← 返回 Skills 市场
Live Sessions Dashboard
作者
Natnael Teshome
· GitHub ↗
· v1.0.1
369
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install sessions-dashboard
功能描述
Live dashboard viewer for OpenClaw sessions (CLI + web) that shows color-coded states, token/cost totals, and shareable HTML panels. Requires local OpenClaw...
安全使用建议
This skill appears to do what it says: it queries your local OpenClaw CLI to produce a live terminal and HTML dashboard. Before installing or running it:
- Verify the `openclaw` binary on PATH is the expected official CLI (subprocess calls execute that binary). Run the scripts on a host that is allowed to read your gateway.
- Be cautious with the log subscription: tailing `openclaw logs --follow` can surface prompts, tool args, or secrets (the code only extracts sessionId and does not persist raw log messages, but logs may still appear in process memory). If you are unsure, run with the `--no-subscribe` flag or run on a host without log access. Note: the SKILL.md suggests an AGENT_MONITOR_NO_SUBSCRIBE env var, but the scripts do not actually read that variable — you must pass `--no-subscribe` on the CLI.
- If you publish the generated HTML to a remote or public location, be aware it contains internal session identifiers, counts, token/cost estimates, model names, and timestamps; treat it as internal information.
- The package has no homepage and unknown owner; if you need strong assurance, review the full scripts locally (they are included) and test in a non-production environment.
If you want a cleaner bill-of-materials from the author, ask them to: (1) either implement respect for AGENT_MONITOR_NO_SUBSCRIBE or remove that doc line, (2) document the exact behavior when `openclaw` errors, and (3) sign or publish a homepage/source repo so you can confirm provenance.
功能分析
Type: OpenClaw Skill
Name: sessions-dashboard
Version: 1.0.1
The skill is classified as suspicious due to its default behavior of subscribing to `openclaw logs --json --follow` via `scripts/agents_cli_monitor.py`. The `SKILL.md` explicitly warns that these logs "can contain prompts, tool arguments, secrets, or PII." While the code does not appear to exfiltrate or persistently store this sensitive log content (it only extracts session IDs and update times), the default access and processing of such a sensitive data stream, even for a stated purpose, represents a risky capability without clear malicious intent. Users are warned and can opt-out with `--no-subscribe`, but the default behavior warrants caution.
能力评估
Purpose & Capability
Name/description match the implementation: both Python scripts call the local `openclaw` CLI to fetch sessions and optionally tail logs, and they generate a CLI view and an HTML snapshot as described. No unrelated services, binaries, or credentials are requested.
Instruction Scope
SKILL.md instructs running the included scripts which only call `openclaw sessions` and (optionally) `openclaw logs --follow`. The documentation warns that logs can contain prompts, secrets, or PII and suggests poll-only mode if you want to avoid log content — the scripts do not print or persist raw logs. This is within scope, but the README claims an env var to force poll-only everywhere (AGENT_MONITOR_NO_SUBSCRIBE) and describes a `--subscribe` override; the CLI actually implements a `--no-subscribe` flag and does not read AGENT_MONITOR_NO_SUBSCRIBE, so docs and runtime flags are inconsistent.
Install Mechanism
No install spec — instruction-only with bundled Python scripts. Nothing is downloaded from external URLs or written to system locations beyond the skill directory and the generated HTML file. This is the lower-risk install model.
Credentials
The skill requires no credentials and only optionally reads AGENT_MONITOR_COST_PER_1K for cost display (implemented). The SKILL.md mentions AGENT_MONITOR_NO_SUBSCRIBE to force poll-only, but the scripts do not read that env var (they use a CLI flag instead). No other secrets/keys are requested.
Persistence & Privilege
always is false, the skill does not request permanent system-wide presence, and it only writes the HTML snapshot file into its asset path. It does not modify other skills or agent-wide config.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install sessions-dashboard - 安装完成后,直接呼叫该 Skill 的名称或使用
/sessions-dashboard触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Add security/dependency notes plus AGENT_MONITOR_NO_SUBSCRIBE env flag
v1.0.0
Initial release.
元数据
常见问题
Live Sessions Dashboard 是什么?
Live dashboard viewer for OpenClaw sessions (CLI + web) that shows color-coded states, token/cost totals, and shareable HTML panels. Requires local OpenClaw... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 369 次。
如何安装 Live Sessions Dashboard?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install sessions-dashboard」即可一键安装,无需额外配置。
Live Sessions Dashboard 是免费的吗?
是的,Live Sessions Dashboard 完全免费(开源免费),可自由下载、安装和使用。
Live Sessions Dashboard 支持哪些平台?
Live Sessions Dashboard 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Live Sessions Dashboard?
由 Natnael Teshome(@takeovernat)开发并维护,当前版本 v1.0.1。
推荐 Skills