<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:dc="http://purl.org/dc/elements/1.1/">
  <channel>
    <title>DEV Community: proxybrad</title>
    <description>The latest articles on DEV Community by proxybrad (@proxybrad).</description>
    <link>https://dev.to/proxybrad</link>
    <image>
      <url>https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F4027342%2Fccc93c01-fb71-489d-a75b-206685198dd0.jpg</url>
      <title>DEV Community: proxybrad</title>
      <link>https://dev.to/proxybrad</link>
    </image>
    <atom:link rel="self" type="application/rss+xml" href="https://dev.to/feed/proxybrad"/>
    <language>en</language>
    <item>
      <title>I built an open-source MCP server so AI agents can read the web - even sites that block bots</title>
      <dc:creator>proxybrad</dc:creator>
      <pubDate>Mon, 13 Jul 2026 13:40:23 +0000</pubDate>
      <link>https://dev.to/proxybrad/i-built-an-open-source-mcp-server-so-ai-agents-can-read-the-web-even-sites-that-block-bots-1oo</link>
      <guid>https://dev.to/proxybrad/i-built-an-open-source-mcp-server-so-ai-agents-can-read-the-web-even-sites-that-block-bots-1oo</guid>
      <description>&lt;p&gt;If you've tried to give an LLM agent web access, you've hit this wall: point it at the real web and a plain &lt;code&gt;fetch&lt;/code&gt; breaks two ways.&lt;/p&gt;

&lt;ol&gt;
&lt;li&gt;
&lt;strong&gt;JavaScript sites&lt;/strong&gt; return an empty &lt;code&gt;&amp;lt;div id="root"&amp;gt;&lt;/code&gt; shell — the model gets nothing.&lt;/li&gt;
&lt;li&gt;
&lt;strong&gt;Anything commercially interesting&lt;/strong&gt; returns a &lt;code&gt;403&lt;/code&gt; or a Cloudflare "just a moment" page.&lt;/li&gt;
&lt;/ol&gt;

&lt;p&gt;I kept hitting this building agent workflows, so I open-sourced the tool I made:&lt;br&gt;
&lt;strong&gt;HatFetch&lt;/strong&gt; — an MIT-licensed MCP server that gives Claude, Cursor, or any MCP&lt;br&gt;
client three tools (&lt;code&gt;scrape&lt;/code&gt;, &lt;code&gt;crawl&lt;/code&gt;, &lt;code&gt;screenshot&lt;/code&gt;) returning pages as clean Markdown.&lt;/p&gt;

&lt;h2&gt;
  
  
  The idea: escalate only when you have to
&lt;/h2&gt;

&lt;p&gt;Most tools either always spin up a heavy headless browser (slow) or never do (blocked). HatFetch escalates:&lt;/p&gt;

&lt;ol&gt;
&lt;li&gt;
&lt;strong&gt;HTTP fetch&lt;/strong&gt; → main-content extraction → Markdown. Fast, no browser.&lt;/li&gt;
&lt;li&gt;If the page is an empty JS shell, or gets blocked, it escalates to a real stealth browser (Patchright) running &lt;strong&gt;through residential proxies&lt;/strong&gt;.&lt;/li&gt;
&lt;li&gt;If an interactive CAPTCHA still appears and you've set a solver key, it solves it.
&lt;/li&gt;
&lt;/ol&gt;

&lt;div class="highlight js-code-highlight"&gt;
&lt;pre class="highlight json-doc"&gt;&lt;code&gt;&lt;span class="c1"&gt;// add to your MCP client (Claude Desktop, Cursor, ...)&lt;/span&gt;&lt;span class="w"&gt;
&lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="nl"&gt;"mcpServers"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="nl"&gt;"hatfetch"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="nl"&gt;"command"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="s2"&gt;"npx"&lt;/span&gt;&lt;span class="p"&gt;,&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="nl"&gt;"args"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;[&lt;/span&gt;&lt;span class="s2"&gt;"-y"&lt;/span&gt;&lt;span class="p"&gt;,&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="s2"&gt;"hatfetch"&lt;/span&gt;&lt;span class="p"&gt;]&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt;
&lt;/span&gt;&lt;/code&gt;&lt;/pre&gt;

&lt;/div&gt;



&lt;p&gt;Then ask your agent: "read  and summarize it."&lt;/p&gt;

&lt;p&gt;Being honest about what it can't do&lt;/p&gt;

&lt;p&gt;No tool gets past 100% of anti-bot in 2026, and I won't pretend otherwise.&lt;br&gt;
Aggressive Cloudflare / DataDome / PerimeterX still win sometimes. When they do, HatFetch returns an honest error instead of handing your model a CAPTCHA page as if it were content — that silent false-success is, IMO, the real sin in a lot of scraping tooling.&lt;/p&gt;

&lt;p&gt;It's reliable on: server-rendered sites, JavaScript apps, geo-restricted pages, and IP-reputation / rate-limit blocks. It's a coin flip on the very hardest targets.&lt;/p&gt;

&lt;p&gt;The pieces (all MIT)&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;HatFetch — the MCP server: &lt;a href="https://github.com/ProxyHatCom/HatFetch" rel="noopener noreferrer"&gt;https://github.com/ProxyHatCom/HatFetch&lt;/a&gt;
&lt;/li&gt;
&lt;li&gt;hatbreak — the engine, without MCP: npm i hatbreak&lt;/li&gt;
&lt;li&gt;scrapy-proxyhat — the same residential proxies as a Scrapy middleware: pip install scrapy-proxyhat&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;Disclosure: I run ProxyHat, a residential proxy service, and there's a&lt;br&gt;
first-class integration — but everything works with any HTTP proxy via&lt;br&gt;
PROXY_URL, or none at all.&lt;/p&gt;

&lt;p&gt;Feedback very welcome, especially on the escalation heuristics — when is it worth spending a browser render?&lt;/p&gt;

</description>
      <category>ai</category>
      <category>webdev</category>
      <category>programming</category>
      <category>proxy</category>
    </item>
  </channel>
</rss>
