← Back to Skills Marketplace
laolaoqi

Log Analyzer

by new · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
65
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install laolaoqi-log-analyzer
Description
Analyze server logs for error patterns, IP frequency, time-based analysis, and alert generation. Use when a user needs log file analysis, error pattern detec...
README (SKILL.md)

Log Analyzer

Script

scripts/log-analyzer.sh — the single entry point for all analyses.

The script is self-contained, works on any Linux system with standard tools (grep, awk, sort, uniq), and handles both file and piped input.

Quick Start

Analyze /var/log/syslog with all checks:

bash scripts/log-analyzer.sh -f /var/log/syslog --all

Or pipe logs directly:

journalctl -u nginx --since "24 hours ago" | bash scripts/log-analyzer.sh --all

Options

Option Description
-f \x3Cfile> Log file to analyze (use - for stdin)
-p \x3Cpattern> Custom error pattern (default: error/i, fail/i, warn/i, critical/i, exception)
-t \x3Chours> Time window in hours (default: 24)
--errors Find top error messages and their frequency
--time-analysis Group errors by time period (hourly/daily)
--ips Analyze IP frequency from log entries
--spikes Identify unusual patterns and spikes
--all Run all analyses (default if no option given)
--help Show this help message

Analysis Modules

Error Patterns (--errors)

Scans for configured error patterns, groups and sorts by frequency, shows the top most common error messages.

Time-based Analysis (--time-analysis)

Groups errors into hourly and daily buckets to show when issues occur most frequently.

IP Frequency (--ips)

Extracts IPv4 addresses from log entries, counts occurrences, and shows the top sources.

Spike Detection (--spikes)

Compares error counts per time bucket against the average. Flags buckets that exceed 2x the average as potential anomalies.

Common Findings & Recommendations

  • Repeated errors from the same source: Check application/service health; consider rate limiting or restart
  • Time-based spikes: Correlate with cron jobs, deployments, or traffic patterns at the flagged times
  • High-frequency IPs: Could indicate brute-force attempts, scrapers, or DDoS — consider firewall rules or fail2ban
  • New error patterns appearing: Recent changes or deployments may have introduced regressions
  • Sudden increase in warnings: Often precedes critical failures — investigate proactively

Notes

  • Piped input reads from stdin; use -f - explicitly when piping
  • For large log files (>100MB), consider reducing the time window with -t or pre-filtering with grep
  • Time-based analysis expects standard syslog date formats (RFC 3164 or RFC 5424); custom formats may need adjustment
  • IP detection uses a standard IPv4 regex — IPv6 is not currently supported
  • Works without root for user-owned log files; system logs may require sudo
Usage Guidance
This looks like a benign local log-analysis skill. Before using it, confirm the file path or piped command is the log source you intended, avoid sudo unless required, and remember that logs can include IP addresses, usernames, errors, or other operational details that may appear in the analysis output.
Capability Analysis
Type: OpenClaw Skill Name: laolaoqi-log-analyzer Version: 1.0.0 The log-analyzer skill is a legitimate utility for parsing and summarizing server logs. The bash script (scripts/log-analyzer.sh) uses standard Unix tools like grep, awk, and sed to identify error patterns, calculate IP frequencies, and detect spikes without any evidence of malicious behavior, data exfiltration, or unauthorized access.
Capability Assessment
Purpose & Capability
The described purpose—analyzing log files for errors, IP frequency, time patterns, and spikes—matches the documented shell script behavior.
Instruction Scope
The skill is meant to run a local shell script against user-selected files or stdin; users should only point it at logs they intend to analyze because logs can contain sensitive operational data.
Install Mechanism
There is no install spec, but the skill includes a shell script and depends on local Unix tools such as bash, grep, awk, sort, uniq, sed, wc, mktemp, and bc. This is purpose-aligned but not fully reflected in the registry requirements.
Credentials
The script performs local text processing and does not show network calls, external uploads, or unrelated system access in the provided artifacts.
Persistence & Privilege
The script creates a temporary file and removes it on exit; SKILL.md notes that system logs may require sudo, so users should avoid elevated access unless necessary.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install laolaoqi-log-analyzer
  3. After installation, invoke the skill by name or use /laolaoqi-log-analyzer
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of log-analyzer. - Analyze server logs for error patterns, IP frequency, time-based analysis, and anomaly/spike detection. - Supports syslog and custom log files, handling both file and piped input. - Provides options for custom error patterns, time window, and individual or combined analysis modules. - Uses standard Linux tools (grep, awk, sort, uniq); no external dependencies. - Includes recommendations for interpreting findings and best practices for large log files.
Metadata
Slug laolaoqi-log-analyzer
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Log Analyzer?

Analyze server logs for error patterns, IP frequency, time-based analysis, and alert generation. Use when a user needs log file analysis, error pattern detec... It is an AI Agent Skill for Claude Code / OpenClaw, with 65 downloads so far.

How do I install Log Analyzer?

Run "/install laolaoqi-log-analyzer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Log Analyzer free?

Yes, Log Analyzer is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Log Analyzer support?

Log Analyzer is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Log Analyzer?

It is built and maintained by new (@laolaoqi); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments