o-az

name	webauthn-passkey
description	Signs up/in to web apps using passkeys via a CDP virtual WebAuthn authenticator. Use when asked to sign up, sign in, or authenticate with a passkey on a website.

WebAuthn Passkey Authentication via CDP

Sign up or sign in to web apps that use passkeys (WebAuthn) by emulating a virtual authenticator over the Chrome DevTools Protocol.

Quick Start

WebAuthn rejects `.local` RP IDs in Chrome

Problem

Passkey creation fails with SecurityError when the origin is app.tempo.local and the RP ID is tempo.local.

Root cause

Chrome validates WebAuthn RP IDs against the Public Suffix List (PSL). Both the origin host and the claimed RP ID must have a registry-controlled domain per the PSL. .local is not in the PSL — it's an IANA special-use domain reserved for mDNS (RFC 6762).

	# Print an optspec for argparse to handle cmd's options that are independent of any subcommand.
	function __fish_forge_global_optspecs
	string join \n v/verbosity q/quiet json md color= j/threads= h/help V/version
	end

	function __fish_forge_needs_command
	# Figure out if the current invocation already has a command.
	set -l cmd (commandline -opc)
	set -e cmd[1]
	argparse -s (__fish_forge_global_optspecs) -- $cmd 2>/dev/null

	# Print an optspec for argparse to handle cmd's options that are independent of any subcommand.
	function __fish_cast_global_optspecs
	string join \n v/verbosity q/quiet json md color= j/threads= h/help V/version
	end

	function __fish_cast_needs_command
	# Figure out if the current invocation already has a command.
	set -l cmd (commandline -opc)
	set -e cmd[1]
	argparse -s (__fish_cast_global_optspecs) -- $cmd 2>/dev/null

	# Defined in ~/.config/fish/functions/lsgrep.fish
	function lsgrep --description 'Wildcard folder/file search'
	# Convert search to regex: change .X to \.X, ? to ., and space or * to .*?
	set -l needle (echo $argv\|sed -E 's/\.([a-z0-9]+)$/\\\.\1/'\|sed -E 's/\?/./'\| sed -E 's/[ ]/.?/g')
	command ag --hidden --depth 3 -SUg "$needle" 2>/dev/null
	end

	# Defined in ~/.config/fish/functions/lsgrep.fish
	function lsgrep --description 'Wildcard folder/file search'
	# Convert search to regex: change .X to \.X, ? to ., and space or * to .*?
	set -l needle (echo $argv\|sed -E 's/\.([a-z0-9]+)$/\\\.\1/'\|sed -E 's/\?/./'\| sed -E 's/[ ]/.?/g')
	command ag --hidden --depth 3 -SUg "$needle" 2>/dev/null
	end

	#!/usr/bin/env bash
	set -euo pipefail

	# ── Parse args ──────────────────────────────────────────────────────────
	HUMAN_AMOUNT="4400"
	while [[ $# -gt 0 ]]; do
	case "$1" in
	--amount) HUMAN_AMOUNT="$2"; shift 2 ;;
	*) echo "Usage: $0 [--amount <PUSD amount, e.g. 4400>]"; exit 1 ;;
	esac

	# Print an optspec for argparse to handle cmd's options that are independent of any subcommand.
	function __fish_anvil_global_optspecs
	string join \n v/verbosity q/quiet json md color= j/threads= p/port= a/accounts= balance= timestamp= number= m/mnemonic= mnemonic-random= mnemonic-seed-unsafe= derivation-path= hardfork= b/block-time= slots-in-an-epoch= config-out= no-mining mixed-mining host= order= init= state= s/state-interval= dump-state= preserve-historical-states load-state= ipc= prune-history= max-persisted-states= transaction-block-keeper= f/fork-url= fork-header= timeout= retries= fork-block-number= fork-transaction-hash= fork-retry-backoff= fork-chain-id= compute-units-per-second= no-rate-limit no-storage-caching gas-limit= disable-block-gas-limit enable-tx-gas-limit code-size-limit= disable-code-size-limit gas-price= block-base-fee-per-gas= disable-min-priority-fee chain-id= steps-tracing disable-console-log print-traces auto-impersonate disable-default-create2-deployer disable-pool-balance-checks m