II.
StackProfile overview
Reference · livestack-profile:compliance-audit-trail
Compliance & Audit Trail (Go, PostgreSQL, RabbitMQ, Vault, Elasticsearch, Prometheus) overview
An immutable audit trail system that captures, indexes, and monitors every compliance-relevant event across the organization. Go services ingest events from RabbitMQ queues and write append-only records to PostgreSQL with cryptographic hash chains for tamper evidence. Elasticsearch provides full-text search over millions of audit entries for investigator queries and regulatory reporting. HashiCorp Vault manages encryption keys and secrets for data-at-rest protection. Prometheus tracks ingestion lag, storage growth, and query latency. The tradeoff is storage cost growth over time and the difficulty of balancing retention policies with regulatory hold requirements.
Attributes
displayName
Compliance & Audit Trail (Go, PostgreSQL, RabbitMQ, Vault, Elasticsearch, Prometheus)
description
An immutable audit trail system that captures, indexes, and monitors
every compliance-relevant event across the organization. Go services
ingest events from RabbitMQ queues and write append-only records to
PostgreSQL with cryptographic hash chains for tamper evidence.
Elasticsearch provides full-text search over millions of audit entries
for investigator queries and regulatory reporting. HashiCorp Vault
manages encryption keys and secrets for data-at-rest protection.
Prometheus tracks ingestion lag, storage growth, and query latency.
The tradeoff is storage cost growth over time and the difficulty of
balancing retention policies with regulatory hold requirements.
composes
Outgoing edges
applies_to2
- domain:compliance·DomainCompliance
- domain:security·DomainSecurity
composed_of8
- language:go·LanguageGo
- tool:psql·Toolpsql
- tool:rabbitmq·ToolRabbitMQ
- tool:vault·ToolHashiCorp Vault
- tool:elasticsearch·ToolElasticsearch
- tool:prometheus·ToolPrometheus
- library:zerolog·Libraryzerolog
- library:chi·LibraryChi
follows_workflow2
- workflow:compliance-audit·WorkflowCompliance Audit
- workflow:access-control-audit·WorkflowAccess Control Audit
requires_skill_area5
- skill-area:compliance-automation·SkillAreaCompliance Automation
- skill-area:search-indexing·SkillAreaSearch and Indexing
- skill-area:secrets-rotation·SkillAreaSecrets Rotation
- skill-area:observability-instrumentation·SkillAreaObservability Instrumentation
- skill-area:event-driven-architecture·SkillAreaEvent-Driven Architecture
used_by_role3
- role:compliance-engineer·RoleCompliance Engineer
- role:security-engineer·RoleSecurity Engineer
- role:audit-analyst·RoleAudit Analyst
Incoming edges
None.