About audit logs
审核日志列出了由影响企业的活动触发的事件本月内,最多前六个月内。 审核日志将 Git 事件保留 7 天。
默认情况下,仅显示过去三个月的事件。 若要查看较旧的事件,必须使用 created 参数指定日期范围。 有关详细信息,请参阅“了解搜索语法”。
每个审核日志条目的名称由 action 对象或类别限定符组成,后跟操作类型。 例如,repo.create 条目是指对 repo 类别的 create 操作。
每个审核日志条目都显示有关事件的适用信息,例如:
- 执行操作的企业或组织
- 执行操作的用户(参与者)
- 受操作影响的用户
- 执行操作的仓库
- 执行的操作
- 发生操作的国家/地区
- 发生操作的日期和时间
- (可选)执行了操作的用户(执行者)的源 IP 地址
In addition to viewing your audit log, you can monitor activity in your enterprise in other ways, such as managing global webhooks. For more information, see "Exploring user activity in your enterprise."
Using your audit logs
As an enterprise owner, you can interact with the audit log data for your enterprise in several ways:
- You can view the audit log for your enterprise. For more information, see "Accessing the audit log for your enterprise."
- You can search the audit log for specific events and export audit log data. For more information, see "Searching the audit log for your enterprise" and "Exporting the audit log for your enterprise".
- You can display the IP address associated with events in the audit log. For more information, see "Displaying IP addresses in the audit log for your enterprise."
- You can stream audit and Git events data from GitHub to an external data management system. For more information, see "Streaming the audit log for your enterprise."
- You can use the Audit log API to view actions performed in your enterprise. For more information, see "Using the audit log API for your enterprise."
For a full list of audit log actions that may appear in your enterprise audit log, see "Audit log actions for your enterprise."