AI agent for home security camera monitoring: two different shapes of that problem.

There are two answers and they are for two different problems. If you have your own cameras (Reolink, Hikvision, Amcrest, Dahua, an old Axis) and you want continuous, frame-by-frame detection of people, packages, vehicles, animals, the answer is a self-hosted NVR that ingests RTSP and runs a detector on a Coral TPU or a small GPU: Frigate, Scrypted with detect plugins, BlueIris with the CodeProject.AI plugin. If you have a cloud camera (Ring, Nest, Wyze, Eufy, Arlo) whose vendor will not give you raw RTSP, you cannot run an NVR against it; you watch a vendor dashboard. For the second shape, a general-purpose computer-use agent on the Mac you already use to watch the dashboard, scheduled to peek every few minutes and summarize, is the closer fit. It is a different product category from an NVR.

No. Fazm is a desktop AI agent for macOS. It controls the apps and windows on your Mac, including any browser tab, via the macOS accessibility APIs. The thing that makes it relevant to this query is that it has a recurring-task primitive (it calls them routines) and a way to read what is on screen at the moment the task fires. So if a vendor's web dashboard happens to be the only way to see your cameras, you can ask Fazm to look at it on a schedule. Frame-level detection on raw video is not its job and it would be the wrong tool for that.

There is a launchd agent called com.m13v.fazm-routines that polls a SQLite table named cron_jobs every 60 seconds. Rows whose next_run_at is in the past get fired. Each fire spawns acp-bridge/src/cron-runner.mjs, which spins up the same ACP bridge the floating bar uses, sends the routine prompt as a query, captures the result and the cost, and writes it back to cron_jobs and cron_runs plus a chat_messages row keyed under taskId='routine-<job-id>'. Schedule strings come in three shapes: cron:0 9 * * 1-5 for cron syntax, every:1800 for an interval in seconds, at:2026-04-30T18:00:00Z for a one-shot. The parser is computeNextRun in acp-bridge/src/schedule.mjs at line 14. The DB lives in your per-user folder at ~/Library/Application Support/Fazm/users/<UUID>/fazm.db.

Cron is exact (this minute, this hour) and interval is relative (every N seconds from the last fire). For a watcher, the interval form is what you usually want, because the question is 'how stale am I willing for my last look to be?' not 'fire at exactly 9:03'. The shortest interval that the design tolerates is constrained by the 60-second poll: an every:30 routine is treated as every:60 in practice because the poller only wakes up once a minute. You also do not want to run the watcher tighter than the model can finish a turn, which on Claude Sonnet for a one-shot 'describe this dashboard and tell me if anything looks off' is usually 5 to 15 seconds.

It reads the macOS accessibility tree of the browser window first. For Ring, Nest, Wyze and similar dashboards, the AX tree gives you the page chrome (camera labels, motion event timestamps, button names) but not the raw video frames. The agent gets a flattened text dump of the window, with one element per line, scoped to the active window. If a dashboard renders activity as text (e.g. 'Front Door: motion 2 minutes ago, person detected') the agent can read that directly. If the dashboard only shows a thumbnail with no text annotations, the agent has to fall back to a vision pass, which on macOS uses CGWindowListCreateImage to grab the window pixels and sends them to the model. Vision is slower and costs more per turn, but it works.

Because not every camera speaks RTSP. Ring, Nest, and Wyze all encrypt their streams to the vendor cloud and do not expose a documented RTSP endpoint to the LAN. There are projects that try to bridge this (go2rtc with a Wyze plugin, wyze-bridge, scrypted-nest) and they work for some users some of the time, but they break on firmware updates, they violate vendor TOS, and they require running a Linux box. For the user who already has those cameras, already pays the vendor cloud, and is on a Mac, the calculus is different: do not bridge an RTSP feed that the vendor does not want to give you, just look at the same dashboard you would look at yourself, on a schedule. Different shape, different tool.

No, and you should not pretend it is. NVRs running on a Coral TPU or a small NVIDIA GPU process every frame at 5-15 fps, get sub-second detection latency, store events on local disk, and run for years without pinging a cloud. A computer-use agent watching a vendor dashboard on a schedule has minutes of latency, costs API tokens per fire, depends on the vendor's web UI not changing, and stops the moment your Mac sleeps. The two coexist. People with their own RTSP cameras self-host an NVR; people on cloud cameras use a scheduled watcher; people with both run both.

Yes. By default macOS sleeps the user session after the lid closes or the inactivity timeout fires, and a launchd agent in the user domain stops being scheduled while the user is logged out. The pattern that works on a Mac you treat as 'always on' is to run it as a kiosk: power adapter connected, lid open, a profile installed via System Settings > Users & Groups > Login Options that disables 'Put hard disks to sleep' and 'Turn display off after', and login keychain set to unlock at boot. If your Mac sleeps every night this is not the right tool; an NVR running on a Raspberry Pi or NUC is.

Right, that's the trade. If the camera is a Ring or a Nest, the vendor already has the video. The agent reading the dashboard does not change that. Where it does add a privacy line is the LLM call: every routine fire sends whatever the agent saw on screen (text plus an optional vision pass) to the model provider you configured. Fazm supports a custom API endpoint, so if you have an Anthropic-compatible local gateway or a corporate proxy you can route through it; if you point at api.anthropic.com directly, the screen content goes to Anthropic. For a security camera dashboard that is already cloud-hosted this is usually not the line that matters. For a feed you specifically chose because the vendor was local-only, this is the line that matters and you should self-host an NVR instead.

Open the dashboard you already use in a browser tab on your Mac. Pin the tab so it survives a restart. Then ask Fazm in plain language: 'every 10 minutes, look at my Ring dashboard tab, tell me if there has been a motion event in the last 30 minutes, and if there is a person on the front door camera right now, send me a chat message about it'. The agent translates that to a routine row with schedule='every:600' and stores the prompt verbatim. You see the result in your chat history under taskId='routine-<id>'. If the result is wrong you tell the agent and it edits the routine. There is no DSL to learn; the storage format is just a row.

Two places. The chat thread under taskId='routine-<job-id>' shows the model's response per fire, in normal conversation history. The cron_runs table in fazm.db stores per-fire status, started_at, duration_ms, cost_usd, output_text, and error_message; you can SELECT against it. There is also a per-fire log file at ~/fazm/inbox/skill/logs/routine-run-<short-id>-<timestamp>.log when the routines pipeline is installed in dev mode, which captures the full ACP bridge stderr and the runner stderr, useful when a routine starts failing silently after a vendor changes their dashboard layout.