← Back to Skills Marketplace
240
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install clawstatus
Description
Real-time dashboard for monitoring OpenClaw devices, agents, sessions, cron jobs, models, and token usage with English/Chinese interface.
README (SKILL.md)
ClawStatus
Real-time monitoring dashboard for OpenClaw ecosystem. Track devices, agents, sessions, cron jobs, models, and token usage.
Features
- Device monitoring with online/offline status
- Agent and subagent real-time tracking
- Session management with statistics
- Cron job scheduling and execution monitoring
- Model overview and configuration display
- 15-day token usage analytics
- English/Chinese interface
- Single-file deployment
Installation
pip install --user -e .
Usage
clawstatus --host 0.0.0.0 --port 8900 --no-debug
Usage Guidance
This package appears to be what it says (a monitoring dashboard) but you should review and limit exposure before installing. Steps to consider:
- Inspect ~/.openclaw contents on the host (openclaw.json, sessions, agents, cron runs) to understand what sensitive data would be visible to the dashboard.
- Run the service bound to localhost (avoid the example 0.0.0.0) or behind a firewall/reverse proxy that requires auth, especially if .openclaw contains tokens.
- Review the full clawstatus.py source (it is included) to confirm there are no unexpected network callbacks or external endpoints; the code runs the local 'openclaw' CLI and probes the gateway port.
- Note the code honors OPENCLAW_BIN and CLAWSTATUS_ENABLE_STATUS_USAGE env vars — set these deliberately or leave unset; do not point OPENCLAW_BIN to unknown binaries.
- Consider running in an isolated environment (container or dedicated monitoring host) and limit filesystem permissions so the process can only read the OpenClaw-related paths it needs.
If you want, provide the rest of clawstatus.py (truncated in the listing) and I can re-check for any hidden endpoints or data-exfiltration code to increase confidence.
Capability Analysis
Type: OpenClaw Skill
Name: clawstatus
Version: 1.0.0
The ClawStatus bundle provides a comprehensive management dashboard for the OpenClaw ecosystem but includes high-risk administrative capabilities. Specifically, 'clawstatus.py' uses the subprocess module to execute system commands, including 'systemctl' for service restarts and 'openclaw' for triggering or deleting cron jobs. It also performs atomic writes to the core 'openclaw.json' configuration file to modify agent models. While these features are consistent with the tool's stated purpose, the application is unauthenticated by default (the 'required_token' is explicitly set to None in 'create_app'), which could allow unauthorized users to tamper with the system configuration or execute arbitrary OpenClaw tasks if the port is exposed. No evidence of intentional malice or data exfiltration was found.
Capability Assessment
Purpose & Capability
The package implements a dashboard that reads OpenClaw state, probes the gateway TCP port, and runs the 'openclaw status' CLI; these behaviors align with the stated goal of monitoring devices, agents, sessions, cron jobs, models, and token usage.
Instruction Scope
SKILL.md only documents pip install and a clastatus CLI invocation, but the runtime code explicitly reads many files under ~/.openclaw (config, agents, cron runs, subagent runs), invokes an 'openclaw' binary, and checks environment variables (OPENCLAW_BIN, CLAWSTATUS_ENABLE_STATUS_USAGE) that are not declared or documented in metadata or SKILL.md. The instructions give broad runtime discretion (binding host/port) without warning about sensitive file reads or network exposure.
Install Mechanism
No remote download or opaque installer is used. The project is instruction-only with a normal setup.py for pip installation (flask, waitress dependencies). This is low-to-moderate risk and expected for a Python tool.
Credentials
Metadata declares no required env vars, but the code reads OPENCLAW_BIN and CLAWSTATUS_ENABLE_STATUS_USAGE and accesses HOME/.openclaw configuration and session files which commonly contain tokens, credentials, or sensitive state. The default usage example binds to 0.0.0.0 and could expose that data over the network. The tool therefore requires access to potentially sensitive local data that is not explicitly called out in the skill metadata or runtime instructions.
Persistence & Privilege
The skill does not request always:true and will not force inclusion; it writes its own runtime files under ~/.clawstatus (PID and log) which is reasonable for a service. It does not appear to modify other skills' configs or request system-wide privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install clawstatus - After installation, invoke the skill by name or use
/clawstatus - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
fix: prevent stale cache from overriding TCP probe for OpenClaw state detection
Metadata
Frequently Asked Questions
What is ClawStatus?
Real-time dashboard for monitoring OpenClaw devices, agents, sessions, cron jobs, models, and token usage with English/Chinese interface. It is an AI Agent Skill for Claude Code / OpenClaw, with 240 downloads so far.
How do I install ClawStatus?
Run "/install clawstatus" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is ClawStatus free?
Yes, ClawStatus is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does ClawStatus support?
ClawStatus is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created ClawStatus?
It is built and maintained by Never (@neverchenx); the current version is v1.0.0.
More Skills