Can it identify specific SELinux issues?

Yes, it specifically looks for AVC denials in audit logs, checks enforcement modes, and reviews SELinux booleans to identify security-related blocks.

How does it handle different systemd configurations?

The skill analyzes unit files, failed states, and list-unit outputs to provide a comprehensive view of service health regardless of custom overrides.

Do I need to extract the sosreport archive first?

Yes, for the skill to analyze the data, the sosreport archive must be extracted to a working directory accessible by Claude Code.

Does this skill work with any Linux distribution?

Yes, it is designed to support both RPM-based systems like RHEL, CentOS, and Fedora, as well as DEB-based systems like Ubuntu and Debian.

System Configuration Analysis for sosreport

Name: System Configuration Analysis for sosreport
Author: openshift-eng

byopenshift-eng

•

分析与监控

Analyzes system configuration data from sosreport archives to diagnose service failures, security policy issues, and package misconfigurations.

This skill enables Claude to perform deep forensic analysis of Linux system states by parsing sosreport archives. It systematically examines operating system details, installed package versions (RPM and DEB), systemd service health, and security postures like SELinux or AppArmor. By navigating complex directory structures automatically, it identifies the root cause of system instability, configuration drift, or security denials, providing SREs and DevOps engineers with structured, actionable insights for rapid troubleshooting.

主要功能

01OS and kernel version extraction with uptime analysis

02SELinux and AppArmor policy analysis including AVC denial parsing

03Package version comparison for RPM and DEB-based systems

0429 GitHub stars

05Kernel parameter and resource limit validation

06Detailed systemd service status and failure reason auditing

使用场景

01Identifying security policy denials causing application access issues in production

02Diagnosing critical service failures by correlating systemd status with journald logs

03Auditing system configuration and package versions to find drift after updates

主要功能

01OS and kernel version extraction with uptime analysis

02SELinux and AppArmor policy analysis including AVC denial parsing

03Package version comparison for RPM and DEB-based systems

0429 GitHub stars

05Kernel parameter and resource limit validation

06Detailed systemd service status and failure reason auditing

使用场景

01Identifying security policy denials causing application access issues in production

02Diagnosing critical service failures by correlating systemd status with journald logs

03Auditing system configuration and package versions to find drift after updates