Comet
BrowserPerplexity
Product overview
Name of Agent: Comet
Monetisation/Usage price: free
20, pro, access to agentic mode
200, higher rate limits
Website: (https://www.perplexity.ai/comet, archived)
Category: Browser
Company & accountability
Developer: Perplexity
Name of legal entity: Perplexity AI, Inc.
For profit company?: Yes
Parent company?: Perplexity
AI safety/trust framework: None found
Technical capabilities & system architecture
Model specifications: unsure
User interface and interaction design: Agent works in the browser. Browser is tinted to indicate agent is working. Sidebar shows agent's action trace and has chatbox for the user to prompt agent
User roles: Operator (provides input instruction for the agent), Executor (makes decisions on what to do next after the agent has worked)
Component accessibility: Closed source
Autonomy & control
Autonomy level and planning depth: L4-L5. User doesn't really have any opportunities to take over or give feedback to the agent as it's working. Agent doesn't seem to pause for user feedback either. Unclear if L4 or L5 since haven't run into scenarios where it asks for user approval
User approval requirements for different decision types: Not applicable
Execution monitoring, traces, and transparency: Visible CoT and action trace documenting all activity
Emergency stop and shut down mechanisms and user control: User can pause/stop the agent at any time
Usage monitoring and statistics and patterns: User can observe agent activity in the browser and CoT, unclear if other mechanisms exist
Ecosystem interaction
Identify to humans?: None found
Identifies technically?: None, Comet primary sources reviewed do not publish or document Comet’s default User-Agent string.
- Web "requests appear to come from a user’s residential IP addres" (link, archived)
- Third party accounts report Comet's using the same user agent string as a Chrome browser (link)
Safety, evaluation & impact
Sandboxing and containment approaches: None found
(Internal) safety evaluations and results: None found
Third-party testing, audits, and red-teaming: None found
Benchmark performance and demonstrated capabilities: None found
Any known incidents?: - Comet scrutinized for a hidden MCP API capable of executing local commands (commands on the underlying operating system, as opposed to just the browser) ((link, archived), (link, archived))
- Brave found (link, archived) indirect prompt injection in Perplexity Comet
- Comet vs Amazon (link, archived)