The 5-hour and weekly token windows · monthly MCP quota · reset countdowns ·
24-hour model & tool usage — with a color-coded toolbar badge. The live usage
monitor `claude-monitor.com` gives Claude users, for the **GLM Coding Plan**.
If you use GLM via Claude Code (or any Coding Plan client) and missed having a live usage badge, this is for you. The extension reads your own usage from the official Z.AI / ZHIPU monitor API and shows it one click away.
The one catch: the Claude monitor needs no key — it rides your
claude.aisession cookie. GLM’s usage API is not cookie-authed: it requires anAuthorization: <token>header with your Coding Plan key. So you paste that key once, and it never leaves your device except to authenticate your own usage requests. See SECURITY.md for the full threat model.
— instead of crashing.Once published: open the listing in Brave / Chrome / Edge → Add to …, then open the extension → Settings → paste your key.
(Listing link will be added here once the extension is live.)
brave://extensions · Chrome chrome://extensions · Edge edge://extensions).manifest.json).ANTHROPIC_AUTH_TOKEN when running Claude Code against GLM. Find it in your
Z.AI dashboard under API Keys / Coding Plan.api.z.ai) unless your account is on
the China platform, then pick ZHIPU (open.bigmodel.cn).Connected — plan <tier>, 5h …%, weekly …%.A Manifest V3 service worker polls the monitor API on a timer and persists a
normalized snapshot to chrome.storage.local; the popup just renders that
snapshot. All values are written with .textContent, never innerHTML, so a
malformed or hostile response cannot inject markup.
Three read-only GET endpoints are used (Auth header = your key, no Bearer
prefix):
| Endpoint | Provides |
|---|---|
/api/monitor/usage/quota/limit |
5h %, weekly %, MCP %, plan tier, reset times |
/api/monitor/usage/model-usage?startTime&endTime |
24h tokens + call count |
/api/monitor/usage/tool-usage?startTime&endTime |
24h search / read / ZRead counts |
chrome.storage.local on your device.manifest.json
— never to a third party, analytics, or ad network.storage, alarms, and the read-only monitor paths.
No cookies, tabs, <all_urls>, content scripts, or externally_connectable.Full details: SECURITY.md · Privacy Policy
? (gray) — no key yet, or no usage data yet. Open Settings
and add / test your key.ZAI_API_KEY=… node dev/test-raw.mjs to dump the raw responses; the parsing
is defensive, so a changed field shows — rather than crashing.Contributions are welcome! There is no build step and no dependencies — the JS in the repo is exactly what runs. See CONTRIBUTING.md for dev setup, the validation checks, and conventions. Please note the Code of Conduct.
Good first areas: more time-window breakdowns, new platform support, locale/i18n, and UI polish.
msadofschi/claudetrack — the
architecture this extension is modeled on (MV3 + alarms + auth-backoff + badge).guyinwonder168/opencode-glm-quota —
the published plugin the monitor endpoints and response shapes were derived from.MIT © GLM Usage Monitor contributors