logoalt Hacker News

OpenAI's ChatGPT Agent casually clicks through "I am not a robot" verification

254 pointsby joak07/28/2025291 commentsview on HN

Comments

theptip07/31/2025

This will be one of the big fights of the next couple years. On what terms can an Agent morally and legally claim to be a user?

As a user I want the agent to be my full proxy. As a website operator I don’t want a mob of bots draining my resources.

Perhaps a good analogy is Mint and the bank account scraping they had to do in the 2010s, because no bank offered APIs with scoped permissions. Lots of customers complained, and after Plaid made it big business, eventually they relented and built the scalable solution.

The technical solution here is probably some combination of offering MCP endpoints for your actions, and some direct blob store access for static content. (Maybe even figuring out how to bill content loading to the consumer so agents foot the bill.)

show 24 replies
Izkata07/31/2025

> Maybe they should change the button to say, "I am a robot"?

Long time ago I saw a post where someone running a blog was having trouble keeping spam out of their comments, and eventually had this same idea. The spambots just filled out every form field they could, so he added a checkbox, hid the checkbox with CSS, and rejected any submission that included it. At least at the time it worked far better than anything else they'd tried.

show 7 replies
rany_07/29/2025

The only reason why people don't use AI models to solve captchas is because paying humans is actually MUCH cheaper.

This is not an advert, I only know about them because it was integrated with Invidious at some point: https://anti-captcha.com/

> Starting from 0.5USD per 1000 images

show 5 replies
dimal07/31/2025

As I get older, I can see a future where I’m cut off from parts of the web because of captchas. This one, where you just have to click a button, is passable, but I’ve had some of the puzzle ones force me to answer up to ten questions before I got through. I don’t know if it was a glitch or if I was getting the answers wrong. But it was really frustrating and if that continues, at some point I’ll just say fuck it and give up.

I have to guess that there are people in this boat right now, being disabled by these things.

show 15 replies
abtinf07/31/2025

I don’t see why bypassing captchas is any more controversial than blocking ads or hiding cookie popups.

It’s my agent — whether ai or browser — and I get to do what I want with the content you send over the wire and you have to deal with whatever I send back to you.

show 1 reply
cadamsdotcom07/31/2025

Bulletproof solution: captcha where you drag a cartoon wire to one of several holes, captioned “for access, hack this phone system”

No agent will touch it!

“As a large language model, I don’t hack things”

show 3 replies
Semaphor07/31/2025

I have been using AI to solve ReCaptchas for quite some time now. Still the old school way of using captcha buster, which clicks the audio challenge and then analyses that.

Bots have for a long time been better and more efficient at solving captchas than us.

show 1 reply
exasperaited07/31/2025

A very poetic demonstration that this is an industry, and a set of fortunes for very unpleasant people, predicated entirely on theft and misrepresentation.

neilv07/31/2025

Captchas seem to be more about Google's "which human are you?" cross-site tracking. And now also about Cloudflare getting massive amounts of HTTPS-busting Internet traffic along with cross-site tracking.

And in many cases, it's taking a huge steaming dump upon a site's first-impression user experience, but AFAICT, it's not on the radar of UX people.

seydor07/31/2025

That's because the checkbox has misleading labeling. It doesn't care about robots but about spam and data harvesters. So there is no issue here at all.

show 2 replies
mattlondon07/31/2025

I think these things are mainly based on cookie/fingerprinting these days - the check-box is just there for show. People like cloudflare and google get to see a big chunk of browsing activity for the entire planet, so they can see if the activity coming from an IP/Browser looks "bot like" or not.

I have never used ChatGPT so no idea how its agent works, but if it is driving your browser directly then it will look like you. If it is coming from some random IP address from a VM in Azure or AWS even then the activity probably does not look "bot like" since it is doing agentic things and so acting quite like a human I expect.

show 2 replies
camgunz07/31/2025

I thought the point of captchas was to make automated use as expensive or more than manual use--haven't we been at the point where computers can do this for a while, just that the cost/latency is prohibitive?

show 1 reply
827a07/31/2025

I'm confused by this: Presumably OpenAI should be sending a user agent header which indicates that they are, in fact, a robot. Is OpenAI not sending this header? Or is Cloudflare not checking it?

show 1 reply
frollogaston07/29/2025

I've noticed more websites wanting you to log in. Most surprising is how YouTube won't let me watch anything otherwise. Idk if related.

show 3 replies
paulwilsonn07/31/2025

I saw that and just sat there for a second like… huh. We’ve officially reached the point where bots are better at proving they’re not bots!

show 1 reply
kittikitti07/31/2025

This would be a huge security vulnerability for Cloudflare but this is Big Tech we're talking about. The rules don't apply when you're past their pearly gates. For the rest of us, creating an AI like this would mean an instant ban from Cloudflare and likely involvement from law enforcement.

tanseydavid07/31/2025

Seems like a mention of the 2025 Academy Award winner for Best Action Live-Action Short, called "I am not a Robot" is in order here:

https://www.youtube.com/watch?v=4VrLQXR7mKU&t=14s

show 1 reply
p3rls07/31/2025

Back in Everquest, when we'd be accused of botting 20 years ago, we'd be ported by the GM into a special cube environment and they'd watch if we ran into the wall like an idiot-- we'll probably have to bring that sorta thing back.

JohnMakin07/31/2025

Getting past bot check proxies can be bought all over the place for pennies or much less per verification, and can solve recaptchas. I would guess if one wanted to use chatGPT for this purpose it would be prohibitively expensive.

It's always a cat and mouse game.

PeterStuer08/01/2025

Who on earth would want to employ a bot that does not pass the verfification test?

It is beyond time we start to adress the abuses, rather than the bot/human distinction.

jujube307/31/2025

It was only a matter of time!

https://www.youtube.com/watch?v=W7MrDt_NPFk

torium07/31/2025

People are surprised because a computer can press a button?

show 2 replies
drakenot07/31/2025

This is why this stuff is going to shift to the user’s AI enabled browser.

Half of the sites already block OpemAI. But if it is steering the user’s browser itself?

infecto07/31/2025

The writing is on the wall. The internet may not go full way to paywalls but will definitely migrate to a logged in only experience. I don’t know how I feel about it, the glory days of the free internet died long long ago.

show 1 reply
tbirdny07/31/2025

This is the reason Orb was created. Sam Altman wants ChatGPT to click through CAPTCHAs so we all have to use Orb.

bflesch07/31/2025

idk why people just don't do reverse DNS lookup, check if "dialup" is part of the hostname, and allowlist that traffic. Everbody who doesn't have reverse dns hostname coming from an ISP should be blocked or at least tarpitted by default.

Easily solves 99% of the web scraping problems.

show 1 reply
throwaway74307/31/2025

Cloudflare checkbox captchas were already easy to automate without AI.

thedougd07/31/2025

I see the same with Playwright MCP server with Claude Sonnet 4.

SturgeonsLaw07/31/2025

"Prove you're human by explaining how to build a bomb"

show 2 replies
ashoeafoot07/31/2025

To error is to human, i error therfore im human.

btbuildem07/31/2025

It seems a legitimate use case for agents acting on a person's behalf. Whether it will be used in legitimate ways, that's a different story altogether.

I wonder how these capabilities will interact with all the "age verification" walls (ie, thinly disguised user profiling mechanisms) going up all over the place now.

lucasyvas07/31/2025

The web has no choice but to move to a paid access model in my view. It was fought against for years but I don’t see another option left.

Maybe after sign up, biometric authentication being mandatory is the only thing that would potentially work. The security and offline privacy of those devices will become insanely valuable.

Anyone not authenticating in this way is paywalled. I don’t like this but don’t see another way.

I’m not using the web if I’m bombarded by captcha games… shit becomes worthless over night if that’s the case. Might as well dump computing on the Internet entirely if that happens.

kotaKat07/31/2025

... meanwhile I'll continually be thrown dozens of cognitively abusive hCaptchas for no reason and be stuck in a loop of hell trying to figure out what they wanted me to solve.

I love this totally normal vision of computing these days. :)

show 1 reply
aetherspawn07/31/2025

This will cause of the death of non static websites, everything else will be smashed by bots and too expensive to run!

galuggus07/31/2025

can it solve rudecaptcha.xyz ?

Keyframe07/31/2025

next-gen captcha should offer some code to be refactored instead.

show 1 reply
hangonhn07/31/2025

Should have gone with the XKCD Captcha: https://xkcd.com/233/

The bit at the bottom might actually work on LLMs.

pftburger07/31/2025

Come on. It’s in BrowserMCP on a users machine. Capture is not testing for this and that’s fine

marthacamila08/02/2025

[dead]

amitrip07/31/2025

[dead]

onetokeoverthe07/31/2025

[dead]

jeisc07/31/2025

it is an intelligent agent and not a robot

show 1 reply