Expand captured release actions in audit log
Problem to solve
In #32807 (closed), we added the capability for the audit logs to reflect common release actions. This issue will expand the audit log for release to include:
-
delete release
-
UI release created event
-
assets added to release content
Intended users
Primary use case for auditing release events include:
- Tracking when and who created a release from GitLab after a deployment has occurred
- Surfacing records of evidence attached to releases upon request from an auditing firm in the download
- Reviewing content of edits with who made the edits to a release in a retrospective
Proposal
In this second iteration, we will record the user action in releases that are now supported: `delete release'
gitlab-foss#58549 (closed))
[Delete a Release] (Author | Action | Target | At |
---|---|---|---|
<editor> |
"Deleted Release" <release number>
|
<name of release> |
<timestamp> |
#32812 (closed))
[Create a Release via UI] (Similar to the example above
Author | Action | Target | At |
---|---|---|---|
<editor> |
"Release Created in UI" <release number>
|
<name of release> |
<timestamp> |
#36133 (closed))
[Add Assets/Artifacts] (Author | Action | Target | At |
---|---|---|---|
<editor> |
"Associated assets to release" <asset> , <asset> , ... <asset>
|
<name of release> |
<timestamp> |
Future:
- [Add package]
Permissions and Security
- Changes to audit logs should follow the normal access/permissions of Audit Logs at GitLab
- Downloads of audit logs should follow the normal access/permissions of Audit Logs at GitLab
- Guests/non-GitLab users should not be able to download, edit, or change audit logs
Documentation
- Audit Events Documentation - for audit events permissions and implementation
- Log System Documentation - Administrations of Audit Logs
Testing
- This audit log content needs to be
view only
by all users, withedit log
permissions following the audit log permission structure
What does success look like, and how can we measure that?
- The usage of this feature will be related to the downloads of the audit logs, so we should see an increase in audit log downloads for releases when these items are added
- % increase in MAU for release audit logs
Links / references
- #121 (closed) - this API might be leveraged for this issue
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.