Skip to main content
The Audit Log records every file operation that agents perform on your vault — creates, patches, and deletes. Use it to review changes, debug unexpected results, or export a report.

Opening the audit log

Click ⊞ Audit log in the sidebar. The log displays the 100 most recent operations, sorted from newest to oldest.

Log columns

timestamp
string
Date and time of the operation in ISO format, displayed as YYYY-MM-DD HH:MM.
task_id
string
The session ID of the task that triggered the operation. Matches the session ID shown in the sidebar header.
agent_role
string
The agent that performed the operation (e.g., Builder).
filepath
string
The vault-relative path of the file that was modified.
status
string
Outcome of the operation: applied (success), conflict (patch failed), or deleted (file removed).
before_sha256
string
SHA256 hash of the file content before the operation. Empty for newly created files.
after_sha256
string
SHA256 hash of the file content after the operation. Empty for deleted files.

Filtering by status

Use the Filter by status dropdown to show only operations with a specific outcome: applied, conflict, or deleted. Select All to remove the filter.

Exporting

Click ↓ Export CSV to download the full log as a CSV file. The export includes all visible columns.

Status meanings

The operation completed successfully. The file was created, overwritten, or patched as instructed.
A patch failed because the target lines were not found in the current file. This can happen if the file was modified between when the plan was made and when the patch was applied.
The file was removed from the vault by a delete_vault_file directive.

Getting back to chat

Click ← Back to chat to return to the main interface.