Client Dashboard
v1.0.2Generates a client-facing executive KPI dashboard from QuickBooks Online data. Produces an Excel workbook with traffic-light scoring, 6-month trend sparkline...
⭐ 0· 176·1 current·1 all-time
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's stated purpose is to connect to QuickBooks Online (QBO) and produce a KPI workbook, which legitimately requires QBO credentials or an authenticated client. The SKILL.md references 'Node.js qbo-client must be authenticated for the target slug' but the package requests no environment variables, primary credential, or config paths. That mismatch (a QBO-integrating pipeline that doesn't declare how authentication is provided) is unexplained and concerning.
Instruction Scope
The instructions are detailed and scoped to generating Excel reports, manipulating a local cache (.cache/client-dashboard/{slug}.json), and editing an in-script CLIENT_CONFIGS dictionary. They do not instruct reading unrelated system files or sending data to unexpected endpoints. However, they assume an authenticated 'qbo-client' and local script edits — the agent will run a Python pipeline that could access any files accessible to the agent, so you should inspect the pipeline code before running.
Install Mechanism
This is an instruction-only skill with no install spec and no code files included in the package. That minimizes disk-write risk from the skill bundle itself (no remote downloads), but it does rely on external tooling (Python openpyxl and a Node qbo-client) which must already be present.
Credentials
No environment variables or credentials are declared even though QBO access is central to the skill. The SKILL.md expects the Node qbo-client to be 'authenticated' for the slug — it's unclear whether authentication is expected to live in environment variables, local config files, or a system-level credential store. This lack of declared credential requirements is a proportionality and transparency problem.
Persistence & Privilege
The skill does not request persistent/always-on privileges (always: false). It writes a local cache under .cache/client-dashboard and expects output to a user directory (default ~/Desktop), which is reasonable for a reporting pipeline. Nothing indicates modification of other skills or global agent settings.
What to consider before installing
Do not run this pipeline blindly. Before installing or invoking: 1) Ask the publisher to explain exactly how QBO authentication is provided (which env vars, config files, or system integrations are required). 2) Obtain and inspect the referenced script (scripts/pipelines/client-dashboard.py) to verify it does only the expected QBO API calls and file writes and does not exfiltrate data to unknown endpoints. 3) Check where CLIENT_CONFIGS and benchmarks are stored to ensure no secrets are hard-coded. 4) Run the script in a sandbox or with test/sandbox QBO credentials first. 5) If the author cannot provide source or clear auth instructions, treat the skill as untrusted. Providing the actual pipeline code or a clear auth flow would raise my confidence and could change this assessment to benign.Like a lobster shell, security has layers — review code before you run it.
latest
Client Dashboard / KPI Report — SKILL.md
What This Skill Does
Generates a client-facing executive KPI dashboard from QuickBooks Online data. Produces an Excel workbook with traffic-light scoring, 6-month trend sparklines, client-specific watch items, and a CDC log tracking KPI changes month-over-month.
When To Use
- Monthly close is complete and it's time to generate the client dashboard
- User asks for KPI report, dashboard, or executive summary for any client
- After running P&L Quick Compare and bank rec — this is the final deliverable step
When NOT To Use
- NOT a substitute for P&L Quick Compare (different purpose — this is executive summary, not variance analysis)
- NOT for mid-month snapshots — designed for complete monthly periods
- NOT for YTD / annual reports — use P&L Deep Analysis for those
- NOT for clients without QBO integration (no data source)
Pipeline: scripts/pipelines/client-dashboard.py
Prerequisites
pip install openpyxl
# Node.js qbo-client must be authenticated for the target slug
Usage
# Example — March 2026
python3 scripts/pipelines/client-dashboard.py --slug <client-slug> --month 2026-03
# Custom output directory
python3 scripts/pipelines/client-dashboard.py --slug <client-slug> --month 2026-03 --out ~/Desktop/reports
# QBO sandbox
python3 scripts/pipelines/client-dashboard.py --slug <client-slug> --month 2026-03 --sandbox
Arguments
| Argument | Required | Description |
|---|---|---|
--slug | ✅ | Company slug (must match qbo-client connection) |
--month | ✅ | Report month: YYYY-MM format |
--out | ❌ | Output directory (default: ~/Desktop) |
--sandbox | ❌ | Use QBO sandbox environment |
Output: Excel Workbook
Filename: KPI_Dashboard_{slug}_{YYYY_MM}.xlsx
| Tab | Contents |
|---|---|
| Executive Summary | Headline numbers + traffic-light KPI table with benchmarks |
| KPI Scorecard | Full KPI detail with definitions, thresholds, and score |
| Trends | 6-month KPI trend with sparklines (↑↗→↘↓ + block chars) |
| Cash Position | Balance sheet cash, CF summary, liquidity ratios, runway |
| Watch Items | SOP-driven priority items surfaced prominently |
| CDC Log | Month-over-month KPI delta (what changed since last run) |
KPIs Computed
| KPI | Formula | Unit |
|---|---|---|
| Revenue MoM Growth | (curr_rev - prior_rev) / prior_rev × 100 | % |
| Revenue YoY Growth | (curr_rev - yoy_rev) / yoy_rev × 100 | % |
| Gross Margin % | gross_profit / revenue × 100 | % |
| Gross Margin (3-Mo Avg) | Rolling 3-month GP/Revenue | % |
| Net Margin % | net_income / revenue × 100 | % |
| OpEx Ratio | total_opex / revenue × 100 | % |
| Interest Expense Ratio | interest_expense / revenue × 100 | % |
| Current Ratio | current_assets / current_liabilities | x |
| Quick Ratio | (current_assets - inventory) / current_liabilities | x |
| Debt-to-Equity | total_liabilities / total_equity | x |
| DSO | ar / (revenue / days) | days |
| DPO | ap / (cogs / days) | days |
| Cash Runway | cash / monthly_burn | months |
| Retail % of Revenue | retail_revenue / total_revenue × 100 | % |
All math uses Python Decimal for precision.
Traffic Light Scoring
Each KPI is scored GREEN / YELLOW / RED based on configurable thresholds per client SOP.
🟢 GREEN = On target (within green band)
🟡 WATCH = Approaching threshold (yellow band)
🔴 ACTION = Below/above acceptable range (outside yellow band)
⬜ N/A = KPI not applicable or not configured
Thresholds are defined in CLIENT_CONFIGS in the script — one config block per client slug.
Client SOP Integration
Adding a New Client
Add a block to CLIENT_CONFIGS in the script:
"new-slug": {
"company_name": "Company Name",
"industry": "Industry",
"has_ar": True,
"has_headcount": False,
"kpis_enabled": ["revenue_mom", "gross_margin", ...],
"thresholds": {
"gross_margin": {"green": (Decimal("45"), None), "yellow": (Decimal("35"), Decimal("45"))},
...
},
"watch_items": [...],
"benchmarks": {...},
"benchmark_source": "Source description",
}
CDC (Change Data Capture)
Cache stored at: .cache/client-dashboard/{slug}.json
- First run: saves full KPI snapshot, CDC tab shows "First run" message
- Subsequent runs: diffs current KPIs vs. prior run
- CDC log shows: KPI label | Prior | Current | Delta | % Change | Improved/Declined
Trend Sparklines
6-month trend for each KPI uses two formats:
- Direction arrows:
↑↑ ↑ ↗ → ↘ ↓ ↓↓(based on % change over period) - Block bars:
█▇▅▃▁_(relative to max value — in Trends tab mini-chart section)
Peer Benchmarks
Manual config only. Benchmark values live in CLIENT_CONFIGS[slug]["benchmarks"].
Source attribution displayed in every tab footer.
To update: edit benchmarks dict and benchmark_source string per client.
Integration with Pipeline Suite
This pipeline is designed to run after monthly close is complete:
1. Bank Reconciliation (bank-reconciliation.py)
2. P&L Quick Compare (pl-quick-compare.py)
3. P&L Deep Analysis (pl-deep-analysis.py) ← optional for controller level
4. Client Dashboard (client-dashboard.py) ← this script
5. Cash Flow Forecast (cash-flow-forecast.py) ← quarterly advisory
File Locations
| File | Path |
|---|---|
| Pipeline script | scripts/pipelines/client-dashboard.py |
| Skill file | skills/client-dashboard/SKILL.md |
| CDC cache | .cache/client-dashboard/{slug}.json |
| Output (default) | ~/Desktop/KPI_Dashboard_{slug}_{YYYY_MM}.xlsx |
Troubleshooting
QBO CLI error: Ensure your QBO integration is authenticated for the slug.
Missing KPIs: If Balance Sheet accounts don't match expected labels, values default to 0. Check extract_bs_metrics() candidates list for account name variants.
New client config: Add slug to CLIENT_CONFIGS before first run. Default config uses generic thresholds (not client-specific).
Decimal errors: All financial math uses Python Decimal. Do not mix float — use to_d() helper for any external values.
Comments
Loading comments...