Lobster Server Monitor
v1.0.0监控腾讯云服务器状态,提供 SSH 远程管理工具。可检查服务器负载、磁盘使用、服务状态、Docker 容器等。使用当用户询问服务器状态、需要排查服务器问题、检查服务运行情况。
⭐ 0· 8·0 current·0 all-time
byMokin@mokinsoc
MIT-0
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's claimed purpose (SSH server monitoring) aligns with the code's use of an SSH client and tools. However there are several mismatches: SKILL.md and README reference a default server IP (101.43.203.155) and user root, the code's DEFAULT_SERVER uses a different default IP (152.136.245.195) and a hardcoded password ("Yyyy0000"), and claw.json maps environment variables (SERVER_HOST, SERVER_USER, SERVER_PASSWORD) although the top-level registry metadata declared no required env vars. These inconsistencies are unexplained and disproportionate to a simple monitor skill.
Instruction Scope
SKILL.md instructs adding an MCP entry pointing to a dist/index.js path, but the package's claw.json and actual code point to scripts/mcp-server.js — a mismatch that could cause different code to run. The runtime instructions and code will make SSH connections (by default to a non-user host if env vars are not set) and execute arbitrary shell commands on the remote machine (including an execute_command tool). While some dangerous commands are blocked in code, command filtering is limited and may be bypassed; the skill also exposes the possibility of reading arbitrary command output from the remote host. The instructions do not explicitly warn users that the skill will connect to a default third-party host if they don't provide credentials.
Install Mechanism
There is no remote download/install step in the manifest — it's an instruction+code bundle included in the skill. No external archives or unknown URLs are fetched by the skill definition. Risk comes from running the included code, not from a remote installer.
Credentials
The code expects SSH credentials (SERVER_HOST, SERVER_USER, SERVER_PASSWORD) and claw.json maps these env vars into the MCP server env, which is appropriate for SSH functionality — but the public registry metadata lists no required env vars (inconsistent). More importantly, the code includes hardcoded default host and password values, meaning if the user does not explicitly configure env vars the skill will attempt to connect to the author's/default remote host using baked-in credentials. Requesting SSH credentials is reasonable for the stated purpose, but shipping defaults that point to external IPs and credentials is disproportionate and dangerous.
Persistence & Privilege
The skill is not always:true and is user-invocable by default. It requires network/ssh permissions which are coherent with its purpose. It also requires that the user add an MCP server entry to their OpenClaw config (expected for MCP-style skills). This combination is normal but increases risk because the MCP server process will have network/SSH access and can be invoked autonomously by the agent unless you restrict it.
Scan Findings in Context
[hardcoded-credentials-in-source] unexpected: The code defines DEFAULT_SERVER.password = "Yyyy0000" and a default host IP; a monitor skill should not ship hardcoded, third-party credentials or default to connecting to a remote host without explicit user config.
[hardcoded-remote-ip-in-docs-and-code] unexpected: SKILL.md documents IP 101.43.203.155 while code defaults to 152.136.245.195 and README references 'use the default server' — connecting to a remote server by default is unexpected and potentially exfiltrative.
[ssh-client-usage] expected: The skill uses the ssh2 client library to run commands over SSH, which is expected for an SSH-based server-monitoring tool.
[execute-command-tool] expected: The skill intentionally exposes an 'execute_command' tool to run arbitrary commands on the target server; this is expected for remote administration but increases risk if misused or if the skill connects to an unexpected host.
What to consider before installing
This skill will create an MCP server process that connects over SSH. Before installing: (1) Do not rely on the skill's defaults — set SERVER_HOST, SERVER_USER, and SERVER_PASSWORD (prefer SSH keys over passwords) to your own server and verify the values; (2) Inspect scripts/mcp-server.js locally (and the code you will actually run) to ensure it won't connect to unknown IPs or leak data; (3) Remove or change any hardcoded default host/password in the code before running; (4) Prefer running the MCP server only when you explicitly invoke the skill (avoid enabling autonomous invocation), and avoid installing it if you cannot audit or control the target server; (5) If you need a monitoring skill, consider one that requires explicit user-provided SSH keys and does not ship defaults that connect to remote infrastructure owned by the author.Like a lobster shell, security has layers — review code before you run it.
latest
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
SKILL.md
Server Monitor MCP Skill
概述
通过 MCP 协议监控腾讯云服务器 (101.43.203.155),提供远程管理能力。
服务器信息
| 项目 | 值 |
|---|---|
| IP | 101.43.203.155 |
| 用户 | root |
| 系统 | Ubuntu 24.04 LTS |
| 服务 | Nginx, MySQL 8.0, phpMyAdmin |
可用工具
| 工具 | 功能 |
|---|---|
| check_server_status | 检查服务器是否在线 |
| get_server_load | 获取 CPU/内存/运行时间 |
| get_disk_usage | 磀盘使用情况 |
| get_memory_usage | 内存使用详情 |
| get_service_status | 检查指定服务状态 |
| list_running_services | 列出运行中的服务 |
| get_network_stats | 网络连接和流量 |
| get_docker_containers | Docker 容器列表 |
| execute_command | 执行自定义命令 |
使用方法
此 skill 通过 MCP Server 实现,位于:
~/.openclaw/workspace/projects/mcp-servers/server-monitor/dist/index.js
配置到 OpenClaw
在 OpenClaw MCP 配置中添加:
{
"mcpServers": {
"server-monitor": {
"command": "node",
"args": ["~/.openclaw/workspace/projects/mcp-servers/server-monitor/dist/index.js"]
}
}
}
直接测试
cd ~/.openclaw/workspace/projects/mcp-servers/server-monitor
npm run dev
安全提醒
execute_command工具已阻止危险命令(rm -rf, mkfs 等)- 密码不通过 Resource 暴露
- 服务名称会进行清理防止注入
示例用法
检查服务器状态:
用户: 服务器还好吗?
AI: [调用 check_server_status] → 返回在线状态、系统信息
查看磁盘:
用户: 磁盘还剩多少?
AI: [调用 get_disk_usage] → 返回 df -h 输出
诊断问题:
用户: nginx 启动不了
AI: [调用 get_service_status service=nginx] → 查看状态和错误信息
🦞 Lobster Marshal 的服务器监控能力
Files
4 totalSelect a file
Select a file to preview.
Comments
Loading comments…