# BrowserBridge Capability Matrix Status: BETA3 public capability matrix, updated by BETA3-FIX1. This matrix separates implementation status from external beta support. A capability can be implemented internally and still be limited, experimental, fixture-only, or unsupported for public beta testers. | Capability | Implemented Internally | Tester Exposed | Public Beta Supported | Risk | Approval Required | Policy Controlled | | --- | --- | --- | --- | --- | --- | --- | | Active-tab metadata | Yes | Yes | Yes | Low | No | Yes | | Target-tab lease | Yes | Yes | Yes | Low | Operator action | Yes | | Navigation | Yes | Yes | Yes, primary live action | Medium | Yes | Yes | | DOM summary | Yes | Yes, after origin grant | Yes, redacted summary only | Medium | Origin grant required | Yes | | Governed low-risk element click | Yes | Limited/experimental | Limited beta checks only; not general click automation | Medium | Yes | Yes | | Governed safe field fill | Yes | Limited/experimental | Limited beta checks only; sensitive fields blocked | Medium | Yes | Yes | | Governed safe field type | Yes | Limited/experimental | Limited beta checks only; no Enter/submit | Medium | Yes | Yes | | Safe test submit | Yes | Safe test only | Controlled validation only; not general submit | High | Yes | Yes | | General submit | No | No | Not supported | High | Not available | Yes | | Login submit | No | No | Not supported | Critical | Not available | Yes | | MFA submit | No | No | Not supported | Critical | Not available | Yes | | Payment/purchase submit | No | No | Not supported | Critical | Not available | Yes | | File upload | Design only | No | Not supported | Critical | Not available | Yes | | Download/open file | Design only | No | Not supported | High | Not available | Yes | | Screenshots | No | No | Not supported | Critical | Not available | No | | Raw DOM return/persistence | No | No | Not supported | Critical | Not available | No | | Cookies/storage | No | No | Not supported | Critical | Not available | No | | Managed tab lifecycle | Yes, control-plane state | Yes | Visibility and ownership governance; not arbitrary Chrome tab control | Medium | Yes for risky operations | Yes | | Workspace visibility | Yes | Yes | Yes | Low | Operator governed | Yes | | Policy overrides | Yes | Yes | Yes | Medium | Operator governed | Yes | | Policy templates | Yes | Yes | Yes | Medium | Owner approval for policy changes | Yes | | Policy diff/review | Yes | Yes | Yes | Medium | Owner approval for policy changes | Yes | | Policy simulation | Yes | Yes | Yes, read-only | Low | No execution | Yes | | Action limits | Yes | Yes | Yes | Medium | No | Yes | | Organization/team roles | Shared model | Visible in control plane | Governance model; not hosted SaaS identity | Medium | Yes for controlled actions | Yes | | Workspace membership | Shared model | Visible in control plane | Governance model; not hosted SaaS identity | Medium | Yes for controlled actions | Yes | | Approval delegation | Shared model | Visible in control plane | Governance model | Medium | Yes | Yes | | Team audit metadata | Shared model | Audit summaries | Governance model | Low | No | Yes | | Mobile approvals | Design only | No | Not supported | High | Not available | Yes | | Mobile panic | Design only | No | Not supported | High | Not available | Yes | | Mobile browser execution | No | No | Not supported | Critical | Not available | Yes | | Helper Health | Yes | Yes | Yes | Low | No | No | | Fix Now | Yes | Yes | Yes, allowlisted remediation only | Medium | Operator action | Yes | | Export Diagnostics | Yes | Yes | Yes, redacted support bundle | Low | Operator action | No | | Panic | Yes | Yes | Yes | Low | Operator action | Always on | ## Public Beta Framing - Treat navigation as the main broadly supported live browser action. - Treat DOM summary as supported only after explicit target lease and origin grant; it returns redacted summaries and opaque handles, not raw DOM. - Treat click and fill/type as limited experimental beta checks. They are not a promise of general website automation. - Treat submit as safe-test-only. Auth, payment, delete, send, publish, purchase, upload, and security submits are not supported. ## Security Invariants - No screenshots. - No raw DOM persistence. - No full URL persistence. - No unauthenticated remote MCP. - No content scripts. - No `chrome.debugger`. - No ``.