← Back to Skills Marketplace

Nest SDM

Name: Nest SDM
Author: tag-assistant

by Tag · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

701

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install nest-sdm

Description

Control Nest thermostat, doorbell, and cameras via the Google Smart Device Management (SDM) API.

Usage Guidance

This skill appears to do what it says (control Nest and forward events), but the bundled scripts read and create token files and may pull credentials from places you might not expect (your ~/.zshenv and any local gcloud auth). Before installing or running: (1) Inspect the token files and avoid placing other secrets in ~/.openclaw/workspace or your shell rc; (2) Prefer creating dedicated OAuth credentials and a dedicated GCP project with least-privilege scopes; (3) Don't store long-lived unrelated secrets in .zshenv — the script will try to read it; (4) Consider running the scripts in an isolated environment (container or restricted user) and verify TELEGRAM_BOT_TOKEN/CHAT_ID are set explicitly rather than relying on automatic discovery; (5) If you don't want event forwarding, avoid running nest-events.sh or remove the Telegram forwarding sections. If you're unsure, test in a disposable account/project first.

Capability Analysis

Type: OpenClaw Skill Name: nest-sdm Version: 1.0.0 The skill is classified as suspicious due to several shell/JSON injection vulnerabilities found in `nest-events.sh` and `nest-sdm.sh`. User-controlled input (e.g., device names, thermostat settings, raw API body) is directly interpolated into `python3 -c` strings and `curl -d` JSON payloads without robust sanitization. This could allow an attacker to craft malicious input to perform unintended API actions or potentially execute arbitrary commands. For example, `nest-sdm.sh`'s `cmd_api` function directly passes user-supplied JSON to the API, and `nest-events.sh`'s `send_telegram_alert` and `format_event_alert` functions are vulnerable to Python string injection if input contains specific quote characters. While these are significant vulnerabilities, there is no clear evidence of intentional malicious behavior such as data exfiltration to unauthorized endpoints, persistence, or obfuscation; all network calls are to legitimate Google and Telegram APIs for the skill's stated purpose.

Capability Assessment

ℹ Purpose & Capability

The name/description (Nest SDM control and event forwarding) aligns with the included scripts and SKILL.md: OAuth tokens, SDM API calls, and Pub/Sub event handling are expected for this use case. Required binaries (curl, python3) are proportional. However, the registry metadata declares no required env vars while the scripts clearly read several environment variables and token files — this declaration mismatch is noteworthy.

⚠ Instruction Scope

SKILL.md and the scripts instruct the agent to read and write token files under ~/.openclaw/workspace, run OAuth exchanges, poll Google Pub/Sub, and forward events to Telegram. The nest-events.sh script additionally attempts to parse $HOME/.zshenv for TELEGRAM_* variables and falls back to invoking a local gcloud binary to obtain access tokens. Those actions expand scope beyond simple SDM API calls because they read arbitrary shell config and reuse any existing gcloud credentials on the host.

✓ Install Mechanism

This is an instruction-only skill with no installer; there is no network-downloaded code at install time. Code files are bundled with the skill (shell scripts), so nothing is fetched or executed automatically beyond what the scripts do when run.

⚠ Credentials

The skill legitimately needs OAuth client_id/client_secret/refresh_token and (optionally) Pub/Sub tokens and a Telegram bot token to operate. However: the registry lists no required env vars while the scripts expect NEST_SDM_TOKENS, NEST_PUBSUB_TOKENS, TELEGRAM_BOT_TOKEN, TELEGRAM_CHAT_ID, GCP_PROJECT and more. The script's behavior of scanning ~/.zshenv for TELEGRAM_* and using gcloud to fetch tokens can access unrelated secrets/credentials on the host — this is disproportionate unless explicitly documented and consented to.

✓ Persistence & Privilege

The skill does not request always:true and does not modify other skill configs. It can be run as a daemon (listen) which is expected for event forwarding, and autonomous invocation is allowed by default (platform normal). No elevated system persistence or cross-skill configuration changes are requested by the code.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install nest-sdm
After installation, invoke the skill by name or use /nest-sdm
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

Initial publish

Metadata

Slug nest-sdm

Version 1.0.0

License —

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Nest SDM?

Control Nest thermostat, doorbell, and cameras via the Google Smart Device Management (SDM) API. It is an AI Agent Skill for Claude Code / OpenClaw, with 701 downloads so far.

How do I install Nest SDM?

Run "/install nest-sdm" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Nest SDM free?

Yes, Nest SDM is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Nest SDM support?

Nest SDM is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Nest SDM?

It is built and maintained by Tag (@tag-assistant); the current version is v1.0.0.

More Skills