Audit
The complete activity timeline for your workspace.
Audit is the activity timeline for your Convoy Cloud workspace. It records every meaningful action — deployments, app changes, member events, GitHub pushes, billing events, alerts, and more — in a single searchable feed.
Open it from Audit in the sidebar.
What you see
Each row in the Audit timeline represents one event:
| Column | What it shows |
|---|---|
| Time | When the event occurred, displayed as a relative timestamp (hover for exact UTC time) |
| Action | A badge describing what happened, colour-coded by outcome: green for success, red for failure, amber for warnings |
| Target | The resource the event affected — an app name, a domain, a member, a deployment ID |
| Actor | Who or what caused it — a workspace member, the platform (system), a GitHub webhook, or an automated process |
Click any row to expand it and see the full event payload, including the eventId, correlationId, category, severity, and structured JSON data.
Event categories
Use the category filter above the timeline to focus on what you care about:
| Category | What it covers |
|---|---|
| Deployments | Every deployment lifecycle transition: created, building, deploying, succeeded, failed, cancelled, superseded, rolled back |
| Apps | App created, deleted, paused, resumed, config changes, deployment pointer changes |
| GitHub | Push events received, auto-deploy triggered or skipped |
| Billing | Invoice created, payment succeeded or failed, plan changed, grace period warnings |
| Alerts | Alert rule fired or resolved |
| Domains | Domain added, verified, assigned, removed |
| Members | Member invited, joined, removed, role changed |
| Tenant | Workspace provisioned, namespace created |
| Notifications | In-app notification delivered |
Searching and filtering
- Category filter — click a category pill to narrow the timeline to that type.
- Time range — use the date controls to look at a specific window.
- Text search — the search bar matches against action names, target names, and actor names.
Reading a deployment event
Deployment events are the most detailed. An expanded deployment row shows:
- The
deploymentId— a unique ID you can cross-reference with build logs on the app detail page - The
correlationId— links related events together (e.g., a failed deployment and its auto-rollback) gitCommit,gitBranch— the code that was deployederrorMessage— for failed events, the exact failure reason
Example chain for a failed deployment with auto-rollback:
deployment.created— deploy queueddeployment.building— build starteddeployment.failed— deploy error (errorMessage in payload)deployment.rollback_triggered— auto-rollback initiateddeployment.succeeded— previous version restored
All five rows share the same correlationId, so filtering by it shows the full story.
Auto-rollback events
When a deployment fails and Convoy Cloud automatically rolls back to the previous version, the Audit log records the full chain. The rollback deployment row has autoPromoted: true in its payload and promotedFrom set to the deployment ID that was restored.
Notes
- Events are retained for 365 days.
- The timeline is scoped to your active workspace. Switch workspaces from the sidebar to see another workspace's events.
- All times are shown in your browser's local timezone.