Audit Logs

The three append-only ledgers, what is recorded in each, and how to read them.

Govula maintains three distinct append-only ledgers, each with its own SHA-256 hash payload. The ledgers are deliberately separated so a corruption in one cannot quietly mask another. A replay verifier recomputes the chain end-to-end and the replay outcome is itself audited.

The three ledgers

`audit_log`

The primary governance ledger. Every decision and every state-mutating action lives here.

`tenant_operation_log`

Per-tenant operational events — activation, elevation, configuration changes.

`operator_audit_events`

Operator-scope events including step-up elevation and capability invocation.

Audit Readiness — pre-flight checklist before a certification cycle.
Auditor Walkthrough — the in-platform auditor journey.
Evidence Semantics — what each field means.

You are here · Operate · step 3

← Monitoring Lifecycle Management →

Before you continue

Control Center — required prerequisite

Control Centerprerequisite

Audit Logs reference operator surfaces introduced in Control Center.

Lifecycle Managementnext step

Next in Operate: Lifecycle Management.

Evidence Managementdeep dive

Take the audit chain into a full evidence workflow.

Stuck? Recovery Procedures

What should I do next?

Control Centerprimary

continues in "operate"

Evidence Management

continues in "operate"

Evidence Semantics

continues in "operate"

Ranked using IA v1 graph + intent map + glossary density (deterministic; no AI inference).

Monitoring Lifecycle Management

Audit Logs

The three ledgers

audit_log

tenant_operation_log

operator_audit_events

Related

What should I do next?

`audit_log`

`tenant_operation_log`

`operator_audit_events`