chore(deps): bump undici and agent-browser

[dependabot]

Removes undici. It's no longer used after updating ancestor dependency agent-browser. These dependencies need to be updated together.

Removes undici

Updates agent-browser from 0.13.0 to 0.28.0

Release notes

Sourced from agent-browser's releases.

agent-browser@0.23.2

Patch Changes

• 3c942e2: ### New Features

  • Dashboard session creation - Sessions can now be created directly from the dashboard UI. A new session dialog provides a unified selector grid for local engines (Chrome, Lightpanda) and cloud providers (Browserbase, Browserless, Browser Use, Kernel) with async creation, loading state, and error display (#1092)
  • Dashboard provider icons - The session sidebar now shows the provider or engine icon for each session, making it easy to identify which backend a session is using (#1092)

  Bug Fixes

  • Fixed Browser Use provider using an intermediate API call instead of connecting directly via WSS (wss://connect.browser-use.com), which caused connection failures (#1092)
  • Fixed Browserbase provider not sending an explicit JSON body and Content-Type header, causing session creation to fail (#1092)
  • Fixed provider navigation hanging because wait_for_lifecycle waited for page load events that remote providers may not emit. Navigation with --provider now automatically sets waitUntil=none (#1092)
  • Fixed remote CDP connections timing out by increasing the CDP connect timeout from 10s to 25s for cloud providers (#1092)
  • Fixed zombie daemon processes not being cleaned up when a provider connection fails during session creation from the dashboard (#1092)

agent-browser@0.23.1

Patch Changes

• fbcab37: ### New Features

  • Auto-dismissal for alert and beforeunload dialogs - JavaScript alert() and beforeunload dialogs are now automatically accepted to prevent the agent from blocking indefinitely. confirm and prompt dialogs still require explicit dialog accept/dismiss commands. Disable with --no-auto-dialog flag or AGENT_BROWSER_NO_AUTO_DIALOG environment variable (#1075)
  • Puppeteer browser cache fallback - Chrome discovery now searches ~/.cache/puppeteer/chrome/ (or PUPPETEER_CACHE_DIR) for Chrome binaries, so users with an existing Puppeteer installation can use agent-browser without a separate install step (#1088)
  • Console output improvements - console.log of objects now shows the actual object preview (e.g. {userId: "abc", count: 42}) instead of "Object". JSON output includes a raw args array for programmatic access (#1040)

  Bug Fixes

  • Fixed same-document navigation (e.g. SPA hash routing) hanging forever because wait_for_lifecycle waited for a Page.loadEventFired that never fires on same-document navigations (#1059)
  • Fixed save_state only capturing cookies and localStorage for the current origin, silently dropping cross-domain data (e.g. SSO/CAS auth cookies). Now uses Network.getAllCookies and collects localStorage from all visited origins (#1064)
  • Fixed externally opened tabs not appearing in tab list when using --cdp mode. Tabs opened by the user or another CDP client are now detected and tracked (#1042)
  • Fixed dashboard server not picking up installed files without a restart. dashboard install now takes effect immediately on a running server (#1066)
  • Fixed Windows Chrome extraction failing because zip path normalization used forward slashes while the extraction code expected backslashes (#1088)

agent-browser@0.23.0

Minor Changes

• 0f0f300: ### New Features

  • Observability dashboard - Added a local web UI (dashboard) that shows live browser viewports, command activity feeds, console output, network requests, storage, and extensions for all sessions. Manage it with dashboard start, dashboard stop, and dashboard install. The dashboard runs as a standalone background process and all sessions stream to it automatically (#1034)
  • Runtime stream management - Added stream enable, stream disable, and stream status commands to control WebSocket streaming at runtime. Streaming is now always enabled by default; AGENT_BROWSER_STREAM_PORT overrides the port instead of toggling the feature (#951)
  • Close all sessions - Added close --all flag to close every active browser session at once

  Bug Fixes

  • Fixed Lightpanda engine compatibility (#1050)
  • Fixed Windows daemon TCP bind failing when Hyper-V reserves the port by falling back to an OS-assigned port and writing it to a .port file (#1041)
  • Fixed Windows dashboard relay using Unix socket instead of TCP (#1038)
  • Fixed radio/checkbox elements being dropped from compact snapshot tree because the ref= check required a leading [ that those elements lack (#1008)

Changelog

Sourced from agent-browser's changelog.

0.28.0

New Features

• MCP server - Added agent-browser mcp, a stdio Model Context Protocol server with typed tools, paginated discovery, protocol negotiation, and startup tool profiles. The default core profile keeps context small, while --tools all exposes full CLI parity and composed profiles such as core,network,react are supported (#1454)
• Plugin system - Added out-of-process plugin support over the agent-browser.plugin.v1 stdio protocol, with plugin add/list/show/run, manifest discovery, npm and GitHub refs, credential providers, browser provider plugins, launch mutators, custom command capabilities, config and env registry support, and capability-scoped policy gates (#1452)

Infrastructure

• Added context footprint eval coverage for CLI skills, MCP core, and MCP full-profile surfaces, plus MCP parity tests to keep tool behavior aligned with the CLI (#1454)

Contributors

• @​ctate

0.27.3

Bug Fixes

• Fixed Windows ARM64 installs by falling back to the Windows x64 binary during postinstall, avoiding failed downloads for a native ARM64 artifact that is not published (#1269)

Contributors

• @​EternalRights

0.27.2

Bug Fixes

• Fixed click reliability by scrolling off-viewport elements into view before resolving coordinates, handling JavaScript dialogs promptly, recovering mouse state after dialog-opening clicks, and detecting click interception by overlays before dispatching input (#1432, #1434)
• Fixed frame-scoped selectors and waits so CSS-selector actions and wait respect the selected iframe, including cross-process iframes, with translated click coordinates (#1432)
• Fixed wait timeout handling so the documented 25s default is used, --timeout is honored across wait variants, and long waits receive an appropriate client read budget (#1432)
• Fixed agent-facing form commands so find label matches aria-label and aria-labelledby, select errors when no option matches, and type parses --clear and --delay instead of typing them as text (#1432)

Improvements

• Cut warm CLI command latency from about 150ms to about 1ms by removing the unconditional daemon settle sleep and retrying once when a stale daemon socket is discovered (#1432)
• Extended daemon respawn and retry handling to batch commands so batches recover from a daemon exit after the initial liveness check (#1432)

Infrastructure

• Pinned GNU Linux release artifacts to glibc 2.28 with zigbuild, added a release guard for newer GLIBC symbols, and aligned Docker release helpers with the pinned target (#1417)

Contributors

• @​ctate
• @​heshamkhaledd

... (truncated)

Commits

• 6323df5 Prepare v0.28.0 release (#1455)
• a982ea0 Add MCP server with startup profiles (#1454)
• e2b4c04 Add plugin system (#1452)
• 2c7991c Prepare v0.27.3 release (#1446)
• 8e70c78 fix: fall back to x64 binary on Windows ARM64 (#1269)
• 5185339 chore: prepare 0.27.2 release (#1435)
• 688e285 Detect click interception by overlays (#1434)
• 4aa3368 Fix agent-facing reliability bugs and cut warm command latency to ~1ms (#1432)
• 328ce8a Pin Linux release glibc floor (#1417)
• 90050f2 chore: prepare 0.27.1 release (#1405)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for agent-browser since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[github-actions]

⚠️ Supply Chain Risk Detected

This PR contains patterns commonly associated with supply chain attacks. This does not mean the PR is malicious — but these patterns require careful human review before merging.

⚠️ WARNING: Dependency manifest files modified

Changes to dependency files can introduce new packages or change version pins. Verify all dependency changes are intentional and from trusted sources.

Files:

package.json

---

Automated scan triggered by supply-chain-audit. If this is a false positive, a maintainer can approve after manual review.