ssh-lab

Manage and monitor remote GPU servers via SSH with GPU, disk, process status, alerts, log tailing, file sync, and health diagnostics.

This tool appears to do what it says: manage and probe remote servers over SSH. Before installing, check the following: (1) Ensure you have a native ssh client (and rsync if you plan to use sync); the package metadata didn't mark these as required even though the tool depends on them. (2) The CLI will read ~/.ssh/config and use your existing SSH keys/agent for authentication — it will not ask for new keys but will run commands on whatever hosts your SSH config (or the custom hosts you add) points to. (3) It will create/use local files: ~/.config/ssh-lab/config.json and ~/.ssh-lab/alerts.json and temporary ControlMaster sockets under /tmp; ensure you are comfortable with those paths. (4) There are small metadata mismatches (declared entrypoint/bin and missing required-binaries/config-paths) — consider reviewing the source or running the tool in a safe environment (local VM or container) first. If you need tighter auditing, review execSsh and any code that constructs shell commands to confirm proper escaping (the code includes shellEscape in multiple places).

Type: OpenClaw Skill Name: ssh-lab Version: 0.1.0 The bundle is a legitimate and well-engineered SSH workbench utility designed for remote server management and GPU monitoring. It provides structured access to remote system metrics (GPU, disk, processes) and allows for remote command execution, which is entirely consistent with its stated purpose. The implementation demonstrates good security practices, including the use of shell argument escaping in files like `src/commands/ls.ts` and `src/commands/tail.ts` to prevent injection, and the use of `ssh -G` in `src/ssh/config.ts` for accurate and secure host resolution. No evidence of data exfiltration, backdoors, or malicious prompt injection was found.