feat: add DAP events to project audit (!216689) · Merge requests · GitLab.org / GitLab

Changes

This MR implements 5 DAP (Duo Agent Platform) session lifecycle audit events at the project level to track all session state transitions.

Checkout duo/feature/581004-add-dap-events-to-project-audit in your GDK
Navigate to an open issue and click on Generate MR with Duo (or start any other remote flow)
Navigate to Secure/Audit event and confirm that the Duo related events were logged
Repeat step 2. but this time cancel the flow before it could finish (Automate/Sessions/<your running session>/Details -> Cancel session)
Check the audit events and confirm that the right events were logged.

🤖

duo_session_created.yml - Triggered when a Duo session is created
duo_session_started.yml - Triggered when a session transitions from created → running
duo_session_finished.yml - Triggered when a session completes successfully
duo_session_failed.yml - Triggered when a session fails (drop event)
duo_session_stopped.yml - Triggered when a session is manually stopped

Implemented audit_event_for_status_change method with status-to-event mapping:
- start → duo_session_started ("Started Duo session")
- finish → duo_session_finished ("Completed Duo session")
- drop → duo_session_failed ("Duo session failed")
- stop → duo_session_stopped ("Duo session stopped")
Includes workflow definition and ID in target details

ee/spec/services/ai/duo_workflows/create_workflow_service_spec.rb - Tests for session creation event
ee/spec/services/ai/duo_workflows/update_workflow_status_service_spec.rb - Tests for all 4 status transition events

🤖

Edited Dec 17, 2025 by Andras Herczeg