slackwright

Browser-driven Slack message extractor that uses your own logged-in Slack web session to bypass the bot-scope and exclusion-list limits imposed on official Slack apps and MCP integrations.

slackwright is a small CLI built on top of Playwright and Slack's internal web-search endpoint. It works against any workspace you can already log into — including Enterprise Grid orgs — and reaches every channel, DM, and MPIM you can read in the Slack UI, not just the subset a bot or MCP token is granted.

Output is a clean message archive (one JSON per message, plus YAML caches for users and channels) suitable for indexing, replaying, or feeding into downstream tooling. File attachments are downloaded on request, and the search query syntax accepts every standard Slack operator (from:, to:, with:, in:, before:, after:, during:, free-text).

Why?

The official Slack search.messages API behind bot apps (and Slack MCP integrations like NVIDIA's MaaS Slack server) typically:

• only sees DMs / MPIMs / channels the bot is explicitly added to,
• excludes externally-shared channels by org policy,
• enforces per-tenant exclusion lists at the API gateway,
• caps result fan-out tighter than the web client.

slackwright sidesteps all of that by being you. It launches a real Chromium window, you log in once with whatever flow your org requires (SSO, MFA, hardware keys, …), and from then on it drives the same web session the desktop client uses — so anything you can read in slack.com is reachable here.

Install

slackwright is pure Python (≥3.10). It depends on Playwright (which brings its own Chromium) and PyYAML.

The repo ships a single helper script that handles bootstrap (venv, dependencies, and the Playwright Chromium download) on first use:

git clone https://github.com/myurasov/Slackwright.git slackwright
cd slackwright
./slackwright install

./slackwright install requires uv on your PATH (brew install uv or curl -LsSf https://astral.sh/uv/install.sh | sh). The first run downloads ~150 MB of Chromium into Playwright's cache; subsequent calls skip the bootstrap unless pyproject.toml changed.

If you'd rather install slackwright system-wide via pip:

pip install -e .[dev]
playwright install chromium
slackwright login --workspace acme

Quick start

Every CLI invocation works either as ./slackwright <args> (auto- bootstraps in the project venv) or as slackwright <args> (when installed via pip):

# 1. One-time login (opens a real Chrome window — sign in normally).
#    Short names expand to https://<name>.slack.com.
./slackwright login --workspace acme

# 2. Fetch every message you sent in the last 14 days.
./slackwright fetch --from me --days 14 --out ./out

# 3. Fetch every DM with Bob, with attachments.
./slackwright fetch --with bob.builder --with-files --out ./bob

# 4. Search a specific channel for keyword text.
./slackwright fetch --in '#engineering' --query 'rollback OR incident' \
                    --since 2026-04-01 --until 2026-04-30 --out ./incidents

# 5. Cross-pollinate: messages from Carla to Alice, in the last 30 days.
./slackwright fetch --from carla@example.com --to me --days 30 --out ./carla-to-me

Run ./slackwright --help and ./slackwright <subcmd> --help for the full flag list.

Agent-friendly mode

Every command supports --json to emit a single JSON envelope on stdout suitable for parsing by an AI agent or wrapper script. Combined with -q / --quiet you get pure structured output:

./slackwright --json fetch --from me --days 14
./slackwright --json whoami
./slackwright --json doctor
./slackwright --json -q fetch --from me --days 7 --explain   # plan only, no fetch

The envelope shape (stable contract) is:

{
  "ok": true,
  "command": "fetch",
  "exit_code": 0,
  "exit_code_name": "ok",
  "data": { "...": "subcommand-specific payload" }
}

On failure, the envelope adds error (stable snake_case code), message (human-readable), and remediation (recommended next step), and the process exits with the documented exit code:

code	name	when
0	ok	success
2	usage	bad CLI invocation
3	no_login	no persisted login at the state dir
4	resolution_failed	--from / --to / --in didn't resolve
5	transient_api	retryable Slack error (rate-limit, 5xx)
6	permanent_api	non-retryable Slack error
7	io	local filesystem error
130	interrupted	SIGINT / Ctrl-C

Discover the full machine-readable CLI surface with:

./slackwright --schema                   # JSON: every subcommand, every flag, every exit code
./slackwright fetch --explain --json     # the search query + chunk schedule, no fetch
./slackwright fetch --stream-json ...    # JSON-per-line stream as matches arrive
./slackwright describe-archive ./out     # introspect an existing archive
./slackwright report ./out               # generate a self-contained HTML report

HTML report

./slackwright report ./out produces a self-contained ./out/report.html (no external assets, no JavaScript) that you can email, attach to a ticket, or open with file://. It includes:

• the run plan, query, captured-at timestamp, and cost block
• summary stats + a per-month bar chart + by-channel-type breakdown
• a per-channel section listing every message in chronological order
• thread grouping (replies indented under the parent ts)
• inline reactions, file attachment links (relative to ./out/_files/)
• resolved sender names + emails when the user cache has them

Pass --out path/to/report.html to write somewhere other than the default; pass --title "Q2 sweep" to override the auto-generated title.

Person and channel arguments

Every --from, --to, --with and --in argument accepts whatever form is most convenient for you:

Form	Example	Notes
Slack ID	U06HYSK2P2L	Used as-is, no resolution.
Email	alice@example.com	Resolved via users.lookupByEmail.
@-handle	bob.builder	Matches the Slack name field.
Real or display name	Alice Engineer	Case-insensitive; must be unique.
me / myself / self	me	The logged-in user.
Channel name	engineering or #engineering	Public/private channel.
Channel/DM/MPIM ID	C07SC7AFW7Q etc.	Used as-is.

The first time slackwright needs to resolve a name it issues a single paginated users.list (or conversations.list) call and caches the result under ~/.cache/slackwright/. Subsequent runs reuse the cache.

If a name is ambiguous (multiple users share a substring) the tool fails loudly with the candidates listed — it never silently picks one.

Date filtering

--days N                 # last N days (today → today − N), inclusive
--since YYYY-MM-DD       # inclusive lower bound
--until YYYY-MM-DD       # inclusive upper bound (default: today)

--days and --since/--until are mutually exclusive. Both forms accept YYYY-MM-DD, YYYY/MM/DD, or YYYYMMDD.

Slack's search caps any single query at 10 000 results (100 results × 100 pages). For ranges that overflow the cap, slackwright slices the window into per-month chunks and de-duplicates across them. Truncations are warned about in _index.yaml so you know to re-run with a narrower window.

Output layout

Default --format archive (drop-in compatible with Slack-style archives):

<out>/
├── messages/2026/04/25/2026-04-25-engineering-1a2b3c4d.json
├── messages/2026/04/25/2026-04-25-im-34n8j8p6-aa11bb22.json
├── _users/U06HYSK2P2L.yaml
├── _channels/C07SC7AFW7Q.yaml
├── _files/F09ABCD/screenshot.png        # only when --with-files
├── _files/F09ABCD/_meta.json
├── _index.yaml                          # run summary + counts
└── matches.jsonl                        # one row per match (slim ledger)

Per-message JSON files contain the raw Slack search match plus an _archive sidecar (captured_at, direction, archive_schema, source_tool, thread_ts, search_plan). YAML caches under _users/ and _channels/ resolve every Slack ID encountered to the human-readable name, real-name, email, and channel topic/purpose.

Other formats:

• --format jsonl — only matches.jsonl (slim ledger, one match per line). Useful for grepping or feeding a downstream pipeline.
• --format raw — raw Slack response objects under _raw/, no post-processing. Useful for forensic inspection of the API.

Resumable + bounded fetches

For long fetches, two flags help:

./slackwright fetch --since 2025-01-01 --resume --out ./big-archive
./slackwright fetch --from me --days 365 --timeout 600 --out ./year

--resume reads the destination's _index.yaml and skips chunks that the prior run finished cleanly (recorded under extra.search_stats.chunks_completed). --timeout SECONDS aborts the fetch after the configured window and returns an exit code of 5 (transient_api) — the partial output is still on disk and can be resumed with another invocation.

Non-interactive login

For CI / unattended agents that already hold valid Slack web credentials (e.g. extracted from a previous interactive session on a sibling machine, or pulled from a password manager / secret store):

./slackwright login \
    --workspace acme \
    --token xoxc-... \
    --cookie-d xoxd-... \
    --user-id UALICE00 \
    --user-email alice@example.com \
    --team-id T12345

Both --token (the xoxc-... web token from boot_data.api_token) and --cookie-d (the xoxd-... d cookie from .slack.com) must be supplied together. --user-id / --user-email / --team-id are optional metadata for the persisted bundle. The headed flow is still the recommended path for interactive users.

Embedding via the Python API

If you're running inside a Python process (LangChain, dspy, custom orchestrator, ...) you can skip the subprocess + JSON-parse round-trip and use the stable Python API directly:

from slackwright import (
    SlackWebClient, EntityResolver, SearchPlan, SearchRunner,
    ArchiveWriter, CostTracker, load_auth, days_back,
)
from slackwright.paths import resolve_state_dir

state_dir = resolve_state_dir()
bundle = load_auth(state_dir)
cost = CostTracker()
with SlackWebClient.open(bundle, state_dir=state_dir, headed=False, cost=cost) as client:
    resolver = EntityResolver(client, state_dir=state_dir)
    plan = SearchPlan(from_user=resolver.resolve_user("me"),
                      date_from=days_back(7))
    runner = SearchRunner(client, resolver)
    for msg in runner.iter_matches(plan):
        ...   # do something with each match
print(cost.to_json())

Everything imported from slackwright.<module> and re-exported via slackwright.__all__ is part of the stable public surface. See examples/ for runnable end-to-end snippets.

Headless vs headed

By default slackwright fetch runs Chromium headless — the browser window stays hidden, the script just streams progress to stderr.

Use --headed if you want to watch the scrape happen (debugging) or if your org's auth path occasionally requires an interactive prompt that a headless browser can't satisfy.

slackwright login is always headed — you need to type things into the login form yourself.

Other commands

slackwright whoami            # show the logged-in user info (sanity check)
slackwright doctor            # call auth.test against the saved session
slackwright resolve alice     # show what an arg resolves to (debugging)
slackwright resolve '#general' --kind channel
slackwright describe-archive ./out   # JSON snapshot of a prior fetch
slackwright report ./out             # render a self-contained HTML report
slackwright --schema                 # JSON schema of every subcommand + flag

Privacy and data location

• All credentials (cookies + xoxc token) live under ~/.cache/slackwright/ (override via --state-dir or $SLACKWRIGHT_STATE_DIR). auth.json is mode 0600.
• Output files are whatever the user-supplied --out directory holds. No data is sent anywhere except to Slack.
• slackwright keeps no telemetry, makes no third-party network calls, and does not phone home on launch.

Limitations

• Slack's search cap (10 000 results / query) applies. The chunker slices by month; if a single month exceeds the cap, narrow the query with --in / --from / --query and re-run.
• Edited / deleted messages appear with the latest content Slack returns. Slack does not expose a full edit history through search.
• Rate limits: Slack tolerates a few hundred search calls per minute from a normal user session. Backoff is automatic but a multi-thousand message fetch will take minutes, not seconds.
• Unofficial endpoint: search.modules.messages is the same endpoint the web client uses, so it's stable in practice — but it's not part of Slack's public API contract. If Slack changes the response shape someday, slackwright may need an update.

Status

slackwright is alpha-quality and used in production by its author (@myurasov) for personal Slack archive needs. The output schema is stable and intentionally compatible with common Slack-archive layouts (per-message JSON keyed by (channel_id, ts), YAML user/channel caches), so it round-trips cleanly through downstream tooling. Public API is not yet frozen — minor refactors expected before 1.0.

Development

Common tasks all go through the same ./slackwright helper:

./slackwright install        # bootstrap venv + deps + Chromium
./slackwright test           # pytest
./slackwright lint           # ruff check
./slackwright fmt            # ruff check --fix
./slackwright shell          # subshell with the venv activated
./slackwright clean          # remove .venv + caches

Reserved dev-workflow names: install / test / lint / fmt / shell / clean / help. Anything else is forwarded to the slackwright Python CLI.

If you (or your AI coding assistant) plan to make changes, read the project's agent instructions first:

• AGENTS.md — universal entry-point for AI-enabled IDEs (Cursor, Claude Code, OpenAI Codex, Copilot, etc.).
• ai/dev.agent.md — the maintainer's rules for evolving slackwright (code style, commit discipline, test policy).
• ai/spec.txt — canonical specification of what slackwright does (architecture, on-disk layout, CLI surface).
• ai/dev.memory.md — accumulated maintainer preferences. Append new entries here when conventions change.

License

Apache 2.0, see LICENSE.