ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Windows System Monitor

v2.0.0

Windows 系统状态监控 - 检查 CPU、内存、磁盘、网络、进程等运行状态,发现问题及时通知

0· 93·0 current·0 all-time
by@jirboy

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for jirboy/windows-system-monitor.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Windows System Monitor" (jirboy/windows-system-monitor) from ClawHub.
Skill page: https://clawhub.ai/jirboy/windows-system-monitor
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install windows-system-monitor

ClawHub CLI

Package manager switcher

npx clawhub@latest install windows-system-monitor
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The stated purpose (Windows system monitoring) legitimately needs access to Python or monitoring tools, event logs, and a notification channel. However the skill declares no required binaries, no included code, and no credentials, which is inconsistent: it references tools/windows_system_monitor.py and reports/windows_system_check.json that are not present in the package.
!
Instruction Scope
SKILL.md instructs running a local Python script, reading a report file, and checking Windows event logs, processes, network connections, and then sending notifications. Those instructions involve reading local system state and potentially sensitive logs, but the skill gives no safe boundaries, no explicit commands for collecting only necessary fields, and no included scripts to inspect — the agent would be told to act on files that don't exist in the bundle and to access system resources without declared limits.
Install Mechanism
No install spec (instruction-only) is lowest-risk in terms of writing code to disk. But SKILL.md depends on an external Python script and report files that are not bundled; this mismatch increases risk because the runtime behavior depends on external artifacts that the package does not provide or declare.
!
Credentials
The instructions require sending notifications via 飞书 and performing system-level reads, which normally need a webhook/token and appropriate OS privileges. The skill declares no required environment variables or credentials (no Feishu webhook, no choice of primary credential), which is disproportionate and unexplained.
Persistence & Privilege
The skill does not request always:true and does not claim autonomous persistent presence. It is user-invocable only, which is appropriate for this kind of tool. There is no indication it modifies other skills or agent config.
What to consider before installing
Do not install or run this skill without further information. The SKILL.md references a Python script (tools/windows_system_monitor.py), report files, and Feishu notifications, but the package contains no code, no listed binaries, and no credentials. Before using: (1) request the actual monitoring script and inspect its source to ensure it only reads (not modifies) and does not exfiltrate data; (2) confirm what binaries are required (e.g., python) and that they are safe; (3) require explicit declaration of notification credentials (Feishu webhook) and verify the endpoint; (4) if you must test, run it in a sandboxed Windows VM with no sensitive data and limited network access. The current mismatch between claimed behavior and declared requirements is a red flag — treat this as potentially unsafe until the missing pieces are provided and reviewed.

Like a lobster shell, security has layers — review code before you run it.

latestvk976z2tb65k75cjf6h1vfmbgan84z6ms
93downloads
0stars
2versions
Updated 1w ago
v2.0.0
MIT-0
@jirboy
latest
Download

Windows 系统监控技能

版本: 1.0
创建: 2026-03-10
作者: SuperMike

功能说明

监控 Windows 系统运行状态,包括:

  1. CPU 状态 - 使用率、核心数、频率
  2. 内存状态 - 使用率、可用内存
  3. 磁盘状态 - 各分区空间使用情况
  4. 网络状态 - 连接数、流量统计
  5. 进程监控 - 高占用进程检测
  6. 系统日志 - Windows 事件日志检查

触发语句:

  • "检查系统状态"
  • "Windows 运行正常吗"
  • "监控系统性能"
  • "检查磁盘空间"

告警阈值

指标警告严重
CPU 使用率>85%>95%
内存使用率>90%>95%
磁盘使用率>90%>95%
CLOSE_WAIT 连接>50>100
进程 CPU 100%持续 100%-

通知策略

🔴 严重问题(立即飞书通知)

  • CPU/内存/磁盘使用率>95%
  • 系统关键错误
  • 磁盘空间严重不足

🟡 警告信息(汇总通知)

  • CPU/内存/磁盘使用率>90%
  • 异常网络连接
  • 进程占用异常

✅ 正常状态

  • 不主动通知
  • 定期检查记录日志

使用方式

对话触发

检查系统状态
Windows 运行正常吗
监控磁盘空间

命令行

# 完整检查
python tools/windows_system_monitor.py

# 查看报告
cat reports/windows_system_check.json

检查频率

每日检查(Heartbeat)

  • 磁盘空间
  • 内存使用率
  • 系统运行时间

每周检查

  • 完整系统检查
  • 进程分析
  • 网络连接检查

每月检查

  • 系统日志分析
  • 性能趋势分析
  • 清理建议

安全说明

重要原则:

  • ✅ 仅监控,不修改系统设置
  • ✅ 仅通知,不自动执行修复
  • ✅ 所有操作记录日志
  • ❌ 不修改注册表
  • ❌ 不修改系统配置
  • ❌ 不强制终止进程

通知方式:

  • 飞书消息(主要)
  • 弹窗通知(紧急)
  • 日志记录(所有)

相关文件

  • 监控工具:tools/windows_system_monitor.py
  • 检查报告:reports/windows_system_check.json
  • 技能文档:skills/windows-system-monitor/SKILL.md

本技能仅用于监控系统状态,不会修改任何系统设置。

Comments

Loading comments...