fix(browser): disable client cdp API when allowWrite/allowExec: false

[hi-ogawa]

Description

• backport v4 fix(browser): disable client cdp API when allowWrite/allowExec: false [backport to v4] #10450
• backport v3 fix(browser): disable client cdp API when allowWrite/allowExec: false [backport to v3] #10456

Please don't delete this checklist! Before submitting the PR, please make sure you do the following:

• It's really useful if your PR references an issue where it is discussed ahead of time. If the feature is substantial or introduces breaking changes without a discussion, PR might be closed.
• Ideally, include a test that fails without this PR but passes with it.
• Please, don't make changes to pnpm-lock.yaml unless you introduce a new test example.
• Please check Allow edits by maintainers to make review process faster. Note that this option is not available for repositories that are owned by Github organizations.

Tests

• Run the tests with pnpm test:ci.

Documentation

• If you introduce new functionality, document it. You can run documentation with pnpm run docs command.

Changesets

• Changes in changelog are generated from PR name. Please, make sure that it explains your changes in an understandable manner. Please, prefix changeset messages with feat:, fix:, perf:, docs:, or chore:.

[netlify]

✅ Deploy Preview for vitest-dev ready!

Built without sensitive environment variables

Name	Link
🔨 Latest commit	c4a4204
🔍 Latest deploy log	https://app.netlify.com/projects/vitest-dev/deploys/6a17a87ffc64260009f79847
😎 Deploy Preview	https://deploy-preview-10444--vitest-dev.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
🤖 Make changes	Run an agent on this branch

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[hi-ogawa]

We had weird ambient type from packages/coverage-v8/src/browser.ts and affected this part somehow. Did a quick ugly fix.

[hi-ogawa]

This now restricts exposure to only these cdp commands. This would still expose runtime test code information, but it's just as bad as what readFile command or Vite's already exposes based on server.fs, so it should be fine.

[pkg-pr-new]

@vitest/browser

npm i https://pkg.pr.new/@vitest/browser@10444

@vitest/browser-playwright

npm i https://pkg.pr.new/@vitest/browser-playwright@10444

@vitest/browser-preview

npm i https://pkg.pr.new/@vitest/browser-preview@10444

@vitest/browser-webdriverio

npm i https://pkg.pr.new/@vitest/browser-webdriverio@10444

@vitest/coverage-istanbul

npm i https://pkg.pr.new/@vitest/coverage-istanbul@10444

@vitest/coverage-v8

npm i https://pkg.pr.new/@vitest/coverage-v8@10444

@vitest/expect

npm i https://pkg.pr.new/@vitest/expect@10444

@vitest/mocker

npm i https://pkg.pr.new/@vitest/mocker@10444

@vitest/pretty-format

npm i https://pkg.pr.new/@vitest/pretty-format@10444

@vitest/runner

npm i https://pkg.pr.new/@vitest/runner@10444

@vitest/snapshot

npm i https://pkg.pr.new/@vitest/snapshot@10444

@vitest/spy

npm i https://pkg.pr.new/@vitest/spy@10444

@vitest/ui

npm i https://pkg.pr.new/@vitest/ui@10444

@vitest/utils

npm i https://pkg.pr.new/@vitest/utils@10444

vitest

npm i https://pkg.pr.new/vitest@10444

@vitest/web-worker

npm i https://pkg.pr.new/@vitest/web-worker@10444

commit: c4a4204

[hi-ogawa]

@codex review

[chatgpt-codex-connector]

Codex Review: Didn't find any major issues. 🎉

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[Copilot]

Pull request overview

This PR hardens browser-mode CDP access by blocking the public client cdp() API when write or exec permissions are disabled, while keeping internal V8 browser coverage functional through server-side commands.

Changes:

• Adds CDP permission checks to browser RPC handlers.
• Moves V8 browser coverage CDP calls behind internal browser commands.
• Updates tests and documentation for the new CDP permission behavior.

Reviewed changes

Copilot reviewed 11 out of 11 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
packages/browser/src/node/rpc.ts	Adds CDP permission gating and exposes an internal cached CDP handler to server commands.
packages/browser/src/node/commands/coverage.ts	Adds internal commands for starting and taking V8 coverage via CDP.
packages/browser/src/node/commands/index.ts	Registers the new internal V8 coverage commands.
packages/coverage-v8/src/browser.ts	Uses internal commands instead of the public browser cdp() API.
packages/vitest/src/node/types/browser.ts	Documents the internal cached CDP handler on browser command context.
packages/browser-playwright/src/playwright.ts	Simplifies Playwright CDP session method forwarding.
test/browser/specs/errors.test.ts	Adds coverage for public cdp() failure when browser API permissions are disabled.
test/coverage-test/test/browser-api-permissions.browser.test.ts	Verifies browser V8 coverage still works with API write/exec disabled.
docs/config/browser/api.md	Documents that browser API permissions gate privileged CDP access.
docs/api/browser/context.md	Adds CDP permission warning to browser context docs.
docs/api/browser/commands.md	Adds CDP permission warning to browser commands docs.

[sheremet-va]

I think this could even be a public API to be honest (in v5). Not blocking though