• Browser Agent
  • Industry
  • Internal API
  • Branching
  • Agents in general

Browser Agent

(ones w/o sub-bullets are not reviewed yet)

• WebVoyager: Building an End-to-End Web Agent with Large Multimodal Models, Hongliang He, Wenlin Yao, Kaixin Ma, Wenhao Yu, Yong Dai, Hongming Zhang, Zhenzhong Lan, Dong Yu, ACL, 2024
  • vision-first end-to-end web agent on real websites
  • useful mainly bc benchmark uses real rendered sites, not static snapshots
  • good historical starting point; later papers usually have sharper systems ideas
• Towards Specialized Web Agents Using Production-Scale Workflow Data, Junhong Shen, Atishay Jain, Zedian Xiao, Ishan Amlekar, Mouad Hadji, Aaron Podolny, Ameet Talwalkar, arXiv, 2024
  • main claim: real workflow data + finetuning matter more than prompt engineering
  • paper reports specialized open models can beat proprietary baselines
  • good paper if you care about data + training, not just inference-time scaffolding
• AgentOccam: A Simple Yet Strong Baseline for LLM-Based Web Agents, Ke Yang, Yao Liu, Sapana Chaudhary, Rasool Fakoor, Pratik Chaudhari, George Karypis, Huzefa Rangwala, ICLR, 2025
  • simple but important: align action space + observation space to model priors
  • remove low-value actions, compress page, use planning-tree memory
  • nice “simplicity wins” baseline
• Navigating the Infinite Dynamic Web Space: Effective In-Context Exploration via Cognitive Multi-Agent Collaboration, Guozhao Mo, Yanjiang Liu, Yafei Shi, Jiawei Chen, Yang Li, Yaojie Lu, Hongyu Lin, Ben He, Le Sun, Bo Zheng, Xianpei Han, EACL, 2026
  • split “history”: environment observation vs action trajectory
    • 2 separate agent
  • backtrack using “go back” or “go to”
    • to avoid getting stuck/trapped
  • argue state backtrack often impossible bc irreversible actions
    • by citing “Is your llm secretly a world model of the internet? model-based planning for web agents”
  • achieve better performance w/ open source than previous methods + proprietary LLMs
  • contain good list of prior web agents
• WebRL: Training LLM Web Agents via Self-Evolving Online Curriculum Reinforcement Learning, Zehan Qi, Xiao Liu, Iat Long Iong, Hanyu Lai, Xueqiao Sun, Jiadai Sun, Xinyue Yang, Yu Yang, Shuntian Yao, Wei Xu, Jie Tang, Yuxiao Dong, ICLR, 2025
  • online curriculum RL for open web agents
  • tackles task scarcity, sparse rewards, and unstable online training
  • paper reports a large jump on WebArena-Lite; read if you care about training agents
• WebCoach: Self-Evolving Web Agents with Cross-Session Memory Guidance, Genglin Liu, Shijie Geng, Sha Li, Hejie Cui, Sarah Zhang, Xin Liu, Tianyi Liu, arXiv, 2025
  • adds cross-session episodic memory w/o retraining
  • condenser + memory store + runtime coach retrieve past lessons
  • good “memory helps” paper; more practical than foundational
• Building Browser Agents: Architecture, Security, and Practical Solutions, Aram Vardanyan, arXiv, 2025
  • strongest point is architectural / security perspective, not benchmark novelty
  • paper argues prompt injection makes open-ended browser autonomy unsafe in production
  • pro specialized constrained tools, anti general browser-first agent
• BrowserAgent: Building Web Agents with Human-Inspired Web Browsing Actions, Tao Yu, Zhengbo Zhang, Zhiheng Lyu, Junhao Gong, Hongzhu Yi, Xinming Wang, Yuxuan Zhou, Jiabing Yang, Ping Nie, Yan Huang, Wenhu Chen, arXiv, 2025
  • pushes direct browser interaction instead of converting web to static text
  • staged finetuning + explicit memory
  • seems more useful for browse-for-information / open QA than transactional web tasks
• Prune4Web: DOM Tree Pruning Programming for Web Agent, Jiayuan Zhang, Kaiquan Chen, Zhihao Lu, Enshen Zhou, Qian Yu, Jing Zhang, AAAI, 2026
  • nice low-level idea: use generated program to prune DOM before grounding
  • paper reports a large grounding boost by shrinking candidate elements aggressively
  • read if you care about DOM/action grounding details
• Investigating the Impact of Dark Patterns on LLM-Based Web Agents, Devin Ersoy, Brandon Lee, Ananth Shreekumar, Arjun Arunasalam, Muhammad Ibrahim, Antonio Bianchi, Z. Berkay Celik, IEEE S&P, 2026
  • paper positions itself as a first systematic dark-pattern eval for web agents
  • paper reports stronger agents can be more vulnerable bc they bulldoze through UI traps
  • paper reports vision can hurt and prompt countermeasures help only a bit
• From Super-Apps to Agent Economies: Delegated AI Requires Transaction Closure, Chaoyue He, Xin Zhou, Di Wang, Hong Xu, Wei Liu, Chunyan Miao, preprints.org, 2026
  • position paper, not core web-agent algorithm paper
  • main idea: judge agent systems by transaction closure, not just task completion
  • useful for governance / ecosystem framing
• WebOperator: Action-Aware Tree Search for Autonomous Agents in Web Environment, Mahir Labib Dihan, Tanzima Hashem, Mohammed Eunus Ali, Md Rizwan Parvez, arXiv, 2026
  • ICLR 2026 Rejected
    • “most of the individual components have been explored in prior work”
  • still useful: explicit safe/speculative backtracking is the key idea
  • best-first tree search ranks actions by reward + safety, then filters / merges actions
  • paper claims strong WebArena results; read mainly as a tree-search integration paper
• LongHorizonUI: A Unified Framework for Robust long-horizon Task Automation of GUI Agent, Bin Kang, Shaoguo Wen, Yifei Bi, Shunlong Wu, Xinbin Yuan, Rui Shao, Junle Wang, Zhuotao Tian, ICLR, 2026
  • long-horizon GUI agent paper more than web-specific paper
  • benchmark + reflection / validation machinery for >15-step tasks
  • useful if your concern is horizon / robustness, not web semantics

Industry

• AutoWebGLM: A Large Language Model-based Web Navigating Agent, Hanyu Lai, Xiao Liu, Iat Long Iong, Shuntian Yao, Yuxuan Chen, Pengbo Shen, Hao Yu, Hanchen Zhang, Xiaohan Zhang, Yuxiao Dong, Jie Tang, KDD, 2024
  • early strong open web-agent baseline
  • bilingual dataset + html pruning + staged training
  • mostly useful as history / baseline reference now
• The Adoption and Usage of AI Agents: Early Evidence from Perplexity, Jeremy Yang, Noah Yonack, Kate Zyskowski, Denis Yarats, Johnny Ho, Jerry Ma, arXiv, 2025
  • field study of real agent usage, not an algorithm paper
  • useful for “what people actually use agents for”
  • read only if product / adoption angle matters

Internal API

• Beyond Browsing: API-Based Web Agents, Yueqi Song, Frank F. Xu, Shuyan Zhou, Graham Neubig, ACL Findings, 2025
  • important framing paper: APIs can be better machine interface than browsers
  • paper reports api-only and hybrid agents beat browser-only on WebArena
  • read early if you care about practical systems
• Internal APIs Are All You Need: Shadow APIs, Shared Discovery, and the Case Against Browser-First Agent Architectures, Lewis Tham, Nicholas Mac Gregor Garcia, Jungpil Hahn, arXiv, 2026
  • clear systems argument against browser-first agents
  • core idea is shared discovery of first-party / shadow APIs so each agent does less rediscovery work
  • provocative but high-value paper
• APISENSOR: Robust Discovery of Web API from Runtime Traffic Logs, Yanjing Yang, Chenxing Zhong, Ke Han, Zeru Cheng, Jinwei Xu, Xin Zhou, He Zhang, Bohan Liu, arXiv, 2026
  • runtime traffic method for reconstructing undocumented APIs
  • useful enabling paper if you buy the internal-api direction
  • more reverse-engineering paper than agent paper

Branching

• Branch-and-Browse: Efficient and Controllable Web Exploration with Tree-Structured Reasoning and Action Memory, Shiqi He, Yue Cui, Xinyu Ma, Yaliang Li, Bolin Ding, Mosharaf Chowdhury, arXiv, 2025
  • tree-structured reasoning + page action memory + replay
  • better companion to WebOperator than most earlier branching work
  • read to compare memory-guided branching vs safe-backtracking branching

Agents in general

• Affordance Representation and Recognition for Autonomous Agents, Habtom Kahsay Gidey, Niklas Huber, Alexander Lenz, Alois Knoll, ECAI, 2025
  • conceptual paper on world-model construction from structured data
  • two useful abstractions: DOM transduction + affordance recognition
  • light on empirical results; mainly good for framing
• Intelligent AI Delegation, Nenad Tomašev, Matija Franklin, Simon Osindero, arXiv, 2026
  • delegation is framed as authority + responsibility + trust, not just decomposition
  • good conceptual / safety framing for multi-agent systems
  • not web-agent-specific enough to prioritize early
• Repo2Run: Automated Building Executable Environment for Code Repository at Scale, Ruida Hu, Chao Peng, XinchenWang, Junjielong Xu, Cuiyun Gao, NeurIPS, 2025
  • not really a browser-agent paper
  • good agent-infra paper on building executable repo environments automatically
  • read only if you care about code / environment agents