No login walls.
🔸 OpenClaw Browser Tool
OpenClaw is an AI agent orchestration platform. Its built-in browser tool uses Playwright under the hood to capture full ARIA (accessibility) tree snapshots of web pages. The agent calls it as an MCP tool — browser navigate, browser snapshot, browser act — and gets back a structured representation of the page.
Like tappi, it connects to an existing Chrome profile, so the agent has access to signed-in sessions. The tradeoff: ARIA snapshots are comprehensive but massive. A single Reddit page can produce 50K+ tokens of snapshot data.
🔷 Playwright (scripting)
Playwright is Microsoft's popular browser automation framework. In this benchmark, the agent uses Playwright the traditional way: it writes a complete Node.js script using Playwright's API (chromium.launch(), page.goto(), page.locator(), etc.), then executes it.
The agent has to reason about the entire script upfront, launch a fresh browser instance (no saved cookies or sessions), and hope the script works on the first try. There's no interactive feedback loop — if the page doesn't look like what the agent expected, it finds out only after the script fails.
Playwright does support cookie/session injection via --storage-state — you can export cookies and localStorage from a real browser session as JSON and pass them at launch. We'll get into why that didn't help (and why it's not the fix people think it is) below.
🔶 playwright-cli
@playwright/cli is Microsoft's new command-line tool, released in early 2026 as a companion to Playwright MCP. It's designed specifically for AI coding agents: instead of writing scripts, the agent calls shell commands like playwright-cli open "url", playwright-cli snapshot, playwright-cli click e5.
The philosophy is similar to tappi — compact commands, YAML-based snapshots — but it launches its own browser instance (no persistent sessions) and runs headless Chrome by default. Like Playwright scripting, it supports --storage-state for cookie injection. It was built to reduce token usage compared to Playwright MCP's full accessibility tree dumps.
The Experiment Setup
Model: Claude Sonnet 4.6
Thinking: Medium
Orchestrator: OpenClaw (spawned isolated sub-agents for each run)
| Tool | Approach | Session Access |
|---|---|---|
| tappi 🔹 | CDP shell commands | ✅ Existing Chrome profile (signed in) |
| OpenClaw Browser Tool 🔸 | Built-in ARIA snapshots via MCP | ✅ Existing Chrome profile (signed in) |
| Playwright 🔷 | Agent writes & executes Node.js scripts | ❌ Fresh browser, no cookies |
| playwright-cli 🔶 | Shell commands + YAML snapshots | ❌ Fresh browser, no cookies |
Key constraint: Each agent was forbidden from switching tools. If their assigned tool couldn't do the job, they reported failure. No bailouts.
"But Playwright supports --storage-state!" — Yes. Both Playwright and playwright-cli can accept exported cookies/localStorage as a JSON file at launch. We deliberately did not use this for the benchmark, and here's why: it tests the tool's realistic default path. An AI agent spawned to "go send an email" shouldn't need a pre-built credential pipeline. But more importantly — even with injected cookies, Playwright still launches a fresh Chromium instance with default fingerprints, missing service workers, no IndexedDB state, no extension data, and a detectable headless signature. Cookie injection gets you past some login pages. It doesn't make a headless browser look real to Reddit's bot detection, and it doesn't give you access to session state stored outside cookies and localStorage. We'll see exactly where this matters in Task 1 and Task 3.
The Results
Task 1: Reddit Data Extraction
The task: Navigate to Reddit's r/LocalLLaMA subreddit, find the top 5 posts from the past week, and for each post extract the title, upvote count, and the text of the top comment. This requires navigating to the subreddit, parsing a dynamic listing page, then clicking into each individual post to read its comments — a multi-step browsing workflow across 6 pages total.
What actually happened:
🔹 tappi opened the subreddit, ran a JavaScript query to pull all post titles and upvote counts in one shot, then visited each post individually. On every post, it evaluated comment scores via the DOM and deliberately skipped the automod bot comment to surface the highest-voted human comment — complete with author name and score. 8 tool calls. Done in under 2 minutes.
🔸 The browser tool followed a similar strategy but each page navigation produced a full ARIA tree snapshot — tens of thousands of tokens per page. Reddit's deeply nested shadow DOM (<shreddit-comment> web components) made these snapshots enormous. Same quality result, but at 5.6x the token cost.
🔷 Playwright wrote a single Node.js script, launched a fresh headless Chromium, and executed it. Clever shortcut: it used old.reddit.com (simpler DOM). Fast and cheap — but it blindly grabbed the first comment on each post, which turned out to be an automod bot message on 4 out of 5 posts. No opportunity to inspect and adjust.
🔶 playwright-cli never got past the front door. Reddit detected the headless Chrome fingerprint and served a visual reCAPTCHA: "Select all images with crosswalks." The agent tried old.reddit.com — blocked. Tried the JSON API — blocked. Every endpoint returned the same wall.
Context tokens burned:
🔹 tappi ·········· 21K ✅
🔸 browser tool ·················································· 118K ✅ (5.6× more)
🔷 playwright ········ 14K ⚠️ (wrong data)
🔶 playwright-cli ·········· 21K ❌ (CAPTCHA blocked)
| Tool | Context | Time | Result |
|---|---|---|---|
| 🔹 tappi | 21K | 1m52s | ✅ Correct data, real human comments |
| 🔸 Browser tool | 118K | 3m00s | ✅ Correct data, massive token cost |
| 🔷 Playwright | 14K | 1m02s | ⚠️ Wrong data — captured bot comments on 4/5 posts |
| 🔶 playwright-cli | 21K | 2m22s | ❌ Blocked by Reddit's bot detection |
The insight: Playwright scripting got through Reddit's bot detection but playwright-cli didn't — same underlying browser engine, different fingerprints. How you launch Chromium matters. Note that cookie injection via --storage-state wouldn't have helped playwright-cli here — Reddit's CAPTCHA triggers on the browser fingerprint, not missing cookies. The request never reaches a page where cookies matter. And tappi's interactive approach (inspect → evaluate → decide) produced fundamentally better output than Playwright's one-shot "write script, pray it works" approach.
Task 2: Google Maps Lead Generation
The task: Search Google Maps for "plumbers in Houston TX" and extract the top 5 organic results with business name, star rating, phone number, and street address. This is the kind of lead generation task that people pay Zapier and n8n real money for — and it's a single-page extraction, so the playing field should be level.
What actually happened:
🔹 tappi opened Google Maps, called elements to get the listing links, then used text to extract all visible business data in one pass. Three commands. Under a minute.
🔸 The browser tool took a single ARIA snapshot and — to its credit — had everything it needed in that one snapshot. All business names, ratings, phone numbers, and addresses. Its fastest run of the day: 38 seconds.
🔷 Playwright wrote a scraping script that launched Chromium, navigated to Maps, and parsed the page. It worked, but took 2.5 minutes because the agent had to reason about the script, handle page load timing, and deal with Google's dynamic rendering.
🔶 playwright-cli did what it was built for — open + snapshot — and had all the data in 42 seconds. Clean, efficient, and proof that Google Maps doesn't have the same bot detection as Reddit.
Context tokens burned:
🔹 tappi ·········· 16K ✅
🔸 browser tool ············· 21K ✅
🔷 playwright ············ 18K ✅
🔶 playwright-cli ············ 20K ✅
| Tool | Context | Time | Result |
|---|---|---|---|
| 🔹 tappi | 16K | 59s | ✅ Clean extraction, 3 commands |
| 🔸 Browser tool | 21K | 38s | ✅ Single snapshot, fastest run |
| 🔷 Playwright | 18K | 2m34s | ✅ Works, but slow script execution |
| 🔶 playwright-cli | 20K | 42s | ✅ 2 commands, elegant |
The insight: When the data is all on one page, tool differences shrink dramatically. Google Maps was the great equalizer. The real differentiation happens on multi-step, interactive tasks — which is exactly what most real-world agent work looks like.
Task 3: Gmail — Send an Email
The task: Navigate to Gmail (already signed in on the host Chrome), click Compose, add two recipients (info@houstoncatchmycall.com and aria@synthworx.com), fill in the subject line and body, and click Send. This is the kind of task that separates a demo from a real agent — it requires authentication, a complex interactive UI, and precise multi-step form filling.
What actually happened:
🔹 tappi navigated to Gmail (already signed in via the shared Chrome session), clicked Compose, typed the first recipient, hit Tab, typed the second, filled in the subject and body, and clicked Send. Gmail confirmed: "Message sent." Eight tool calls, 82 seconds. The shadow DOM compose dialog? tappi pierced right through it.
🔸 The browser tool ran into a wall immediately. Gmail's floating compose window — a deeply nested shadow DOM dialog — was invisible to the ARIA tree. The agent couldn't see it, couldn't click into it, couldn't type in it. After 5 minutes of DOM evaluation workarounds and multiple screenshots, it discovered a creative hack: Gmail's URL-based compose (?view=cm&to=...&su=...&body=...) renders a full-page form that is accessible. It worked — email sent — but it burned 113K tokens finding the workaround.
🔷 Playwright launched a fresh Chromium and navigated to mail.google.com. Google immediately redirected to the sign-in page. No cookies. No session. No email sent. Failure reported in 26 seconds.
🔶 playwright-cli hit the same wall. Fresh browser, no auth, redirected to sign-in. Failed in 32 seconds.
Context tokens burned:
🔹 tappi ·············· 22K ✅
🔸 browser tool ·················································· 113K ✅ (5.1× more, needed workaround)
🔷 playwright ········ 12K ❌ (no auth)
🔶 playwright-cli ······· 11K ❌ (no auth)
| Tool | Context | Time | Result |
|---|---|---|---|
| 🔹 tappi | 22K | 1m22s | ✅ Email sent — 8 clean tool calls |
| 🔸 Browser tool | 113K | 5m35s | ✅ Email sent — but needed URL workaround for shadow DOM |
| 🔷 Playwright | 12K | 26s | ❌ No auth — redirected to Google sign-in |
| 🔶 playwright-cli | 11K | 32s | ❌ No auth — redirected to Google sign-in |
The insight: This task exposed two critical fault lines. First, persistent sessions are non-negotiable — without them, you can't access any authenticated service. Could --storage-state have saved Playwright here? Partially — injecting Google cookies would likely get past the sign-in redirect. But you'd still be in a fresh Chromium instance facing Gmail's shadow DOM compose dialog, with no service workers, no cached state, and a browser fingerprint that Google can distinguish from a real Chrome session. You'd solve the login problem and immediately hit the shadow DOM problem. Second, shadow DOM piercing matters — Gmail's compose dialog is invisible to accessibility-tree-based tools, but tappi works at the raw DOM level and handles it natively.
The Big Picture
Total Context Burned (All 3 Tasks Combined)
🔹 tappi ·················· 59K tokens
🔷 playwright ············· 44K tokens (but only 1/3 tasks correct)
🔶 playwright-cli ················ 52K tokens (but only 1/3 tasks succeeded)
🔸 browser tool ·················································································· 252K tokens
The tools that look cheap (Playwright, playwright-cli) are cheap because they failed. They didn't burn tokens wrestling with Gmail's shadow DOM or navigating Reddit's comment trees — they just gave up. The cheapest tokens are the ones that get you wrong answers.
tappi is the only tool that was both efficient and correct across the board.
What This Means for Agent Builders
1. Token efficiency is not about the model — it's about the tool.
Same model, same thinking level, same instructions. The only variable was the browser tool. tappi used 59K tokens total. The browser tool used 252K. That's a 4.3x difference — and it compounds with every interaction in a long-running agent session. Over a day of agent work, that's the difference between staying within your context window and hitting compaction.
2. Persistent sessions are non-negotiable for real-world tasks.
Playwright and playwright-cli launch clean browsers. No cookies, no auth, no session state. Every Google service, every authenticated SaaS tool, every site that remembers you — inaccessible. In our test, this caused 4 out of 6 Playwright/playwright-cli runs to either fail outright or return garbage data.
Yes, Playwright supports cookie injection via --storage-state. In practice, this means exporting cookies and localStorage from a real browser as JSON, saving them to disk, and passing them on every launch — then re-exporting every time sessions expire, OAuth tokens rotate, or cookies get invalidated. It's a credential maintenance pipeline, not a persistent session. And it only covers cookies and localStorage — not service workers, IndexedDB, extension state, or any of the other session data modern web apps rely on. Even with perfect cookie injection, you're still launching a fresh Chromium with detectable default fingerprints — which is why Reddit CAPTCHA'd playwright-cli regardless.
Tools that piggyback on your existing Chrome profile (tappi via CDP, OpenClaw's browser tool) inherit everything — every cookie, every service worker, every IndexedDB entry, every extension, every logged-in tab. Zero setup, zero maintenance, zero expiration headaches. This isn't a nice-to-have — it's the difference between an agent that can actually do things and one that gets stopped at the login page.
3. Bot detection kills headless browsers.
Reddit blocked playwright-cli's headless Chrome with a visual CAPTCHA. Interestingly, Playwright scripting got through while playwright-cli didn't — same engine, different fingerprints. The lesson: default headless configurations get caught.
tappi and the OpenClaw browser tool run inside a real, headed Chrome instance. No headless detection. No CAPTCHA walls. No blocked endpoints.
4. Interactive refinement beats one-shot scripts.
Playwright's approach is "write a script, run it, hope it works." When it works, it's fast and cheap. But it captured bot comments instead of real ones on Reddit because there was no opportunity to inspect, evaluate, and refine.
tappi operates interactively — the agent sees elements, makes decisions, and adjusts in real time. On Reddit, it evaluated comment scores and chose the top human comment, producing fundamentally better output.
5. Shadow DOM is the real battleground.
Google Maps? All tools performed similarly — simple page, simple DOM.
Reddit? Shadow DOM web components, dynamic loading — the gap widened.
Gmail? Shadow DOM compose dialogs, chip-based recipient fields — the browser tool needed 113K tokens and a URL hack. tappi handled it in 22K, natively.
Modern web apps are built on shadow DOM. Your browser tool either pierces it or it doesn't.
Methodology Notes
- All agents were spawned as isolated OpenClaw sub-agent sessions
- Each agent received identical task instructions with explicit tool restrictions
- Token counts reflect the session's total context usage (including tool responses)
- Time measured from session spawn to result file creation
- All runs used the same Claude Sonnet 4.6 model with
thinking: medium - Results captured as structured JSON with full agent transcripts
- No manual intervention during any run
- Raw result data and transcripts available on request — open an issue
The Bottom Line
If your AI agent is burning tokens on ARIA snapshots, failing at login pages, or getting CAPTCHA'd by Reddit — you're using the wrong browser tool.
tappi went 3/3. 59K tokens. 4 minutes. No workarounds. No failures.
Fix it in one line:
pip install tappi
Or try it right now:
tappi open "https://example.com"
tappi elements
tappi click 3
tappi text
Connect it to your existing Chrome session and give your AI agent the ability to browse the web the way you do — with all your sessions, cookies, and context intact.
Using OpenClaw? tappi is available as a ready-to-use agent skill on ClawHub:
clawhub install tappi
One command and your agent has browser superpowers — shadow DOM piercing, coordinate commands, file uploads, and all your signed-in sessions. No config needed.
- 📦 PyPI: tappi
- 🐙 GitHub: shaihazher/tappi
- 🧩 ClawHub: tappi (OpenClaw skill)
- 📖 Docs: README
Built with OpenClaw and tappi. The experiment ran on a MacBook Pro with Chrome 145.
Think these results are wrong? Challenge them. I'll run your benchmark too.
Top comments (1)
Good stuff! I'll share this in next edition of playwrightweekly dot com. Good luck growing your package and thanks for open sourcing it!