npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

homebridge-nanit-pro

v1.1.3

Published

Homebridge plugin for Nanit baby camera — local streaming, temperature/humidity sensors, HomeKit Secure Video, go2rtc relay

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

ghostonyxghostonyx

Keywords

homebridge-pluginhomebridgenanitbaby monitorcamerahomekithksvgo2rtc

Readme

homebridge-nanit-pro

A Homebridge plugin that brings your Nanit baby camera into Apple HomeKit — viewable on iPhone, iPad, Apple TV, and Mac.

Features

  • Live video streaming — local (LAN), cloud, or auto mode (local with cloud fallback)
  • Audio — full audio support in both local and cloud streaming modes
  • Low latency — uses go2rtc as a relay for minimal lag
  • Temperature & humidity sensors — polled every 60 seconds, shown as separate accessories in the Home app
  • Motion detection — triggers a HomeKit MotionSensor when the camera detects motion
  • HomeKit Secure Video (HKSV) — activity zones, event recording (requires iCloud+ and a Home Hub)
  • Multi-viewer — multiple devices can watch simultaneously
  • Homebridge v1 and v2 compatible

Requirements

  • Homebridge v1.6.0 or later
  • ffmpeg with libx264 and libopus support
  • go2rtc v1.9+ (strongly recommended for stable audio)
  • A Nanit baby camera on your local network

Installation

npm install -g homebridge-nanit-pro

Or search for Nanit Pro in the Homebridge UI (Config UI X).

go2rtc Setup

go2rtc acts as a relay between the Nanit camera's RTMP push and HomeKit, providing stable audio and multi-viewer support.

  1. Install go2rtc: https://github.com/AlexxIT/go2rtc#installation
  2. Configure it (/etc/go2rtc/go2rtc.yaml or equivalent):
api:
  listen: 127.0.0.1:1984

rtsp:
  listen: 127.0.0.1:8554

log:
  level: warn
  1. Start go2rtc as a service and ensure it runs on boot.

Security note: Bind the go2rtc API and RTSP to 127.0.0.1 so they are not accessible from other devices on your network.

Configuration

Add to your Homebridge config.json:

{
  "platform": "NanitCamera",
  "name": "Nanit Cameras",
  "email": "[email protected]",
  "refreshToken": "YOUR_REFRESH_TOKEN",
  "streamMode": "local"
}

Getting a Refresh Token

Password login triggers an SMS code every time Homebridge restarts. Use a refresh token instead:

npx nanit-auth

Follow the prompts — it will output a refreshToken to paste into your config.

All Config Options

| Option | Default | Description | |--------|---------|-------------| | email | — | Your Nanit account email (required) | | refreshToken | — | Long-lived token from npx nanit-auth (recommended) | | password | — | Your Nanit password (only used once to obtain a refresh token via CLI) | | streamMode | local | local = LAN direct, cloud = via Nanit servers, auto = local with automatic cloud fallback | | localAddress | auto-detected | Override the Homebridge host IP (only needed if auto-detection picks the wrong interface) | | localRtmpPort | 1935 | Port the plugin's RTMP server listens on | | go2rtcApiUrl | http://localhost:1984 | go2rtc REST API URL | | ffmpegPath | ffmpeg | Path to the ffmpeg binary | | refreshInterval | 300 | How often to refresh the camera list (seconds) | | sensorInterval | 60 | How often to poll temperature & humidity (seconds) |

HomeKit Secure Video

To enable activity zones and event recording:

  1. You need an iCloud+ subscription
  2. You need a Home Hub (Apple TV 4K, HomePod, or iPad set as Home Hub)
  3. Open the Home app → tap the camera → Camera Settings → enable recording

Streaming Architecture

Nanit Camera
    │ RTMP push (LAN)
    ▼
node-media-server (port 1935)
    │ go2rtc pulls via RTMP
    ▼
go2rtc relay
    │ RTSP (localhost only)
    ▼
ffmpeg → SRTP → HomeKit

In auto mode, if the local stream cannot be established the plugin automatically falls back to cloud streaming — no manual intervention needed.

Using go2rtc as a relay means:

  • Stable audio (go2rtc normalises RTMP timestamps before RTSP delivery)
  • Multiple HomeKit viewers share one camera connection
  • go2rtc handles reconnection if the camera drops

Motion Detection

When the camera detects motion, the plugin triggers a MotionSensor accessory in HomeKit. The sensor automatically clears after 10 seconds.

To use motion as a HomeKit automation trigger, set up a Home automation on the MotionSensor accessory.

Troubleshooting

Camera shows "No Response"

  • Check that the Nanit camera and Homebridge host are on the same LAN
  • Set localAddress in config to the exact IP of your Homebridge host if auto-detection fails
  • Check Homebridge logs for ffmpeg errors

No audio / choppy audio

  • Ensure go2rtc is running (systemctl status go2rtc)
  • Verify go2rtc API is reachable: curl http://localhost:1984/api/streams

Streaming falls back to cloud unexpectedly

  • Check the camera's local IP is reachable from the Pi: ping <camera-ip>
  • Ensure port 1935 is not blocked by a firewall between the camera and Homebridge

Token expired

  • Run npx nanit-auth to get a fresh refresh token and update your config

Security

| Area | Detail | |------|--------| | go2rtc API & RTSP | Bound to 127.0.0.1 — not reachable from other devices on the network | | Access token never logged | The Nanit access token is redacted in all log output | | No shell injection | ffmpeg is launched via child_process.spawn() with an arguments array, never a shell string | | Refresh token preferred over password | Using a refresh token means your Nanit password is never stored on disk. Password login is intentionally disabled in the plugin to prevent MFA spam | | SRTP encrypted video | All HomeKit video streams are encrypted end-to-end using SRTP (AES-CM-128-HMAC-SHA1-80) | | WSS signalling | The WebSocket connection to Nanit's signalling server uses TLS (wss://) | | Token persistence | Refresh tokens are stored in Homebridge's own storage directory (nanit-tokens.json) — not in any external or internal HAP storage API | | Dependencies | All dependencies (node-media-server, ws, protobufjs) are pinned to latest versions with no known CVEs |

Changelog

v1.1.0

  • Added audio to cloud streaming mode
  • Added motion detection (HomeKit MotionSensor)
  • Added independent sensor polling every 60s (configurable via sensorInterval)
  • auto mode now falls back to cloud if local stream fails
  • Replaced internal HAPStorage API with file-based token storage
  • Fixed hardcoded hap-nodejs internal import paths in recording delegate
  • nanit-auth CLI is now properly registered as a bin command
  • Fixed CLI example config (removed misleading password field)

v1.0.0

  • Initial release

License

MIT © GhostOnyx