Portal
Audit Trails
Complete activity logging for compliance and security
Audit Trails
Portal maintains comprehensive audit trails for all activity, ensuring compliance and enabling security investigations.
What's Logged
SBOM Activity
- SBOM creation and import
- SBOM modifications
- SBOM deletion
- Version changes
- Metadata updates
Access Activity
- SBOM views
- Downloads
- Sharing events
- Link creation and usage
- Permission changes
Administrative Activity
- User management
- Settings changes
- Integration configurations
- Policy modifications
Audit Log Fields
Each log entry includes:
| Field | Description |
|---|---|
| Timestamp | When the action occurred (UTC) |
| Actor | Who performed the action |
| Action | What was done |
| Resource | What was affected |
| Details | Additional context |
| IP Address | Source IP |
| User Agent | Browser/client info |
| Result | Success or failure |
Viewing Audit Logs
Web Interface
- Navigate to Settings → Audit Logs
- Use filters to narrow results:
- Date range
- Actor
- Action type
- Resource
- Click entries for full details
API Access
curl "https://api.safeguard.sh/v1/audit-logs?from=2025-01-01&to=2025-01-31" \
-H "Authorization: Bearer $API_KEY"Exporting Logs
Export audit logs for compliance:
- Set your filter criteria
- Click Export
- Choose format:
- CSV
- JSON
- PDF (formatted report)
- Download or schedule delivery
Log Retention
Default retention periods:
| Log Type | Retention |
|---|---|
| Access logs | 2 years |
| Administrative | 7 years |
| Security events | 7 years |
| All logs | Configurable |
Enterprise customers can configure custom retention.
SIEM Integration
Send logs to your SIEM:
- Splunk
- Elastic/ELK
- Datadog
- Sumo Logic
- Custom webhook
Configure in Settings → Integrations → SIEM.
Compliance Reporting
Generate compliance-ready audit reports:
- SOC 2 evidence packages
- FedRAMP continuous monitoring
- ISO 27001 audit trails
- Custom compliance frameworks