Secure browser automation without rewriting your stack.
SurfaceProxy sits between your browser agent and the web, scrubbing prompt injection, blocking data exfiltration, and compressing page context before it reaches the model. Keep Playwright, Puppeteer, Browser‑Use, Cursor, Windsurf, and Claude Code.
Protect the surface
Block injected instructions and sensitive data leaks at the proxy layer.
Shrink model input
Trim raw DOM into a smaller, cheaper context that is easier for models to use.
Keep your tools
Switch endpoints once and keep your existing agent stack, CLI, and workflows.
Works with the tools teams already use
Browser Compatibility
Works with Every Browser Automation Stack. Zero Code Rewrites.
SurfaceProxy hooks into the Chrome DevTools Protocol (CDP) layer. Whether you're running raw Playwright, Puppeteer, or high-level agent frameworks like Browser-Use, Cursor, or Windsurf — just swap your WebSocket endpoint. Your existing automation code stays untouched.
# Before: burning tokens on raw HTMLbrowser = await webdriver.connect("ws://localhost:3000")await agent.run(browser)
# After: optimized, firewalled, and securebrowser = await webdriver.connect("ws://proxy.sentrysurface.io/v1/session")await agent.run(browser) # unchanged
How It Works
Dual protection for token efficiency and security.
Every request through SentrySurface is compressed, filtered, and sanitized — in that order.
Compression
Stop paying the "HTML Tax."
Raw webpages are packed with tracking pixels, layout scripts, and styling bloat that drain context windows. SentrySurface strips the noise, compressing heavy layouts into lean, semantic Markdown trees containing only interactive components. Repeated page visits only pass the structural diff.
Guardrails
Configurable Allowlists and Blocklists.
Take absolute control over where your autonomous agents navigate. Lock workloads down to specific trusted domains (*.gov.au, *.salesforce.com) and block newly registered or untrusted destinations at the network layer before a browser instance ever fires up.
Security
Air-Gapped Sandboxing and Injection Scrubbing.
SentrySurface executes web browsing inside disposable, ephemeral sandbox runtimes. Incoming payloads are scrubbed for high-entropy Indirect Prompt Injection attempts, while outbound pipes automatically mask corporate PII and secrets to stop adversarial data exfiltration.
Savings
Compare current model spend.
Pick the model you actually run, then see the monthly difference between raw browser pages and the compressed proxy output SurfaceProxy sends to the model.
Uses current public list pricing for the selected model.
Raw monthly spend
$24.0k
With SurfaceProxy
$900.00
Monthly savings
$23.1k
96% token reduction
Annual savings
$277.2k
Cumulative monthly spend
Plans
Built for Developers. Hardened for Enterprises.
Start locally for free and scale to a fully air-gapped, compliance-ready enterprise deployment when your security posture demands it.
Community
Open Source
Eliminate token waste locally. Perfect for individual developers and small teams.
- Local Docker / CLI setup
- Basic Semantic DOM Pruning
- Local file-based allow/blocklists
- Standard system console logging
- Multi-tenant cloud or VPC deployment
- Advanced DOM-Diff Caching
- Live threat intel feeds
- Full audit session logs & SIEM
Enterprise
Security Gateway
Full air-gapped sandboxing, SOC 2 compliance, and live threat intelligence.
- Multi-tenant cloud or VPC deployment
- Advanced DOM-Diff Caching & Vision Grid Mapping
- Live threat intel feeds & dynamic rule assignment
- Full audit session logs & SIEM dashboard
- LLM integration
- Dedicated security sandbox runtimes
- SLA & priority support
- Custom integration & professional services
Secure Your Web Agents. Stop Overpaying for Tokens.
Join the next generation of AI-native engineering teams building safe, efficient, and cost-predictive browser automation.