Audit events
Reference
Audit events
Pull the audit trail for compliance review.
GET
Audit events
Every meaningful action in Repo records an audit event with metadata-only fields (never raw content). Use this endpoint to export the trail for SOC 2, GDPR, or internal review.
Required action
admin
Query parameters
Max number of events to return. Min 1, max 500.
Response
Action catalog
| Action | When emitted |
|---|---|
context.retrieve | Every /v1/context call |
api_key.create | New API key minted |
api_key.revoke | API key revoked |
connector.allowlist.update | Slack channel allowlist changed |
connector_access.request | User requested access to a gated connector (Drive/Gmail) |
maintenance.slack.cleanup_system_events | Admin ran Slack noise cleanup |
organization.create | New workspace created |
sync_run.create | Sync run queued from the console |
billing.checkout.create | Stripe Checkout session started |
billing.portal.create | Stripe Billing Portal session opened |
Actor identification
Each event has eitheractorUserId (a Supabase human) or actorApiKeyId (an API key) — never both. Look at which one is non-null to attribute the action.
What’s NOT logged
By design, Repo does NOT log:- Full hit content from retrieval (only counts + provider list)
- API key secrets (only the public
prefix) - OAuth tokens (encrypted, never appear in logs)
- Source-item content during ingest
- LLM completions from
/v1/ask