Comet

Browser

Perplexity

Product overview

Name of Agent: Comet
Short description of agent: Browser with AI functions. "While the Assistant focuses on understanding and explaining, the Agent focuses on doing and executing" (link, archived)
Date of release: 09/07/2025 (link, archived)
Advertised use: "everything that can be delegated, from wrangling inboxes to ordering groceries, staying on top of finances to planning vacations." (link, archived)
Monetisation/Usage price: free 20, pro, access to agentic mode 200, higher rate limits
Who is using it?: end users, enterprises (link, archived)
Category: Browser

Company & accountability

Developer: Perplexity
Name of legal entity: Perplexity AI, Inc.
Place of legal incorporation: Delaware (link, archived). Contact is San Francisco, CA (link, archived)
For profit company?: Yes
Parent company?: Perplexity
Governance documents analysis: ToS (link, archived), AUP (link, archived)
AI safety/trust framework: None found
Compliance with existing standards: SOC2, GDPR, PCI (link, archived)

Technical capabilities & system architecture

Model specifications: unsure
Documention: Closest available documentations appears to be the resource hub (here, archived).
Observation space: Web data and user inputs (link, archived)
Action space: Actions in the browser (link, archived)
Memory architecture: Has memory (link, archived), but not many implementation details.
User interface and interaction design: Agent works in the browser. Browser is tinted to indicate agent is working. Sidebar shows agent's action trace and has chatbox for the user to prompt agent
User roles: Operator (provides input instruction for the agent), Executor (makes decisions on what to do next after the agent has worked)
Component accessibility: Closed source

Autonomy & control

Autonomy level and planning depth: L4-L5. User doesn't really have any opportunities to take over or give feedback to the agent as it's working. Agent doesn't seem to pause for user feedback either. Unclear if L4 or L5 since haven't run into scenarios where it asks for user approval
User approval requirements for different decision types: Not applicable
Execution monitoring, traces, and transparency: Visible CoT and action trace documenting all activity
Emergency stop and shut down mechanisms and user control: User can pause/stop the agent at any time
Usage monitoring and statistics and patterns: User can observe agent activity in the browser and CoT, unclear if other mechanisms exist

Ecosystem interaction

Identify to humans?: None found
Identifies technically?: None, Comet primary sources reviewed do not publish or document Comet’s default User-Agent string. - Web "requests appear to come from a user’s residential IP addres" (link, archived) - Third party accounts report Comet's using the same user agent string as a Chrome browser (link)
Interoperability standards and integrations: - MCP support (link, archived)
Web conduct: See Perplexity, as Perplexity is the search engine that powers Comet by default (link, archived)

Safety, evaluation & impact

Technical guardrails and safety measures: Technical safeguards in place to protect against prompt injections (link, archived), also using the new BrowserSafe (link, archived)
Sandboxing and containment approaches: None found
What types of risks were evaluated?: Comet safety testing/evaluation targets malicious prompt injection / indirect prompt injection from web content (embedded instructions intended to override user intent or coerce unsafe actions) (link, archived)
(Internal) safety evaluations and results: None found
Third-party testing, audits, and red-teaming: None found
Benchmark performance and demonstrated capabilities: None found
Bug bounty programmes and vulnerability disclosure: Yes (link, archived)
Any known incidents?: - Comet scrutinized for a hidden MCP API capable of executing local commands (commands on the underlying operating system, as opposed to just the browser) ((link, archived), (link, archived)) - Brave found (link, archived) indirect prompt injection in Perplexity Comet - Comet vs Amazon (link, archived)
← Back to 2025 Index