Cloudsmith's robust logging capabilities offer invaluable insights into your software supply chain. Here's a quick guide on how to pull and analyze these logs like a pro.
Types of Cloudsmith Logs
1. Audit Logs:
- Organizational Audit Logs: Capture events across your organization, like repository creation/deletion and setting modifications.
- Repository Audit Logs: Track non-package actions within a repo, such as modifying retention rules or creating an entitlement token.
Uses:
- Security Incident Management: Identify and respond to unauthorized access or suspicious activities.
- Compliance Monitoring: Track changes to ensure adherence to policies and regulations.
- Troubleshooting: Investigate and resolve specific issues using historical logs.
- Resource Planning: Monitor repository activity for capacity planning.
2. Client Logs:
- Record every package download with details like date, time, user agent, and IP address.
Uses:
- Operational Efficiency: Optimize infrastructure and resource allocation by analyzing package consumption.
- Product Development: Identify popular packages and download trends to inform feature improvements.
3. Package Logs:
- Provide detailed records of all package-related events, including event types, dates/times, user IP addresses, and account details.
Uses:
- Resource Planning: Understand resource utilization trends and plan infrastructure scaling.
- User Behavior Analysis: Identify usage patterns, geographical trends, and popular packages.
Extracting and Analyzing Cloudsmith Logs
Extract Logs:
- Export to AWS S3: Export logs to an AWS S3 bucket. Go to our Product documentation for instructions of how to set up s3 log via AWS.
-
Access via Cloudsmith API: Access real-time audit logs for your organization and repositories.
- Audit log entries for your organization (namespace)
- Audit log entries for a specific repository within your organization
Analyze Logs:
- Datadog: Ingest and analyze logs to gain insights into system performance.
- Elasticsearch: Efficiently analyze and visualize logs using Elastic Stack.
- Splunk: Search, monitor, and analyze logs ingested from AWS S3.
- Amazon Athena: Analyze data in an Amazon S3 bucket using standard SQL queries.
Setting up s3 log export
Go to our Product documentation to start exporting logs, contact us or create a ticket and we’ll jump in to help.
Comments
Please sign in to leave a comment.