shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-02 20:48:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
docs/cursor-self-hosted-workers
coder/coderd/audit
T
History
Zach 1c30d52b2b feat: audit user secret create, update, and delete (#24756) 
Emit user secret audit log entries for create/update/delete operations.
Reads stay un-audited, matching every other resource.

Audit log entries record changes in user secret name, environment
variable name, file path, and value. The secret value column is marked
`ActionSecret` so the diff records the change without showing the
ciphertext or plaintext.

Closes a TOCTOU window on delete to ensure no phantom audit logs for a
delete of a non-existent secret. Secret update accepts a small TOCTOU
window matching the other audited resources (templates, workspaces,
chats). The two-query pattern is wrapped in a transaction so audit state
can't leak from a failed mutation.
2026-04-29 12:57:47 -06:00
..
audit.go
chore: update golang to 1.24.1 (#17035)
2025-03-26 01:56:39 -05:00
diff.go
feat: audit user secret create, update, and delete (#24756)
2026-04-29 12:57:47 -06:00
fields.go
feat: auto-archive inactive chats with audit trail (#24642)
2026-04-24 14:18:28 +01:00
request_test.go
test: add regression guard for chat title masking (#24584)
2026-04-22 10:52:52 +00:00
request.go
feat: audit user secret create, update, and delete (#24756)
2026-04-29 12:57:47 -06:00