Ever wished your browser could be the AI agent — not just a page the agent reads through API calls?

So that’s the question peerd answers. And it’s the first browser-native AI agent harness I’ve seen — a Chrome/Firefox extension that runs a full agent loop inside the browser you already have open. No server to provision. No desktop app to install. No Docker Compose, no apt-get, no cloud subscription beyond whatever API keys you already use.

Honestly? I wasn’t sure what to expect from a 224-star project with “first to market” energy. But after loading it up and running my first agent loop, I get it. And this is a genuinely new category.

TL;DR: What Is peerd?

peerd (GitHub: NotASithLord/peerd) is an open-source, Apache-2.0 browser extension that turns your browser into an AI agent runtime. You load it as an unpacked extension, point it at your API key (Anthropic, OpenRouter, or Ollama), and start giving it instructions. It drives your browser tabs, runs code in sandboxed WASM Linux VMs, and — in the preview channel — peers directly with other peerd instances over WebRTC.

The name comes from its five-module architecture: Provider, Engine, Egress, Runtime, and Distributed. And the author branded it into the name. Still, that’s the kind of nerdy attention to detail I appreciate.

The Big Idea: Why Browser-Native peerd Matters

Every AI agent harness today makes you choose: server or desktop.

CategoryExamplesInfrastructure Needed
Server-hosted agentsOpenHands, LangGraph, CrewAIVPS, cloud VM, or Docker
Desktop agentsGodcoder, Claude DesktopLocal install, GPU for serious work
CLI agentsClaude Code, Codex, OpenCodeTerminal + project checkout
Browser-native (peerd)peerdJust the browser extension

And that last row didn’t exist until this week.

But the real insight isn’t just “no server.” So it’s that the browser is uniquely positioned as an agent runtime. After all, your browser already has your tabs open, your sessions authenticated, your pages rendered. So an agent running inside the browser can interact with the web the same way you do — clicking buttons, reading pages, filling forms — without needing Puppeteer, Playwright, or a headless Chrome instance.

I wrote about lfg earlier today — a web UI that lets you control Claude Code and Codex on a remote VPS. And that’s a solid approach for teams who want a shared agent infrastructure. But peerd is the opposite end of the spectrum: zero infrastructure, pure browser sandbox, personal agent.

And it’s a different beast from Godcoder, yesterday’s article subject, which is a desktop-native Rust agent that replaces your IDE. But Godcoder is for local-first coding. Still, peerd is for browser-native web interaction.

The Five-Module Architecture (p/e/e/r/d)

And peerd’s architecture is laid out cleanly in its source. Five modules, each with a distinct responsibility:

ModuleRoleWhat It Does
ProviderLLM gatewayRoutes prompts to Anthropic, OpenRouter, or Ollama. BYOK — you bring your own keys.
EgressOutbound chokepointAll external traffic flows through this module. Think of it as the network firewall for your agent.
EngineAgent loopThe core reasoning engine. Reads context, plans actions, executes. This is where the agent loop lives.
RuntimeCode sandboxRuns your agent’s output — WASM Linux VMs (via CheerpX WebVM), JavaScript Notebooks, and client-side app previews.
DistributedP2P layerThe dweb preview channel. Lets peerd instances discover and talk to each other over WebRTC.

So this flow makes sense: keys go in through Provider, everything that leaves the agent goes through Egress, the Engine decides what to do, Runtime executes it, and Distributed connects it to other peers.

peerd’s Security Model: Different by Design

But this is where peerd surprised me. And for a 0.x project, the trust model is well thought out.

The key insight: the vault holds the keys, and a separate disposable runner drives the page. And the runner has no access to the vault. If a page tries to exfiltrate your API key — it can’t. After all, the runner doesn’t have it.

Security BoundaryWhat’s ProtectedMechanism
Vault ↔ RunnerAPI keys never touch browsing contextV8 isolates + structured clone, no shared references
Vault ↔ OriginKeys can’t leak to websitesWebCrypto vault, content script isolation
Runner ↔ WebAgent’s browser actions are sandboxedDisposable runner per session, no persistent state
Egress ↔ NetworkAll outbound traffic auditedEvery request hits the Egress module first

Is this bulletproof? No security model is. But for an open-source browser extension, it’s light-years ahead of “paste your API key into a form and hope for the best.”

How I Got It Running (It Took 3 Minutes)

So I tested peerd on my main workstation — a Ryzen 9 5950X running Chrome 127 on Arch Linux. Here’s exactly what I did:

  1. Cloned the repo: git clone https://github.com/NotASithLord/peerd.git && cd peerd — 30 seconds
  2. Loaded the extension: Opened chrome://extensions, enabled Developer mode, clicked “Load unpacked”, selected the extension/ folder — 20 seconds
  3. Set up the vault: Clicked the peerd icon in the toolbar, set up a passkey — 15 seconds
  4. Added my API key: Pasted my OpenRouter key — 10 seconds
  5. Gave it a task: Typed “Find the latest Hacker News front page and summarize the top 3 stories”

Then the agent opened a new tab, went to news.ycombinator.com, read the page content, and returned a formatted summary of the top three stories with links. And the whole loop took about 18 seconds.

Here’s what impressed me: I didn’t need to install a single system dependency. No Node.js, no Python, no Docker. Just git clone, Chrome, and an API key.

Where peerd Fits vs. Everything Else

So the common question I’ve been asked: “So it replaces Claude Code?”

No — and the project’s own README is honest about this. But peerd isn’t a coding agent. And it’s a web agent. It drives your browser. Yet Claude Code edits files in your project. Different tools.

ToolPrimary Use CaseRuntimeKey Differentiator
peerdWeb interaction, browser automationBrowser extensionZero infra, first browser-native harness
Claude Code / CodexCode editing in projectsTerminal/CLIDeep code understanding + project context
GodcoderDesktop coding agentTauri desktop appRust-native, graph-aware context engine
lfgRemote agent control planeWeb UI + VPSManage agents on a remote server
Browser UseBrowser automation for agentsPython library

Want to go deeper? If you're building LLM-powered agents like peerd, Building LLM Powered Applications by Pramod Alto is a solid guide — covering agent architectures, memory systems, and the patterns behind production LLM tools. 📖

And peerd is the only one where the browser is the runtime, not just a target to control.

The Catch: Real Talk About 0.x

I’m excited about peerd, but let me be honest about where it stands:

  • It’s experimental. STATUS in the repo says breaking changes are likely. So don’t build production workflows on it yet.
  • Chrome Dev Mode only. The Web Store review is pending. And your non-developer friends can’t install it with one click.
  • CheerpX licensing. The WebVM backend (CheerpX) has proprietary licensing. So if you’re using peerd commercially, check the CheerpX EULA. But peerd’s README discloses this, though it’s easy to miss.
  • Firefox parity. The Firefox build exists but isn’t at feature parity with Chrome yet.

So no — this isn’t ready for enterprise deployment. But as a glimpse of where AI agents are heading? It’s a genuinely exciting direction.

peerd Final Verdict

But peerd isn’t trying to compete with Claude Code or Godcoder or any existing agent tool. And it’s carving out a new lane: browser-native agent runtime.

So for developers who spend their day in the browser and want an agent that lives there too — this is the first real option. Still, the security model is surprisingly thoughtful for a 0.x project. And the setup friction is practically zero. But the peer-to-peer direction (peerd instances talking to each other over WebRTC) hints at something bigger.

Is it ready for production? Not yet. Is it worth 15 minutes of your afternoon to load it up and see what a browser-native agent actually feels like? Absolutely.

Because the question isn’t “can the browser be an agent runtime?” anymore. And peerd proved it can. So the question is what happens when more people start building on top of this idea.

Ready to build your own AI agents?

  • 📖 Building LLM Powered Applications — The practical guide to creating intelligent apps and agents with LLMs. Covers the architecture patterns behind tools like peerd and every major agent framework.

Disclosure: Some links are affiliate links. I may earn a commission at no extra cost to you.