Skip to main content
Karta records audit entries for material account changes: keys minted, budgets changed, releases activated, webhook endpoints updated, model credentials stored, and members invited or removed. Use this page when a security reviewer or operator needs to answer “who changed this account state, from where, and when?” For session transcripts, use Sessions & participants instead.

What gets recorded

Each event includes: Sensitive values such as bearer tokens, webhook secrets, and BYOK plaintext are not recorded.

Query and export

Owners and admins can review audit events in the dashboard. API export requires the audit_log:export scope:
Expected signal: the response content type is text/csv, and a later audit-log query includes an audit_log.exported event with the export filters in metadata.

Troubleshooting

The audit log records material account changes (identity, money, deploys). It is not a transcript of agent conversations - conversation history lives with the agent session path.