A skill + CLI that lets your AI assistant run read-only queries against NetSuite. It can pull data and answer questions in plain language — and it physically cannot write, edit, or delete. Sandbox-first. Open the moment you buy.
Built for the person accountable for production. The safety isn't a setting you trust; it's the shape of the thing.
The RESTlet contains zero create / edit / delete operations. There is no code that could change your data, even by accident or instruction.
Runs under a dedicated read-only role you create. Even the role can't write — defense in depth. NetSuite blocks admin roles for M2M.
OAuth 2.0 machine-to-machine auth. The setup wizard generates your keypair locally — your private key never leaves your machine.
Query results go to the AI model you choose — we never see them. For sensitive data, use a local model; the read-only role controls what's even readable.
Every install points at a Sandbox account first. Prove it, then decide. Production is an explicit, confirmed choice.
You get the source. Let your own AI or security team review exactly what it does before it goes near your account.
One command walks you through everything, generates your keys, and ends in a validated connection. No call required.
Add the skill + CLI to your agent (Claude Code, Gemini CLI, or your own). Install the RESTlet bundle into your account.
It generates your keys and guides each NetSuite step — integration record, certificate mapping, read-only role — with exact values.
The wizard mints a real token and calls your account: a green check confirming read-only access. Or a precise fix if a step's missing.
Your agent can now query the account safely, in plain language. Start in Sandbox; move to production when you're ready.
NetSuite admins, developers, consultants, and ops leads — people with account access who are tired of exporting to a spreadsheet to answer a question.
"Which open invoices are past due, by customer?" · "Sales orders pending fulfillment for X?" · "Items below reorder point?" · "Journal entries that hit account 4000 last month?" — in plain language.
It will never change a record, post a transaction, or delete anything — there's no code for it. Read-only is the whole point.