| name | audit-logging |
| description | Structured security event logging with JSON format, 90-day retention, log rotation, and querying for SOC 2 and ISO 27001 compliance. |
| version | 2.0.0-rc |
| author | Kernel Architecture Team |
| triggers | ["log audit","audit log","security event","compliance"] |
| tools | ["mcp__kernel-v2-audit__log","mcp__kernel-v2-audit__query","mcp__kernel-v2-audit__rotate","mcp__kernel-v2-audit__cleanup","mcp__kernel-v2-audit__report"] |
Audit Logging Skill
Purpose
Provides comprehensive audit logging for security events, compliance reporting, and incident investigation.
When to Use
- Log security events
- Query audit history
- Generate compliance reports
- Rotate log files
Available MCP Tools
| Tool | Description |
|---|
mcp__kernel-v2-audit__log | Log security event |
mcp__kernel-v2-audit__query | Query audit logs |
mcp__kernel-v2-audit__rotate | Rotate log files |
mcp__kernel-v2-audit__cleanup | Remove old logs |
mcp__kernel-v2-audit__report | Generate compliance report |
Event Types
- OAUTH: Authentication events
- SECURITY: Security-related events
- ACCESS: Resource access
- MODIFICATION: Configuration changes
Compliance Features
- 90-day retention
- JSON structured format
- Tamper-evident logging
- SOC 2 / ISO 27001 compliant
Workflow
Log an Event
- Call
mcp__kernel-v2-audit__log with event type and details
- Event stored with timestamp and metadata
- Returns event ID for tracking
Query Events
- Call
mcp__kernel-v2-audit__query with filters
- Returns matching events
- Support for date range, type, and user filters
Related Skills
oauth-auth: For OAuth event logging
session-management: For session event logging
security-scan: For security audits