Run any Skill in Manus with one click

$pwd:

headful-chrome-vnc

Name: Headful Chrome Vnc
Author: team-michael

// Run Chrome in headful mode on the VNC display with persistent profile (cookies, localStorage, cache). Use for web scraping and automation that benefits from a real GUI browser.

Run Skill in Manus

$ git log --oneline --stat

stars:0

forks:0

updated:May 6, 2026 at 10:34

SKILL.md

readonly

package.json

"author": "team-michael"

"repository": "team-michael/hermes-agent"

View GitHub Repository

$ install --globalskills.sh

$ download --local

Run Skill in Manus

[HINT] Download the complete skill directory including SKILL.md and all related files

Run any Skill with one click

name	headful-chrome-vnc
description	Run Chrome in headful mode on the VNC display with persistent profile (cookies, localStorage, cache). Use for web scraping and automation that benefits from a real GUI browser.
tags	["chrome","selenium","vnc","scraping","automation","headful"]

Headful Chrome on VNC with Persistent Profile

When to Use

Web scraping where headless gets blocked by bot detection
Browser automation that needs a visible GUI (VNC)
Tasks needing persistent cookies, localStorage, or login sessions across runs
Any Selenium work on this system

CAPTCHA Policy

If the automated page hits a CAPTCHA (TikTok rotation puzzle, Cloudflare Turnstile, reCAPTCHA, Google /sorry/ interstitial, etc.):

Do not spend iterations trying to auto-solve. OpenCV angle estimation + xdotool drag does not beat modern trajectory-based bot detection (verified on TikTok 2026-04).
Do not silently fall back to a different SERP/provider just to keep the run alive. Coverage that comes from an unannounced fallback is worse than a clean halt because it poisons the dataset with mixed-provider results. Halt and hand off instead.
Stop and ask the user to connect via VNC (noVNC on port 6080, DISPLAY=:1) and solve the captcha by hand inside the already-running Chrome window.
Keep the driver alive. Do not call driver.quit() — the blocked page must stay open in Chrome so the human can solve it inside the same Tarantino profile. Cookies set by solving will persist and be picked up on the next run.
After the user solves it, continue automation in the same driver (don't quit) or reuse the profile in the next run.
Offer 2Captcha/NopeCHA/CapSolver API integration only for bulk/recurring jobs where manual solving isn't scalable.

Block detection

def is_google_sorry(driver) -> bool:
    url = (driver.current_url or "")
    if "/sorry/" in url or "google.com/sorry" in url:
        return True
    src = (driver.page_source or "").lower()
    return any(n in src for n in [
        "detected unusual traffic",
        "our systems have detected",
        "unusual traffic from your computer",
        "비정상적인 트래픽",
    ])

def is_tiktok_captcha(driver) -> bool:
    src = (driver.page_source or "").lower()
    return ("captcha_slide" in src
            or "verify to continue" in src
            or "__captcha" in src)

Turnstile / reCAPTCHA surface as <iframe src*="challenges.cloudflare.com"> or <iframe src*="recaptcha"> — detect by iframe src, not visual cues. Driver hitting 3 consecutive TimeoutException on the same URL also counts as a block.

Async / cron-job handoff variant

When this skill is invoked from a cron job, webhook run, or any context where the user is not watching a live Slack reply, "ask the user" means post the handoff request to the Slack channel/thread the run is associated with. A log line is not enough — the human needs a notification. This is what autonomous-ai-agents/hermes-agent cross-references under "jace's standing rule for scraping cron jobs".

Recipe:

Detect the block using the selectors above.
Do not driver.quit(). Record the driver's PID. Then extend the process lifetime so Chrome stays mounted long enough for a human to arrive over VNC — a trailing time.sleep(86400) in the probe script is the simplest way. The cron scheduler's 3-minute interrupt does not kill a background child you spawned via terminal(background=True) — but SIGPIPE from a bad pipe does (see Pitfalls).

Raise the blocked Chrome window to the noVNC viewport's visible area so the human landing over VNC sees the challenge page immediately:

WID=$(DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
  xdotool search --name 'Chrome' 2>/dev/null | tail -n1)
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority bash -c "
  xdotool windowactivate $WID
  xdotool windowraise   $WID
  xdotool windowsize    $WID 1600 1000
  xdotool windowmove    $WID 0 0
"

Verify with xdotool getwindowname $WID — title should reference the blocked URL.

Post a handoff message to the governing Slack location (if the cron job has a pinned thread_ts, post to that thread; otherwise to the channel it delivers to) using the profile's bot token. Proven legible shape:

:octagonal_sign: *VNC 수동 솔빙 요청*
*차단 종류*: <google-sorry | tiktok-captcha | turnstile | recaptcha | other>
*차단 URL*: <url>
*감지 시각*: <UTC ISO>
*현재 상태*: 드라이버 살려둠(pid <pid>), Tarantino 프로필에 차단 페이지 열려 있음
*요청*: noVNC(포트 6080, `DISPLAY=:1`) 접속해서 띄워진 Chrome 창 안에서 수동 솔빙 부탁.
쿠키는 Tarantino 프로필에 자동 저장되니까 풀기만 하면 됨.
*이 Slack 스레드에 "풀었음" 한 줄 주면 이어서 재시도.*

Stop the run. Do not emit a partial report with reduced coverage — that silently degrades decision quality. Final agent output should be a single line like 차단됨 ({종류}): VNC 솔빙 요청 포스트 완료, ts=<reply_ts>, 드라이버 PID <pid> 유지.
The next cron tick reuses the same Tarantino profile. If the human solved the challenge in the meantime, cookies from that solve are already in the profile and the next run passes naturally. If the block recurs on the next tick despite a clean solve, escalate (VPN / proxy change) rather than loop.

Cron jobs operating under this contract should declare it by listing headful-chrome-vnc in skills: and anchoring deliver: to a fixed Slack thread (slack:CHANNEL:THREAD_TS) so the daily report and any handoff requests share one conversation. Auto-retry, SERP-provider fallback, and silent skipping are all forbidden for blocks under this contract.

Rapid probe script

Use scripts/probe_google_block.py (bundled with this skill) for a fast isolated check — "is Google blocking us right now?" — before committing a full scraping run. It runs a few representative queries, stops at the first /sorry/, writes a structured JSON log, and by default keeps the driver alive for VNC handoff per the variant above. See Quick Start for invocation. Run it backgrounded with stdout redirected to a file — not piped to head/tail (SIGPIPE trap documented in Pitfalls).

Environment

Chrome: /usr/bin/google-chrome (v147+)
ChromeDriver: prefer profile-local /home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver when present; system /usr/local/bin/chromedriver may lag Chrome after auto-updates and fail on major-version mismatch.
VNC Display: :1 (TigerVNC, 1920x1080)
noVNC: accessible via port 6080
Python module: /home/ubuntu/.hermes/profiles/tarantino/bin/hermes_chrome.py
Manual-launch wrapper: /home/ubuntu/.hermes/profiles/tarantino/bin/chrome (template: templates/chrome-wrapper.sh; verify with scripts/verify_chrome_wrapper.sh)
Profile dir: /home/ubuntu/.hermes/profiles/tarantino/Tarantino/ (Chrome user-data-dir name: "Tarantino")

Manual Launch Wrapper (`bin/chrome`)

For any non-Selenium invocation — VNC terminal, user asking to "just open TikTok", desktop shortcut, xdg-open — use the wrapper so manual and automated sessions share cookies/localStorage/logins:

/home/ubuntu/.hermes/profiles/tarantino/bin/chrome                         # empty tab
/home/ubuntu/.hermes/profiles/tarantino/bin/chrome https://www.tiktok.com  # direct nav

The wrapper pins DISPLAY=:1, XAUTHORITY, --user-data-dir=...Tarantino, --password-store=basic, and the bot-detection-mitigation flags. Source of truth lives in templates/chrome-wrapper.sh in this skill — if the wrapper is missing on disk (fresh profile recovery), copy that template to bin/chrome and chmod +x.

Verifying the wrapper

Run the bundled script:

bash /home/ubuntu/.hermes/profiles/tarantino/skills/browser/headful-chrome-vnc/scripts/verify_chrome_wrapper.sh

It checks (in order): file exists, executable, --version, launches with a unique window title, ps confirms --user-data-dir matches, xdotool sees the window on DISPLAY=:1, and — the key same-profile-share proof — a second invocation prints Opening in existing browser session. and exits instead of opening a separate browser. That marker is cleaner evidence than inspecting SingletonLock alone. Finally it kills only the test window it launched.

Same-profile share marker

When Chrome is already running against the Tarantino user-data-dir, calling the wrapper again will NOT spawn a second browser. It will log:

Opening in existing browser session.

…and the wrapper process exits. This is expected and desired — it's the proof that both invocations resolve to the same profile. Do not interpret it as a failure. If you genuinely need a fresh Chrome process (e.g. driverless after a webdriver crash), follow the SingletonLock kill recipe below.

Recovery note — missing module / ChromeDriver mismatch

After profile recovery, /home/ubuntu/.hermes/profiles/tarantino/bin/hermes_chrome.py may be missing even though workflows import it. Recreate it under the profile bin/ directory and keep all mutable assets under ~/.hermes.

If google-chrome --version and chromedriver --version have different major versions, do not overwrite /usr/local/bin/chromedriver unless the user explicitly asked for system mutation. Download the matching driver into ~/.hermes/cache/chrome instead:

/home/ubuntu/.hermes/venvs/clix-growth/bin/python -m pip install selenium
mkdir -p /home/ubuntu/.hermes/cache/chrome
CHROME_VERSION=$(google-chrome --version | grep -oP '[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+')
curl -fsS -o /home/ubuntu/.hermes/cache/chrome/chromedriver-${CHROME_VERSION}.zip \
  "https://storage.googleapis.com/chrome-for-testing-public/${CHROME_VERSION}/linux64/chromedriver-linux64.zip"
unzip -qo /home/ubuntu/.hermes/cache/chrome/chromedriver-${CHROME_VERSION}.zip -d /home/ubuntu/.hermes/cache/chrome/
chmod +x /home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver

Then have hermes_chrome.py use Selenium Service('/home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver').

Persistent Profile — Manual Launch Parity

Automation already pins the Tarantino profile via hermes_chrome.py (it passes --user-data-dir=/home/ubuntu/.hermes/profiles/tarantino/Tarantino). For manual Chrome launches from VNC terminals, desktop shortcuts, or xdg-open, use the wrapper at ~/.hermes/profiles/tarantino/bin/chrome so cookies, logins, and CAPTCHA-unlocked sessions persist across every entry point — not just Selenium runs.

Wrapper (kept under ~/.hermes, the only writable boundary). A reference copy lives at scripts/chrome-tarantino-wrapper.sh — copy it into place with install -m 0755 scripts/chrome-tarantino-wrapper.sh ~/.hermes/profiles/tarantino/bin/chrome if the live wrapper is missing after a profile recovery.

/home/ubuntu/.hermes/profiles/tarantino/bin/chrome                         # empty tab, Tarantino profile
/home/ubuntu/.hermes/profiles/tarantino/bin/chrome https://www.tiktok.com  # open a URL in the same profile

It sets DISPLAY=:1, XAUTHORITY=/home/ubuntu/.Xauthority, --user-data-dir=...Tarantino, --password-store=basic, --use-mock-keychain, and the standard anti-automation-detection flags — same shape Selenium uses, so manual and automated sessions share one cookie jar.

Extending profile parity beyond the wrapper

The wrapper alone means users must type the full path. To make every Chrome entry point use Tarantino, two further hooks live outside ~/.hermes and therefore require explicit user consent before being written (SOUL.md hard boundary):

Terminal alias — append to ~/.bashrc:

alias chrome='/home/ubuntu/.hermes/profiles/tarantino/bin/chrome'

Desktop override — create ~/.local/share/applications/google-chrome.desktop with Exec=/home/ubuntu/.hermes/profiles/tarantino/bin/chrome %U so the VNC taskbar icon and xdg-open https://... both route through the wrapper.

Always present these two as an explicit choice ("wrapper only" vs "+ alias" vs "+ alias + desktop override") and wait for confirmation. Do not silently mutate .bashrc or ~/.local/share/applications/.

Pitfalls

SingletonLock collision: if automation (chromedriver tree) is already attached to the Tarantino profile, the manual wrapper invocation silently exits. Check ps -eo pid,comm,args | grep -E 'chrome|chromedriver' | grep -v grep first; reuse the existing window via xdotool instead of spawning a second Chrome (see SingletonLock section below).
Wrapper lives under ~/.hermes by design — do not move it to /usr/local/bin or ~/bin; that violates the hard filesystem boundary.
Chrome/ChromeDriver major version must match. Verify with google-chrome --version and /home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver --version before a run; mismatch is a silent failure mode.
SIGPIPE kills the handoff. When spawning a probe script via terminal(background=True), do NOT pipe its stdout to | head, | tail, or any truncating consumer. When the pipe reader closes early, the Python process receives SIGPIPE, dies, and takes chromedriver + the blocked Chrome window with it — defeating the entire "leave driver alive for VNC" policy. Either redirect to a file (python probe.py > probe.out 2>&1) or let the terminal tool capture the full stream. Confirmed trap: terminal(command="python probe.py 2>&1 | head -5", background=True) returns quickly, Chrome is gone, ps | grep chrome is empty. Symptom: the script printed "driver INTENTIONALLY not quit" but no chromedriver/google-chrome process remains.

Quick Start

Diagnostic helper:

bash /home/ubuntu/.hermes/profiles/tarantino/skills/browser/headful-chrome-vnc/scripts/check_vnc_chrome.sh

It checks VNC, noVNC/websockify, X display, Chrome processes, and visible Chrome window titles before you ask the user to solve a CAPTCHA.

Rapid "is Google blocking us right now" probe — runs a handful of real queries, stops at the first /sorry/, writes a structured JSON log, leaves the driver alive for VNC handoff per policy above. Use when you need decision-grade "blocked yes/no" evidence before committing a full scraping run:

# MUST redirect to a file — do NOT pipe to `| head`/`| tail` (SIGPIPE kills Chrome)
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
  /home/ubuntu/.hermes/venvs/clix-growth/bin/python \
  /home/ubuntu/.hermes/profiles/tarantino/skills/browser/headful-chrome-vnc/scripts/probe_google_block.py \
  > /tmp/probe_google.out 2>&1 &
# Log → $PROBE_LOG_PATH (default: ~/.hermes/tmp/cron_tiktok/probe_google_log.json)
# Override queries: PROBE_QUERIES='q1|q2|q3' python probe_google_block.py

import sys
sys.path.insert(0, '/home/ubuntu/.hermes/profiles/tarantino/bin')
from hermes_chrome import create_driver, set_persistent_cookie, take_screenshot, By, WebDriverWait, EC

driver = create_driver()          # headful, 1920x1080
driver.get('https://example.com')

# Set a cookie that survives restarts (MUST be on the target domain already)
set_persistent_cookie(driver, 'my_cookie', 'my_value')

# Take screenshot
path = take_screenshot(driver, 'my_page')

driver.quit()

Critical Environment Variables

These are set automatically by hermes_chrome.py, but if running Chrome manually:

DISPLAY=:1
XAUTHORITY=/home/ubuntu/.Xauthority

VNC Visibility Triage

If the user says they cannot see Chrome in VNC/noVNC:

Run the diagnostic helper above.
If VNC/noVNC are running but there are no Chrome processes, launch Chrome explicitly onto the VNC display:

DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
/usr/bin/google-chrome \
  --user-data-dir=/home/ubuntu/.hermes/profiles/tarantino/Tarantino \
  --password-store=basic --use-mock-keychain --no-sandbox --disable-dev-shm-usage \
  --disable-blink-features=AutomationControlled --window-size=1400,900 --start-maximized \
  'https://www.google.com/search?q=test&hl=en'

Bring the window to the front:

DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
xdotool search --onlyvisible --name 'Google Chrome' windowactivate %@ windowraise %@ windowsize %@ 1400 900 windowmove %@ 0 0

Ask the user to refresh/reconnect the noVNC page. If Chrome still does not render but the diagnostic shows a visible Chrome window title, the issue is the viewer/session rendering layer, not Chrome.

SingletonLock — don't spawn a second Chrome into a busy profile

If a Selenium/webdriver-controlled Chrome is already running against the Tarantino user-data-dir (for example, because p2_weekly_report.py halted on CAPTCHA and left chromedriver alive), launching a second google-chrome --user-data-dir=.../Tarantino silently exits — Chrome detects the existing instance's SingletonLock and bails without an error message. Symptom: ps -eo pid,comm | grep chrome still shows the old chromedriver + children with --test-type=webdriver and no new window appears.

Do this instead:

# 1. Enumerate existing Chrome windows on the VNC display
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool search --name 'Chrome' 2>/dev/null | while read wid; do
  echo "--- $wid ---"
  DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool getwindowname $wid 2>/dev/null
done

Pick the window whose title matches what the automation was doing (e.g. a halted Google search query) — that's the live webdriver tab the user needs to see.

# 2. Promote it to the VNC viewport
WID=<that id>
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority bash -c "
  xdotool windowactivate $WID
  xdotool windowraise   $WID
  xdotool windowsize    $WID 1400 900
  xdotool windowmove    $WID 0 0
"

If you do need a fresh Chrome (automation is done, next run hasn't started, user wants to log into something manually), kill the webdriver tree first:

pkill -f 'chromedriver'
pkill -f 'chrome.*--user-data-dir=/home/ubuntu/.hermes/profiles/tarantino/Tarantino'
sleep 2
# Optional, only if Chrome refuses to start: rm -f /home/ubuntu/.hermes/profiles/tarantino/Tarantino/SingletonLock

Cookies and localStorage from the manual interaction persist in the profile and are picked up by the next automation run against the same user-data-dir.

Long-Running Probes — Keep Driver Alive for VNC Handoff

When you write a probe script whose whole purpose is to detect a block and then freeze so the human can solve in VNC, three pitfalls cost real time:

Never pipe the launcher through | head -N. If you run python probe.py 2>&1 | head -5 in the background and head closes its end after 5 lines, python gets SIGPIPE on its next print() and dies — taking the Selenium driver and Chrome with it. The whole "leave-alive for VNC" policy is then gone. Redirect to a file instead:
```
# WRONG — SIGPIPE kills Chrome before user can solve
python probe.py 2>&1 | head -5 &
# RIGHT — full output preserved, process untouched
python probe.py > probe.out 2>&1 &
```

Do not call driver.quit() in the block path. Script structure:

try:
    # probe queries / nav / detect sorry/captcha
    if blocked:
        log_state()
        post_vnc_handoff_to_slack()  # includes pid, window title
        break
finally:
    write_log(log_path)
    # DO NOT quit the driver — human needs the live tab
    print("driver INTENTIONALLY not quit (VNC handoff policy)", flush=True)
    time.sleep(86400)  # park the process so Chrome stays up

When the human solves in VNC, kill the probe session cleanly (process.kill on the background session) and verify Chrome went with it before firing the actual automation. A second run against a still-held --user-data-dir will trip the SingletonLock section above.

Template: scripts/probe_first_query_google.py — probes Q01 of a Google query list, leaves driver alive on /sorry/, writes log to ~/.hermes/tmp/. Copy and customize QUERIES / URL_TMPL / is_blocked() per task.

Bringing the Live Window to the VNC Viewport

After the probe freezes, the solve window might be off-screen or behind other windows. Reposition before telling the user to connect:

# Enumerate Chrome windows
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool search --name 'Chrome' 2>/dev/null | while read wid; do
  title=$(DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool getwindowname $wid 2>/dev/null)
  echo "$wid | $title"
done

# Pick the real tab (not the root "google-chrome" window); promote it
WID=<that id>
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority bash -c "
  xdotool windowactivate $WID
  xdotool windowraise   $WID
  xdotool windowsize    $WID 1600 1000
  xdotool windowmove    $WID 0 0
"

Two Chrome-related windows show up: the root google-chrome window (useless) and the actual tab whose title matches the page you navigated to. Pick the one whose title matches the query/URL. Sizing to 1600×1000 at (0,0) fits the noVNC viewport cleanly without the user having to scroll.

Confirming Handoff Success

After the user says "풀었음" / "solved":

Re-check xdotool getwindowname on the same WID — the title should have flipped from /sorry/... or captcha... to the legitimate destination page title (e.g. query result title, video-page title). That's the cheapest proof the cookie set.
Verify Chrome/chromedriver count stays sane before killing the probe. If your probe script is parked in time.sleep(86400), process kill on that session should take the driver + Chrome with it.
Now fire the real automation. The cookies seeded by the solve are in the Tarantino user-data-dir and will be inherited automatically on the next create_driver() call.

Screenshots on this box — don't try

On this machine none of the common screenshot tools work:

PIL.ImageGrab — No module named 'PIL' in the clix-growth venv (and PIL's Linux grab path needs xdisplay anyway).
import (ImageMagick), scrot, gnome-screenshot — all missing from $PATH.
mss (pure-Python) — fails on this X server with drawable's visual not found in screen's supported visuals.

Don't burn turns trying. Use xdotool getwindowname <wid> for title-level evidence that the right page is up, and ask the user for visual confirmation over VNC/noVNC. If a screenshot is truly required, install a working tool deliberately instead of flailing through candidates.

Cookie Persistence — Pitfalls

Selenium add_cookie() often creates session cookies (is_persistent=0) that vanish on browser close, even if you set expiry. Unreliable for persistence.
document.cookie via JS with explicit expires works reliably. Use set_persistent_cookie() helper.
Domain matters: set cookies on the exact domain you're on (e.g., www.google.com not .google.com). Cross-domain cookie setting silently fails.
Server-set cookies (via HTTP Set-Cookie header with Max-Age/Expires) persist automatically.
--password-store=basic is required in Chrome args. Without it, Chrome uses gnome-keyring which can produce session-specific encryption keys, making cookies unreadable across restarts.
localStorage persists reliably — no encryption or keyring issues.

create_driver() Options

driver = create_driver(
    width=1920,          # window width
    height=1080,         # window height
    headless=False,      # True for headless fallback
    page_load_timeout=30,
    implicit_wait=5,
    extra_args=None,     # list of additional Chrome args
)

Bot Detection Mitigations (built-in)

--disable-blink-features=AutomationControlled
excludeSwitches: ['enable-automation']
navigator.webdriver set to undefined via CDP
Real desktop User-Agent (not headless signature)

Updating ChromeDriver

When Chrome auto-updates:

CHROME_VERSION=$(google-chrome --version | grep -oP '\d+\.\d+\.\d+\.\d+')
cd /tmp
curl -sL -o chromedriver.zip "https://storage.googleapis.com/chrome-for-testing-public/${CHROME_VERSION}/linux64/chromedriver-linux64.zip"
unzip -o chromedriver.zip
sudo cp chromedriver-linux64/chromedriver /usr/local/bin/
chromedriver --version

Profile Reset

To wipe all browser state and start fresh:

rm -rf /home/ubuntu/.hermes/profiles/tarantino/Tarantino
mkdir -p /home/ubuntu/.hermes/profiles/tarantino/Tarantino

name	headful-chrome-vnc
description	Run Chrome in headful mode on the VNC display with persistent profile (cookies, localStorage, cache). Use for web scraping and automation that benefits from a real GUI browser.
tags	["chrome","selenium","vnc","scraping","automation","headful"]

Headful Chrome on VNC with Persistent Profile

When to Use

Web scraping where headless gets blocked by bot detection
Browser automation that needs a visible GUI (VNC)
Tasks needing persistent cookies, localStorage, or login sessions across runs
Any Selenium work on this system

CAPTCHA Policy

If the automated page hits a CAPTCHA (TikTok rotation puzzle, Cloudflare Turnstile, reCAPTCHA, Google /sorry/ interstitial, etc.):

Do not spend iterations trying to auto-solve. OpenCV angle estimation + xdotool drag does not beat modern trajectory-based bot detection (verified on TikTok 2026-04).
Do not silently fall back to a different SERP/provider just to keep the run alive. Coverage that comes from an unannounced fallback is worse than a clean halt because it poisons the dataset with mixed-provider results. Halt and hand off instead.
Stop and ask the user to connect via VNC (noVNC on port 6080, DISPLAY=:1) and solve the captcha by hand inside the already-running Chrome window.
Keep the driver alive. Do not call driver.quit() — the blocked page must stay open in Chrome so the human can solve it inside the same Tarantino profile. Cookies set by solving will persist and be picked up on the next run.
After the user solves it, continue automation in the same driver (don't quit) or reuse the profile in the next run.
Offer 2Captcha/NopeCHA/CapSolver API integration only for bulk/recurring jobs where manual solving isn't scalable.

Block detection

def is_google_sorry(driver) -> bool:
    url = (driver.current_url or "")
    if "/sorry/" in url or "google.com/sorry" in url:
        return True
    src = (driver.page_source or "").lower()
    return any(n in src for n in [
        "detected unusual traffic",
        "our systems have detected",
        "unusual traffic from your computer",
        "비정상적인 트래픽",
    ])

def is_tiktok_captcha(driver) -> bool:
    src = (driver.page_source or "").lower()
    return ("captcha_slide" in src
            or "verify to continue" in src
            or "__captcha" in src)

Async / cron-job handoff variant

Recipe:

Detect the block using the selectors above.
Do not driver.quit(). Record the driver's PID. Then extend the process lifetime so Chrome stays mounted long enough for a human to arrive over VNC — a trailing time.sleep(86400) in the probe script is the simplest way. The cron scheduler's 3-minute interrupt does not kill a background child you spawned via terminal(background=True) — but SIGPIPE from a bad pipe does (see Pitfalls).

Raise the blocked Chrome window to the noVNC viewport's visible area so the human landing over VNC sees the challenge page immediately:

WID=$(DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
  xdotool search --name 'Chrome' 2>/dev/null | tail -n1)
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority bash -c "
  xdotool windowactivate $WID
  xdotool windowraise   $WID
  xdotool windowsize    $WID 1600 1000
  xdotool windowmove    $WID 0 0
"

Verify with xdotool getwindowname $WID — title should reference the blocked URL.

:octagonal_sign: *VNC 수동 솔빙 요청*
*차단 종류*: <google-sorry | tiktok-captcha | turnstile | recaptcha | other>
*차단 URL*: <url>
*감지 시각*: <UTC ISO>
*현재 상태*: 드라이버 살려둠(pid <pid>), Tarantino 프로필에 차단 페이지 열려 있음
*요청*: noVNC(포트 6080, `DISPLAY=:1`) 접속해서 띄워진 Chrome 창 안에서 수동 솔빙 부탁.
쿠키는 Tarantino 프로필에 자동 저장되니까 풀기만 하면 됨.
*이 Slack 스레드에 "풀었음" 한 줄 주면 이어서 재시도.*

Stop the run. Do not emit a partial report with reduced coverage — that silently degrades decision quality. Final agent output should be a single line like 차단됨 ({종류}): VNC 솔빙 요청 포스트 완료, ts=<reply_ts>, 드라이버 PID <pid> 유지.
The next cron tick reuses the same Tarantino profile. If the human solved the challenge in the meantime, cookies from that solve are already in the profile and the next run passes naturally. If the block recurs on the next tick despite a clean solve, escalate (VPN / proxy change) rather than loop.

Rapid probe script

Environment

Chrome: /usr/bin/google-chrome (v147+)
ChromeDriver: prefer profile-local /home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver when present; system /usr/local/bin/chromedriver may lag Chrome after auto-updates and fail on major-version mismatch.
VNC Display: :1 (TigerVNC, 1920x1080)
noVNC: accessible via port 6080
Python module: /home/ubuntu/.hermes/profiles/tarantino/bin/hermes_chrome.py
Manual-launch wrapper: /home/ubuntu/.hermes/profiles/tarantino/bin/chrome (template: templates/chrome-wrapper.sh; verify with scripts/verify_chrome_wrapper.sh)
Profile dir: /home/ubuntu/.hermes/profiles/tarantino/Tarantino/ (Chrome user-data-dir name: "Tarantino")

Manual Launch Wrapper (`bin/chrome`)

/home/ubuntu/.hermes/profiles/tarantino/bin/chrome                         # empty tab
/home/ubuntu/.hermes/profiles/tarantino/bin/chrome https://www.tiktok.com  # direct nav

Verifying the wrapper

Run the bundled script:

bash /home/ubuntu/.hermes/profiles/tarantino/skills/browser/headful-chrome-vnc/scripts/verify_chrome_wrapper.sh

Same-profile share marker

When Chrome is already running against the Tarantino user-data-dir, calling the wrapper again will NOT spawn a second browser. It will log:

Opening in existing browser session.

Recovery note — missing module / ChromeDriver mismatch

/home/ubuntu/.hermes/venvs/clix-growth/bin/python -m pip install selenium
mkdir -p /home/ubuntu/.hermes/cache/chrome
CHROME_VERSION=$(google-chrome --version | grep -oP '[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+')
curl -fsS -o /home/ubuntu/.hermes/cache/chrome/chromedriver-${CHROME_VERSION}.zip \
  "https://storage.googleapis.com/chrome-for-testing-public/${CHROME_VERSION}/linux64/chromedriver-linux64.zip"
unzip -qo /home/ubuntu/.hermes/cache/chrome/chromedriver-${CHROME_VERSION}.zip -d /home/ubuntu/.hermes/cache/chrome/
chmod +x /home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver

Then have hermes_chrome.py use Selenium Service('/home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver').

Persistent Profile — Manual Launch Parity

/home/ubuntu/.hermes/profiles/tarantino/bin/chrome                         # empty tab, Tarantino profile
/home/ubuntu/.hermes/profiles/tarantino/bin/chrome https://www.tiktok.com  # open a URL in the same profile

Extending profile parity beyond the wrapper

Terminal alias — append to ~/.bashrc:

alias chrome='/home/ubuntu/.hermes/profiles/tarantino/bin/chrome'

Desktop override — create ~/.local/share/applications/google-chrome.desktop with Exec=/home/ubuntu/.hermes/profiles/tarantino/bin/chrome %U so the VNC taskbar icon and xdg-open https://... both route through the wrapper.

Pitfalls

SingletonLock collision: if automation (chromedriver tree) is already attached to the Tarantino profile, the manual wrapper invocation silently exits. Check ps -eo pid,comm,args | grep -E 'chrome|chromedriver' | grep -v grep first; reuse the existing window via xdotool instead of spawning a second Chrome (see SingletonLock section below).
Wrapper lives under ~/.hermes by design — do not move it to /usr/local/bin or ~/bin; that violates the hard filesystem boundary.
Chrome/ChromeDriver major version must match. Verify with google-chrome --version and /home/ubuntu/.hermes/cache/chrome/chromedriver-linux64/chromedriver --version before a run; mismatch is a silent failure mode.
SIGPIPE kills the handoff. When spawning a probe script via terminal(background=True), do NOT pipe its stdout to | head, | tail, or any truncating consumer. When the pipe reader closes early, the Python process receives SIGPIPE, dies, and takes chromedriver + the blocked Chrome window with it — defeating the entire "leave driver alive for VNC" policy. Either redirect to a file (python probe.py > probe.out 2>&1) or let the terminal tool capture the full stream. Confirmed trap: terminal(command="python probe.py 2>&1 | head -5", background=True) returns quickly, Chrome is gone, ps | grep chrome is empty. Symptom: the script printed "driver INTENTIONALLY not quit" but no chromedriver/google-chrome process remains.

Quick Start

Diagnostic helper:

bash /home/ubuntu/.hermes/profiles/tarantino/skills/browser/headful-chrome-vnc/scripts/check_vnc_chrome.sh

It checks VNC, noVNC/websockify, X display, Chrome processes, and visible Chrome window titles before you ask the user to solve a CAPTCHA.

# MUST redirect to a file — do NOT pipe to `| head`/`| tail` (SIGPIPE kills Chrome)
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
  /home/ubuntu/.hermes/venvs/clix-growth/bin/python \
  /home/ubuntu/.hermes/profiles/tarantino/skills/browser/headful-chrome-vnc/scripts/probe_google_block.py \
  > /tmp/probe_google.out 2>&1 &
# Log → $PROBE_LOG_PATH (default: ~/.hermes/tmp/cron_tiktok/probe_google_log.json)
# Override queries: PROBE_QUERIES='q1|q2|q3' python probe_google_block.py

import sys
sys.path.insert(0, '/home/ubuntu/.hermes/profiles/tarantino/bin')
from hermes_chrome import create_driver, set_persistent_cookie, take_screenshot, By, WebDriverWait, EC

driver = create_driver()          # headful, 1920x1080
driver.get('https://example.com')

# Set a cookie that survives restarts (MUST be on the target domain already)
set_persistent_cookie(driver, 'my_cookie', 'my_value')

# Take screenshot
path = take_screenshot(driver, 'my_page')

driver.quit()

Critical Environment Variables

These are set automatically by hermes_chrome.py, but if running Chrome manually:

DISPLAY=:1
XAUTHORITY=/home/ubuntu/.Xauthority

VNC Visibility Triage

If the user says they cannot see Chrome in VNC/noVNC:

Run the diagnostic helper above.
If VNC/noVNC are running but there are no Chrome processes, launch Chrome explicitly onto the VNC display:

DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
/usr/bin/google-chrome \
  --user-data-dir=/home/ubuntu/.hermes/profiles/tarantino/Tarantino \
  --password-store=basic --use-mock-keychain --no-sandbox --disable-dev-shm-usage \
  --disable-blink-features=AutomationControlled --window-size=1400,900 --start-maximized \
  'https://www.google.com/search?q=test&hl=en'

Bring the window to the front:

DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority \
xdotool search --onlyvisible --name 'Google Chrome' windowactivate %@ windowraise %@ windowsize %@ 1400 900 windowmove %@ 0 0

Ask the user to refresh/reconnect the noVNC page. If Chrome still does not render but the diagnostic shows a visible Chrome window title, the issue is the viewer/session rendering layer, not Chrome.

SingletonLock — don't spawn a second Chrome into a busy profile

Do this instead:

# 1. Enumerate existing Chrome windows on the VNC display
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool search --name 'Chrome' 2>/dev/null | while read wid; do
  echo "--- $wid ---"
  DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool getwindowname $wid 2>/dev/null
done

Pick the window whose title matches what the automation was doing (e.g. a halted Google search query) — that's the live webdriver tab the user needs to see.

# 2. Promote it to the VNC viewport
WID=<that id>
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority bash -c "
  xdotool windowactivate $WID
  xdotool windowraise   $WID
  xdotool windowsize    $WID 1400 900
  xdotool windowmove    $WID 0 0
"

If you do need a fresh Chrome (automation is done, next run hasn't started, user wants to log into something manually), kill the webdriver tree first:

pkill -f 'chromedriver'
pkill -f 'chrome.*--user-data-dir=/home/ubuntu/.hermes/profiles/tarantino/Tarantino'
sleep 2
# Optional, only if Chrome refuses to start: rm -f /home/ubuntu/.hermes/profiles/tarantino/Tarantino/SingletonLock

Cookies and localStorage from the manual interaction persist in the profile and are picked up by the next automation run against the same user-data-dir.

Long-Running Probes — Keep Driver Alive for VNC Handoff

When you write a probe script whose whole purpose is to detect a block and then freeze so the human can solve in VNC, three pitfalls cost real time:

Never pipe the launcher through | head -N. If you run python probe.py 2>&1 | head -5 in the background and head closes its end after 5 lines, python gets SIGPIPE on its next print() and dies — taking the Selenium driver and Chrome with it. The whole "leave-alive for VNC" policy is then gone. Redirect to a file instead:
```
# WRONG — SIGPIPE kills Chrome before user can solve
python probe.py 2>&1 | head -5 &
# RIGHT — full output preserved, process untouched
python probe.py > probe.out 2>&1 &
```

Do not call driver.quit() in the block path. Script structure:

try:
    # probe queries / nav / detect sorry/captcha
    if blocked:
        log_state()
        post_vnc_handoff_to_slack()  # includes pid, window title
        break
finally:
    write_log(log_path)
    # DO NOT quit the driver — human needs the live tab
    print("driver INTENTIONALLY not quit (VNC handoff policy)", flush=True)
    time.sleep(86400)  # park the process so Chrome stays up

When the human solves in VNC, kill the probe session cleanly (process.kill on the background session) and verify Chrome went with it before firing the actual automation. A second run against a still-held --user-data-dir will trip the SingletonLock section above.

Bringing the Live Window to the VNC Viewport

After the probe freezes, the solve window might be off-screen or behind other windows. Reposition before telling the user to connect:

# Enumerate Chrome windows
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool search --name 'Chrome' 2>/dev/null | while read wid; do
  title=$(DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority xdotool getwindowname $wid 2>/dev/null)
  echo "$wid | $title"
done

# Pick the real tab (not the root "google-chrome" window); promote it
WID=<that id>
DISPLAY=:1 XAUTHORITY=/home/ubuntu/.Xauthority bash -c "
  xdotool windowactivate $WID
  xdotool windowraise   $WID
  xdotool windowsize    $WID 1600 1000
  xdotool windowmove    $WID 0 0
"

Confirming Handoff Success

After the user says "풀었음" / "solved":

Re-check xdotool getwindowname on the same WID — the title should have flipped from /sorry/... or captcha... to the legitimate destination page title (e.g. query result title, video-page title). That's the cheapest proof the cookie set.
Verify Chrome/chromedriver count stays sane before killing the probe. If your probe script is parked in time.sleep(86400), process kill on that session should take the driver + Chrome with it.
Now fire the real automation. The cookies seeded by the solve are in the Tarantino user-data-dir and will be inherited automatically on the next create_driver() call.

Screenshots on this box — don't try

On this machine none of the common screenshot tools work:

PIL.ImageGrab — No module named 'PIL' in the clix-growth venv (and PIL's Linux grab path needs xdisplay anyway).
import (ImageMagick), scrot, gnome-screenshot — all missing from $PATH.
mss (pure-Python) — fails on this X server with drawable's visual not found in screen's supported visuals.

Cookie Persistence — Pitfalls

Selenium add_cookie() often creates session cookies (is_persistent=0) that vanish on browser close, even if you set expiry. Unreliable for persistence.
document.cookie via JS with explicit expires works reliably. Use set_persistent_cookie() helper.
Domain matters: set cookies on the exact domain you're on (e.g., www.google.com not .google.com). Cross-domain cookie setting silently fails.
Server-set cookies (via HTTP Set-Cookie header with Max-Age/Expires) persist automatically.
--password-store=basic is required in Chrome args. Without it, Chrome uses gnome-keyring which can produce session-specific encryption keys, making cookies unreadable across restarts.
localStorage persists reliably — no encryption or keyring issues.

create_driver() Options

driver = create_driver(
    width=1920,          # window width
    height=1080,         # window height
    headless=False,      # True for headless fallback
    page_load_timeout=30,
    implicit_wait=5,
    extra_args=None,     # list of additional Chrome args
)

Bot Detection Mitigations (built-in)

--disable-blink-features=AutomationControlled
excludeSwitches: ['enable-automation']
navigator.webdriver set to undefined via CDP
Real desktop User-Agent (not headless signature)

Updating ChromeDriver

When Chrome auto-updates:

CHROME_VERSION=$(google-chrome --version | grep -oP '\d+\.\d+\.\d+\.\d+')
cd /tmp
curl -sL -o chromedriver.zip "https://storage.googleapis.com/chrome-for-testing-public/${CHROME_VERSION}/linux64/chromedriver-linux64.zip"
unzip -o chromedriver.zip
sudo cp chromedriver-linux64/chromedriver /usr/local/bin/
chromedriver --version

Profile Reset

To wipe all browser state and start fresh:

rm -rf /home/ubuntu/.hermes/profiles/tarantino/Tarantino
mkdir -p /home/ubuntu/.hermes/profiles/tarantino/Tarantino

headful-chrome-vnc

Headful Chrome on VNC with Persistent Profile

When to Use

CAPTCHA Policy

Block detection

Async / cron-job handoff variant

Rapid probe script

Environment

Manual Launch Wrapper (bin/chrome)

Verifying the wrapper

Same-profile share marker

Recovery note — missing module / ChromeDriver mismatch

Persistent Profile — Manual Launch Parity

Extending profile parity beyond the wrapper

Pitfalls

Quick Start

Critical Environment Variables

VNC Visibility Triage

SingletonLock — don't spawn a second Chrome into a busy profile

Long-Running Probes — Keep Driver Alive for VNC Handoff

Bringing the Live Window to the VNC Viewport

Confirming Handoff Success

Screenshots on this box — don't try

Cookie Persistence — Pitfalls

create_driver() Options

Bot Detection Mitigations (built-in)

Updating ChromeDriver

Profile Reset

Headful Chrome on VNC with Persistent Profile

When to Use

CAPTCHA Policy

Block detection

Async / cron-job handoff variant

Rapid probe script

Environment

Manual Launch Wrapper (bin/chrome)

Verifying the wrapper

Same-profile share marker

Recovery note — missing module / ChromeDriver mismatch

Persistent Profile — Manual Launch Parity

Extending profile parity beyond the wrapper

Pitfalls

Quick Start

Critical Environment Variables

VNC Visibility Triage

SingletonLock — don't spawn a second Chrome into a busy profile

Long-Running Probes — Keep Driver Alive for VNC Handoff

Bringing the Live Window to the VNC Viewport

Confirming Handoff Success

Screenshots on this box — don't try

Cookie Persistence — Pitfalls

create_driver() Options

Bot Detection Mitigations (built-in)

Updating ChromeDriver

Profile Reset

Manual Launch Wrapper (`bin/chrome`)

Manual Launch Wrapper (`bin/chrome`)