[New Audit Event]: Include Issue deletions in audit log

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Problem to solve

Find out who deleted an issue to identify potential training and permission assignment issues.

Intended users

• Devon (DevOps Engineer)
• Sidney (Systems Administrator)
• Sam (Security Analyst)
• Dana (Data Analyst)

Further details

Recently I created an issue that took a fairly large amount of research and effort. The issue was deleted, but I don't know when or by who. If I could identify the person that deleted the issue, I could determine if they require additional training or if their access level should be reduced and prevent future data loss.

Proposal

Audit logs should include delete events for issues.

Due to large data volume, this should be a streaming-only audit event.

Permissions and Security

None.

Availability & Testing

Risks:

• Overloading the audit log (IO, storage)

What does success look like, and how can we measure that?

• Fewer accidental deletions
• More targeted training
• Properly adjusted permission levels

What is the type of buyer?

All buyers. However, enterprises require such logs for SOX compliance (among other missing data retention and logging needs).

Links / references