We’re excited to introduce a new feature in OpenCVE: Audit Logs.

Security operations often involve multiple teams managing projects, subscriptions, notifications, and access permissions. As organizations grow, keeping track of configuration changes becomes increasingly important.

Audit Logs bring full traceability to your OpenCVE workspace by recording the actions performed by users across the platform.

Understand who did what

With Audit Logs, you can easily see:

• who performed an action
• what resource was affected
• when the action happened

This provides a clear activity history across your organization.

Whether a project was updated, a subscription was modified, or a notification was disabled, the change is recorded and visible.

See exactly what changed

When a resource is updated, OpenCVE displays a before-and-after comparison of the modified fields.

This allows you to quickly understand what changed without guessing or manually comparing configurations.

For example, you can easily see when:

• a subscription was added or removed from a project
• a notification configuration was modified
• a user role changed
• an API token was activated or revoked

Improve operational transparency

In security teams, visibility is essential.

Audit Logs help organizations:

• maintain clear operational traceability
• understand configuration changes
• investigate unexpected behavior
• ensure actions remain accountable across teams

This becomes increasingly valuable as more users collaborate on vulnerability monitoring workflows.

Available in OpenCVE

Audit Logs are available in the OpenCVE Enterprise plan.

To learn more: https://docs.opencve.io/guides/audit_logs/.