← Back to Skills Marketplace
karakuscem

Beszel Check

by karakuscem · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
2436
Downloads
0
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install beszel-check
Description
Monitor home lab servers via Beszel (PocketBase).
README (SKILL.md)

Beszel Monitoring

Check the status of your local servers.

Usage

  • beszel status - Get status of all systems
  • beszel containers - List top containers by CPU usage

Commands

# Get status
source ~/.zshrc && ~/clawd/skills/beszel/index.js status

# Get container stats
source ~/.zshrc && ~/clawd/skills/beszel/index.js containers
Usage Guidance
This skill's code does what its description says (authenticates to a PocketBase instance and reads 'systems' and 'container_stats'), but it has important mismatches you should address before installing: - The script requires BESZEL_USER and BESZEL_PASS (and optionally BESZEL_HOST), but the registry and SKILL.md do not declare these. Verify you understand where you'll store/provide those credentials. - SKILL.md tells you to 'source ~/.zshrc' before running. Sourcing your shell rc will execute any commands in that file and may expose secrets. Instead, prefer explicitly exporting only the BESZEL_* variables or running the script with a controlled environment. - BESZEL_HOST defaults to http://127.0.0.1:8090, but if you set BESZEL_HOST to a remote URL the script will send credentials and request data to that host. Ensure BESZEL_HOST points to a trusted, local instance before running. - There is a small code bug/inconsistency: the script does "const https = require('http')" (variable name suggests HTTPS while module is http). This isn't directly malicious but indicates limited review; inspect the code yourself or ask the author to fix/clarify. Recommendations: 1) Ask the publisher for a README that explicitly lists required env vars and network behavior, and for a homepage/source repository to verify provenance. 2) Review the index.js content yourself (or have someone you trust do so). Confirm BESZEL_HOST is safe and that the endpoints used are the PocketBase instance you expect. 3) Avoid sourcing your full shell rc; set BESZEL_USER/BESZEL_PASS in a minimal environment for the command or use a dedicated credential store. If you cannot verify these points or the publisher's reputation, treat this skill as untrusted until clarified.
Capability Analysis
Type: OpenClaw Skill Name: beszel-check Version: 1.0.0 The skill is classified as suspicious due to insecure handling of credentials and broad environment sourcing. The `index.js` script imports the `http` module but assigns it to a variable named `https`, leading to all network requests (including authentication with `BESZEL_USER` and `BESZEL_PASS` environment variables) being made over unencrypted HTTP. While the default host is localhost, this poses a significant risk if `BESZEL_HOST` is configured to an external HTTP endpoint, exposing credentials in plaintext. Additionally, the `SKILL.md` instructs the agent to `source ~/.zshrc`, which grants broad access to the user's shell environment, a risky capability without clear malicious intent.
Capability Assessment
Purpose & Capability
The index.js script legitimately implements PocketBase calls to authenticate and read system/container records, which matches the 'Beszel (PocketBase) monitoring' description. However, the skill metadata/registry claims no required environment variables while the code requires BESZEL_USER and BESZEL_PASS (and optionally BESZEL_HOST). That mismatch between declared requirements and actual code is inconsistent.
Instruction Scope
SKILL.md instructs running: source ~/.zshrc && ~/clawd/skills/beszel/index.js ... Sourcing a user's shell RC will execute whatever is in that file (possibly running commands or exporting secrets). The instructions do not tell the user to set BESZEL_USER/BESZEL_PASS, so the only way to provide credentials appears implicit via sourced rc — this is risky and opaque.
Install Mechanism
There is no external install/download step and no packages pulled from remote hosts. The skill ships a single Node script that will be executed in-place; that is a low-risk install mechanism compared to remote downloads.
Credentials
The code requires BESZEL_USER and BESZEL_PASS (and supports BESZEL_HOST) but the skill metadata/registry lists no required env vars or primary credential. Requiring user credentials is reasonable for authenticating to PocketBase, but failing to declare them is a mismatch. Also BESZEL_HOST is configurable and could point to external hosts if set — that capability should be declared and the user warned.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or system-wide settings, and has no special persistence behavior declared.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install beszel-check
  3. After installation, invoke the skill by name or use /beszel-check
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of beszel-check: - Monitor home lab servers via the Beszel (PocketBase) integration. - Provides commands to check overall server status and list top containers by CPU usage. - Command-line usage examples included in documentation. - USAGE 1- Create a new user on beszel which can only read your server and containers. 2- Export necessary informations BESZEL_HOST, BESZEL_USER, BESZEL_PASSWORD as environment variables. Example usage on telegram : /beszel all containers
Metadata
Slug beszel-check
Version 1.0.0
License
All-time Installs 3
Active Installs 2
Total Versions 1
Frequently Asked Questions

What is Beszel Check?

Monitor home lab servers via Beszel (PocketBase). It is an AI Agent Skill for Claude Code / OpenClaw, with 2436 downloads so far.

How do I install Beszel Check?

Run "/install beszel-check" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Beszel Check free?

Yes, Beszel Check is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Beszel Check support?

Beszel Check is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Beszel Check?

It is built and maintained by karakuscem (@karakuscem); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463368 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259467 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200457 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191163 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190189 · by oswalpalash

💬 Comments