Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From linux-debugging
Run targeted journalctl queries to surface only the relevant log lines for a debugging task — by unit, time window, priority, boot, or kernel/user scope. Emits structured output (JSON or short-form) suited for AI analysis. Use when the user reports a problem and you need to inspect logs without dumping everything. Assumes systemd + journald (Ubuntu, Debian, Fedora, Arch, etc.).
How this skill is triggered — by the user, by Claude, or both
Slash command
/linux-debugging:journal-inspectThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Targeted journalctl queries for AI-assisted debugging. The goal is to retrieve **just enough** log context — never `journalctl -xe` blindly, which floods the context window.
Targeted journalctl queries for AI-assisted debugging. The goal is to retrieve just enough log context — never journalctl -xe blindly, which floods the context window.
journalctl -u <unit> -b --no-pager -p warning
journalctl -b -1 --no-pager -p err
Requires persistent journald — verify with validate-persistent-journal if -b -1 returns nothing.
journalctl --since "10 min ago" -p warning --no-pager
journalctl --since "2026-04-28 14:00" --until "2026-04-28 14:30"
journalctl -k -b -p err --no-pager
journalctl -k --grep "(oom|segfault|oops|BUG|panic)" --no-pager
journalctl -u <unit> -b -p warning -o json --no-pager | jq -r '. | {t: .__REALTIME_TIMESTAMP, u: ._SYSTEMD_UNIT, p: .PRIORITY, m: .MESSAGE}'
JSON fields most useful for AI parsing: MESSAGE, PRIORITY, _SYSTEMD_UNIT, _PID, _COMM, __REALTIME_TIMESTAMP, SYSLOG_IDENTIFIER.
0=emerg 1=alert 2=crit 3=err 4=warning 5=notice 6=info 7=debug
Use -p N to include level N and below (more severe). Most debugging starts at -p warning.
journalctl with no filter — it's gigabytes.-f (follow) inside an agent session unless explicitly reproducing a live event; it blocks.--no-pager and then pipe to head — use -n <count> instead.-u <unit> so journald uses its index.After running a query, summarize:
Quote actual log lines verbatim when reporting suspicious entries — paraphrasing loses precision the user needs to grep their own system.
Creates, edits, and optimizes skills for Claude Code, including drafting, evaluating with test prompts, iterating on performance, and improving skill descriptions for better triggering accuracy.
npx claudepluginhub danielrosehill/claude-code-plugins --plugin linux-debugging