← 返回 Skills 市场
Ssl Watcher
作者
snipercat69
· GitHub ↗
· v1.4.0
· MIT-0
68
总下载
0
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install edgeiq-ssl-watcher
功能描述
Monitors SSL certificates and domain expirations, providing alerts for upcoming expiry, misconfigurations, and chain issues on multiple domains.
使用说明 (SKILL.md)
SSL & Domain Expiry Watcher
Skill Name: ssl-watcher
Version: 1.1.0
Category: Security / Monitoring
Price: Lifetime: $25 / Optional Monthly: $5/mo (all Pro features permanently)
Author: EdgeIQ Labs
OpenClaw Compatible: Yes — Python 3, pure stdlib + socket, WSL + Windows
What It Does
Monitors SSL certificate health and domain expiry dates for your web properties. Catch expired certs, misconfigured chains, and domains about to lapse before they become emergencies.
⚠️ Legal Notice: Only monitor domains you own or have explicit written permission to audit. Unauthorized recon is illegal.
Features
- SSL Certificate Check — issuer, validity window, chain completeness, protocol versions, cipher strength
- Domain Expiry Check — WHOIS registration and expiration data via socket lookup
- Days-to-Expiry Alerting — configurable warning thresholds (30/14/7/3 days)
- Batch Monitoring — check multiple domains in one run
- Silent Mode — full report, no stdout noise unless issues found
- Pure Python — no external dependencies beyond stdlib + socket
Installation
cp -r /home/guy/.openclaw/workspace/apps/ssl-watcher ~/.openclaw/skills/ssl-watcher
Usage
Check SSL for a Domain
python3 ssl_watcher.py --domain example.com
Check Multiple Domains
python3 ssl_watcher.py --domains example.com store.example.com api.example.com
With Expiry Threshold Alerts
python3 ssl_watcher.py --domain example.com --warn-days 30
Full Report (all details)
python3 ssl_watcher.py --domain example.com --verbose
As OpenClaw Discord Command
In #edgeiq-support channel:
!ssl example.com
!ssl example.com store.example.com api.example.com
!ssl example.com --warn-days 14
!domain example.com
Parameters
| Flag | Type | Default | Description |
|---|---|---|---|
--domain |
string | — | Single domain to check |
--domains |
list | — | Multiple domains to check (space-separated) |
--warn-days |
int | 30 | Alert if cert/domain expires within this many days |
--verbose |
flag | False | Show full chain and protocol details |
--check-http |
flag | False | Also verify site is reachable over HTTPS |
--output |
string | — | Write JSON report to file |
Output Example
=== SSL Watcher Report ===
example.com
Status: ✔ Valid
Issuer: Let's Encrypt
Valid From: 2026-01-15
Expires: 2026-04-15
Days Left: 23 ⚠ WARN
Chain: complete
Protocols: TLS 1.2, TLS 1.3
store.example.com
Status: ✔ Valid
Issuer: GlobalSign
Expires: 2026-07-20
Days Left: 120
Tier Comparison
| Feature | Free | Pro ($9/mo) | Bundle ($39/mo) |
|---|---|---|---|
| Single domain check | ✅ | ✅ | ✅ |
| Multiple domains | — | ✅ (up to 10) | ✅ (unlimited) |
| WHOIS expiry data | — | ✅ | ✅ |
| Expiry warning thresholds | — | ✅ | ✅ |
| JSON report export | — | ✅ | ✅ |
| Weekly automated scan | — | — | ✅ |
| Email alert on expiry | — | — | ✅ |
Pricing
| Feature | Lifetime ($25) | Optional Monthly ($5/mo) |
|---|---|---|
| Single domain check | ✅ | ✅ |
| Multiple domains | ✅ (unlimited) | ✅ (unlimited) |
| WHOIS expiry data | ✅ | ✅ |
| Expiry warning thresholds | ✅ | ✅ |
| JSON report export | ✅ | ✅ |
| Weekly automated scan | ✅ | ✅ |
| Email alert on expiry | ✅ | ✅ |
Lifetime License: $25 — your tool forever, all features included permanently.
Optional Monthly: $5/mo — for those who prefer recurring billing (cancel anytime). 👉 Buy Lifetime — $25 👉 Subscribe Monthly — $5/mo 👉 Subscribe Monthly — $5/mo
Pro Upgrade (deprecated)
All features now included in Lifetime purchase.
Bundle Deal (deprecated)
All features now included in Lifetime purchase.
Support
Need a custom check or bulk monitoring? Open a ticket in #edgeiq-support or email [email protected].
🔗 More from EdgeIQ Labs
edgeiqlabs.com — Security tools, OSINT utilities, and micro-SaaS products for developers and security professionals.
- 🛠️ Subdomain Hunter — Passive subdomain enumeration via Certificate Transparency
- 📸 Screenshot API — URL-to-screenshot API for developers
- 🔔 uptime.check — URL uptime monitoring with alerts
- 🛡️ headers.check — HTTP security headers analyzer
安全使用建议
This skill's core functionality (checking certs and headers) appears coherent, but review these issues before installing: 1) The code reads ~/.edgeiq/* and environment variables (EDGEIQ_LICENSE_KEY, EDGEIQ_EMAIL) even though the package metadata declares no required env vars—don't set those env vars unless you understand the implications. 2) edgeiq_licensing.py contains a hardcoded email that is treated as a license shortcut ([email protected]); treat that as a backdoor-like behavior and request clarification from the author. 3) There is no automated installer or remote download, so run the tool in a sandbox or container first and inspect the full ssl_watcher.py (the snippet was truncated) to confirm there is no hidden network exfiltration or unexpected endpoints. 4) If you plan to use WHOIS or Discord/automation features, verify the code implements them and that any credentials/hooks are explicitly documented. If you cannot verify the author/source, consider running the script with network blocked or use an isolated VM. Providing the full ssl_watcher.py (untruncated) or asking the author to explain the licensing behavior would increase confidence.
功能分析
Type: OpenClaw Skill
Name: edgeiq-ssl-watcher
Version: 1.4.0
The edgeiq-ssl-watcher skill is a legitimate security monitoring tool designed to audit SSL certificate health, security headers, and domain expiration. The code (ssl_watcher.py) uses standard Python libraries like ssl, socket, and urllib to perform its checks and includes a local CVE database for service version matching. While it contains a licensing module (edgeiq_licensing.py) that restricts certain features (e.g., port scanning, HTML reporting) to 'Pro' users and includes hardcoded developer access, there is no evidence of malicious intent, data exfiltration, or unauthorized execution.
能力标签
能力评估
Purpose & Capability
The Python code (ssl_watcher.py) implements SSL certificate checks, banner grabs, and HTTP header inspection, which matches the skill's stated purpose. However, the included edgeiq_licensing.py adds payment/license-related behavior and hardcoded support paths that are unrelated to core scanning functionality (licensing is plausible for a paid tool but is not declared in the SKILL.md requirements).
Instruction Scope
SKILL.md claims 'pure stdlib + socket' and presents local CLI usage (ok), but it omits that the code will read files in the user's home directory (~/.edgeiq/*) and inspect environment variables. The README also mentions WHOIS and Discord commands but the distributed files show no declared Discord integration and the WHOIS implementation is not visible in the truncated file—you should confirm the full script implements WHOIS as claimed. The instructions do not disclose the licensing checks or env vars the code inspects.
Install Mechanism
There is no automated installer; SKILL.md shows a manual copy operation. No remote downloads or package installs are present in the provided files. This is low-risk from an install-mechanism perspective.
Credentials
The registry metadata says 'required env vars: none', but edgeiq_licensing.py reads EDGEIQ_LICENSE_KEY and EDGEIQ_EMAIL from the environment and also reads license files from ~/.edgeiq. That is an inconsistency. Additionally, the licensing file grants bundle access if EDGEIQ_EMAIL equals a specific hardcoded email ([email protected]), which looks like a privileged backdoor and is not documented in SKILL.md.
Persistence & Privilege
The skill does not request always:true and does not appear to alter other skills or system-wide settings. It does read/writes (read-only in provided code) to a ~/.edgeiq directory which is a user-home path outside the skill folder; this is a modest privilege but not an escalatory one. No evidence of self-enabling or scheduled persistent agents in the provided files.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install edgeiq-ssl-watcher - 安装完成后,直接呼叫该 Skill 的名称或使用
/edgeiq-ssl-watcher触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.4.0
v1.4.0: URGENT FIX — corrected Stripe Payment Link URLs (no suffixes, correct live URLs)
v1.3.0
v1.3.0: CRITICAL FIX — replaced placeholder Stripe URLs with real working Payment Link checkout URLs
v1.2.0
v1.2.0: Dual pricing — Lifetime as primary purchase option with optional monthly. Updated Stripe checkout URLs.
元数据
常见问题
Ssl Watcher 是什么?
Monitors SSL certificates and domain expirations, providing alerts for upcoming expiry, misconfigurations, and chain issues on multiple domains. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 68 次。
如何安装 Ssl Watcher?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install edgeiq-ssl-watcher」即可一键安装,无需额外配置。
Ssl Watcher 是免费的吗?
是的,Ssl Watcher 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Ssl Watcher 支持哪些平台?
Ssl Watcher 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Ssl Watcher?
由 snipercat69(@snipercat69)开发并维护,当前版本 v1.4.0。
推荐 Skills