Chromium launched via web-ext run is marked unsafe by Google, works fine when launched directly

[a523]

web-ext run --target chromium \
  --chromium-binary "/usr/local/bin/chromium" \
  --args="--user-data-dir=/Users/xxx/Library/Application\ Support/Chromium" \
  -s /Users/xxx/.output/chrome-mv3-dev

web-ext version: 8.9.0
OS: macOS 26.0 Beta (25A5351b)

When I launch Chromium using the above command, Google treats the browser as "unsafe."
This causes a lot of trouble, not just google account login failures:

Google Search always requires CAPTCHA verification.

YouTube videos stop after a few seconds, and captions cannot be loaded.

Since my extension depends on YouTube services, this issue makes development very difficult.

Strangely, I didn’t have this problem before. It only started in the last couple of days, even though I haven’t upgraded Chromium or web-ext. Maybe Google recently changed its detection logic?

When I launch Chromium manually from the terminal with:
/usr/local/bin/chromium
everything works fine — login, search, YouTube playback.

So my final question is:
👉 What is the actual difference between launching Chromium directly (/usr/local/bin/chromium) and launching it via web-ext run --target chromium --chromium-binary "/usr/local/bin/chromium"?

How can we fix it ?

[Rob--W]

Does your issue resolve when you add the following to your web-ext run call?

--args=--disable-blink-features=AutomationControlled

This is explained at #3388 (comment)

[a523]

@Rob--W Thanks, it works with --args=--disable-blink-features=AutomationControlled.

Is this a long-term solution?
I noticed the browser shows a warning: “You are using an unsupported command-line flag: --disable-blink-features=AutomationControlled. Stability and security will suffer.”

I’m a bit worried — will this only work for a short time before it stops working again?

Anyway , Thanks you again , It help me a lot.

[Rob--W]

@Rob--W Thanks, it works with --args=--disable-blink-features=AutomationControlled.

Is this a long-term solution?

I cannot look in the future, but this flag has been around for a long while.

I noticed the browser shows a warning: “You are using an unsupported command-line flag: --disable-blink-features=AutomationControlled. Stability and security will suffer.”

I mentioned this in another comment on the issue (#3388 (comment)); the warning does not affect the functionality (other than taking some vertical space). I can consider setting the flag by default if this matches the desired behavior more accurately.

I’m a bit worried — will this only work for a short time before it stops working again?

Even if it stops working, there are alternatives, which I sketched in the comment I just linked.

[a523]

@Rob--W yeah, Thank you , I think in dev env , it has that flag , that is no problem.

[Rob--W]

@rpl pointed out that when we launch Firefox via web-ext, its UI looks special (red address bar, robot icon).

Because the presence of navigator.webdriver is causing web-visible issues, I think that it is worth the trade-off to set the --disable-blink-features=AutomationControlled flag. I'll prepare a PR for it (maybe also allowing the flag to be overridden with --enable-blink-features=AutomationControlled in case someone prefers the navigator.webdriver=true flag without the infobar).