AdvancedAudit Logs
Audit Logs
Every intent, approval, denial, and permit validation is recorded in an immutable audit log. Logs are cryptographically chained so tampering is detectable. Use the dashboard, API, or log export for compliance reporting and incident investigation.
Querying via API
GET /v1/projects/{projectId}/audit?
action=deploy_production&
status=approved&
from=2024-01-01T00:00:00Z&
to=2024-01-31T23:59:59Z&
limit=100
Authorization: Bearer sk_live_xxx{
"entries": [
{
"id": "log_abc123",
"type": "intent.approved",
"timestamp": "2024-01-15T10:30:00Z",
"intent_id": "int_xK9mNpQ2",
"action": "deploy_production",
"params": { "env": "prod", "version": "2.1.0" },
"approved_by": "jane@acme.io",
"approver_ip": "203.0.113.1",
"permit_id": "prm_def456",
"chain_hash": "sha256:abc123..."
}
],
"next_cursor": "cursor_xyz",
"total": 842
}Log Entry Fields
| Field | Description |
|---|---|
| id | Unique log entry ID |
| type | Event type: intent.created, intent.approved, intent.denied, permit.validated |
| timestamp | ISO 8601 timestamp of the event |
| intent_id | ID of the associated intent |
| action | Action name from the intent |
| approved_by | Email of the human approver (if applicable) |
| approver_ip | IP address of the approver at sign time |
| chain_hash | Hash of previous entry — for tamper detection |
Log Export
Export logs in JSON or CSV format for compliance purposes. Available via the dashboard (Settings → Audit Log Export) or API:
GET /v1/projects/{projectId}/audit/export?
format=csv&
from=2024-01-01T00:00:00Z&
to=2024-01-31T23:59:59ZLogs are retained for 7 years on all paid plans to support SOC 2, ISO 27001, and GDPR compliance requirements.