Security News
The Code You Didn't Write Is Still Yours to Defend
AI agents are pulling packages into environments no scanner is watching, creating exposure before security teams can see it.
By Brad Arkin - Jun 23, 2026
🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more →
@midscene/computer
Advanced tools
@midscene/computer
Midscene.js Computer Desktop Automation - AI-powered desktop automation for:
- local desktop control on Windows, macOS, and Linux
- remote Windows desktop control over the RDP protocol
See https://midscenejs.com/computer-introduction.html.
RDP support
Use agentForRDPComputer():
import { agentForRDPComputer } from '@midscene/computer';
const agent = await agentForRDPComputer({
host: '10.0.0.10',
username: 'Admin',
password: 'secret',
ignoreCertificate: true,
});
When the machine running Midscene has multiple outbound routes, pass
localAddress to bind the RDP TCP connection to a specific local source IP:
const agent = await agentForRDPComputer({
host: '10.0.0.10',
username: 'Admin',
password: 'secret',
localAddress: '10.0.0.20',
ignoreCertificate: true,
});
RDP usage requires:
- a reachable Windows machine with RDP enabled
- FreeRDP installed on the machine running your script
If you need to rebuild the native helper locally from source:
pnpm --filter @midscene/computer run build:native
Run RDP AI tests:
pnpm --filter @midscene/computer run test:ai:rdp
FAQs
Midscene.js Computer Desktop Automation
The npm package @midscene/computer receives a total of 5,328 weekly downloads. As such, @midscene/computer popularity was classified as popular.
We found that @midscene/computer demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Package last updated on 17 Jun 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
GitHub Actions Checkout Now Blocks Risky pull_request_target Checkouts
GitHub Actions checkout now blocks risky pull_request_target checkouts by default to help prevent pwn request supply chain attacks.
By Sarah Gooding - Jun 20, 2026
Product
Introducing Repository Access Permissions and Custom Roles
Socket now supports Custom Roles and Repository Access Permissions so organizations can control who can access specific repositories and actions.
By Joe Werle - Jun 19, 2026