Audit event types

Tier: Premium, Ultimate Offering: GitLab.com, Self-managed, GitLab Dedicated
History
  • Introduced in GitLab 17.7, all audit events can be streamed.

Audit event types are used to filter streamed audit events:

Every audit event is associated with an event type. Audit event types can allow:

  • Most audit events to be saved to the database. Available in the Premium and Ultimate tier. You can retrieve audit events associated with these types by using the audit events dashboard or the audit events API.
  • All audit events to be streamed to external destinations. Available in the Ultimate tier. You can stream audit events associated with these types to external destinations if a destination is set.

An audit event type’s scope limits the availability of the audit event type to either:

Available audit event types

Audit event types belong to the following product categories.

Ai framework

Name Description Saved to database Introduced in Scope
duo_features_enabled_updated GitLab Duo Features enabled setting on group or project changed Yes GitLab 16.10 Group, Project

Audit events

Name Description Saved to database Introduced in Scope
amazon_s3_configuration_created Amazon S3 configuration for audit events streaming is created Yes GitLab 16.5 Group
amazon_s3_configuration_deleted Amazon S3 configuration for audit events streaming is deleted Yes GitLab 16.5 Group
amazon_s3_configuration_updated Amazon S3 configuration for audit events streaming is updated Yes GitLab 16.5 Group
audit_events_streaming_headers_create A streaming header for audit events is created Yes GitLab 15.3 Group
audit_events_streaming_headers_destroy A streaming header for audit events is deleted Yes GitLab 15.3 Group
audit_events_streaming_instance_headers_create A streaming header for instance level external audit event destination is created Yes GitLab 16.3 Instance
audit_events_streaming_instance_headers_destroy A streaming header for instance level external audit event destination is deleted Yes GitLab 16.3 Instance
audit_events_streaming_instance_headers_update A streaming header for instance level external audit event destination is updated Yes GitLab 16.3 Instance
create_event_streaming_destination An external audit event destination is created Yes GitLab 14.6 Group
create_http_namespace_filter A namespace filter for an external audit event destination for a top-level group is created Yes GitLab 16.6 Group
create_instance_event_streaming_destination An external audit event destination for an instance is created Yes GitLab 16.2 Instance
created_group_audit_event_streaming_destination An external audit event destination for a top-level group is created Yes GitLab 16.11 Group
created_group_namespace_filter A namespace filter for an external audit event destination for a top-level group is created Yes GitLab 17.0 Group
created_instance_audit_event_streaming_destination An external audit event destination for an instance is created Yes GitLab 16.11 Instance
created_instance_namespace_filter A namespace filter for an external audit event destination for an instance is created Yes GitLab 17.2 Instance
delete_http_namespace_filter A namespace filter for an external audit event destination for a top-level group is deleted Yes GitLab 16.7 Group
deleted_group_audit_event_streaming_destination An external audit event destination for a top-level group is deleted Yes GitLab 16.11 Group
deleted_group_namespace_filter A namespace filter for an external audit event destination for a top-level group is deleted Yes GitLab 17.0 Group
deleted_instance_audit_event_streaming_destination An external audit event destination for a GitLab instance is deleted Yes GitLab 16.11 Instance
deleted_instance_namespace_filter A namespace filter for an external audit event destination for a GitLab instance is deleted Yes GitLab 17.2 Instance
destroy_event_streaming_destination An external audit event destination is deleted Yes GitLab 14.6 Group
destroy_instance_event_streaming_destination An instance level external audit event destination is deleted Yes GitLab 16.2 Instance
event_type_filters_created A new audit events streaming event type filter is created Yes GitLab 15.10 Group
event_type_filters_deleted An audit events streaming event type filter is deleted Yes GitLab 15.10 Group
google_cloud_logging_configuration_created Google Cloud Logging configuration is created Yes GitLab 16.1 Group
google_cloud_logging_configuration_deleted Google Cloud Logging configuration is deleted Yes GitLab 16.1 Group
google_cloud_logging_configuration_updated Google Cloud Logging configuration is updated Yes GitLab 16.1 Group
instance_amazon_s3_configuration_created Instance Amazon S3 configuration for audit events streaming is created Yes GitLab 16.7 Instance
instance_amazon_s3_configuration_deleted Instance-level Amazon S3 configuration for audit events streaming is deleted Yes GitLab 16.7 Instance
instance_amazon_s3_configuration_updated Instance-level Amazon S3 configuration for audit events streaming is updated Yes GitLab 16.7 Instance
instance_google_cloud_logging_configuration_created Instance-level Google Cloud Logging configuration is created Yes GitLab 16.4 Instance
instance_google_cloud_logging_configuration_deleted Instance-level Google Cloud Logging configuration is deleted Yes GitLab 16.5 Instance
instance_google_cloud_logging_configuration_updated Instance-level Google Cloud Logging configuration is updated Yes GitLab 16.5 Instance
update_event_streaming_destination An external audit event destination is updated Yes GitLab 14.6 Group
update_instance_event_streaming_destination An instance level external audit event destination is updated Yes GitLab 16.2 Instance
updated_group_audit_event_streaming_destination An external audit event destination for a top-level group is updated Yes GitLab 16.11 Group
updated_instance_audit_event_streaming_destination An external audit event destination for a GitLab instance is updated Yes GitLab 16.11 Instance

Authorization

Name Description Saved to database Introduced in Scope
secure_ci_job_token_policies_updated Event triggered when permissions are updated for a CI_JOB_TOKEN scope Yes GitLab 17.6 Project

Build artifacts

Name Description Saved to database Introduced in Scope
job_artifact_downloaded A user downloads a job artifact from a project No GitLab 16.8 Project

Code review

Name Description Saved to database Introduced in Scope
delete_merge_request A merge request is successfully deleted No GitLab 15.4 Project

Code review workflow

Name Description Saved to database Introduced in Scope
merge_request_approval_operation A merge request is approved No GitLab 15.3 Project
merge_request_closed_by_project_bot A merge request is closed using a project access token Yes GitLab 16.1 Project
merge_request_created_by_project_bot A merge request is created using a project access token Yes GitLab 16.1 Project
merge_request_invalid_approver_rules An invalid rule when merge request is approved Yes GitLab 15.5 Project
merge_request_merged_by_project_bot A merge request is merged using a project access token Yes GitLab 16.1 Project
merge_request_reopened_by_project_bot A merge request is reopened using a project access token Yes GitLab 16.1 Project
project_merge_requests_template_updated A merge request template for a project is updated Yes GitLab 15.0 Project
project_remove_source_branch_after_merge_updated A project has its setting to remove branches after merges updated Yes GitLab 14.10 Project
project_reset_approvals_on_push_updated Triggered when a project has its setting on whether approvals are reset on a push is updated Yes GitLab 14.2 Project
selective_code_owner_removals_updated Event triggered when selective code owner removal is updated Yes GitLab 17.0 Project

Code suggestions

Name Description Saved to database Introduced in Scope
project_suggestion_commit_message_updated A project has its suggested commit message updated Yes GitLab 14.10 Project

Compliance management

Name Description Saved to database Introduced in Scope
add_gpg_key A GPG key is added Yes GitLab 15.9 User
allow_author_approval_updated Prevent approval by author setting is updated Yes GitLab 15.6 Group
allow_committer_approval_updated Prevent approvals by users who add commits setting is updated Yes GitLab 15.6 Group
allow_overrides_to_approver_list_per_merge_request_updated Prevent editing approval rules in projects and merge requests setting is updated Yes GitLab 15.6 Group
audit_events_streaming_headers_update A streaming header for audit events is updated Yes GitLab 15.3 Group
compliance_framework_added A compliance framework is applied to a project Yes GitLab 17.2 Project
compliance_framework_deleted A compliance framework is removed from a project Yes GitLab 14.1 Project
compliance_framework_id_updated A compliance framework is updated for a project Yes GitLab 15.7 Project
compliance_framework_removed A compliance framework is removed from a project Yes GitLab 17.2 Project
create_compliance_framework A compliance framework is successfully created Yes GitLab 14.6 Group
create_status_check An external status check is created Yes GitLab 15.9 Project
created_compliance_requirement A requirement is added to a compliance framework Yes GitLab 17.6 Group
delete_status_check An external status check is deleted Yes GitLab 15.9 Project
destroy_compliance_framework A compliance framework is successfully deleted Yes GitLab 14.6 Group
destroyed_compliance_requirement A compliance framework requirement is destroyed Yes GitLab 17.7 Group
email_created An email is created Yes GitLab 15.11 User
email_destroyed An email is destroyed Yes GitLab 15.11 User
external_status_check_name_updated The name of an external status check is updated Yes GitLab 15.7 Project
external_status_check_url_updated The URL that is used for external status checks for a pipeline is updated Yes GitLab 15.0 Project
group_deletion_marked A group is marked for deletion Yes GitLab 15.11 Group
group_destroyed A group is destroyed Yes GitLab 15.11 Group
group_restored A group is restored Yes GitLab 15.11 Group
group_saml_provider_create A group SAML provider is created Yes GitLab 15.9 Group
group_saml_provider_update A group SAML provider is updated Yes GitLab 15.9 Group
inactive_project_scheduled_for_deletion An inactive project is scheduled for deletion Yes GitLab 16.4 Project
member_created A membership is created Yes GitLab 15.9 Group, Project
member_destroyed A membership is destroyed Yes GitLab 15.9 Group, Project
member_updated A membership is updated Yes GitLab 15.9 Group, Project
merge_request_create A merge request is created No GitLab 15.9 Project
merge_request_merged A merge request is merged Yes GitLab 17.5 Project
omniauth_login_failed An OmniAuth login fails Yes GitLab 16.3 User
password_reset_requested A user requests a password reset using a registered email address Yes GitLab 15.11 User
personal_access_token_created A user creates a personal access token Yes GitLab 15.9 User
personal_access_token_revoked A personal access token is revoked Yes GitLab 15.9 User
project_archived A project is archived Yes GitLab 15.11 Project
project_deletion_marked A project is marked for deletion Yes GitLab 15.11 Project
project_destroyed A project is destroyed Yes GitLab 15.11 Group
project_export_file_download_started A download of a project export file is started Yes GitLab 15.11 Project
project_group_link_created A group is invited to a project Yes GitLab 15.9 Group
project_group_link_deleted A project group link is deleted Yes GitLab 15.9 Group
project_group_link_updated A project group link is updated Yes GitLab 15.9 Project
project_imported A project is imported Yes GitLab 15.11 Group
project_restored A project is restored Yes GitLab 15.11 Project
project_topics_updated A project’s topics assignments are changed Yes GitLab 17.4 Project
project_unarchived A project is unarchived Yes GitLab 15.11 Project
protected_branch_allow_force_push_updated A protected branch has its ability to allow force pushes is updated Yes GitLab 14.3 Project
public_repository_download_operation A Git repository for a public project is downloaded No GitLab 17.0 Project
registration_created A user registers for instance access Yes GitLab 16.3 User
release_created A release is created Yes GitLab 15.9 Project
release_deleted_audit_event A release is deleted Yes GitLab 15.9 Project
release_milestones_updated A release’s associated milestones are updated Yes GitLab 15.9 Project
release_updated A release is updated Yes GitLab 15.9 Project
remove_gpg_key A GPG key is deleted Yes GitLab 15.9 User
repository_download_operation A Git repository for a private or internal project is downloaded Yes GitLab 15.9 Project
require_password_to_approve_updated Require user password for approvals from group merge request setting is updated Yes GitLab 15.6 Group
retain_approvals_on_push_updated Require new approvals when new commits are added to an MR from group merge request setting is updated Yes GitLab 15.6 Group
saml_group_links_created A SAML Group Link is created Yes GitLab 15.9 Group
saml_group_links_removed A SAML Group Link is removed Yes GitLab 15.9 Group
smartcard_authentication_created A user authenticates with smartcard Yes GitLab 16.0 User
update_approval_rules Updating a merge approval rule Yes GitLab 15.2 Project
update_compliance_framework A compliance framework is updated Yes GitLab 14.6 Group
update_compliance_requirement A compliance framework requirement is updated. Yes GitLab 17.7 Group
update_status_check An external status check is updated Yes GitLab 15.9 Project

Container registry

Name Description Saved to database Introduced in Scope
container_repository_created A container repository is first pushed to the registry Yes GitLab 17.5 Project
container_repository_deleted A project’s container registry is deleted Yes GitLab 17.2 Project
container_repository_deletion_marked A project’s container repository is marked for deletion Yes GitLab 17.2 Project
container_repository_tags_deleted A project’s container repository tag is deleted Yes GitLab 17.2 Project

Continuous-integration

Name Description Saved to database Introduced in Scope
multi_project_downstream_pipeline_created Multi project downstream pipeline is created No GitLab 17.6 Project

Continuous delivery

Name Description Saved to database Introduced in Scope
deploy_key_added A deploy key is added Yes GitLab 15.3 Project
deploy_key_removed A deploy key is removed Yes GitLab 15.3 Project
deploy_token_created A deploy token is created Yes GitLab 15.1 Project
deploy_token_creation_failed A deploy token fails to create Yes GitLab 15.1 Project
deploy_token_destroyed A deploy token is destroyed Yes GitLab 15.1 Project
deploy_token_revoked A project deploy token is revoked Yes GitLab 15.1 Project
deployment_approved A deployment is approved Yes GitLab 17.1 Project
deployment_rejected A deployment is rejected Yes GitLab 17.1 Project
deployment_started A deployment to a protected environment is started Yes GitLab 17.2 Project
group_deploy_token_created A group deploy token is created Yes GitLab 15.3 Group
group_deploy_token_creation_failed Creating a group deploy token failed Yes GitLab 15.3 Group
group_deploy_token_destroyed A group deploy token is destroyed Yes GitLab 15.3 Group
group_deploy_token_revoked A group deploy token is revoked Yes GitLab 15.3 Group

Continuous integration

Name Description Saved to database Introduced in Scope
allow_merge_on_skipped_pipeline_updated Skipped pipelines are considered successful setting is updated Yes GitLab 14.10 Project
ci_group_variable_created A CI/CD variable is created for a group Yes GitLab 15.2 Group
ci_group_variable_deleted A CI/CD variable is deleted for a group Yes GitLab 15.2 Group
ci_group_variable_updated A CI/CD variable is updated for a group Yes GitLab 15.2 Group
ci_instance_variable_created A CI/CD variable is created for an instance Yes GitLab 16.5 Instance
ci_instance_variable_deleted A CI/CD variable is deleted for an instance Yes GitLab 16.5 Instance
ci_instance_variable_updated A CI/CD variable is updated for an instance Yes GitLab 16.5 Instance
ci_variable_created A CI/CD variable is created for a project Yes GitLab 15.2 Project
ci_variable_deleted A CI/CD variable is deleted for a project Yes GitLab 15.2 Project
ci_variable_updated A CI/CD variable is updated for a project Yes GitLab 15.2 Project
destroy_pipeline A pipeline is deleted Yes GitLab 16.6 Project

Deployment management

Name Description Saved to database Introduced in Scope
cluster_agent_create_failed A user attempts to create a cluster agent but it failed Yes GitLab 17.3 Project
cluster_agent_created A user creates a cluster agent Yes GitLab 17.3 Project
cluster_agent_delete_failed A user attempts to delete a cluster agent but it failed Yes GitLab 17.3 Project
cluster_agent_deleted A user deletes a cluster agent Yes GitLab 17.3 Project
cluster_agent_token_created A user creates a cluster agent token Yes GitLab 15.10 Project
cluster_agent_token_revoked A user revokes a cluster agent token Yes GitLab 15.10 Project

Duo workflow

Name Description Saved to database Introduced in Scope
api_request_access_with_scope A susbset of API requests authenticated by a token with an audited scope Yes GitLab 17.7 User

Dynamic application security testing

Name Description Saved to database Introduced in Scope
dast_profile_create A dynamic application security testing profile is created Yes GitLab 14.1 Project
dast_profile_destroy A dynamic application security profile is removed Yes GitLab 14.1 Project
dast_profile_schedule_create A dynamic application security testing profile schedule is created Yes GitLab 14.3 Project
dast_profile_schedule_update A dynamic application security testing profile schedule is updated Yes GitLab 14.3 Project
dast_profile_update A dynamic application security profile is updated Yes GitLab 14.1 Project
dast_scanner_profile_create A dynamic application security testing scanner profile is created Yes GitLab 14.0 Project
dast_scanner_profile_destroy A dynamic application security testing scanner profile is removed Yes GitLab 14.0 Project
dast_scanner_profile_update A dynamic application security testing scanner profile is updated Yes GitLab 14.0 Project
dast_site_profile_create A dynamic application security testing site profile is created Yes GitLab 14.0 Project
dast_site_profile_destroy A dynamic application security testing site profile is removed Yes GitLab 14.0 Project
dast_site_profile_update A dynamic application security testing site profile is updated Yes GitLab 14.0 Project

Environment management

Name Description Saved to database Introduced in Scope
environment_protected A protected environment is created Yes GitLab 15.8 Group, Project
environment_unprotected A protected environment is unprotected Yes GitLab 15.8 Group, Project
protected_environment_approval_rule_added An approval rule is added to a protected environment Yes GitLab 16.5 Group, Project
protected_environment_approval_rule_deleted An approval rule is removed from a protected environment Yes GitLab 16.5 Project, Group
protected_environment_approval_rule_updated An approval rule of a protected environment is updated Yes GitLab 16.5 Project, Group
protected_environment_deploy_access_level_added A deploy access level is added to a protected environment Yes GitLab 16.5 Group, Project
protected_environment_deploy_access_level_deleted A deploy access level is removed from a protected environment Yes GitLab 16.5 Group, Project
protected_environment_deploy_access_level_updated A deploy access level of a protected environment is updated Yes GitLab 16.5 Project
protected_environment_updated A protected environment is updated Yes GitLab 16.5 Group, Project

Feature flags

Name Description Saved to database Introduced in Scope
feature_flag_created Triggered when a feature flag is created. Yes GitLab 15.10 Project
feature_flag_deleted Triggered when a feature flag is deleted. Yes GitLab 15.10 Project
feature_flag_updated Triggered when a feature flag is updated. Yes GitLab 15.10 Project

Fleet visibility

Name Description Saved to database Introduced in Scope
ci_runner_usage_export A runner usage report is generated Yes GitLab 16.8 Instance
ci_runners_bulk_deleted Triggered when runners are deleted in bulk Yes GitLab 17.7 User

Fuzz testing

Name Description Saved to database Introduced in Scope
coverage_fuzzing_corpus_create A corpus action is added Yes GitLab 14.5 Project

Groups and projects

Name Description Saved to database Introduced in Scope
allow_mfa_for_subgroups_updated Setting for Subgroups can set up their own two-factor authentication rules updated Yes GitLab 17.4 Group
allow_runner_registration_token_updated Setting Allow members of projects and groups to create runners with runner registration tokens is updated Yes GitLab 16.0 Group, Project
allowed_email_domain_updated Group setting allowed email domain entry is updated Yes GitLab 17.5 Group
create_ssh_certificate An SSH certificate is created Yes GitLab 16.6 Group
default_branch_name_updated Default branch name for the group repository is changed Yes GitLab 17.4 Group
delete_ssh_certificate An SSH certificate is deleted Yes GitLab 16.6 Group
disable_personal_access_tokens_updated Setting Disable personal access tokens is updated Yes GitLab 17.4 Group
emails_enabled_updated Setting Enable email notifications is updated Yes GitLab 17.4 Group
enabled_git_access_protocol_updated Setting Enabled Git access protocols is updated Yes GitLab 17.4 Group
enforce_ssh_certificates_updated Setting Enforce SSH Certificates is updated Yes GitLab 17.4 Group
group_created A group is created Yes GitLab 16.3 Group
group_description_updated Group description is updated Yes GitLab 17.4 Group
group_lfs_enabled_updated LFS enabled for a group is updated Yes GitLab 15.7 Group
group_membership_lock_updated Membership lock for a group is updated Yes GitLab 15.7 Group
group_mentions_disabled_updated A group’s setting to notify group members on group mention is updated Yes GitLab 17.4 Group
group_merge_request_approval_setting_created Merge request approval settings are added to a group Yes GitLab 15.1 Group
group_name_updated A group’s name is updated Yes GitLab 15.7 Group
group_path_updated A group’s path is updated Yes GitLab 15.7 Group
group_project_creation_level_updated A group’s project creation level is updated Yes GitLab 15.7 Group
group_repository_size_limit_updated A group’s repository size limit is updated Yes GitLab 15.7 Group
group_request_access_enabled_updated A group’s request access enabled is updated Yes GitLab 15.7 Group
group_require_two_factor_authentication_updated A group’s require two factor authentication setting is updated Yes GitLab 15.7 Group
group_share_with_group_link_created You invite a group to another group by using the group’s membership page Yes GitLab 15.10 Group
group_share_with_group_link_removed You remove a group from another group by using the group’s membership page Yes GitLab 15.10 Group
group_share_with_group_link_updated You update a group’s access settings to another group by using the group’s membership page Yes GitLab 15.10 Group
group_shared_runners_minutes_limit_updated A group’s shared runners minutes limit is updated Yes GitLab 15.7 Group
group_shared_with_group_lock_updated Group can be shared with other group setting is updated Yes GitLab 17.4 Group
group_two_factor_grace_period_updated A group’s two factor grace period is updated Yes GitLab 15.7 Group
group_visibility_level_updated A group’s visibility level is updated Yes GitLab 15.7 Group
merge_commit_template_updated Merge commit template is updated Yes GitLab 15.8 Project
new_user_signups_cap_updated Setting Number of users for user cap is updated Yes GitLab 17.4 Group
prevent_forking_outside_group_updated Setting for Prevent forking outside current group is changed Yes GitLab 17.4 Group
prevent_sharing_groups_outside_hierarchy_updated A group’s setting to Members cannot invite groups outside of group and its subgroup updated Yes GitLab 17.4 Group
project_cicd_merge_pipelines_enabled_updated The CI/CD merge pipelines setting for a project is updated Yes GitLab 15.8 Project
project_cicd_merge_trains_enabled_updated The CI/CD merge trains settings for a project is updated Yes GitLab 15.8 Project
project_created A project is created Yes GitLab 16.0 Project
project_default_branch_updated Default branch of a project’s repository is updated Yes GitLab 16.0 Project
project_description_updated A project’s description is updated No GitLab 16.3 Project
project_disable_overriding_approvers_per_merge_request_updated The disable overriding approvers per MR setting for a project is updated Yes GitLab 15.7 Project
project_feature_analytics_access_level_updated A project’s analytics access level setting is updated Yes GitLab 15.7 Project
project_feature_builds_access_level_updated A project’s builds access level setting is updated Yes GitLab 15.7 Project
project_feature_container_registry_access_level_updated A project’s container registry access level setting is updated Yes GitLab 15.7 Project
project_feature_environments_access_level_updated A project’s environments access level setting is updated Yes GitLab 15.7 Project
project_feature_feature_flags_access_level_updated A project’s feature flags access level setting is updated Yes GitLab 15.7 Project
project_feature_forking_access_level_updated A project’s feature forking access level setting is updated Yes GitLab 15.7 Project
project_feature_infrastructure_access_level_updated A project’s infrastructure access level setting is updated Yes GitLab 15.7 Project
project_feature_issues_access_level_updated A project’s issues access level setting is updated Yes GitLab 15.7 Project
project_feature_merge_requests_access_level_updated A project’s merge request access level setting is updated Yes GitLab 15.7 Project
project_feature_metrics_dashboard_access_level_updated A project’s metrics dashboard access level setting is updated Yes GitLab 15.7 Project
project_feature_monitor_access_level_updated A project’s monitor access level setting is updated Yes GitLab 15.7 Project
project_feature_operations_access_level_updated A project’s operation access level setting is updated Yes GitLab 15.7 Project
project_feature_package_registry_access_level_updated A project’s package registry access level setting is updated Yes GitLab 15.7 Project
project_feature_pages_access_level_updated A project’s page access level setting is updated Yes GitLab 15.7 Project
project_feature_releases_access_level_updated A project’s releases access level setting is updated Yes GitLab 15.7 Project
project_feature_repository_access_level_updated A project’s repository access level setting is updated Yes GitLab 15.7 Project
project_feature_requirements_access_level_updated A project’s requirements access level setting is updated Yes GitLab 15.7 Project
project_feature_security_and_compliance_access_level_updated A project’s security and compliance access level setting is updated Yes GitLab 15.7 Project
project_feature_snippets_access_level_updated A project’s snippet access level setting is updated Yes GitLab 15.7 Project
project_feature_wiki_access_level_updated A project’s wiki access level setting is updated Yes GitLab 15.7 Project
project_merge_method_updated A project’s merge request method is updated Yes GitLab 14.10 Project
project_merge_requests_author_approval_updated A project’s MR author approval setting is updated Yes GitLab 15.7 Project
project_merge_requests_disable_committers_approval_updated A project’s setting for disabling committers approval on merge requests is updated Yes GitLab 15.7 Project
project_name_updated A project has its name updated Yes GitLab 10.2 Project
project_namespace_updated A project’s namespace is updated Yes GitLab 15.7 Project
project_only_allow_merge_if_all_discussions_are_resolved_updated A project’s setting for allowing merge only when all discussions are resolved is updated Yes GitLab 15.7 Project
project_only_allow_merge_if_pipeline_succeeds_updated A project’s only allow merge if pipeline succeeds setting is updated Yes GitLab 15.7 Project
project_packages_enabled_updated The setting that controls packages for a project is updated Yes GitLab 11.5 Project
project_path_updated A project’s path is updated Yes GitLab 15.5 Project
project_printing_merge_request_link_enabled_updated The setting for projects for enabling printing merge request link is updated Yes GitLab 15.7 Project
project_repository_size_limit_updated The repository size limit of a project is updated Yes GitLab 15.7 Project
project_require_password_to_approve_updated A project’s setting for requiring a user’s password for approval of merge request is updated Yes GitLab 15.7 Project
project_resolve_outdated_diff_discussions_updated A project’s resolve outdated diff discussions setting is updated Yes GitLab 15.7 Project
project_security_setting_updated A project’s security setting is updated Yes GitLab 17.0 Project
project_visibility_level_updated A project’s visibility level setting is updated Yes GitLab 15.7 Project
remove_dormant_members_period_updated Setting Days of inactivity before removal is updated Yes GitLab 17.4 Group
remove_dormant_members_updated Setting Dormant members is updated Yes GitLab 17.4 Group
resource_access_token_creation_allowed_updated Setting for Users can create project access tokens and group access tokens in this group is updated Yes GitLab 17.4 Group, Project
runner_registration_enabled_updated Setting Runner registration is updated Yes GitLab 17.4 Group
seat_control_updated Setting Seat control is updated Yes GitLab 17.4 Group
service_access_tokens_expiration_enforced_updated Setting Service account token expiration is updated Yes GitLab 17.4 Group
show_diff_preview_in_email_updated Setting Email notification to include diff preview is updated Yes GitLab 17.4 Group, Project
squash_commit_template_updated The merge request squash commit template for a project is updated Yes GitLab 15.8 Project
squash_option_updated Squash option setting is updated Yes GitLab 15.0 Project

Importers

Name Description Saved to database Introduced in Scope
group_export_created Triggered when a group file export is created Yes GitLab 17.0 Group
project_export_created Triggered when a project file export is created Yes GitLab 17.0 Project

Incident management

Name Description Saved to database Introduced in Scope
incident_closed_by_project_bot An incident is closed using a project access token Yes GitLab 16.1 Project
incident_created_by_project_bot An incident is created using a project access token Yes GitLab 16.1 Project
incident_reopened_by_project_bot An incident is reopened using a project access token Yes GitLab 16.1 Project

MLOps

Name Description Saved to database Introduced in Scope
project_feature_model_experiments_access_level_updated A project’s model experiments access level is updated Yes GitLab 16.1 Project
ml_model_created ML model is created Yes GitLab 17.4 Project
ml_model_destroyed ML model destroyed Yes GitLab 17.4 Project
ml_model_version_created ML model version is created Yes GitLab 17.4 Project
ml_model_version_destroyed ML model version destroyed Yes GitLab 17.4 Project
project_feature_model_registry_access_level_updated Model registry access level was updated Yes GitLab 16.7 Project

Not categorized

Name Description Saved to database Introduced in Scope
experiment_features_enabled_updated Enabling experiment AI features setting is toggled Yes GitLab 16.0 Group

Permissions

Name Description Saved to database Introduced in Scope
member_role_created A custom role is created Yes GitLab 16.7 Group, Instance
member_role_deleted A custom role is deleted Yes GitLab 16.9 Group, Instance
member_role_updated A custom role is updated Yes GitLab 16.9 Group, Instance

Portfolio management

Name Description Saved to database Introduced in Scope
delete_epic An epic is successfully deleted No GitLab 15.4 Group
epic_closed_by_project_bot An epic is closed by a group access token Yes GitLab 16.1 Group
epic_created_by_project_bot An epic is created by a group access token Yes GitLab 16.1 Group
epic_reopened_by_project_bot An epic is reopened by a group access token Yes GitLab 16.1 Group

Product analytics data management

Name Description Saved to database Introduced in Scope
product_analytics_settings_update Product analytics settings are changed Yes GitLab 17.1 Project

Project

Name Description Saved to database Introduced in Scope
project_access_token_created A project access token is created Yes GitLab 15.2 Project
project_access_token_creation_failed Creating a project access token fails Yes GitLab 15.2 Project
project_access_token_deleted A project access token is deleted Yes GitLab 15.2 Project
project_access_token_deletion_failed Deleting a project access token fails Yes GitLab 15.2 Project

Quality management

Name Description Saved to database Introduced in Scope
test_case_closed_by_project_bot A test case is closed using a project access token Yes GitLab 16.1 Project
test_case_created_by_project_bot A test case is created using a project access token Yes GitLab 16.1 Project
test_case_reopened_by_project_bot A test case is reopened using a project access token Yes GitLab 16.1 Project

Runner

Name Description Saved to database Introduced in Scope
ci_runner_assigned_to_project Triggered when a runner is assigned to a project Yes GitLab 14.9 Project
ci_runner_registered Triggered when an instance, group or project runner is registered Yes GitLab 14.8 Instance, Group, Project
ci_runner_unassigned_from_project Triggered when a runner is unassigned from a project Yes GitLab 14.9 Project
ci_runner_unregistered Triggered when an instance, group or project runner is unregistered Yes GitLab 14.9 Instance, Group, Project
set_runner_associated_projects Associated projects are successfully assigned to a CI/CD runner Yes GitLab 15.4 Project

Secret detection

Name Description Saved to database Introduced in Scope
project_security_exclusion_applied A project security exclusion is applied in one of the security scanners Yes GitLab 17.6 Project
project_security_exclusion_created A project security exclusion is created Yes GitLab 17.5 Project
project_security_exclusion_deleted A project security exclusion is deleted Yes GitLab 17.5 Project
project_security_exclusion_updated A project security exclusion is updated Yes GitLab 17.5 Project
skip_secret_push_protection Secret push protection is skipped by the user Yes GitLab 16.11 Project

Secrets management

Name Description Saved to database Introduced in Scope
user_authenticated_using_job_token A user is authenticated using job token No GitLab 17.4 Project

Security policy management

Name Description Saved to database Introduced in Scope
policy_project_updated The security policy project is updated for a project Yes GitLab 15.6 Group, Project

Self-hosted models

Name Description Saved to database Introduced in Scope
self_hosted_model_created A new self-hosted model configuration was added Yes GitLab 17.4 Instance
self_hosted_model_destroyed A new self-hosted model configuration was destroyed Yes GitLab 17.4 Instance
self_hosted_model_feature_changed A self-hosted model feature had its configuration changed Yes GitLab 17.4 Instance
self_hosted_model_terms_accepted Terms for usage of self-hosted models were accepted Yes GitLab 17.4 Instance
self_hosted_model_updated A self-hosted model configuration was updated Yes GitLab 17.4 Instance

Source code management

Name Description Saved to database Introduced in Scope
approval_rule_created A merge request approval rule is created Yes GitLab 15.2 Project
approval_rule_deleted A merge request approval rule is deleted Yes GitLab 14.9 Project
group_push_rules_author_email_regex_updated A group’s push rules settings is changed for author email regex Yes GitLab 15.7 Group
group_push_rules_branch_name_regex_updated A group’s push rules settings is changed for branch name regex Yes GitLab 15.7 Group
group_push_rules_commit_committer_check_updated A group’s push rule setting is updated for reject unverified users Yes GitLab 15.0 Group
group_push_rules_commit_message_negative_regex_updated A group’s push rules settings is changed for commit message negative regex Yes GitLab 15.7 Group
group_push_rules_commit_message_regex_updated A group’s push rules settings is changed for commit message regex Yes GitLab 15.7 Group
group_push_rules_file_name_regex_updated A group’s push rules settings is changed for filename regex Yes GitLab 15.7 Group
group_push_rules_max_file_size_updated A group’s push rules settings is changed for max file size Yes GitLab 15.7 Group
group_push_rules_prevent_secrets_updated A group’s push rule setting is updated to prevent pushing secret files Yes GitLab 15.0 Group
group_push_rules_reject_deny_delete_tag_updated A group’s push rule setting is updated to deny deletion of tags using Git push Yes GitLab 15.0 Group
group_push_rules_reject_member_check_updated A group’s push rule setting is updated to check if commit author is a GitLab user Yes GitLab 15.0 Group
group_push_rules_reject_non_dco_commits_updated A group’s push rule setting is updated for reject non DCO certified commits Yes GitLab 15.0 Group
group_push_rules_reject_unsigned_commits_updated A group push’s rule setting is updated for reject unsigned commits Yes GitLab 15.0 Group
merged_merge_request_deleted A merged merge request is deleted No GitLab 16.0 Project
merged_merge_request_deletion_started A merged merge request’s deletion is started No GitLab 16.1 Project
project_fork_operation A project is forked Yes GitLab 15.2 Project
project_fork_relationship_removed A project’s fork relationship is successfully removed Yes GitLab 15.6 Project
project_push_rules_commit_committer_check_updated A project’s push rule setting for reject unverified users is updated Yes GitLab 16.5 Project
protected_branch_code_owner_approval_required_updated The protected branch code owner approval required setting is updated Yes GitLab 15.8 Project
protected_branch_created A protected branch is created Yes GitLab 15.2 Project
protected_branch_removed A protected branch is removed Yes GitLab 15.2 Project
protected_branch_updated The setting for protected branches is updated Yes GitLab 15.8 Project
repository_git_operation Authenticated users push, pull, or clone a project using SSH, HTTP(S), or the UI No GitLab 14.9 Project
require_reauthentication_to_approve_updated The setting for requiring reauthentication for merge requqest approvals is updated Yes GitLab 17.1 Group, Project
manually_trigger_housekeeping Triggered when manually triggering housekeeping via API or admin UI Yes GitLab 15.9 Project
project_blobs_removal Triggered when removing blobs via the GraphQL API or project settings UI Yes GitLab 17.0 Project
project_text_replacement Triggered when replacing text via the GraphQL API or project settings UI Yes GitLab 17.1 Project

System access

Name Description Saved to database Introduced in Scope
application_setting_updated An application setting is updated Yes GitLab 16.3 Instance
group_access_token_created A group access token is created Yes GitLab 15.2 Group
group_access_token_creation_failed Creating a group access token failed Yes GitLab 15.2 Group
group_access_token_deleted A group access token is deleted Yes GitLab 15.2 Group
group_access_token_deletion_failed Deleting a group access token failed Yes GitLab 15.2 Group
ip_restrictions_changed Any changes in the IP allowlist Yes GitLab 15.0 Group
login_failed_with_otp_authentication Sign-in fails because of an incorrect OTP Yes GitLab 16.4 User
login_failed_with_standard_authentication Sign-in to GitLab fails with standard authentication, such as password Yes GitLab 16.4 Instance
login_failed_with_webauthn_authentication Sign-in fails when using a WebAuthn device Yes GitLab 16.4 User
update_mismatched_group_saml_extern_uid The external UID is changed on a SAML identity Yes GitLab 15.7 User
user_access_locked User access to the instance is locked Yes GitLab 16.2 User
user_access_unlocked User access to the instance is unlocked Yes GitLab 16.2 User
user_disable_two_factor A user disables two factor authentication. Group scope was introduced in GitLab 17.6. Yes GitLab 15.1 User, Group
user_enable_admin_mode Admin Mode enabled Yes GitLab 15.7 User

Team planning

Name Description Saved to database Introduced in Scope
comment_by_project_bot A comment is added to an issue or a merge request when using a project access token No GitLab 16.1 Project
delete_issue An issue is successfully deleted No GitLab 15.4 Project
delete_work_item A work item is successfully deleted No GitLab 15.4 Project
issue_closed_by_project_bot An issue is closed using a project access token Yes GitLab 16.1 Project
issue_created_by_project_bot An issue is created using a project access token Yes GitLab 16.1 Project
issue_reopened_by_project_bot An issue is reopened using a project access token Yes GitLab 16.1 Project
task_closed_by_project_bot A task is closed using a project access token Yes GitLab 16.1 Project
task_created_by_project_bot A task is created using a project access token Yes GitLab 16.1 Project
task_reopened_by_project_bot A task is reopened using a project access token Yes GitLab 16.1 Project

User management

Name Description Saved to database Introduced in Scope
authenticated_with_group_saml Successfully signing in with SAML authentication Yes GitLab 12.10 Group
ban_user A user is banned, unbanned, blocked, or unblocked Yes GitLab 15.11 User
change_membership_state A user’s membership is updated Yes GitLab 15.1 Group
inactive_scim_user_cannot_be_added A user cannot be added to a group during SAML authentication when their SCIM identity is inactive Yes GitLab 17.7 Group
password_reset_failed A password reset fails for a user No GitLab 16.4 User
unban_user A user is unbanned Yes GitLab 15.11 User
unblock_user A user is banned Yes GitLab 15.11 User
user_activate A user is activated Yes GitLab 16.1 User
user_approved A user is approved for an instance Yes GitLab 15.11 User
user_blocked A user is blocked Yes GitLab 15.11 User
user_created A user is created Yes GitLab 15.10 User
user_deactivate A user is deactivated Yes GitLab 16.0 User
user_destroyed A user is scheduled for removal from the instance. Group and Project scopes were introduced in GitLab 17.5. Yes GitLab 15.11 User, Group, Project
user_email_changed_and_user_signed_in User email changed and user signed in Yes GitLab 15.8 User
user_impersonation An instance administrator starts or stops impersonating a user Yes GitLab 14.8 User, Group
user_password_updated A user password is updated Yes GitLab 15.7 User
user_rejected A user registration is rejected Yes GitLab 15.11 User

User profile

Name Description Saved to database Introduced in Scope
email_confirmation_sent Users add or change an email address and it must be confirmed No GitLab 16.3 User
remove_ssh_key A SSH key is removed Yes GitLab 14.1 User
user_admin_status_updated A user is either made an administrator or removed as an administrator Yes GitLab 14.1 User
user_auditor_status_updated A user is either made an auditor or removed as an auditor Yes GitLab 16.6 User
user_email_address_updated A user updates their email address Yes GitLab 10.1 User
user_name_updated A user’s name is updated Yes GitLab 17.5 User
user_profile_visiblity_updated User toggles private profile user setting No GitLab 16.3 User
user_username_updated A user’s username is updated Yes GitLab 15.7 User

Verify security

Name Description Saved to database Introduced in Scope
secure_ci_job_token_group_added Group added to CI_JOB_TOKEN scope Yes GitLab 17.3 Project
secure_ci_job_token_group_removed Group removed from CI_JOB_TOKEN scope Yes GitLab 17.3 Project
secure_ci_job_token_inbound_disabled CI_JOB_TOKEN permissions disabled for inbound Yes GitLab 16.0 Project
secure_ci_job_token_inbound_enabled CI_JOB_TOKEN permissions enabled for inbound Yes GitLab 16.0 Project
secure_ci_job_token_project_added Project added to inbound CI_JOB_TOKEN scope Yes GitLab 16.0 Project
secure_ci_job_token_project_removed Project removed from inbound CI_JOB_TOKEN scope Yes GitLab 16.0 Project

Webhooks

Name Description Saved to database Introduced in Scope
webhook_created Event triggered when a webhook is created. Yes GitLab 17.1 Project, Group, Instance
webhook_destroyed Event triggered when a webhook is destroyed. Yes GitLab 17.0 Project, Group, Instance