Version: 1.1.22
Systems-Manager is a powerful CLI and MCP server tool to manage your system across multiple operating systems. It supports updating, installing, and optimizing applications, managing Windows features, installing Nerd Fonts, and retrieving system and hardware statistics. It now supports Ubuntu, Debian, Red Hat, Oracle Linux, SLES, Arch, and Windows, with Snap fallback for Linux application installations.
This repository is actively maintained - Contributions are welcome!
- Multi-OS Support: Works on Windows, Ubuntu, Debian, Red Hat, Oracle Linux, SLES, and Arch.
- Application Management: Install and update applications using native package managers (apt, dnf, zypper, pacman, winget) with automatic Snap fallback for Linux.
- Font Installation: Install specific Nerd Fonts (default: Hack) or all available fonts from the latest release.
- Windows Feature Management: List, enable, or disable Windows optional features (Windows only).
- System Optimization: Clean and optimize system resources (e.g., trash/recycle bin, autoremove, defragmentation on Windows).
- System and Hardware Stats: Retrieve detailed OS and hardware information using
psutil. - Logging: Optional logging to a specified file or default
systems_manager.login the script directory. - FastMCP Server: Expose all functionality via a Model Context Protocol (MCP) server over stdio or HTTP for integration with AI or automation systems.
install_applications: Install applications with Snap fallback (Linux).update: Update system and applications.clean: Clean system resources (e.g., trash/recycle bin).optimize: Optimize system (e.g., autoremove, defrag on Windows).install_python_modules: Install Python modules via pip.install_fonts: Install specified Nerd Fonts (default: Hack) or all fonts.get_os_stats: Retrieve OS statistics.get_hardware_stats: Retrieve hardware statistics.list_windows_features: List Windows features (Windows only).enable_windows_features: Enable Windows features (Windows only).disable_windows_features: Disable Windows features (Windows only).run_command: Run elevated commands on shell (Enable at your own risk).
---
config:
layout: dagre
---
flowchart TB
subgraph subGraph0["Agent Capabilities"]
C["Agent"]
B["A2A Server - Uvicorn/FastAPI"]
D["MCP Tools"]
F["Agent Skills"]
end
C --> D & F
A["User Query"] --> B
B --> C
D --> E["Platform API"]
C:::agent
B:::server
A:::server
classDef server fill:#f9f,stroke:#333
classDef agent fill:#bbf,stroke:#333,stroke-width:2px
style B stroke:#000000,fill:#FFD600
style D stroke:#000000,fill:#BBDEFB
style F fill:#BBDEFB
style A fill:#C8E6C9
style subGraph0 fill:#FFF9C4
sequenceDiagram
participant User
participant Server as A2A Server
participant Agent as Agent
participant Skill as Agent Skills
participant MCP as MCP Tools
User->>Server: Send Query
Server->>Agent: Invoke Agent
Agent->>Skill: Analyze Skills Available
Skill->>Agent: Provide Guidance on Next Steps
Agent->>MCP: Invoke Tool
MCP-->>Agent: Tool Response Returned
Agent-->>Agent: Return Results Summarized
Agent-->>Server: Final Response
Server-->>User: Output
| Short Flag | Long Flag | Description |
|---|---|---|
| -h | --help | See usage for script |
| -c | --clean | Clean Recycle/Trash bin |
| -e | --enable-features | Enable Windows features (comma-separated, Windows only) |
| -d | --disable-features | Disable Windows features (comma-separated, Windows only) |
| -l | --list-features | List all Windows features and their status (Windows only) |
| -f | --fonts | Install Nerd Fonts (comma-separated, e.g., Hack,Meslo or 'all'; default: Hack) |
| -i | --install | Install applications (comma-separated, e.g., python3,git) |
| -p | --python | Install Python modules (comma-separated) |
| -s | --silent | Suppress output to stdout |
| -u | --update | Update applications and Operating System |
| -o | --optimize | Optimize system (e.g., autoremove, clean cache, defrag) |
| --os-stats | Print OS statistics (e.g., system, release, version) | |
| --hw-stats | Print hardware statistics (e.g., CPU, memory, disk) | |
| --log-file | Log to specified file (default: systems_manager.log) |
systems-manager --fonts Hack,Meslo --update --clean --python geniusbot --install python3,git --enable-features Microsoft-Hyper-V-All,Containers --log-file /path/to/log.log| Short Flag | Long Flag | Description |
|---|---|---|
| --mcp-url | MCP Server URL to connect to | http://systems-manager-mcp.arpa/mcp |
| --allowed-tools | List of allowed MCP tools | system_management |
| --web | Enable Pydantic AI Web UI | False (Env: ENABLE_WEB_UI) |
| -t | --transport | Transport method: 'stdio', 'http', or 'sse' [legacy] (default: stdio) |
| -s | --host | Host address for HTTP transport (default: 0.0.0.0) |
| -p | --port | Port number for HTTP transport (default: 8000) |
| --auth-type | Authentication type: 'none', 'static', 'jwt', 'oauth-proxy', 'oidc-proxy', 'remote-oauth' (default: none) | |
| --token-jwks-uri | JWKS URI for JWT verification | |
| --token-issuer | Issuer for JWT verification | |
| --token-audience | Audience for JWT verification | |
| --oauth-upstream-auth-endpoint | Upstream authorization endpoint for OAuth Proxy | |
| --oauth-upstream-token-endpoint | Upstream token endpoint for OAuth Proxy | |
| --oauth-upstream-client-id | Upstream client ID for OAuth Proxy | |
| --oauth-upstream-client-secret | Upstream client secret for OAuth Proxy | |
| --oauth-base-url | Base URL for OAuth Proxy | |
| --oidc-config-url | OIDC configuration URL | |
| --oidc-client-id | OIDC client ID | |
| --oidc-client-secret | OIDC client secret | |
| --oidc-base-url | Base URL for OIDC Proxy | |
| --remote-auth-servers | Comma-separated list of authorization servers for Remote OAuth | |
| --remote-base-url | Base URL for Remote OAuth | |
| --allowed-client-redirect-uris | Comma-separated list of allowed client redirect URIs | |
| --eunomia-type | Eunomia authorization type: 'none', 'embedded', 'remote' (default: none) | |
| --eunomia-policy-file | Policy file for embedded Eunomia (default: mcp_policies.json) | |
| --eunomia-remote-url | URL for remote Eunomia server |
The MCP Server can be run in two modes: stdio (for local testing) or http (for networked access). To start the server, use the following commands:
systems-manager-mcp --transport "stdio"systems-manager-mcp --transport "http" --host "0.0.0.0" --port "8000"The following Python packages are automatically installed if missing:
distro: For Linux distribution detection.psutil: For system and hardware statistics.requests: For downloading Nerd Fonts.fastmcp: For MCP server functionality (required forsystems-manager-mcp).
This package includes an Agent utilizing pydantic-ai that can be deployed as an A2A server.
- Web UI:
http://localhost:8000/(if enabled) - A2A:
http://localhost:8000/a2a(Discovery:/a2a/.well-known/agent.json) - AG-UI:
http://localhost:8000/ag-ui(POST)
| Long Flag | Description | Default |
|---|---|---|
| --host | Host to bind the server to | 0.0.0.0 |
| --port | Port to bind the server to | 9000 |
| --reload | Enable auto-reload | False |
| --provider | LLM Provider (openai, anthropic, google, etc) | openai |
| --model-id | LLM Model ID | qwen/qwen3-4b-2507 |
| --base-url | LLM Base URL (for OpenAI compatible providers) | http://host.docker.internal:1234/v1 |
| --api-key | LLM API Key | ollama |
| --mcp-url | MCP Server URL to connect to | None |
| --mcp-config | MCP Server Config | ... |
| --skills-directory | Directory containing agent skills | ... |
| --web | Enable Pydantic AI Web UI | False (Env: ENABLE_WEB_UI) |
systems-manager-agent --provider openai --model-id qwen/qwen3-4b-2507The MCP server can be deployed using Docker, with configurable authentication, middleware, and Eunomia authorization.
docker pull knucklessg1/systems-manager:latest
docker run -d \
--name systems-manager-mcp \
-p 8004:8004 \
-e HOST=0.0.0.0 \
-e PORT=8004 \
-e TRANSPORT=http \
-e AUTH_TYPE=none \
-e EUNOMIA_TYPE=none \
knucklessg1/systems-manager:latestFor advanced authentication (e.g., JWT, OAuth Proxy, OIDC Proxy, Remote OAuth) or Eunomia, add the relevant environment variables:
docker run -d \
--name systems-manager-mcp \
-p 8004:8004 \
-e HOST=0.0.0.0 \
-e PORT=8004 \
-e TRANSPORT=http \
-e AUTH_TYPE=oidc-proxy \
-e OIDC_CONFIG_URL=https://provider.com/.well-known/openid-configuration \
-e OIDC_CLIENT_ID=your-client-id \
-e OIDC_CLIENT_SECRET=your-client-secret \
-e OIDC_BASE_URL=https://your-server.com \
-e ALLOWED_CLIENT_REDIRECT_URIS=http://localhost:*,https://*.example.com/* \
-e EUNOMIA_TYPE=embedded \
-e EUNOMIA_POLICY_FILE=/app/mcp_policies.json \
knucklessg1/systems-manager:latestCreate a docker-compose.yml file:
services:
systems-manager-mcp:
image: knucklessg1/systems-manager:latest
environment:
- HOST=0.0.0.0
- PORT=8004
- TRANSPORT=http
- AUTH_TYPE=none
- EUNOMIA_TYPE=none
ports:
- 8004:8004For advanced setups with authentication and Eunomia:
services:
systems-manager-mcp:
image: knucklessg1/systems-manager:latest
environment:
- HOST=0.0.0.0
- PORT=8004
- TRANSPORT=http
- AUTH_TYPE=oidc-proxy
- OIDC_CONFIG_URL=https://provider.com/.well-known/openid-configuration
- OIDC_CLIENT_ID=your-client-id
- OIDC_CLIENT_SECRET=your-client-secret
- OIDC_BASE_URL=https://your-server.com
- ALLOWED_CLIENT_REDIRECT_URIS=http://localhost:*,https://*.example.com/*
- EUNOMIA_TYPE=embedded
- EUNOMIA_POLICY_FILE=/app/mcp_policies.json
ports:
- 8004:8004
volumes:
- ./mcp_policies.json:/app/mcp_policies.jsonRun the service:
docker-compose up -d{
"mcpServers": {
"systems_manager": {
"command": "uv",
"args": [
"run",
"--with",
"systems-manager",
"systems-manager-mcp"
],
"env": {
"SYSTEMS_MANAGER_SILENT": "False",
"SYSTEMS_MANAGER_LOG_FILE": "~/Documents/systems_manager_mcp.log"
},
"timeout": 200000
}
}
}
python -m pip install systems-manageror
uv pip install --upgrade systems-manager
