MCP
Audit Logs
Query the audit trail via MCP tools — who did what and when.
Audit logs record who performed what action on which resource within a team — creating an app, revoking an API key, changing a member's role, etc. Each entry includes actor type (user / api_key / system), action (create / update / delete), resource, and a before/after diff.
Requires audit_logs:read permission.
list-audit-logs
List audit log entries for a team. Supports filtering by resource type, actor, action, and date range.
| Parameter | Type | Required | Description |
|---|---|---|---|
team_id | UUID | Yes | The team ID |
resource_type | string | No | Filter by resource type: app, project, api_key, team, team_member, invitation, metric_definition, funnel_definition, user, integration, job_run, issue |
resource_id | UUID | No | Filter by resource ID |
actor_id | UUID | No | Filter by actor ID |
action | string | No | create, update, or delete |
since | string | No | Start time |
until | string | No | End time |
cursor | string | No | Pagination cursor |
limit | number | No | Max results (default 50) |
Returns { audit_logs: [...], cursor, has_more }. Each entry includes actor_type (user, api_key, or system), action, resource_type, resource_id, metadata, and created_at.