← 返回 Skills 市场
AWS Patrol
作者
chengcecho
· GitHub ↗
· v1.0.1
· MIT-0
41
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install aws-patrol
功能描述
Automated AWS infrastructure patrol — collects EC2/RDS/ELB metrics, security posture (IAM MFA, SG, EBS encryption, S3), cost analysis (SP/RI coverage & utili...
使用说明 (SKILL.md)
AWS Patrol
Automated AWS infrastructure monitoring, security audit, and cost analysis with visual report generation.
Prerequisites
- Python 3.8+ with
boto3 - AWS credentials configured (profile or env vars)
- Node.js + Puppeteer (for screenshot generation)
- Required AWS permissions: ReadOnlyAccess (EC2, RDS, ELB, CloudWatch, IAM, S3, Cost Explorer, Savings Plans, Health, Pinpoint SMS)
Configuration (Environment Variables)
| Variable | Default | Description |
|---|---|---|
AWS_PATROL_PROFILE |
AWS_PROFILE or default |
AWS profile name |
AWS_PATROL_REGIONS |
us-west-2,eu-west-2,ap-southeast-1 |
Comma-separated regions |
AWS_PATROL_OUTPUT |
Current directory | Output directory for JSON/HTML/PNG |
Workflow
1. Collect Resource Metrics
python3 scripts/patrol.py
Outputs aws-patrol-detail.json with:
- EC2: CPU, network, status checks (alerts if CPU>80% or status check failed)
- RDS: CPU, memory, connections, storage, IOPS (alerts if CPU>80%, low memory, low storage)
- ELB: target group health, unhealthy targets
- CloudWatch alarms in ALARM state
- AWS Health events (last 7 days)
- SMS/Pinpoint sender registration status
2. Collect Security & Cost Data
python3 scripts/patrol-security-cost.py
Outputs aws-security-cost.json with:
- Security: IAM users without MFA, old access keys (>90d), open security groups (0.0.0.0/0 on sensitive ports), unencrypted EBS, public S3 buckets
- Cost: 30-day total & daily trend, SP utilization & coverage (7-day daily), RDS/ElastiCache RI coverage, active SPs & RIs, waste detection (stopped instances, unattached volumes, unused EIPs, old snapshots, low-CPU instances)
3. Generate Visual Report
python3 scripts/gen-report.py '\x3CJSON>'
Accepts a JSON argument with fields:
date,weekday,ec2Count,rdsCount,elbCountcostTotal,costDaily,unattachedVol,unusedEip,lowCpu,oldSnapspUtilPct,spCovPct,rdsRiPct,ecRiPctnoMfa,unencEbs,openSg,oldKeys,s3RiskhighCpu(array:{name, cpu, type, level})spRiDetails(string summary)health(array:{type, title, desc})sms(array:{name, status, level})actions(array:{date, level, title, desc, daysLeft, daysLevel})
Outputs daily-report.html.
4. Screenshot & Deliver
# Start HTTP server
python3 -m http.server 18923 &
# Screenshot
node -e "const p=require('puppeteer');(async()=>{const b=await p.launch({headless:'new',args:['--no-sandbox']});const pg=await b.newPage();await pg.setViewport({width:520,height:800,deviceScaleFactor:2});await pg.goto('http://localhost:18923/daily-report.html',{waitUntil:'networkidle0'});await pg.screenshot({path:'daily-report.png',fullPage:true});await b.close()})()"
# Stop server
kill %1
Send daily-report.png via messaging with a brief summary.
Scheduling (Cron Example)
Set up a daily 9:00 AM patrol via OpenClaw cron (systemEvent → main session):
每天 9:00 运行 aws-patrol 巡检流程,采集数据 → 生成报告 → 截图推送
Anomaly Investigation
When high CPU, Health alerts, or SMS issues are detected, don't just report numbers — investigate root cause (check CloudWatch trends, recent deployments, process-level metrics) and include analysis in the report.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install aws-patrol - 安装完成后,直接呼叫该 Skill 的名称或使用
/aws-patrol触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Initial release — Automated AWS infrastructure patrol, security audit, cost analysis, and reporting.
- Switched skill focus from 3D traffic monitoring (skyroute) to AWS infrastructure monitoring and reporting (aws-patrol).
- Added scripts to collect resource metrics, security/cost data, generate visual HTML reports, and create screenshots.
- New documentation covers automated data collection, report generation, and recommended scheduling for periodic AWS patrols.
- Includes support for detecting high resource usage, underutilized resources, security risks, and cost inefficiencies.
- Output is a shareable HTML and PNG report suitable for messaging and daily AWS health checks.
v1.0.0
Initial release of SkyRoute: a 3D globe visualization dashboard for AWS global traffic.
- Visualizes real-time global connections to AWS regions with latency-based color arcs.
- Displays top CloudFront edge nodes and key metrics like P95/P99 latency, error rate, RPS, and active connections.
- Features alert mode for error spikes, sparkline trends for metrics history, and live country mapping (including Chinese names).
- Self-contained HTML/WebGL dashboard; works with mock or real connection data via simple integration.
- Easy deployment as a static file or dashboard embed; no backend required for core visualization.
元数据
常见问题
AWS Patrol 是什么?
Automated AWS infrastructure patrol — collects EC2/RDS/ELB metrics, security posture (IAM MFA, SG, EBS encryption, S3), cost analysis (SP/RI coverage & utili... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 41 次。
如何安装 AWS Patrol?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install aws-patrol」即可一键安装,无需额外配置。
AWS Patrol 是免费的吗?
是的,AWS Patrol 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
AWS Patrol 支持哪些平台?
AWS Patrol 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 AWS Patrol?
由 chengcecho(@chengcecho)开发并维护,当前版本 v1.0.1。
推荐 Skills