Articles in this section

How to utilize Cloudsmith Logs for Enhanced Observability

Cloudsmith's robust logging capabilities offer invaluable insights into your software supply chain. Here's a quick guide on how to pull and analyze these logs like a pro.

Types of Cloudsmith Logs

1. Audit Logs:

  • Organizational Audit Logs: Capture events across your organization, like repository creation/deletion and setting modifications.
  • Repository Audit Logs: Track non-package actions within a repo, such as modifying retention rules or creating an entitlement token.

Uses:

  • Security Incident Management: Identify and respond to unauthorized access or suspicious activities.
  • Compliance Monitoring: Track changes to ensure adherence to policies and regulations.
  • Troubleshooting: Investigate and resolve specific issues using historical logs.
  • Resource Planning: Monitor repository activity for capacity planning.

2. Client Logs:

  • Record every package download with details like date, time, user agent, and IP address.

Uses:

  • Operational Efficiency: Optimize infrastructure and resource allocation by analyzing package consumption.
  • Product Development: Identify popular packages and download trends to inform feature improvements.

3. Package Logs:

  • Provide detailed records of all package-related events, including event types, dates/times, user IP addresses, and account details.

Uses:

  • Resource Planning: Understand resource utilization trends and plan infrastructure scaling.
  • User Behavior Analysis: Identify usage patterns, geographical trends, and popular packages.

Extracting and Analyzing Cloudsmith Logs

Extract Logs:

  • Export to AWS S3: Export logs to an AWS S3 bucket. Go to our Product documentation for instructions of how to set up s3 log via AWS.

Screenshot 2024-06-04 at 13.16.37.png

  • Access via Cloudsmith API: Access real-time audit logs for your organization and repositories.
    • Audit log entries for your organization (namespace)
    • Audit log entries for a specific repository within your organization 

Analyze Logs:

  • Datadog: Ingest and analyze logs to gain insights into system performance.
  • Elasticsearch: Efficiently analyze and visualize logs using Elastic Stack.
  • Splunk: Search, monitor, and analyze logs ingested from AWS S3.
  • Amazon Athena: Analyze data in an Amazon S3 bucket using standard SQL queries.

Setting up s3 log export

Go to our Product documentation to start exporting logs, contact us or create a ticket and we’ll jump in to help. 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.