Skip to content

M3 Mac v148 Fails Browser Tampering Check on Fingerprint https://demo.fingerprint.com/playground #398

Description

@mattyTokenomics
Description:
Fingerprint Pro Playground still reports Browser Tampering on macOS v148 Pro.

Expected: Fingerprint Pro Playground should come back clean on the latest macOS v148 build, consistent with the note in #271 that v148 resolves the prior macOS FPJS issue.

Actual:
- Bot: Not detected
- VPN: Not detected
- Developer Tools: Not detected
- Virtual Machine: Not detected
- Privacy Settings: Not detected
- Browser Tampering: Yes
- Browser classified as: Chromium-Based Browser
- Browser major/full version: Not Available
- Server fields:
  - tampering: true
  - tampering_ml_score: 0.9947
  - anti_detect_browser: true
  - suspect_score: 14

CloakBrowser version:
npm: cloakbrowser@0.4.3
Binary: 148.0.7778.215.2 Pro
Platform: darwin-arm64

Wrapper:
JavaScript

Environment:
macOS host, no Docker
Apple Silicon / darwin-arm64
Machine: Apple M3 Max
Node.js project using cloakbrowser npm package
Running headed, persistent context

Launch options:

```js
await launchPersistentContext({
  userDataDir: "./profile",
  headless: false,
  humanize: false,
  locale: "en-US",
  timezone: "America/New_York",
  colorScheme: "light",
  args: [
    "--fingerprint=21720260625",
    "--fingerprint-platform=macos",
    "--fingerprint-noise=false",
    "--fingerprint-screen-width=1440",
    "--fingerprint-screen-height=900",
    "--fingerprint-brand=Chrome",
    "--fingerprint-brand-version=148.0.7778.215",
    "--fingerprint-storage-quota=5000",
    "--fingerprint-taskbar-height=95"
  ]
});

Tested with a different IP or proxy?
No. Same residential ISP IP as other browser controls. FP.com reports VPN/proxy not detected.

Works outside Docker / on host machine?
Not using Docker. This is native macOS host.

Steps to reproduce:

  1. Install/use cloakbrowser@0.4.3 with Pro license.
  2. Confirm binary is darwin-arm64 v148.0.7778.215.2 Pro.
  3. Launch headed persistent context with the options above.
  4. Navigate to https://demo.fingerprint.com/playground
  5. Wait for the playground to finish analysis.
  6. Observe Browser Tampering and server JSON fields.

Error output / screenshots:
Attached screenshot shows:

  • Bot: Not detected
  • VPN: Not detected
  • Browser Tampering: Yes
  • Suspect Score: 14

Server JSON fields captured:

{
  "browser_name": "Chromium-Based Browser",
  "browser_major_version": "Not Available",
  "browser_full_version": "Not Available",
  "bot": "not_detected",
  "tampering": true,
  "tampering_ml_score": 0.9947,
  "anti_detect_browser": true,
  "suspect_score": 14
}

Dockerfile (if applicable):
N/A

Additional notes:
I also tested several related variants and the Browser Tampering / anti_detect_browser result persisted:

  • --fingerprint-noise=false only
  • explicit screen width/height
  • full macOS flag set
  • low storage quota: --fingerprint-storage-quota=500
  • high storage quota: --fingerprint-storage-quota=50000
  • local Widevine CDM sideloaded from Brave; EME probe confirmed com.widevine.alpha supported
  • regular launch() instead of launchPersistentContext()
  • Windows persona flags:
    • --fingerprint-platform=windows
    • --fingerprint-screen-width=1920
    • --fingerprint-screen-height=1080
    • --fingerprint-windows-font-metrics

The consistent clue is that FP.com reports Cloak as Chromium-Based Browser with version Not Available, while Brave on the same machine/IP is classified cleanly.

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions