Back to Gitlabhq

AI audit event report

doc/user/duo_agent_platform/ai-audit-events.md

19.2.03.6 KB
Original Source

{{< details >}}

  • Tier: Premium, Ultimate
  • Offering: GitLab.com, GitLab Self-Managed, GitLab Dedicated

{{< /details >}}

{{< history >}}

  • Introduced in GitLab 19.1 as a beta with a feature flag named agent_artifacts_page. Disabled by default.
  • Enabled by default in GitLab 19.2.

{{< /history >}}

[!warning] This feature is in beta. It is subject to change without notice. For more information, see GitLab Testing Agreement.

The AI audit event report gives security and compliance teams a unified, browsable record of GitLab Duo agent activity. Each agent session produces a comprehensive audit artifact that you can inspect.

View AI audit events

AI audit events are available on the Governance page as the Audit events tab.

Prerequisites:

  • You have the Owner role for the top-level group.

To view AI audit events for a group:

  1. In the top bar, select Search or go to and find your top-level group.
  2. Select Settings > GitLab Duo.
  3. Select Change governance.
  4. Select the Agent artifacts tab.

The tab displays a list of agent sessions. Each row shows:

  • The agent type (workflow definition).
  • The project the session ran in.
  • The number of audit events in the session.
  • The session start time.

Filter sessions

You can filter the session list to narrow results:

  • Project: Filter by project path, or exclude a specific project.
  • Date range: Filter sessions created after or before a specific date.

View session details

To inspect the events within a session:

  1. Select a session row to open the session details panel. The panel shows session metadata and a chronological list of audit events.
  2. Select an individual event to view its full details, including entity and target information.

Enable AI audit event storage

{{< history >}}

{{< /history >}}

AI audit event storage is disabled by default. You must explicitly enable storage before agent session data is written to the database or ClickHouse. Disabling storage does not affect real-time streaming of AI audit events.

The setting cascades from instance to group to project:

  • When disabled and locked at the group level, projects in that group cannot override it.
  • When enabled and locked at the group level, all projects in that group have storage enabled and cannot disable it.

Prerequisites:

  • You must have the Owner role or the Security Manager role for the group or project.

Enable storage for a group

  1. In the top bar, select Search or go to and find your group.
  2. Select Settings > GitLab Duo.
  3. In the Data privacy section, select Enable AI audit event storage.
  4. Select Save changes.

Enable storage for a project

  1. In the top bar, select Search or go to and find your project.
  2. Select Settings > GitLab Duo.
  3. In the Data privacy section, select Enable AI audit event storage.
  4. Select Save changes.

If the setting is locked by a parent group, the checkbox is disabled and cannot be changed at the project level.