ausus/audit-database

AUSUS — Database TransactionalSink (RFC-007). Skeleton: name reserved; V0 ships an inline DatabaseAuditSink inside ausus/persistence-sql.

Maintainers

Package info

github.com/adonko3xBitters/audit-database

Homepage

pkg:composer/ausus/audit-database

Statistics

Installs: 0

Dependents: 0

Suggesters: 0

Stars: 0

Open Issues: 0

Security

Advisories: 0

Aikido package health analysis

0.1.0 2026-05-19 10:17 UTC

Requires

  • php: >=8.3

MIT 039401e5f95c8a0cf8dbdd83f064486011a6bbba

frameworkAudittransactionalausus

This package is auto-updated.

Last update: 2026-05-20 01:57:57 UTC

README

L3 — TransactionalSink implementation writing audit entries to the same database as ausus/persistence-sql.

Owned RFC surfaces

  • RFC-007 Draft-02 + Amendment-01 — Auditor implementation, TransactionalSink for the kernel_audit_log table.
  • Per RFC-007 §5.3: recommended default. No orphans architecturally possible because audit writes share the active transaction with data writes.

Capabilities advertised

supportsDedupByEntryId()  -> true          # UNIQUE on entry_id
maxSampleHandles()        -> 100           # RFC-007 §13.1 default
preservesInsertionOrder() -> true          # sequence per correlation_id
preservesElevation()      -> true          # Amendment-01 §A-7.2 column

Schema (created via package migration)

kernel_audit_log: entry_id (PK, ULID) · sequence · actor_* · tenant_id · action_fqn · subject_kind · subject_* · inputs (jsonb) · outputs (jsonb) · timestamp · correlation_id · trace_id · invocation_class · elevation (jsonb nullable) · emitter_version.

outputs.bulk_entities lives inside the outputs JSONB per RFC-007 Amendment-01 §A-7.1.

Append-only enforced via database-role grant: INSERT only.