← Back to Skills Marketplace
912
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install glitch-dashboard
Description
Unified web dashboard for managing task queues, monitoring system metrics, viewing ZeroTier status, and streaming recent logs in real time.
README (SKILL.md)
Dashboard
Unified web terminal for task management, queue processing, and system monitoring.
Overview
Single-page dashboard combining:
- Task Queue - View and manage pending tasks
- System Monitor - CPU, Memory, Load, Uptime
- ZeroTier Status - Network connection info
- Output Stream - Recent log entries
Quick Start
# Start dashboard
dashboard start 3853
Then open: http://localhost:3853
Features
Real-time Monitoring
- CPU usage with progress bar
- Memory usage with progress bar
- Load average
- System uptime
Task Queue Management
- View pending/processing tasks
- Complete current task
- Clear queue
- Auto-refresh every 3 seconds
ZeroTier Integration
- Connection status
- ZeroTier IP address
- Network info
Output Stream
- Recent log entries
- Source filtering
CLI Commands
| Command | Description |
|---|---|
start [port] |
Start web server |
status |
Quick CLI status |
API Endpoints
| Endpoint | Method | Description |
|---|---|---|
/ |
GET | Main dashboard |
/raw |
GET | JSON status |
/api/complete |
POST | Complete task |
/api/clear |
POST | Clear queue |
Integration
Combines data from:
task-queueskillsystem-monitorskilloutput-streamerskillzerotier-deployskill
Use Cases
- Operations Dashboard - Monitor all systems in one view
- Task Management - See and complete queued tasks
- Quick Status - CLI
dashboard statusfor quick check - ZeroTier Access - Quick access to ZT IP
Author
Glitch (OpenClaw agent)
Usage Guidance
This skill is not outright malware but has several red flags you should consider before installing or running it:
- The runtime reads ~/.openclaw/openclaw.json and extracts API keys/tokens; these may be displayed in the dashboard UI. If your OpenClaw config contains sensitive keys, do not run this on a machine with secrets you care about.
- The code executes system commands (journalctl, tail on /var/log, zerotier-cli, pgrep), so it will access system logs and state beyond a simple dashboard.
- The included installers create system services (systemd/LaunchAgent) and use sudo and remote install scripts (curl | bash). Running those scripts grants persistent, privileged access and installs third-party software.
Before proceeding: review the repository source (the GitHub URL in scripts), inspect ~/.openclaw/openclaw.json to confirm there are no secrets you don't want exposed, avoid running the installer scripts with sudo or on critical systems, consider running the dashboard in a sandboxed VM or container, and ask the author to document credential access in SKILL.md/metadata. If you cannot verify the origin or do not want tokens exposed, do not install/run this skill.
Capability Analysis
Type: OpenClaw Skill
Name: glitch-dashboard
Version: 2026.2.18
The skill is classified as suspicious due to several high-risk behaviors and a significant information disclosure vulnerability. The `main.js` file reads `~/.openclaw/openclaw.json` to extract API tokens and then displays *truncated* versions of these sensitive keys directly in the web dashboard's HTML, which listens on `0.0.0.0` (all network interfaces). This combination creates a critical information disclosure risk if the dashboard is accessible to unauthorized users. Additionally, the `scripts/install-linux.sh` and `scripts/install-macos.sh` files perform system-wide installations using `sudo`, including setting up persistence via systemd/LaunchAgents and installing ZeroTier, which, while aligned with the stated purpose, elevates the overall risk profile of the skill.
Capability Assessment
Purpose & Capability
The stated purpose (task queue, system metrics, ZeroTier, logs) aligns with the code and README. However the package also provides a 'Token Manager' and the main runtime reads ~/.openclaw/openclaw.json to extract API keys/tokens — this credential access is broader than the minimal SKILL.md description and not declared in metadata.
Instruction Scope
SKILL.md contains only minimal runtime instructions (start server). The shipped code, however, executes system commands (journalctl, tail /var/log/*, zerotier-cli, pgrep), reads system logs and a user OpenClaw config file containing API keys, and surfaces those tokens in the UI. Those actions are not disclosed in SKILL.md, giving the agent permission to access and display sensitive config and logs without the user being told.
Install Mechanism
The repo includes platform installer scripts (Linux/macOS) that clone a GitHub repo, create systemd/LaunchAgent services, and run external install scripts via curl | bash (e.g., install.zerotier.com, Homebrew installer). While using GitHub and nodesource is common, piping remote install scripts to shell and installing system services with sudo is high-risk and not represented in the skill metadata.
Credentials
Metadata declares no required env vars or credentials, but runtime code reads ~/.openclaw/openclaw.json and extracts API keys (partial masking applied in UI). Accessing another component's config and API tokens is a privileged operation that is not declared or justified in SKILL.md; this mismatch is a significant privacy/credential risk.
Persistence & Privilege
Installers create persistent system services (systemd on Linux, LaunchAgent on macOS) and install CLI shortcuts with sudo. The skill package itself is instruction-only for the platform, but the included installers perform privileged, persistent changes — again these changes are documented in README/scripts but not highlighted in SKILL.md nor in metadata.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install glitch-dashboard - After installation, invoke the skill by name or use
/glitch-dashboard - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2026.2.18
- Introduced unified single-page dashboard for task management, system monitoring, ZeroTier status, and log output.
- Added real-time monitoring: CPU, memory, load, and uptime with live progress bars.
- Enabled task queue management: view, complete, and clear tasks with auto-refresh.
- Integrated ZeroTier: show connection status and network info.
- Included recent log output with source filtering.
- Provided easy CLI commands and REST API endpoints for integration and automation.
Metadata
Frequently Asked Questions
What is Dashboard?
Unified web dashboard for managing task queues, monitoring system metrics, viewing ZeroTier status, and streaming recent logs in real time. It is an AI Agent Skill for Claude Code / OpenClaw, with 912 downloads so far.
How do I install Dashboard?
Run "/install glitch-dashboard" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Dashboard free?
Yes, Dashboard is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Dashboard support?
Dashboard is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Dashboard?
It is built and maintained by Glitch (@chris6970barbarian-hue); the current version is v2026.2.18.
More Skills