Admin
Audit log
Tamper-evident log of who did what, when, and from where.
What is logged
- Every authentication event (success and failure).
- Every change to roles, SSO, integrations, and assets.
- Every run start/stop, finding state change, and evidence export.
Export
The audit log is exportable as JSON Lines and is forwardable to your SIEM. See Integrations → SIEM.