Skip to main content

Overview

The AI reset engine is PassAgent’s headline feature. Instead of manually navigating password reset flows, you chat with an AI agent that handles the entire process: finding the reset page, triggering the email, reading the reset link from your inbox, and setting a new password.

How it works

The reset engine uses a 3-phase fallback strategy to maximize reliability:
1

Phase 1: BQL saved scripts

For the 83+ services in the service registry, PassAgent uses pre-written Browserless Query Language (BQL) scripts. These are deterministic, fast, and reliable for known flows.
2

Phase 2: Universal agent

If no saved script exists, the Universal Password Reset Agent uses BQL with generic CSS selectors to navigate any website’s reset flow. It identifies form fields, buttons, and links dynamically.
3

Phase 3: Vision AI fallback

For complex or non-standard flows, Claude Vision AI analyzes screenshots of the page to identify UI elements and determine the next action. This handles CAPTCHAs, unusual layouts, and multi-step flows.

Reset flow

User: "Reset my Netflix password"
    |
    v
Orchestrator identifies service → Netflix
    |
    v
Phase 1: Run BQL script for Netflix
    |
    v
Navigate to reset page → Enter email
    |
    v
Gmail integration → Wait for reset email
    |
    v
Extract reset link → Navigate to it
    |
    v
Generate strong password → Submit form
    |
    v
Update vault with new password
    |
    v
User: "Done! Your Netflix password has been reset."

CAPTCHA handling

When the reset engine encounters a CAPTCHA:
  1. Headless detection — attempts to solve simple challenges programmatically
  2. Headed escalation — opens a visible browser for the user to solve the CAPTCHA
  3. Browserless live session — provides a live browser URL for interactive solving
PassAgent never attempts to bypass CAPTCHAs through automated solving services. When human verification is required, the system escalates to you.

Gmail integration

The reset engine reads password reset emails through Gmail OAuth2:
  • Scopes: gmail.readonly and limited gmail.modify (to mark messages as read)
  • Polling: monitors your inbox for reset emails during active flows
  • Link extraction: parses reset links from email HTML/text content
  • Security: OAuth tokens are stored in Redis with encryption at rest

Supported services

PassAgent includes pre-built reset scripts for 83+ services including:
  • Google / Gmail
  • Microsoft / Outlook
  • Apple ID
  • Amazon
  • Netflix
  • Spotify
  • Discord
  • Slack
  • GitHub
  • GitLab
  • Twitter / X
  • Facebook
  • Instagram
  • LinkedIn
  • Reddit
  • Twitch
  • Dropbox
  • Adobe
  • Zoom
  • Notion
  • Figma
  • Vercel
  • AWS
  • And many more
Services not in the registry are handled by the universal agent (Phase 2) or vision AI (Phase 3).