← Back to Skills Marketplace
702
Downloads
2
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install service-watchdog
Description
Monitors self-hosted services by checking HTTP endpoints, TCP ports, SSL expiry, and DNS resolution, then reports status and alerts in concise, chat-friendly...
Usage Guidance
This skill appears coherent and limited to local monitoring, but before installing: 1) inspect the full watchdog.sh for any alerting/webhook blocks (the SKILL.md doesn't describe sending data to external endpoints; if the script contains webhook integrations, verify the endpoints and auth are ones you expect); 2) be aware it will create and append a history CSV in the workspace (set WATCHDOG_WORKSPACE or use --no-history if you don't want files written); 3) run it in a controlled environment (container or non-sensitive workspace) first to confirm behavior; 4) ensure only allowed hosts/domains are placed in watchdog.json to avoid scanning unintended targets; and 5) verify required utilities (curl, jq, openssl, nc/dig) are the versions you trust. If you want higher assurance, provide the full, untruncated watchdog.sh for a line-by-line audit.
Capability Analysis
Type: OpenClaw Skill
Name: service-watchdog
Version: 1.0.0
The `watchdog.sh` script is highly vulnerable to shell injection, allowing for Remote Code Execution (RCE). Values read from the `watchdog.json` configuration file (e.g., `url`, `host`, `port`, `domain`, `method`) are directly interpolated into commands executed via `curl`, `nc`, `ncat`, `dig`, `nslookup`, `host`, and `openssl` without proper sanitization. A critical example is the `check_tcp` function's fallback to `bash -c "echo >/dev/tcp/${host}/${port}"`, where a malicious `host` value in `watchdog.json` could lead to arbitrary command execution. While the skill's stated purpose is benign, these vulnerabilities pose a significant security risk if an attacker can control the `watchdog.json` file.
Capability Assessment
Purpose & Capability
Name/description match the implementation: the script performs HTTP, TCP, DNS, and SSL checks and produces summary, JSON, and report outputs. Declared dependencies (curl, openssl, nc/ncat or /dev/tcp, dig/nslookup/host, jq) align with the stated features.
Instruction Scope
SKILL.md instructs the agent to run the included bash script against a user-created watchdog.json. The script reads only the config file and writes a local history CSV by default; it does not request unexplained system-wide reads or external accounts in the provided content. Behavior (cron usage, --json, --report, --ssl-only, --alerts-only) matches the documented feature set.
Install Mechanism
No install spec — this is instruction-only with an included shell script. That reduces install-time risk; dependencies are standard system utilities. Nothing is downloaded or extracted at install time.
Credentials
No required credentials or secret environment variables. Optional env vars (WATCHDOG_CONFIG, WATCHDOG_WORKSPACE) are reasonable and scoped to choosing config/workspace. The script writes a history file in the workspace (default watchdog-history.csv), which is expected for monitoring history.
Persistence & Privilege
The skill is not always:true and does not request elevated privileges; it can run autonomously (platform default). It does persist local history to a CSV in the workspace and can be run from cron as recommended — users should be aware it will create/append files in whatever workspace it runs from.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install service-watchdog - After installation, invoke the skill by name or use
/service-watchdog - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: HTTP/HTTPS, TCP, DNS, SSL monitoring with history tracking, JSON output, alerts-only mode, and cron integration
Metadata
Frequently Asked Questions
What is Service Watchdog?
Monitors self-hosted services by checking HTTP endpoints, TCP ports, SSL expiry, and DNS resolution, then reports status and alerts in concise, chat-friendly... It is an AI Agent Skill for Claude Code / OpenClaw, with 702 downloads so far.
How do I install Service Watchdog?
Run "/install service-watchdog" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Service Watchdog free?
Yes, Service Watchdog is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Service Watchdog support?
Service Watchdog is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Service Watchdog?
It is built and maintained by mariusfit (@mariusfit); the current version is v1.0.0.
More Skills