Claude-skill-registry audit_logging

Name: audit_logging
Author: majiayu000

Ensure every critical action is logged (vital for UAG/Trust Room).

install

source · Clone the upstream repo

git clone https://github.com/majiayu000/claude-skill-registry

Claude Code · Install into ~/.claude/skills/

T=$(mktemp -d) && git clone --depth=1 https://github.com/majiayu000/claude-skill-registry "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/data/audit-logging-cityfish91159-maihouses" ~/.claude/skills/majiayu000-claude-skill-registry-audit-logging && rm -rf "$T"

manifest: skills/data/audit-logging-cityfish91159-maihouses/SKILL.md

Audit Logging Protocol

1. Principles

No Invisible Actions: Every state-changing API call (POST, PUT, DELETE) must produce a log entry.
Traceability: Logs must include
```
userId
```
,
```
action
```
,
```
resourceId
```
, and
```
metadata
```
.

2. Implementation Standards

Backend (API):

Use the project's standard Logger service (e.g.,
```
src/services/logger.ts
```
or similar).

Example:

await Logger.info({
  event: 'POST_CREATED',
  userId: user.id,
  metadata: { postId: newPost.id },
});

Database (Supabase):
- Ensure tables have
```
created_at
```
  ,
```
updated_at
```
  , and
```
created_by
```
  columns.
- Check if specific Audit Table inserts are required (e.g.
```
audit_logs
```
  table).

3. Verification Checklist

Does the new API endpoint call
```
Logger
```
?
Are logs visible in Supabase/Dashboards?
Is the log level appropriate (Info vs Error)?
Does the log contain enough context to debug issues later?