npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

lobsterboard-agent

v0.4.2

Published

Lightweight stats agent for remote LobsterBoard monitoring

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

curbobcurbob

Keywords

lobsterboardmonitoringstatsagentopenclaw

Readme

🦞 LobsterBoard Agent

A lightweight stats agent for remote LobsterBoard monitoring. Run it on your VPS or remote servers, then connect from your local LobsterBoard dashboard.

Features

  • System stats — CPU, memory, disk, network, uptime
  • Docker stats — Container list and status (optional)
  • OpenClaw stats — Cron jobs, sessions, gateway status (optional)
  • AI usage stats — Track Claude, Codex, Copilot, Cursor, Gemini, and more (optional)
  • End-to-end encryption — ECDH key exchange + AES-256-GCM (automatic)
  • API key auth — Secure access to your server stats
  • Lightweight — Minimal footprint, runs anywhere Node runs
  • Multi-server — Monitor multiple servers from one LobsterBoard

Quick Start

# Install globally
npm install -g lobsterboard-agent

# Initialize (generates API key)
lobsterboard-agent init

# Start the agent
lobsterboard-agent serve

VPS Setup (Ubuntu/Debian)

SSH into your VPS and run:

# Install Node.js if not present
curl -fsSL https://deb.nodesource.com/setup_20.x | sudo -E bash -
sudo apt-get install -y nodejs

# Install the agent
sudo npm install -g lobsterboard-agent

# Initialize and save your API key
lobsterboard-agent init

# Start in background (survives logout)
lobsterboard-agent serve > /tmp/agent.log 2>&1 &
disown

# Verify it's running
curl -H "X-API-Key: YOUR_KEY" http://localhost:9090/health

Open Firewall Port

# UFW (Ubuntu)
sudo ufw allow 9090

# Or via your VPS provider's firewall panel

Test from Local Machine

curl -H "X-API-Key: YOUR_KEY" http://YOUR_VPS_IP:9090/stats

Run as a Service (Auto-Start)

Create a systemd service so the agent starts on boot and restarts on crash:

nano /etc/systemd/system/lobsterboard-agent.service

Paste:

[Unit]
Description=LobsterBoard Agent
After=network.target

[Service]
Type=simple
ExecStart=/usr/bin/env lobsterboard-agent serve
Restart=always
RestartSec=10

[Install]
WantedBy=multi-user.target

Save (Ctrl+O, Enter, Ctrl+X), then:

systemctl daemon-reload
systemctl enable lobsterboard-agent
systemctl start lobsterboard-agent
systemctl status lobsterboard-agent

Docker OpenClaw Setup

If OpenClaw runs in Docker, configure the agent to read from the correct paths:

nano ~/.lobsterboard-agent/config.json

Add these options:

{
  "openclawDataDir": "/path/to/.openclaw",
  "openclawDockerContainer": "your-openclaw-container"
}

Find your values:

# Find container name:
docker ps | grep openclaw

# Find data mount (look for .openclaw inside):
docker inspect <container-name> | grep -A5 "Mounts"

Commands

| Command | Description | |---------|-------------| | init | Initialize config and generate API key | | serve | Start the stats server | | rotate-key | Generate a new API key (invalidates old one) | | show-key | Display current API key | | status | Show agent configuration |

Options

lobsterboard-agent serve --port=9090    # Custom port (default: 9090)
lobsterboard-agent serve --host=0.0.0.0 # Bind address (default: 0.0.0.0)
lobsterboard-agent serve --name=prod-1  # Server name for identification

API Endpoints

All endpoints require the X-API-Key header.

| Endpoint | Description | |----------|-------------| | POST /handshake | Key exchange for encrypted communication | | GET /stats | Full system stats (encrypted if handshaked) | | GET /health | Health check |

Encryption Flow

  1. Client sends POST /handshake with { clientId, publicKey }
  2. Agent responds with its public key
  3. Both derive shared secret using ECDH
  4. Client sends GET /stats with X-Client-ID header
  5. Agent returns encrypted response: { encrypted: "base64..." }
  6. Client decrypts using shared secret

Example Request

curl -H "X-API-Key: sk_your_key_here" http://your-server:9090/stats

Example Response

{
  "serverName": "prod-vps-1",
  "timestamp": "2026-03-07T12:00:00.000Z",
  "hostname": "vps-12345",
  "platform": "linux",
  "distro": "Ubuntu",
  "uptime": 1234567,
  "cpu": {
    "model": "Intel Xeon",
    "cores": 2,
    "usage": 12.5
  },
  "memory": {
    "total": 2147483648,
    "used": 1073741824,
    "percent": 50.0
  },
  "disk": {
    "total": 42949672960,
    "used": 21474836480,
    "percent": 50.0
  },
  "network": {
    "rxSec": 1024,
    "txSec": 512
  },
  "docker": {
    "available": true,
    "running": 3,
    "total": 5,
    "containers": [...]
  },
  "openclaw": {
    "installed": true,
    "gateway": { "running": true },
    "cron": { "total": 5, "enabled": 4 },
    "sessions": { "total": 12, "recent24h": 3 }
  },
  "aiUsage": {
    "providers": [...],
    "timestamp": "2026-03-07T12:00:00.000Z"
  }
}

Configuration

Config is stored in ~/.lobsterboard-agent/config.json:

{
  "apiKey": "sk_...",
  "port": 9090,
  "host": "0.0.0.0",
  "serverName": "my-vps",
  "enableDocker": true,
  "enableOpenClaw": true,
  "enableAiUsage": true
}

AI Usage Tracking

When enableAiUsage is true (default), the agent reports usage metrics from AI coding tools installed on the server.

Supported Providers

| Provider | Detection | What's Tracked | |----------|-----------|----------------| | Claude Code | ~/.claude/.credentials.json or Keychain | Session, weekly, Opus limits | | Codex CLI | ~/.config/codex/auth.json | Session, weekly, code reviews | | GitHub Copilot | gh CLI Keychain | Premium, chat, completions | | Cursor | SQLite DB | Total, auto, API usage | | Gemini CLI | ~/.gemini/oauth_creds.json | Per-model quotas | | Amp Code | ~/.local/share/amp/secrets.json | Free tier, credits | | Factory/Droid | ~/.factory/auth.json | Standard, premium | | Kimi Code | ~/.kimi/credentials/ | Session limits | | JetBrains AI | IDE config XML | Quota usage | | MiniMax | MINIMAX_API_KEY env | Session | | Z.ai | ZAI_API_KEY env | Session, weekly | | Antigravity | antigravity-usage config | Per-model quotas |

How It Works

The agent reads credentials from standard CLI config paths and queries each provider's usage API. Results are cached for 5 minutes to avoid rate limits.

No credentials leave your server — the agent fetches directly from provider APIs using locally-stored tokens.

Example Response

{
  "aiUsage": {
    "providers": [
      {
        "provider": "claude",
        "name": "Claude Code",
        "icon": "🟣",
        "plan": "max",
        "metrics": [
          { "label": "Session (5h)", "used": 25.3, "limit": 100, "format": "percent" },
          { "label": "Weekly", "used": 12.1, "limit": 100, "format": "percent" }
        ]
      },
      {
        "provider": "codex",
        "name": "Codex CLI",
        "icon": "🟢",
        "plan": "plus",
        "metrics": [
          { "label": "Session (5h)", "used": 8.5, "limit": 100, "format": "percent" }
        ]
      }
    ],
    "timestamp": "2026-03-08T12:00:00.000Z"
  }
}

Disabling AI Usage

To disable AI usage tracking:

# Edit config
nano ~/.lobsterboard-agent/config.json
# Set: "enableAiUsage": false
# Restart the agent

Run as Service

systemd (Linux)

sudo cat > /etc/systemd/system/lobsterboard-agent.service << 'EOF'
[Unit]
Description=LobsterBoard Agent
After=network.target

[Service]
Type=simple
User=your-user
ExecStart=/usr/bin/lobsterboard-agent serve
Restart=always
RestartSec=5

[Install]
WantedBy=multi-user.target
EOF

sudo systemctl enable lobsterboard-agent
sudo systemctl start lobsterboard-agent

pm2

pm2 start lobsterboard-agent -- serve
pm2 save
pm2 startup

Connecting from LobsterBoard

  1. Open LobsterBoard and click 🖥️ Servers in the header
  2. Fill in the form:
    • Name: A friendly name (e.g., "Production VPS")
    • URL: http://YOUR_IP:9090 (must include http://)
    • API Key: The key from lobsterboard-agent init
  3. Click Test Connection — should show ✓ Connected
  4. Click Add Server

Adding Widgets

  1. Add a widget (Uptime Monitor, CPU/Memory, Disk, Network, or Docker)
  2. Select the widget to open properties panel
  3. Choose your server from the Server dropdown
  4. Save and preview!

Troubleshooting

| Issue | Solution | |-------|----------| | "Failed to parse URL" | Make sure URL starts with http:// | | Connection timeout | Check firewall, ensure port 9090 is open | | 401 Unauthorized | Verify API key is correct | | Agent stops when terminal closes | Use disown after starting (see VPS Setup) |

Security

Encryption (v0.2.0+)

All communication between LobsterBoard and the agent is encrypted by default:

  1. Key Exchange — When you add a server in LobsterBoard, it performs an ECDH handshake with the agent
  2. Shared Secret — Both sides derive a shared 256-bit key (never transmitted)
  3. Encrypted Stats — All /stats responses are encrypted with AES-256-GCM

This means your server stats are protected even over plain HTTP. No extra setup required!

Note: The API key is still sent in headers for authentication. For maximum security, you can also:

  • Run behind a reverse proxy with HTTPS
  • Use Tailscale/WireGuard for encrypted tunneling
  • Limit access by IP via firewall rules

Best Practices

  • Always use an API key (never disable it)
  • Rotate keys periodically with lobsterboard-agent rotate-key (this also regenerates encryption keys)
  • Use firewall rules to limit access by IP if possible

License

MIT

Made with 🦞 by Curbob