Audit Logs
Audit logs provide a record of significant actions taken within Odin Scan. They support security monitoring, compliance tracking, and team accountability by recording who did what, when, and on which resources.
Accessing Audit Logs
Audit logs are accessible from the dashboard sidebar under Reports > Audit Logs.
What Gets Logged
The following events are recorded in the audit log:
| Event | Description |
|---|---|
| Scan triggered | A user initiated a security analysis on a repository |
| Report viewed | A user opened and viewed an analysis report |
| Settings changed | A user modified account or project settings |
| Finding resolved | A user marked a finding as resolved |
| Finding suppressed | A user suppressed a finding (marked as accepted risk or false positive) |
| Repository synced | A user triggered a repository synchronization |
| API key created | A user generated a new API key |
| API key revoked | A user revoked an existing API key |
Log Entry Details
Each audit log entry contains:
| Field | Description |
|---|---|
| Date | Timestamp of when the action occurred |
| User | The user who performed the action |
| Action | The type of event (e.g., “Scan triggered”, “Finding resolved”) |
| Repository | The repository associated with the action (if applicable) |
| Branch | The branch involved (if applicable) |
| Details | Additional context about the action |
Example Log Entries
2025-01-15 10:30:00 alice@company.com Scan triggered username/contracts main
2025-01-15 10:45:00 bob@company.com Report viewed username/contracts main
2025-01-15 11:00:00 alice@company.com Finding resolved username/contracts main
2025-01-15 14:20:00 alice@company.com Settings changed -- --
Filtering and Searching
The audit log view supports filtering to help you find specific events:
- Filter by action type – show only certain event types (e.g., only “Scan triggered” events).
- Filter by user – view actions performed by a specific team member.
- Filter by repository – narrow logs to a specific repository.
- Filter by date range – view events within a specific time period.
- Search – free-text search across log entries.
Retention
Audit log entries are retained according to your subscription tier. Pro plans include extended retention.
Use Cases
Security monitoring – Review logs for unexpected actions, such as scans triggered by unfamiliar users or API keys created outside of normal workflows.
Compliance reporting – Generate audit trails showing when repositories were scanned, who reviewed the results, and how findings were handled.
Team accountability – Track which team members are actively reviewing and resolving findings.
Incident investigation – Trace the sequence of actions leading up to a specific event or configuration change.
Next Steps
- Reports – view analysis reports
- Filters – filter the reports list
- Dashboard Overview – return to the main dashboard