hamzi/corewatch

Production-ready embedded DevOps dashboard for Laravel β€” server metrics, log streaming, safe ops panel, and alerting without external daemons.

Maintainers

Package info

github.com/hamdyelbatal122/corewatch

Homepage

Issues

pkg:composer/hamzi/corewatch

Statistics

Installs: 46

Dependents: 0

Suggesters: 0

Stars: 5

Security

Advisories: 0

Aikido package health analysis

v2.1.7 2026-06-05 21:22 UTC

Requires

Requires (Dev)

Suggests

  • livewire/livewire: Allows embedding the reactive CoreWatch dashboard inside Filament, Nova, or custom Livewire admin templates.

MIT c660d9c5d97cbff208bf9027b171ce1ab437bebd

  • Hamzi <hamdyelbatal122.woop@hamzi.dev>

alertsmonitoringlaraveldashboarddevopsuptimelog-viewerserver-monitoringlivewirefilamentserver-health

This package is auto-updated.

Last update: 2026-06-05 21:21:17 UTC

README

Laravel CoreWatch πŸ›‘οΈ

Embedded DevOps dashboard for Laravel β€” monitor, debug, and operate your server without leaving your app

Latest Stable Version Build Status Total Downloads License PHP Version

Quick Start Β· Why CoreWatch? Β· Developer API Β· Architecture Β· Filament Β· Troubleshooting

Important

CoreWatch is a zero-dependency, self-contained server monitoring utility built for production Laravel systems. No Netdata, no Grafana agent, no external daemon β€” just composer require and you have a full DevOps terminal inside your admin panel.

πŸ€” Why CoreWatch?

Problem CoreWatch Solution
"I need server metrics but don't want another daemon" Reads /proc directly β€” zero external processes
"Log files are 5GB and crash my log viewer" O(1) memory backward-seeking parser streams any file size
"I'm afraid of RCE in admin panels" Whitelisted command keys only β€” no raw shell input
"I use Filament/Nova and need embedded monitoring" Livewire component + modular Blade partials
"I need alerts when CPU/RAM spikes" Scheduled sentinel with Slack, Telegram, or custom events
"Load balancer needs a health endpoint" GET /corewatch/api/health returns 200/503

CoreWatch vs. Alternatives

Feature CoreWatch Netdata Laravel Telescope Grafana Agent
Zero external daemon βœ… ❌ βœ… ❌
Server metrics (CPU/RAM/Disk) βœ… βœ… ❌ βœ…
Log file streaming βœ… ❌ ❌ ❌
Safe ops panel βœ… ❌ ❌ ❌
Laravel-native install βœ… ❌ βœ… ❌
Filament/Livewire embed βœ… ❌ ❌ ❌
Built-in alerting βœ… βœ… ❌ βœ…

⚑ Quick Start (30 seconds)

composer require hamzi/corewatch
php artisan corewatch:install

Open /corewatch in your browser. That's it.

CoreWatch Dashboard Preview

For production, add auth middleware in config/corewatch.php and schedule health checks:

// routes/console.php
Schedule::command('corewatch:heartbeat')->everyMinute();
Schedule::command('corewatch:check-health')->everyFiveMinutes();

πŸ—ΊοΈ System Architecture Flowchart

The following diagram illustrates how CoreWatch isolates data collection, streams log buffers, routes controller requests, and schedules alerting triggers:

graph TD
    %% Elements
    A["πŸ’» Master Dashboard View <br> (AlpineJS Client)"]
    B["πŸ›£οΈ CoreWatch Routing Gateway <br> (Protected Middleware)"]
    C["βš™οΈ SystemMetricsCollector <br> (Clean Architecture Actions)"]
    D["πŸ“„ LogFileRepository <br> (O-1 fseek streaming)"]
    E["⚑ Whitelisted Services Exec <br> (RCE-Proof Command List)"]
    F["⏰ Sentinel Health Command <br> (Artisan Cron Daemon)"]
    
    G["πŸ“‘ Host System <br> (/proc, top processes, disk filesystem)"]
    H["πŸ’Ύ Database Engine <br> (MySQL, SQLite, PGSQL Sizing)"]
    I["πŸ’¬ DevOps Channels <br> (Slack & Telegram API)"]

    %% Styling Definitions
    classDef primary fill:#0c1528,stroke:#00ccff,stroke-width:2px,color:#fff;
    classDef secondary fill:#050b18,stroke:#1f2e4d,stroke-width:1px,color:#aaa;
    classDef alert fill:#0c1528,stroke:#ff3366,stroke-width:2px,color:#fff;

    %% Class Assignments
    class A,C,D,E primary;
    class B,G,H secondary;
    class F,I alert;

    %% Connections
    A -->|1. Poll Metrics API| B
    B --> C
    C -->|Native Syscalls| G
    C -->|Schema Sizing| H
    A -->|2. Stream Log Chunk| B
    B --> D
    D -->|O-1 Constant Seek Buffer| G
    A -->|3. Trigger Secure Action| B
    B --> E
    E -->|Execute Whitelist| G
    F -->|Resource Threshold Checks| C
    F -->|Alert Breaches| I
Loading

πŸ—οΈ Package Architecture (Clean Architecture)

CoreWatch follows layered architecture with clear separation of concerns:

src/
β”œβ”€β”€ Contracts/          # Interfaces (DIP β€” depend on abstractions)
β”œβ”€β”€ Domain/             # Business rules (Alert VO, HealthThresholdEvaluator)
β”œβ”€β”€ Application/        # Use cases (Actions) + DTOs
β”œβ”€β”€ Infrastructure/     # Collectors, Repositories, Notifications, Shell
β”œβ”€β”€ Http/               # Controllers, Middleware, Form Requests
β”œβ”€β”€ Console/            # Artisan commands (thin β€” delegate to Actions)
└── Livewire/           # UI embedding component
Layer Responsibility Example
Contracts Define abstractions SystemMetricsCollectorInterface
Domain Pure business logic HealthThresholdEvaluator
Application Orchestrate use cases GetServerMetricsAction
Infrastructure External I/O LogFileRepository, CpuMetricsCollector
Http HTTP boundary DashboardController (thin)

🧱 Modular @include Partial Architecture

CoreWatch separates all diagnostics into elegant, self-contained monospace tables inside resources/views/partials/. This modular structure allows clients to easily publish views and include specific tables anywhere inside their custom dashboards:

Partial Blade View Path Diagnostic Target Layout Display Style Customization Purpose
partials.cpu CPU Cores & Load averages Monospace UNIX Table Monitor core load thresholds (1M, 5M, 15M)
partials.ram Physical Memory (RAM) Allocation Monospace Memory Table Track active, free, and cached allocation bytes
partials.disk Disk Storage Saturated Volumes Saturated Space Table Monitor root storage partition size limits
partials.processes Active CPU Top Linux Processes Live CLI System Table Identify high CPU usage processes (PID, User)
partials.database Database Engine & Schema size Monospace DB Status Table Track table counts and database file sizes
partials.app-checks Operational Application Integrity Status Indicator List Verify Cache, Queue, and Security modes
partials.specifications OS Kernel & Laravel specifications Static Specs Table Quick access to PHP, OS, and server version info
partials.services Whitelisted system task controls Command Action Table Safe execution of authorized terminal commands
partials.logs Live chunked stream terminal view Cyberpunk Log Console View and filter real-time logs with pagination

⚑ Key Highlights

  1. Stealthy & Dynamic UI: Self-contained Blade views styled with a premium Cyberpunk DevOps dark theme. Uses lightweight Tailwind CSS & AlpineJS for dynamic reactivity without bundler dependencies.
  2. Zero-overhead Log Viewer: An advanced, memory-efficient backward-seeking chunked file parser that streams Laravel/Nginx/Apache logs without memory exhaustion even on multi-gigabyte files.
  3. Advanced System Diagnostics: Native /proc filesystem parsing coupled with fast system command fallbacks to deliver instant CPU, RAM, Disk, and system uptime metrics.
  4. Pre-Whitelisted Services Controller: Safe administrative triggers (e.g. queue restart, redis flush, cache clearing) mapping to strict command keys preventing arbitrary RCE vulnerabilities.
  5. Top Active CPU Processes: Live sorted process statistics terminal displaying CPU load, RAM allocation, PID, user, and running commands on Linux hosts.
  6. Database Telemetry Widget: Direct schema capacity details, connection indicators, and tables count monitoring for MySQL, PostgreSQL, and SQLite database connection engines.
  7. App Integrity Checks: Automated operational verification for Cache drivers, Artisan Queue connections, Environment status, and Security debug mode states.
  8. Livewire Embed Support: Built-in dynamic Livewire component (livewire:corewatch-dashboard) for drag-and-drop embedding inside administrative panels like Filament and Laravel Nova.
  9. Continuous Sentinel Daemon: Scheduled console monitor (corewatch:check-health) that alerts your DevOps channels (Slack & Telegram) when resource thresholds are breached.
  10. Developer Facade API: CoreWatch::metrics(), CoreWatch::health(), and ThresholdBreached events for custom integrations.
  11. One-Command Install: php artisan corewatch:install publishes config and prints your production checklist.
  12. Health Probe Endpoint: GET /corewatch/api/health for uptime monitors, load balancers, and Kubernetes liveness probes.

πŸ› οΈ Installation & Setup

Production Install (Packagist)

composer require hamzi/corewatch
php artisan corewatch:install

Publish Views (Optional β€” for customization)

php artisan corewatch:install --views
# or manually:
php artisan vendor:publish --tag=corewatch-views

Local Development (Path Repository)

"repositories": [{ "type": "path", "url": "../CoreWatch" }]
composer require hamzi/corewatch:dev-main
php artisan corewatch:install

πŸ”Œ Flexible Dashboard Integration Options

CoreWatch is designed to fit seamlessly wherever your administration operations are managed:

Tip

Make sure to wrap any custom page elements that use these modular tables inside the parent AlpineJS data controller: <div x-data="corewatchDashboard()">...</div>.

Option A: Standalone Routed View

Once active, navigate directly to /corewatch to view the comprehensive Cyberpunk DevOps terminal.

Option B: Modular Table Includes

Publish the views and embed specific partial views inside your existing administrative panels:

<div x-data="corewatchDashboard()">
    <div class="grid grid-cols-2 gap-4">
        <!-- Render CPU and Database tables directly -->
        @include('corewatch::partials.cpu')
        @include('corewatch::partials.database')
    </div>
</div>

Option C: Blade Custom Component Embeds

Embed the full dashboard seamlessly:

<x-corewatch-views::dashboard />

Option D: Livewire Drag-and-Drop

Embed the Livewire component in Filament dashboards or custom panels:

<livewire:corewatch-dashboard />

βš™οΈ Threshold Sentinel alerts Alerting

Enable real-time warnings on Slack or Telegram by configuring your host .env:

# Slack Alerts Configuration
COREWATCH_SLACK_WEBHOOK_URL="https://hooks.slack.com/services/YOUR_SLACK_WEBHOOK_URL"
COREWATCH_SLACK_CHANNEL="#devops-alerts"

# Telegram Alerts Configuration
COREWATCH_TELEGRAM_BOT_TOKEN="0000000000:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
COREWATCH_TELEGRAM_CHAT_ID="-1000000000000"

Register heartbeat and health checks in routes/console.php:

use Illuminate\Support\Facades\Schedule;

Schedule::command('corewatch:heartbeat')->everyMinute();
Schedule::command('corewatch:check-health')->everyFiveMinutes();

πŸ‘¨β€πŸ’» Developer API (Programmatic Access)

CoreWatch exposes a Facade and Manager for use in your own code, jobs, and custom admin panels:

use Hamzi\CoreWatch\Facades\CoreWatch;

// Full metrics snapshot
$metrics = CoreWatch::metrics();

// Individual collectors
$cpu  = CoreWatch::cpu();
$ram  = CoreWatch::ram();
$disk = CoreWatch::disk();

// Lightweight health check (for uptime monitors)
$health = CoreWatch::health();
// ['status' => 'healthy', 'healthy' => true, 'checks' => [...], 'timestamp' => '...']

// Read logs programmatically
$logs = CoreWatch::readLogs('laravel', page: 1);

// Run a whitelisted service command
CoreWatch::runService('cache_clear');

Health Endpoint (Uptime Monitors / K8s Probes)

GET /corewatch/api/health

Returns 200 when healthy, 503 when thresholds are breached. Configure in .env:

COREWATCH_HEALTH_ENDPOINT=true
COREWATCH_HEALTH_PUBLIC=false  # Set true for public load-balancer probes

Prometheus (Grafana / Monitoring)

GET /corewatch/api/metrics/prometheus

COREWATCH_PROMETHEUS_ENDPOINT=true
COREWATCH_PROMETHEUS_PUBLIC=false

Arabic Localization

// AppServiceProvider or config/app.php
'locale' => 'ar',

Publish translations: php artisan vendor:publish --tag=corewatch-lang

Custom Alert Channels (Events)

Hook into threshold breaches in your AppServiceProvider:

use Hamzi\CoreWatch\Events\ThresholdBreached;

Event::listen(ThresholdBreached::class, function (ThresholdBreached $event) {
    // Send to PagerDuty, Discord, email, etc.
    foreach ($event->alerts as $alert) {
        // $alert->name, $alert->current, $alert->severity
    }
});
Guide Description
Architecture Layer diagram, data flow, and extension guide
Filament Integration Embed in Filament admin panels
Troubleshooting Common issues and fixes
Deployment Production checklist
Contributing Development workflow and coding standards
Security Vulnerability reporting policy

πŸ”’ Security Practices & Fallbacks

  1. RCE Protection: CoreWatch never accepts raw input strings to execute shell commands. It maps requests to rigid keys registered in config/corewatch.php and blocks any unauthorized requests.
  2. Memory Safety: The Log Parser uses direct fseek backward seeking to stream logs in 64KB blocks, maintaining a strict $O(1)$ memory consumption profile regardless of log file size.
  3. Graceful Fallbacks: If commands like exec or proc_open are disabled in php.ini, the package falls back to parsing native /proc direct files and displays interactive notifications.

πŸ“„ License

The MIT License (MIT). Please see License File for more information.