There are also risks associated with sharing your login info (directly or via tokens) with any third party beyond just what the APIs allow today. Many (most?) large scale breaches are via 3rd parties (or 3rd party software). I trust Tesla to safeguard my account, and make things right should they be compromised. For any 3rd party, think carefully about the level of design, deployment, maintenance, and processes for safeguarding your account info you truly expect them to implement, and it’s likely you’ll realize they invest far fewer resources into this than Tesla does themselves. Each person has their own valuation on the risks and benefits of 3rd party access to their Tesla account (or bank accounts, etc…so many 3rd parties want your account info these days). Just have your eyes wide open about the risks you’re taking anytime you share access to any of your accounts with any 3rd party apps…