-
Available audit event types
- Ai framework
- Audit events
- Authorization
- Build artifacts
- Code review
- Code review workflow
- Code suggestions
- Compliance management
- Container registry
- Continuous-integration
- Continuous delivery
- Continuous integration
- Deployment management
- Duo workflow
- Dynamic application security testing
- Environment management
- Feature flags
- Fleet visibility
- Fuzz testing
- Groups and projects
- Importers
- Incident management
- MLOps
- Not categorized
- Permissions
- Portfolio management
- Product analytics data management
- Project
- Quality management
- Runner
- Secret detection
- Secrets management
- Security policy management
- Self-hosted models
- Source code management
- System access
- Team planning
- User management
- User profile
- Verify security
- Webhooks
Audit event types
Tier: Premium, Ultimate
Offering: GitLab.com, Self-managed, GitLab Dedicated
History
- Introduced in GitLab 17.7, all audit events can be streamed.
Audit event types are used to filter streamed audit events:
Every audit event is associated with an event type. Audit event types can allow:
- Most audit events to be saved to the database. Available in the Premium and Ultimate tier. You can retrieve audit events associated with these types by using the audit events dashboard or the audit events API.
- All audit events to be streamed to external destinations. Available in the Ultimate tier. You can stream audit events associated with these types to external destinations if a destination is set.
An audit event type’s scope limits the availability of the audit event type to either:
- Project, group, or user audit events.
- Instance audit events.
Available audit event types
Audit event types belong to the following product categories.
Ai framework
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
duo_features_enabled_updated
| GitLab Duo Features enabled setting on group or project changed | Yes | GitLab 16.10 | Group, Project |
Audit events
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
amazon_s3_configuration_created
| Amazon S3 configuration for audit events streaming is created | Yes | GitLab 16.5 | Group |
amazon_s3_configuration_deleted
| Amazon S3 configuration for audit events streaming is deleted | Yes | GitLab 16.5 | Group |
amazon_s3_configuration_updated
| Amazon S3 configuration for audit events streaming is updated | Yes | GitLab 16.5 | Group |
audit_events_streaming_headers_create
| A streaming header for audit events is created | Yes | GitLab 15.3 | Group |
audit_events_streaming_headers_destroy
| A streaming header for audit events is deleted | Yes | GitLab 15.3 | Group |
audit_events_streaming_instance_headers_create
| A streaming header for instance level external audit event destination is created | Yes | GitLab 16.3 | Instance |
audit_events_streaming_instance_headers_destroy
| A streaming header for instance level external audit event destination is deleted | Yes | GitLab 16.3 | Instance |
audit_events_streaming_instance_headers_update
| A streaming header for instance level external audit event destination is updated | Yes | GitLab 16.3 | Instance |
create_event_streaming_destination
| An external audit event destination is created | Yes | GitLab 14.6 | Group |
create_http_namespace_filter
| A namespace filter for an external audit event destination for a top-level group is created | Yes | GitLab 16.6 | Group |
create_instance_event_streaming_destination
| An external audit event destination for an instance is created | Yes | GitLab 16.2 | Instance |
created_group_audit_event_streaming_destination
| An external audit event destination for a top-level group is created | Yes | GitLab 16.11 | Group |
created_group_namespace_filter
| A namespace filter for an external audit event destination for a top-level group is created | Yes | GitLab 17.0 | Group |
created_instance_audit_event_streaming_destination
| An external audit event destination for an instance is created | Yes | GitLab 16.11 | Instance |
created_instance_namespace_filter
| A namespace filter for an external audit event destination for an instance is created | Yes | GitLab 17.2 | Instance |
delete_http_namespace_filter
| A namespace filter for an external audit event destination for a top-level group is deleted | Yes | GitLab 16.7 | Group |
deleted_group_audit_event_streaming_destination
| An external audit event destination for a top-level group is deleted | Yes | GitLab 16.11 | Group |
deleted_group_namespace_filter
| A namespace filter for an external audit event destination for a top-level group is deleted | Yes | GitLab 17.0 | Group |
deleted_instance_audit_event_streaming_destination
| An external audit event destination for a GitLab instance is deleted | Yes | GitLab 16.11 | Instance |
deleted_instance_namespace_filter
| A namespace filter for an external audit event destination for a GitLab instance is deleted | Yes | GitLab 17.2 | Instance |
destroy_event_streaming_destination
| An external audit event destination is deleted | Yes | GitLab 14.6 | Group |
destroy_instance_event_streaming_destination
| An instance level external audit event destination is deleted | Yes | GitLab 16.2 | Instance |
event_type_filters_created
| A new audit events streaming event type filter is created | Yes | GitLab 15.10 | Group |
event_type_filters_deleted
| An audit events streaming event type filter is deleted | Yes | GitLab 15.10 | Group |
google_cloud_logging_configuration_created
| Google Cloud Logging configuration is created | Yes | GitLab 16.1 | Group |
google_cloud_logging_configuration_deleted
| Google Cloud Logging configuration is deleted | Yes | GitLab 16.1 | Group |
google_cloud_logging_configuration_updated
| Google Cloud Logging configuration is updated | Yes | GitLab 16.1 | Group |
instance_amazon_s3_configuration_created
| Instance Amazon S3 configuration for audit events streaming is created | Yes | GitLab 16.7 | Instance |
instance_amazon_s3_configuration_deleted
| Instance-level Amazon S3 configuration for audit events streaming is deleted | Yes | GitLab 16.7 | Instance |
instance_amazon_s3_configuration_updated
| Instance-level Amazon S3 configuration for audit events streaming is updated | Yes | GitLab 16.7 | Instance |
instance_google_cloud_logging_configuration_created
| Instance-level Google Cloud Logging configuration is created | Yes | GitLab 16.4 | Instance |
instance_google_cloud_logging_configuration_deleted
| Instance-level Google Cloud Logging configuration is deleted | Yes | GitLab 16.5 | Instance |
instance_google_cloud_logging_configuration_updated
| Instance-level Google Cloud Logging configuration is updated | Yes | GitLab 16.5 | Instance |
update_event_streaming_destination
| An external audit event destination is updated | Yes | GitLab 14.6 | Group |
update_instance_event_streaming_destination
| An instance level external audit event destination is updated | Yes | GitLab 16.2 | Instance |
updated_group_audit_event_streaming_destination
| An external audit event destination for a top-level group is updated | Yes | GitLab 16.11 | Group |
updated_instance_audit_event_streaming_destination
| An external audit event destination for a GitLab instance is updated | Yes | GitLab 16.11 | Instance |
Authorization
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
secure_ci_job_token_policies_updated
| Event triggered when permissions are updated for a CI_JOB_TOKEN scope | Yes | GitLab 17.6 | Project |
Build artifacts
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
job_artifact_downloaded
| A user downloads a job artifact from a project | No | GitLab 16.8 | Project |
Code review
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
delete_merge_request
| A merge request is successfully deleted | No | GitLab 15.4 | Project |
Code review workflow
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
merge_request_approval_operation
| A merge request is approved | No | GitLab 15.3 | Project |
merge_request_closed_by_project_bot
| A merge request is closed using a project access token | Yes | GitLab 16.1 | Project |
merge_request_created_by_project_bot
| A merge request is created using a project access token | Yes | GitLab 16.1 | Project |
merge_request_invalid_approver_rules
| An invalid rule when merge request is approved | Yes | GitLab 15.5 | Project |
merge_request_merged_by_project_bot
| A merge request is merged using a project access token | Yes | GitLab 16.1 | Project |
merge_request_reopened_by_project_bot
| A merge request is reopened using a project access token | Yes | GitLab 16.1 | Project |
project_merge_requests_template_updated
| A merge request template for a project is updated | Yes | GitLab 15.0 | Project |
project_remove_source_branch_after_merge_updated
| A project has its setting to remove branches after merges updated | Yes | GitLab 14.10 | Project |
project_reset_approvals_on_push_updated
| Triggered when a project has its setting on whether approvals are reset on a push is updated | Yes | GitLab 14.2 | Project |
selective_code_owner_removals_updated
| Event triggered when selective code owner removal is updated | Yes | GitLab 17.0 | Project |
Code suggestions
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
project_suggestion_commit_message_updated
| A project has its suggested commit message updated | Yes | GitLab 14.10 | Project |
Compliance management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
add_gpg_key
| A GPG key is added | Yes | GitLab 15.9 | User |
allow_author_approval_updated
| Prevent approval by author setting is updated | Yes | GitLab 15.6 | Group |
allow_committer_approval_updated
| Prevent approvals by users who add commits setting is updated | Yes | GitLab 15.6 | Group |
allow_overrides_to_approver_list_per_merge_request_updated
| Prevent editing approval rules in projects and merge requests setting is updated | Yes | GitLab 15.6 | Group |
audit_events_streaming_headers_update
| A streaming header for audit events is updated | Yes | GitLab 15.3 | Group |
compliance_framework_added
| A compliance framework is applied to a project | Yes | GitLab 17.2 | Project |
compliance_framework_deleted
| A compliance framework is removed from a project | Yes | GitLab 14.1 | Project |
compliance_framework_id_updated
| A compliance framework is updated for a project | Yes | GitLab 15.7 | Project |
compliance_framework_removed
| A compliance framework is removed from a project | Yes | GitLab 17.2 | Project |
create_compliance_framework
| A compliance framework is successfully created | Yes | GitLab 14.6 | Group |
create_status_check
| An external status check is created | Yes | GitLab 15.9 | Project |
created_compliance_requirement
| A requirement is added to a compliance framework | Yes | GitLab 17.6 | Group |
delete_status_check
| An external status check is deleted | Yes | GitLab 15.9 | Project |
destroy_compliance_framework
| A compliance framework is successfully deleted | Yes | GitLab 14.6 | Group |
destroyed_compliance_requirement
| A compliance framework requirement is destroyed | Yes | GitLab 17.7 | Group |
email_created
| An email is created | Yes | GitLab 15.11 | User |
email_destroyed
| An email is destroyed | Yes | GitLab 15.11 | User |
external_status_check_name_updated
| The name of an external status check is updated | Yes | GitLab 15.7 | Project |
external_status_check_url_updated
| The URL that is used for external status checks for a pipeline is updated | Yes | GitLab 15.0 | Project |
group_deletion_marked
| A group is marked for deletion | Yes | GitLab 15.11 | Group |
group_destroyed
| A group is destroyed | Yes | GitLab 15.11 | Group |
group_restored
| A group is restored | Yes | GitLab 15.11 | Group |
group_saml_provider_create
| A group SAML provider is created | Yes | GitLab 15.9 | Group |
group_saml_provider_update
| A group SAML provider is updated | Yes | GitLab 15.9 | Group |
inactive_project_scheduled_for_deletion
| An inactive project is scheduled for deletion | Yes | GitLab 16.4 | Project |
member_created
| A membership is created | Yes | GitLab 15.9 | Group, Project |
member_destroyed
| A membership is destroyed | Yes | GitLab 15.9 | Group, Project |
member_updated
| A membership is updated | Yes | GitLab 15.9 | Group, Project |
merge_request_create
| A merge request is created | No | GitLab 15.9 | Project |
merge_request_merged
| A merge request is merged | Yes | GitLab 17.5 | Project |
omniauth_login_failed
| An OmniAuth login fails | Yes | GitLab 16.3 | User |
password_reset_requested
| A user requests a password reset using a registered email address | Yes | GitLab 15.11 | User |
personal_access_token_created
| A user creates a personal access token | Yes | GitLab 15.9 | User |
personal_access_token_revoked
| A personal access token is revoked | Yes | GitLab 15.9 | User |
project_archived
| A project is archived | Yes | GitLab 15.11 | Project |
project_deletion_marked
| A project is marked for deletion | Yes | GitLab 15.11 | Project |
project_destroyed
| A project is destroyed | Yes | GitLab 15.11 | Group |
project_export_file_download_started
| A download of a project export file is started | Yes | GitLab 15.11 | Project |
project_group_link_created
| A group is invited to a project | Yes | GitLab 15.9 | Group |
project_group_link_deleted
| A project group link is deleted | Yes | GitLab 15.9 | Group |
project_group_link_updated
| A project group link is updated | Yes | GitLab 15.9 | Project |
project_imported
| A project is imported | Yes | GitLab 15.11 | Group |
project_restored
| A project is restored | Yes | GitLab 15.11 | Project |
project_topics_updated
| A project’s topics assignments are changed | Yes | GitLab 17.4 | Project |
project_unarchived
| A project is unarchived | Yes | GitLab 15.11 | Project |
protected_branch_allow_force_push_updated
| A protected branch has its ability to allow force pushes is updated | Yes | GitLab 14.3 | Project |
public_repository_download_operation
| A Git repository for a public project is downloaded | No | GitLab 17.0 | Project |
registration_created
| A user registers for instance access | Yes | GitLab 16.3 | User |
release_created
| A release is created | Yes | GitLab 15.9 | Project |
release_deleted_audit_event
| A release is deleted | Yes | GitLab 15.9 | Project |
release_milestones_updated
| A release’s associated milestones are updated | Yes | GitLab 15.9 | Project |
release_updated
| A release is updated | Yes | GitLab 15.9 | Project |
remove_gpg_key
| A GPG key is deleted | Yes | GitLab 15.9 | User |
repository_download_operation
| A Git repository for a private or internal project is downloaded | Yes | GitLab 15.9 | Project |
require_password_to_approve_updated
| Require user password for approvals from group merge request setting is updated | Yes | GitLab 15.6 | Group |
retain_approvals_on_push_updated
| Require new approvals when new commits are added to an MR from group merge request setting is updated | Yes | GitLab 15.6 | Group |
saml_group_links_created
| A SAML Group Link is created | Yes | GitLab 15.9 | Group |
saml_group_links_removed
| A SAML Group Link is removed | Yes | GitLab 15.9 | Group |
smartcard_authentication_created
| A user authenticates with smartcard | Yes | GitLab 16.0 | User |
update_approval_rules
| Updating a merge approval rule | Yes | GitLab 15.2 | Project |
update_compliance_framework
| A compliance framework is updated | Yes | GitLab 14.6 | Group |
update_compliance_requirement
| A compliance framework requirement is updated. | Yes | GitLab 17.7 | Group |
update_status_check
| An external status check is updated | Yes | GitLab 15.9 | Project |
Container registry
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
container_repository_created
| A container repository is first pushed to the registry | Yes | GitLab 17.5 | Project |
container_repository_deleted
| A project’s container registry is deleted | Yes | GitLab 17.2 | Project |
container_repository_deletion_marked
| A project’s container repository is marked for deletion | Yes | GitLab 17.2 | Project |
container_repository_tags_deleted
| A project’s container repository tag is deleted | Yes | GitLab 17.2 | Project |
Continuous-integration
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
multi_project_downstream_pipeline_created
| Multi project downstream pipeline is created | No | GitLab 17.6 | Project |
Continuous delivery
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
deploy_key_added
| A deploy key is added | Yes | GitLab 15.3 | Project |
deploy_key_removed
| A deploy key is removed | Yes | GitLab 15.3 | Project |
deploy_token_created
| A deploy token is created | Yes | GitLab 15.1 | Project |
deploy_token_creation_failed
| A deploy token fails to create | Yes | GitLab 15.1 | Project |
deploy_token_destroyed
| A deploy token is destroyed | Yes | GitLab 15.1 | Project |
deploy_token_revoked
| A project deploy token is revoked | Yes | GitLab 15.1 | Project |
deployment_approved
| A deployment is approved | Yes | GitLab 17.1 | Project |
deployment_rejected
| A deployment is rejected | Yes | GitLab 17.1 | Project |
deployment_started
| A deployment to a protected environment is started | Yes | GitLab 17.2 | Project |
group_deploy_token_created
| A group deploy token is created | Yes | GitLab 15.3 | Group |
group_deploy_token_creation_failed
| Creating a group deploy token failed | Yes | GitLab 15.3 | Group |
group_deploy_token_destroyed
| A group deploy token is destroyed | Yes | GitLab 15.3 | Group |
group_deploy_token_revoked
| A group deploy token is revoked | Yes | GitLab 15.3 | Group |
Continuous integration
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
allow_merge_on_skipped_pipeline_updated
| Skipped pipelines are considered successful setting is updated | Yes | GitLab 14.10 | Project |
ci_group_variable_created
| A CI/CD variable is created for a group | Yes | GitLab 15.2 | Group |
ci_group_variable_deleted
| A CI/CD variable is deleted for a group | Yes | GitLab 15.2 | Group |
ci_group_variable_updated
| A CI/CD variable is updated for a group | Yes | GitLab 15.2 | Group |
ci_instance_variable_created
| A CI/CD variable is created for an instance | Yes | GitLab 16.5 | Instance |
ci_instance_variable_deleted
| A CI/CD variable is deleted for an instance | Yes | GitLab 16.5 | Instance |
ci_instance_variable_updated
| A CI/CD variable is updated for an instance | Yes | GitLab 16.5 | Instance |
ci_variable_created
| A CI/CD variable is created for a project | Yes | GitLab 15.2 | Project |
ci_variable_deleted
| A CI/CD variable is deleted for a project | Yes | GitLab 15.2 | Project |
ci_variable_updated
| A CI/CD variable is updated for a project | Yes | GitLab 15.2 | Project |
destroy_pipeline
| A pipeline is deleted | Yes | GitLab 16.6 | Project |
Deployment management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
cluster_agent_create_failed
| A user attempts to create a cluster agent but it failed | Yes | GitLab 17.3 | Project |
cluster_agent_created
| A user creates a cluster agent | Yes | GitLab 17.3 | Project |
cluster_agent_delete_failed
| A user attempts to delete a cluster agent but it failed | Yes | GitLab 17.3 | Project |
cluster_agent_deleted
| A user deletes a cluster agent | Yes | GitLab 17.3 | Project |
cluster_agent_token_created
| A user creates a cluster agent token | Yes | GitLab 15.10 | Project |
cluster_agent_token_revoked
| A user revokes a cluster agent token | Yes | GitLab 15.10 | Project |
Duo workflow
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
api_request_access_with_scope
| A susbset of API requests authenticated by a token with an audited scope | Yes | GitLab 17.7 | User |
Dynamic application security testing
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
dast_profile_create
| A dynamic application security testing profile is created | Yes | GitLab 14.1 | Project |
dast_profile_destroy
| A dynamic application security profile is removed | Yes | GitLab 14.1 | Project |
dast_profile_schedule_create
| A dynamic application security testing profile schedule is created | Yes | GitLab 14.3 | Project |
dast_profile_schedule_update
| A dynamic application security testing profile schedule is updated | Yes | GitLab 14.3 | Project |
dast_profile_update
| A dynamic application security profile is updated | Yes | GitLab 14.1 | Project |
dast_scanner_profile_create
| A dynamic application security testing scanner profile is created | Yes | GitLab 14.0 | Project |
dast_scanner_profile_destroy
| A dynamic application security testing scanner profile is removed | Yes | GitLab 14.0 | Project |
dast_scanner_profile_update
| A dynamic application security testing scanner profile is updated | Yes | GitLab 14.0 | Project |
dast_site_profile_create
| A dynamic application security testing site profile is created | Yes | GitLab 14.0 | Project |
dast_site_profile_destroy
| A dynamic application security testing site profile is removed | Yes | GitLab 14.0 | Project |
dast_site_profile_update
| A dynamic application security testing site profile is updated | Yes | GitLab 14.0 | Project |
Environment management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
environment_protected
| A protected environment is created | Yes | GitLab 15.8 | Group, Project |
environment_unprotected
| A protected environment is unprotected | Yes | GitLab 15.8 | Group, Project |
protected_environment_approval_rule_added
| An approval rule is added to a protected environment | Yes | GitLab 16.5 | Group, Project |
protected_environment_approval_rule_deleted
| An approval rule is removed from a protected environment | Yes | GitLab 16.5 | Project, Group |
protected_environment_approval_rule_updated
| An approval rule of a protected environment is updated | Yes | GitLab 16.5 | Project, Group |
protected_environment_deploy_access_level_added
| A deploy access level is added to a protected environment | Yes | GitLab 16.5 | Group, Project |
protected_environment_deploy_access_level_deleted
| A deploy access level is removed from a protected environment | Yes | GitLab 16.5 | Group, Project |
protected_environment_deploy_access_level_updated
| A deploy access level of a protected environment is updated | Yes | GitLab 16.5 | Project |
protected_environment_updated
| A protected environment is updated | Yes | GitLab 16.5 | Group, Project |
Feature flags
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
feature_flag_created
| Triggered when a feature flag is created. | Yes | GitLab 15.10 | Project |
feature_flag_deleted
| Triggered when a feature flag is deleted. | Yes | GitLab 15.10 | Project |
feature_flag_updated
| Triggered when a feature flag is updated. | Yes | GitLab 15.10 | Project |
Fleet visibility
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
ci_runner_usage_export
| A runner usage report is generated | Yes | GitLab 16.8 | Instance |
ci_runners_bulk_deleted
| Triggered when runners are deleted in bulk | Yes | GitLab 17.7 | User |
Fuzz testing
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
coverage_fuzzing_corpus_create
| A corpus action is added | Yes | GitLab 14.5 | Project |
Groups and projects
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
allow_mfa_for_subgroups_updated
| Setting for Subgroups can set up their own two-factor authentication rules updated | Yes | GitLab 17.4 | Group |
allow_runner_registration_token_updated
| Setting Allow members of projects and groups to create runners with runner registration tokens is updated | Yes | GitLab 16.0 | Group, Project |
allowed_email_domain_updated
| Group setting allowed email domain entry is updated | Yes | GitLab 17.5 | Group |
create_ssh_certificate
| An SSH certificate is created | Yes | GitLab 16.6 | Group |
default_branch_name_updated
| Default branch name for the group repository is changed | Yes | GitLab 17.4 | Group |
delete_ssh_certificate
| An SSH certificate is deleted | Yes | GitLab 16.6 | Group |
disable_personal_access_tokens_updated
| Setting Disable personal access tokens is updated | Yes | GitLab 17.4 | Group |
emails_enabled_updated
| Setting Enable email notifications is updated | Yes | GitLab 17.4 | Group |
enabled_git_access_protocol_updated
| Setting Enabled Git access protocols is updated | Yes | GitLab 17.4 | Group |
enforce_ssh_certificates_updated
| Setting Enforce SSH Certificates is updated | Yes | GitLab 17.4 | Group |
group_created
| A group is created | Yes | GitLab 16.3 | Group |
group_description_updated
| Group description is updated | Yes | GitLab 17.4 | Group |
group_lfs_enabled_updated
| LFS enabled for a group is updated | Yes | GitLab 15.7 | Group |
group_membership_lock_updated
| Membership lock for a group is updated | Yes | GitLab 15.7 | Group |
group_mentions_disabled_updated
| A group’s setting to notify group members on group mention is updated | Yes | GitLab 17.4 | Group |
group_merge_request_approval_setting_created
| Merge request approval settings are added to a group | Yes | GitLab 15.1 | Group |
group_name_updated
| A group’s name is updated | Yes | GitLab 15.7 | Group |
group_path_updated
| A group’s path is updated | Yes | GitLab 15.7 | Group |
group_project_creation_level_updated
| A group’s project creation level is updated | Yes | GitLab 15.7 | Group |
group_repository_size_limit_updated
| A group’s repository size limit is updated | Yes | GitLab 15.7 | Group |
group_request_access_enabled_updated
| A group’s request access enabled is updated | Yes | GitLab 15.7 | Group |
group_require_two_factor_authentication_updated
| A group’s require two factor authentication setting is updated | Yes | GitLab 15.7 | Group |
group_share_with_group_link_created
| You invite a group to another group by using the group’s membership page | Yes | GitLab 15.10 | Group |
group_share_with_group_link_removed
| You remove a group from another group by using the group’s membership page | Yes | GitLab 15.10 | Group |
group_share_with_group_link_updated
| You update a group’s access settings to another group by using the group’s membership page | Yes | GitLab 15.10 | Group |
group_shared_runners_minutes_limit_updated
| A group’s shared runners minutes limit is updated | Yes | GitLab 15.7 | Group |
group_shared_with_group_lock_updated
| Group can be shared with other group setting is updated | Yes | GitLab 17.4 | Group |
group_two_factor_grace_period_updated
| A group’s two factor grace period is updated | Yes | GitLab 15.7 | Group |
group_visibility_level_updated
| A group’s visibility level is updated | Yes | GitLab 15.7 | Group |
merge_commit_template_updated
| Merge commit template is updated | Yes | GitLab 15.8 | Project |
new_user_signups_cap_updated
| Setting Number of users for user cap is updated | Yes | GitLab 17.4 | Group |
prevent_forking_outside_group_updated
| Setting for Prevent forking outside current group is changed | Yes | GitLab 17.4 | Group |
prevent_sharing_groups_outside_hierarchy_updated
| A group’s setting to Members cannot invite groups outside of group and its subgroup updated | Yes | GitLab 17.4 | Group |
project_cicd_merge_pipelines_enabled_updated
| The CI/CD merge pipelines setting for a project is updated | Yes | GitLab 15.8 | Project |
project_cicd_merge_trains_enabled_updated
| The CI/CD merge trains settings for a project is updated | Yes | GitLab 15.8 | Project |
project_created
| A project is created | Yes | GitLab 16.0 | Project |
project_default_branch_updated
| Default branch of a project’s repository is updated | Yes | GitLab 16.0 | Project |
project_description_updated
| A project’s description is updated | No | GitLab 16.3 | Project |
project_disable_overriding_approvers_per_merge_request_updated
| The disable overriding approvers per MR setting for a project is updated | Yes | GitLab 15.7 | Project |
project_feature_analytics_access_level_updated
| A project’s analytics access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_builds_access_level_updated
| A project’s builds access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_container_registry_access_level_updated
| A project’s container registry access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_environments_access_level_updated
| A project’s environments access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_feature_flags_access_level_updated
| A project’s feature flags access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_forking_access_level_updated
| A project’s feature forking access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_infrastructure_access_level_updated
| A project’s infrastructure access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_issues_access_level_updated
| A project’s issues access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_merge_requests_access_level_updated
| A project’s merge request access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_metrics_dashboard_access_level_updated
| A project’s metrics dashboard access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_monitor_access_level_updated
| A project’s monitor access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_operations_access_level_updated
| A project’s operation access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_package_registry_access_level_updated
| A project’s package registry access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_pages_access_level_updated
| A project’s page access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_releases_access_level_updated
| A project’s releases access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_repository_access_level_updated
| A project’s repository access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_requirements_access_level_updated
| A project’s requirements access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_security_and_compliance_access_level_updated
| A project’s security and compliance access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_snippets_access_level_updated
| A project’s snippet access level setting is updated | Yes | GitLab 15.7 | Project |
project_feature_wiki_access_level_updated
| A project’s wiki access level setting is updated | Yes | GitLab 15.7 | Project |
project_merge_method_updated
| A project’s merge request method is updated | Yes | GitLab 14.10 | Project |
project_merge_requests_author_approval_updated
| A project’s MR author approval setting is updated | Yes | GitLab 15.7 | Project |
project_merge_requests_disable_committers_approval_updated
| A project’s setting for disabling committers approval on merge requests is updated | Yes | GitLab 15.7 | Project |
project_name_updated
| A project has its name updated | Yes | GitLab 10.2 | Project |
project_namespace_updated
| A project’s namespace is updated | Yes | GitLab 15.7 | Project |
project_only_allow_merge_if_all_discussions_are_resolved_updated
| A project’s setting for allowing merge only when all discussions are resolved is updated | Yes | GitLab 15.7 | Project |
project_only_allow_merge_if_pipeline_succeeds_updated
| A project’s only allow merge if pipeline succeeds setting is updated | Yes | GitLab 15.7 | Project |
project_packages_enabled_updated
| The setting that controls packages for a project is updated | Yes | GitLab 11.5 | Project |
project_path_updated
| A project’s path is updated | Yes | GitLab 15.5 | Project |
project_printing_merge_request_link_enabled_updated
| The setting for projects for enabling printing merge request link is updated | Yes | GitLab 15.7 | Project |
project_repository_size_limit_updated
| The repository size limit of a project is updated | Yes | GitLab 15.7 | Project |
project_require_password_to_approve_updated
| A project’s setting for requiring a user’s password for approval of merge request is updated | Yes | GitLab 15.7 | Project |
project_resolve_outdated_diff_discussions_updated
| A project’s resolve outdated diff discussions setting is updated | Yes | GitLab 15.7 | Project |
project_security_setting_updated
| A project’s security setting is updated | Yes | GitLab 17.0 | Project |
project_visibility_level_updated
| A project’s visibility level setting is updated | Yes | GitLab 15.7 | Project |
remove_dormant_members_period_updated
| Setting Days of inactivity before removal is updated | Yes | GitLab 17.4 | Group |
remove_dormant_members_updated
| Setting Dormant members is updated | Yes | GitLab 17.4 | Group |
resource_access_token_creation_allowed_updated
| Setting for Users can create project access tokens and group access tokens in this group is updated | Yes | GitLab 17.4 | Group, Project |
runner_registration_enabled_updated
| Setting Runner registration is updated | Yes | GitLab 17.4 | Group |
seat_control_updated
| Setting Seat control is updated | Yes | GitLab 17.4 | Group |
service_access_tokens_expiration_enforced_updated
| Setting Service account token expiration is updated | Yes | GitLab 17.4 | Group |
show_diff_preview_in_email_updated
| Setting Email notification to include diff preview is updated | Yes | GitLab 17.4 | Group, Project |
squash_commit_template_updated
| The merge request squash commit template for a project is updated | Yes | GitLab 15.8 | Project |
squash_option_updated
| Squash option setting is updated | Yes | GitLab 15.0 | Project |
Importers
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
group_export_created
| Triggered when a group file export is created | Yes | GitLab 17.0 | Group |
project_export_created
| Triggered when a project file export is created | Yes | GitLab 17.0 | Project |
Incident management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
incident_closed_by_project_bot
| An incident is closed using a project access token | Yes | GitLab 16.1 | Project |
incident_created_by_project_bot
| An incident is created using a project access token | Yes | GitLab 16.1 | Project |
incident_reopened_by_project_bot
| An incident is reopened using a project access token | Yes | GitLab 16.1 | Project |
MLOps
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
project_feature_model_experiments_access_level_updated
| A project’s model experiments access level is updated | Yes | GitLab 16.1 | Project |
ml_model_created
| ML model is created | Yes | GitLab 17.4 | Project |
ml_model_destroyed
| ML model destroyed | Yes | GitLab 17.4 | Project |
ml_model_version_created
| ML model version is created | Yes | GitLab 17.4 | Project |
ml_model_version_destroyed
| ML model version destroyed | Yes | GitLab 17.4 | Project |
project_feature_model_registry_access_level_updated
| Model registry access level was updated | Yes | GitLab 16.7 | Project |
Not categorized
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
experiment_features_enabled_updated
| Enabling experiment AI features setting is toggled | Yes | GitLab 16.0 | Group |
Permissions
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
member_role_created
| A custom role is created | Yes | GitLab 16.7 | Group, Instance |
member_role_deleted
| A custom role is deleted | Yes | GitLab 16.9 | Group, Instance |
member_role_updated
| A custom role is updated | Yes | GitLab 16.9 | Group, Instance |
Portfolio management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
delete_epic
| An epic is successfully deleted | No | GitLab 15.4 | Group |
epic_closed_by_project_bot
| An epic is closed by a group access token | Yes | GitLab 16.1 | Group |
epic_created_by_project_bot
| An epic is created by a group access token | Yes | GitLab 16.1 | Group |
epic_reopened_by_project_bot
| An epic is reopened by a group access token | Yes | GitLab 16.1 | Group |
Product analytics data management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
product_analytics_settings_update
| Product analytics settings are changed | Yes | GitLab 17.1 | Project |
Project
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
project_access_token_created
| A project access token is created | Yes | GitLab 15.2 | Project |
project_access_token_creation_failed
| Creating a project access token fails | Yes | GitLab 15.2 | Project |
project_access_token_deleted
| A project access token is deleted | Yes | GitLab 15.2 | Project |
project_access_token_deletion_failed
| Deleting a project access token fails | Yes | GitLab 15.2 | Project |
Quality management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
test_case_closed_by_project_bot
| A test case is closed using a project access token | Yes | GitLab 16.1 | Project |
test_case_created_by_project_bot
| A test case is created using a project access token | Yes | GitLab 16.1 | Project |
test_case_reopened_by_project_bot
| A test case is reopened using a project access token | Yes | GitLab 16.1 | Project |
Runner
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
ci_runner_assigned_to_project
| Triggered when a runner is assigned to a project | Yes | GitLab 14.9 | Project |
ci_runner_registered
| Triggered when an instance, group or project runner is registered | Yes | GitLab 14.8 | Instance, Group, Project |
ci_runner_unassigned_from_project
| Triggered when a runner is unassigned from a project | Yes | GitLab 14.9 | Project |
ci_runner_unregistered
| Triggered when an instance, group or project runner is unregistered | Yes | GitLab 14.9 | Instance, Group, Project |
set_runner_associated_projects
| Associated projects are successfully assigned to a CI/CD runner | Yes | GitLab 15.4 | Project |
Secret detection
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
project_security_exclusion_applied
| A project security exclusion is applied in one of the security scanners | Yes | GitLab 17.6 | Project |
project_security_exclusion_created
| A project security exclusion is created | Yes | GitLab 17.5 | Project |
project_security_exclusion_deleted
| A project security exclusion is deleted | Yes | GitLab 17.5 | Project |
project_security_exclusion_updated
| A project security exclusion is updated | Yes | GitLab 17.5 | Project |
skip_secret_push_protection
| Secret push protection is skipped by the user | Yes | GitLab 16.11 | Project |
Secrets management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
user_authenticated_using_job_token
| A user is authenticated using job token | No | GitLab 17.4 | Project |
Security policy management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
policy_project_updated
| The security policy project is updated for a project | Yes | GitLab 15.6 | Group, Project |
Self-hosted models
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
self_hosted_model_created
| A new self-hosted model configuration was added | Yes | GitLab 17.4 | Instance |
self_hosted_model_destroyed
| A new self-hosted model configuration was destroyed | Yes | GitLab 17.4 | Instance |
self_hosted_model_feature_changed
| A self-hosted model feature had its configuration changed | Yes | GitLab 17.4 | Instance |
self_hosted_model_terms_accepted
| Terms for usage of self-hosted models were accepted | Yes | GitLab 17.4 | Instance |
self_hosted_model_updated
| A self-hosted model configuration was updated | Yes | GitLab 17.4 | Instance |
Source code management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
approval_rule_created
| A merge request approval rule is created | Yes | GitLab 15.2 | Project |
approval_rule_deleted
| A merge request approval rule is deleted | Yes | GitLab 14.9 | Project |
group_push_rules_author_email_regex_updated
| A group’s push rules settings is changed for author email regex | Yes | GitLab 15.7 | Group |
group_push_rules_branch_name_regex_updated
| A group’s push rules settings is changed for branch name regex | Yes | GitLab 15.7 | Group |
group_push_rules_commit_committer_check_updated
| A group’s push rule setting is updated for reject unverified users | Yes | GitLab 15.0 | Group |
group_push_rules_commit_message_negative_regex_updated
| A group’s push rules settings is changed for commit message negative regex | Yes | GitLab 15.7 | Group |
group_push_rules_commit_message_regex_updated
| A group’s push rules settings is changed for commit message regex | Yes | GitLab 15.7 | Group |
group_push_rules_file_name_regex_updated
| A group’s push rules settings is changed for filename regex | Yes | GitLab 15.7 | Group |
group_push_rules_max_file_size_updated
| A group’s push rules settings is changed for max file size | Yes | GitLab 15.7 | Group |
group_push_rules_prevent_secrets_updated
| A group’s push rule setting is updated to prevent pushing secret files | Yes | GitLab 15.0 | Group |
group_push_rules_reject_deny_delete_tag_updated
| A group’s push rule setting is updated to deny deletion of tags using Git push | Yes | GitLab 15.0 | Group |
group_push_rules_reject_member_check_updated
| A group’s push rule setting is updated to check if commit author is a GitLab user | Yes | GitLab 15.0 | Group |
group_push_rules_reject_non_dco_commits_updated
| A group’s push rule setting is updated for reject non DCO certified commits | Yes | GitLab 15.0 | Group |
group_push_rules_reject_unsigned_commits_updated
| A group push’s rule setting is updated for reject unsigned commits | Yes | GitLab 15.0 | Group |
merged_merge_request_deleted
| A merged merge request is deleted | No | GitLab 16.0 | Project |
merged_merge_request_deletion_started
| A merged merge request’s deletion is started | No | GitLab 16.1 | Project |
project_fork_operation
| A project is forked | Yes | GitLab 15.2 | Project |
project_fork_relationship_removed
| A project’s fork relationship is successfully removed | Yes | GitLab 15.6 | Project |
project_push_rules_commit_committer_check_updated
| A project’s push rule setting for reject unverified users is updated | Yes | GitLab 16.5 | Project |
protected_branch_code_owner_approval_required_updated
| The protected branch code owner approval required setting is updated | Yes | GitLab 15.8 | Project |
protected_branch_created
| A protected branch is created | Yes | GitLab 15.2 | Project |
protected_branch_removed
| A protected branch is removed | Yes | GitLab 15.2 | Project |
protected_branch_updated
| The setting for protected branches is updated | Yes | GitLab 15.8 | Project |
repository_git_operation
| Authenticated users push, pull, or clone a project using SSH, HTTP(S), or the UI | No | GitLab 14.9 | Project |
require_reauthentication_to_approve_updated
| The setting for requiring reauthentication for merge requqest approvals is updated | Yes | GitLab 17.1 | Group, Project |
manually_trigger_housekeeping
| Triggered when manually triggering housekeeping via API or admin UI | Yes | GitLab 15.9 | Project |
project_blobs_removal
| Triggered when removing blobs via the GraphQL API or project settings UI | Yes | GitLab 17.0 | Project |
project_text_replacement
| Triggered when replacing text via the GraphQL API or project settings UI | Yes | GitLab 17.1 | Project |
System access
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
application_setting_updated
| An application setting is updated | Yes | GitLab 16.3 | Instance |
group_access_token_created
| A group access token is created | Yes | GitLab 15.2 | Group |
group_access_token_creation_failed
| Creating a group access token failed | Yes | GitLab 15.2 | Group |
group_access_token_deleted
| A group access token is deleted | Yes | GitLab 15.2 | Group |
group_access_token_deletion_failed
| Deleting a group access token failed | Yes | GitLab 15.2 | Group |
ip_restrictions_changed
| Any changes in the IP allowlist | Yes | GitLab 15.0 | Group |
login_failed_with_otp_authentication
| Sign-in fails because of an incorrect OTP | Yes | GitLab 16.4 | User |
login_failed_with_standard_authentication
| Sign-in to GitLab fails with standard authentication, such as password | Yes | GitLab 16.4 | Instance |
login_failed_with_webauthn_authentication
| Sign-in fails when using a WebAuthn device | Yes | GitLab 16.4 | User |
update_mismatched_group_saml_extern_uid
| The external UID is changed on a SAML identity | Yes | GitLab 15.7 | User |
user_access_locked
| User access to the instance is locked | Yes | GitLab 16.2 | User |
user_access_unlocked
| User access to the instance is unlocked | Yes | GitLab 16.2 | User |
user_disable_two_factor
| A user disables two factor authentication. Group scope was introduced in GitLab 17.6. | Yes | GitLab 15.1 | User, Group |
user_enable_admin_mode
| Admin Mode enabled | Yes | GitLab 15.7 | User |
Team planning
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
comment_by_project_bot
| A comment is added to an issue or a merge request when using a project access token | No | GitLab 16.1 | Project |
delete_issue
| An issue is successfully deleted | No | GitLab 15.4 | Project |
delete_work_item
| A work item is successfully deleted | No | GitLab 15.4 | Project |
issue_closed_by_project_bot
| An issue is closed using a project access token | Yes | GitLab 16.1 | Project |
issue_created_by_project_bot
| An issue is created using a project access token | Yes | GitLab 16.1 | Project |
issue_reopened_by_project_bot
| An issue is reopened using a project access token | Yes | GitLab 16.1 | Project |
task_closed_by_project_bot
| A task is closed using a project access token | Yes | GitLab 16.1 | Project |
task_created_by_project_bot
| A task is created using a project access token | Yes | GitLab 16.1 | Project |
task_reopened_by_project_bot
| A task is reopened using a project access token | Yes | GitLab 16.1 | Project |
User management
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
authenticated_with_group_saml
| Successfully signing in with SAML authentication | Yes | GitLab 12.10 | Group |
ban_user
| A user is banned, unbanned, blocked, or unblocked | Yes | GitLab 15.11 | User |
change_membership_state
| A user’s membership is updated | Yes | GitLab 15.1 | Group |
inactive_scim_user_cannot_be_added
| A user cannot be added to a group during SAML authentication when their SCIM identity is inactive | Yes | GitLab 17.7 | Group |
password_reset_failed
| A password reset fails for a user | No | GitLab 16.4 | User |
unban_user
| A user is unbanned | Yes | GitLab 15.11 | User |
unblock_user
| A user is banned | Yes | GitLab 15.11 | User |
user_activate
| A user is activated | Yes | GitLab 16.1 | User |
user_approved
| A user is approved for an instance | Yes | GitLab 15.11 | User |
user_blocked
| A user is blocked | Yes | GitLab 15.11 | User |
user_created
| A user is created | Yes | GitLab 15.10 | User |
user_deactivate
| A user is deactivated | Yes | GitLab 16.0 | User |
user_destroyed
| A user is scheduled for removal from the instance. Group and Project scopes were introduced in GitLab 17.5. | Yes | GitLab 15.11 | User, Group, Project |
user_email_changed_and_user_signed_in
| User email changed and user signed in | Yes | GitLab 15.8 | User |
user_impersonation
| An instance administrator starts or stops impersonating a user | Yes | GitLab 14.8 | User, Group |
user_password_updated
| A user password is updated | Yes | GitLab 15.7 | User |
user_rejected
| A user registration is rejected | Yes | GitLab 15.11 | User |
User profile
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
email_confirmation_sent
| Users add or change an email address and it must be confirmed | No | GitLab 16.3 | User |
remove_ssh_key
| A SSH key is removed | Yes | GitLab 14.1 | User |
user_admin_status_updated
| A user is either made an administrator or removed as an administrator | Yes | GitLab 14.1 | User |
user_auditor_status_updated
| A user is either made an auditor or removed as an auditor | Yes | GitLab 16.6 | User |
user_email_address_updated
| A user updates their email address | Yes | GitLab 10.1 | User |
user_name_updated
| A user’s name is updated | Yes | GitLab 17.5 | User |
user_profile_visiblity_updated
| User toggles private profile user setting | No | GitLab 16.3 | User |
user_username_updated
| A user’s username is updated | Yes | GitLab 15.7 | User |
Verify security
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
secure_ci_job_token_group_added
| Group added to CI_JOB_TOKEN scope | Yes | GitLab 17.3 | Project |
secure_ci_job_token_group_removed
| Group removed from CI_JOB_TOKEN scope | Yes | GitLab 17.3 | Project |
secure_ci_job_token_inbound_disabled
| CI_JOB_TOKEN permissions disabled for inbound | Yes | GitLab 16.0 | Project |
secure_ci_job_token_inbound_enabled
| CI_JOB_TOKEN permissions enabled for inbound | Yes | GitLab 16.0 | Project |
secure_ci_job_token_project_added
| Project added to inbound CI_JOB_TOKEN scope | Yes | GitLab 16.0 | Project |
secure_ci_job_token_project_removed
| Project removed from inbound CI_JOB_TOKEN scope | Yes | GitLab 16.0 | Project |
Webhooks
Name | Description | Saved to database | Introduced in | Scope |
---|---|---|---|---|
webhook_created
| Event triggered when a webhook is created. | Yes | GitLab 17.1 | Project, Group, Instance |
webhook_destroyed
| Event triggered when a webhook is destroyed. | Yes | GitLab 17.0 | Project, Group, Instance |