Chrome 142 default flag breaks network requests

Extensions
, ,
1

I have reproduced the issue on the latest CLI version.

Yes, I am on the latest version

I have searched existing posts and this report is not a duplicate.

Yes, this isn’t a duplicate

In which of these areas are you experiencing a problem?

Extension

Expected behavior

Shopify extension is able to make a web request without a CORS error

Actual behavior

Since Chrome 142 was released, extensions being served via the Shopify CLI (shopify app dev --use-localhost) results in a CORS error

Reproduction steps

Update to Chrome 142. Attempt to load a customer accounts extension that makes a web request.

Chrome 142 enabled a new network flag described here that breaks requests: New permission prompt for Local Network Access  |  Blog  |  Chrome for Developers

I have confirmed that disabling this flag in Chrome fixes the issue.

Verbose output

Not relevant

Operating system

MacOS 26.0.1 (25A362)

CLI version

3.86.1

Shell

Warp

Nodejs version

v22.17.0

What language and version are you using in your application?

Node 22

2

Thanks for reporting @Chris_Lewis! We will update here when we have a solution.

Workaround would be to disable this flag, as you say, or to use one of the network tunneling options.

1 Like
3

Hi,

Same problem with Shopify theme editor & vite server.

Can Shopify add allow="local-network-access" attribute on <iframe> ? (Source: CORS issue with Version 142 but not in Version 141 - Chrome Enterprise & Education Community )