← Back to Skills Marketplace

Logfile Analyzer

Name: Logfile Analyzer
Author: charlie-morrison

by charlie-morrison · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ Security Clean

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install logfile-analyzer

Description

Analyze application logs to produce actionable error digests with pattern detection, severity classification, trend analysis, and remediation recommendations...

README (SKILL.md)

Log Analyzer

Parse application logs into actionable error digests with pattern grouping, severity classification, trend detection, and remediation recommendations.

Quick Start

# Analyze a single log file
python3 scripts/analyze_logs.py /var/log/app.log

# Analyze all logs in a directory
python3 scripts/analyze_logs.py /var/log/myapp/

# Last 24 hours only, errors and above
python3 scripts/analyze_logs.py /var/log/app.log --since 24h --severity error

# JSON output for programmatic use
python3 scripts/analyze_logs.py /var/log/app.log --output json

# Markdown report with trends
python3 scripts/analyze_logs.py /var/log/app.log --output markdown --trends

# Ignore noisy patterns
python3 scripts/analyze_logs.py /var/log/app.log --ignore "healthcheck" --ignore "GET /favicon"

Supported Formats (Auto-Detected)

JSON structured — Bunyan, Winston, Pino, structlog, any {"level": ..., "msg": ...} format
Syslog — RFC 3164 (Mar 28 02:31:00 host service: msg)
Apache/Nginx access — Combined log format
Nginx error — 2026/03/28 02:31:00 [error] ...
Python tracebacks — Multi-line traceback collection
Docker — ISO 8601 timestamps with container output
Generic timestamped — [2026-03-28 02:31:00] LEVEL: message

Force format with --format \x3Cname> if auto-detection fails.

What It Does

Parses log entries with format auto-detection
Classifies severity (TRACE → DEBUG → INFO → WARN → ERROR → FATAL)
Normalizes messages (replaces UUIDs, IPs, timestamps, paths with placeholders)
Groups similar errors by fingerprint to find recurring patterns
Ranks by severity and frequency
Detects trends with --trends (hourly frequency buckets)
Recommends fixes for 15+ known error patterns (OOM, connection refused, disk full, timeouts, SSL issues, rate limits, etc.)

Options

Flag	Default	Description
`--format`	auto	Force log format
`--since`	all	Time filter (`1h`, `24h`, `7d`, or ISO date)
`--severity`	warn	Minimum severity to report
`--top`	20	Number of top patterns to show
`--output`	text	Output format: text, json, markdown
`--trends`	off	Show hourly frequency trends
`--ignore`	none	Regex patterns to exclude (repeatable)
`-q`	off	Summary only, skip individual entries

Exit Codes

0 — No errors found
1 — Errors found (warn/error level)
2 — Fatal/critical entries found

Use in CI/CD pipelines to fail builds on log errors.

Workflow

Incident Investigation

Run with --since 1h --severity error --trends to see recent errors with frequency
Review top patterns — the most frequent errors are usually the root cause
Check recommendations for known patterns
Use --output json to feed into monitoring dashboards

Periodic Health Check

Run with --since 24h --output markdown for a daily report
Compare pattern counts across days to spot trends
Set up as cron job for automated daily digests

Deep Dive

Run with --severity debug to see full picture
Use --ignore to filter out known noise
Check references/error-patterns.md for detailed remediation steps on specific error types

Error Pattern Reference

For detailed remediation guidance on specific error types (memory, network, database, SSL, etc.), see references/error-patterns.md.

Usage Guidance

This appears to be a straightforward local log analyzer, but consider the following before installing or running it: 1) Logs often contain sensitive data (API keys, PII, auth tokens) — run the tool only on files you intend to analyze and preferably on a copy or in a sandbox. 2) Review the included script (scripts/analyze_logs.py) yourself — it runs locally and will read whatever paths you pass to it. 3) The skill has no provenance information (no homepage) and is sold/packaged by an unknown owner — if this matters for your environment, prefer tools from known sources or audit the code. 4) For automated runs (cron/CI), give the process least privilege (read-only access to specific log directories) and avoid sending raw outputs to external endpoints unless you control them.

Capability Analysis

Type: OpenClaw Skill Name: logfile-analyzer Version: 1.0.0 The logfile-analyzer skill is a legitimate tool designed to parse, group, and analyze application logs for error patterns. The core logic in scripts/analyze_logs.py is well-structured, uses only Python standard libraries, and contains no network calls, obfuscation, or unauthorized file access. It implements robust log format auto-detection and provides actionable remediation advice based on common error strings (e.g., OOM, connection timeouts) defined in references/error-patterns.md.

Capability Tags

cryptorequires-oauth-token

Capability Assessment

✓ Purpose & Capability

Name/description match the included Python analyzer (scripts/analyze_logs.py). The script and SKILL.md focus on parsing log files, grouping errors, trend detection, and recommendations — all coherent with a logfile analyzer. No unrelated binaries, environment variables, or cloud credentials are requested.

ℹ Instruction Scope

Instructions direct the agent/user to run the included script against local log files or directories (examples use /var/log). This is expected for the stated purpose. Note: the tool will read any file paths you provide (logs can contain sensitive data), so feeding it arbitrary system paths grants it access to those files.

✓ Install Mechanism

No install spec — instruction-only with an included pure-Python (stdlib) script. No downloads, no external package registry dependencies, and no archives to extract.

✓ Credentials

The skill declares no required environment variables or credentials and the included script imports only stdlib modules. There are no obvious requests for unrelated secrets or external service tokens.

✓ Persistence & Privilege

always:false and no install behavior that modifies other skills or system-wide settings. The skill does not request permanent presence or privileged agent-wide configuration.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install logfile-analyzer
After installation, invoke the skill by name or use /logfile-analyzer
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

Initial release

Metadata

Slug logfile-analyzer

Version 1.0.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Logfile Analyzer?

Analyze application logs to produce actionable error digests with pattern detection, severity classification, trend analysis, and remediation recommendations... It is an AI Agent Skill for Claude Code / OpenClaw, with 87 downloads so far.

How do I install Logfile Analyzer?

Run "/install logfile-analyzer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Logfile Analyzer free?

Yes, Logfile Analyzer is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Logfile Analyzer support?

Logfile Analyzer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Logfile Analyzer?

It is built and maintained by charlie-morrison (@charlie-morrison); the current version is v1.0.0.

More Skills