getfoundry

unbrowse

Reverse-engineer any website into reusable API skills. Capture network traffic, discover endpoints, learn API patterns, execute learned skills, and manage auth for gated sites. Use when someone wants to scrape structured data from a website, discover hidden APIs, automate web interactions, or bypass the need for official API documentation.

getfoundry 0 1 Updated 3mo ago
GitHub

Install

npx skillscat add getfoundry/unbrowse

Install via the SkillsCat registry.

SKILL.md

Unbrowse — Website-to-API Reverse Engineering

Overview

Unbrowse is a local service that captures browser network traffic, reverse-engineers API endpoints, and turns them into reusable "skills" that can be re-executed programmatically. It runs on http://localhost:6969 (or $UNBROWSE_URL if configured).

Server

The unbrowse engine is installed at ~/.agents/skills/unbrowse. If the server is not running, install dependencies and start it:

cd ~/.agents/skills/unbrowse && bun install && PORT=6969 bun src/index.ts &

Wait 2 seconds for startup, then set the base URL:

UNBROWSE=${UNBROWSE_URL:-http://localhost:6969}

Core Workflow

1. Natural Language Intent Resolution (Recommended)

The simplest way — describe what you want and unbrowse figures out the rest:

curl -s -X POST "$UNBROWSE/v1/intent/resolve" \
  -H "Content-Type: application/json" \
  -d '{"intent": "get trending searches on Google", "params": {"url": "https://google.com"}, "context": {"url": "https://google.com"}}'

This will: discover a matching skill or capture the site, extract API endpoints, learn a skill, and execute it — all in one call.

2. Manual Capture → Execute Flow

Step 1: Capture a website

curl -s -X POST "$UNBROWSE/v1/intent/resolve" \
  -H "Content-Type: application/json" \
  -d '{"intent": "capture APIs from this site", "params": {"url": "https://example.com"}, "context": {"url": "https://example.com"}}'

Step 2: List learned skills

curl -s "$UNBROWSE/v1/skills" | jq .

Step 3: Execute a specific skill

curl -s -X POST "$UNBROWSE/v1/skills/{skill_id}/execute" \
  -H "Content-Type: application/json" \
  -d '{"params": {}}'

Step 4: Inspect endpoint schema

curl -s "$UNBROWSE/v1/skills/{skill_id}/endpoints/{endpoint_id}/schema" | jq .

Authentication for Gated Sites

If a site requires login:

Interactive Login (opens a browser window)

curl -s -X POST "$UNBROWSE/v1/auth/login" \
  -H "Content-Type: application/json" \
  -d '{"url": "https://example.com/login"}'

The user completes login in the browser. Cookies are stored in the vault and automatically used for subsequent captures and executions on that domain.

After Login, Re-capture

curl -s -X POST "$UNBROWSE/v1/intent/resolve" \
  -H "Content-Type: application/json" \
  -d '{"intent": "get my dashboard data", "params": {"url": "https://example.com/dashboard"}, "context": {"url": "https://example.com"}}'

Stored auth cookies are automatically loaded from the vault.

Mutation Safety

For non-GET endpoints (POST, PUT, DELETE), unbrowse requires explicit confirmation:

Dry Run (preview what would execute)

curl -s -X POST "$UNBROWSE/v1/skills/{skill_id}/execute" \
  -H "Content-Type: application/json" \
  -d '{"params": {}, "dry_run": true}'

Confirm Unsafe Execution

curl -s -X POST "$UNBROWSE/v1/skills/{skill_id}/execute" \
  -H "Content-Type: application/json" \
  -d '{"params": {}, "confirm_unsafe": true}'

Always use dry_run first for mutations. Ask the user before passing confirm_unsafe.

Field Projection

Request only specific fields from the response:

curl -s -X POST "$UNBROWSE/v1/skills/{skill_id}/execute" \
  -H "Content-Type: application/json" \
  -d '{"params": {}, "projection": {"include": ["title", "url", "score"]}}'

Feedback

Report whether a skill execution was useful:

curl -s -X POST "$UNBROWSE/v1/feedback" \
  -H "Content-Type: application/json" \
  -d '{"target_type": "skill", "target_id": "{skill_id}", "endpoint_id": "{endpoint_id}", "outcome": "success", "rating": 5}'

Ratings (1-5) affect the skill's reliability score and future ranking.

Skill Verification

Trigger a health check on a skill's endpoints:

curl -s -X POST "$UNBROWSE/v1/skills/{skill_id}/verify" | jq .

API Reference

Method Endpoint Description
POST /v1/intent/resolve Resolve intent → find/learn/execute skill
GET /v1/skills List all learned skills
GET /v1/skills/:id Get skill details
POST /v1/skills Publish a new skill
POST /v1/skills/:id/execute Execute a learned skill
POST /v1/skills/:id/verify Verify skill endpoints
GET /v1/skills/:id/endpoints/:eid/schema Get endpoint response schema
POST /v1/auth/login Interactive browser login
POST /v1/feedback Submit execution feedback
GET /v1/feedback/:id Get feedback for a skill
GET /health Health check

Rules

  1. Always try intent/resolve first — it handles the full discover→learn→execute pipeline
  2. If a site returns auth_required, use /v1/auth/login then retry
  3. Always dry_run before executing mutations (non-GET endpoints)
  4. Submit feedback after executions to improve skill reliability scores
  5. Use jq to parse JSON responses for clean output
  6. Replace {skill_id} and {endpoint_id} with actual IDs from previous responses

Categories

Auth CLI Tools Social
GitHub

Install

npx skillscat add getfoundry/unbrowse

Install via the SkillsCat registry.

Recommended Skills

ajoslin
kimaki-tools by ajoslin
23 3mo ago
jackwener
opencli by jackwener
13.9K 2mo ago
qwibitai
add-whatsapp by qwibitai
26.7K 2mo ago
callstackincubator
agent-device by callstackincubator
1.6K 3mo ago
NousResearch
github-auth by NousResearch
29.3K 3mo ago
Yeachan-Heo
project-session-manager by Yeachan-Heo
25.5K 3mo ago