Skip to content

WIP: Audit Trails#161

Open
itsyaasir wants to merge 274 commits into
mainfrom
feat/audit-trails-dev
Open

WIP: Audit Trails#161
itsyaasir wants to merge 274 commits into
mainfrom
feat/audit-trails-dev

Conversation

@itsyaasir
Copy link
Copy Markdown
Contributor

@itsyaasir itsyaasir commented Dec 11, 2025

Description of change

Links to any relevant issues

Type of change

  • Bug fix (a non-breaking change which fixes an issue)
  • Enhancement (a non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • Documentation Fix

How the change has been tested

Change checklist

  • I have followed the contribution guidelines for this project
  • I have performed a self-review of my own code
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have added tests that prove my fix is effective or that my feature works
  • I have checked that new and existing unit tests pass locally with my changes
  • I have updated the CHANGELOG.md, if my changes are significant enough

itsyaasir
itsyaasir commented Jan 5, 2026
View reviewed changes
Comment thread audit-trail-move/sources/capability.move Outdated
itsyaasir and others added 26 commits January 5, 2026 09:59
@itsyaasir
chore: fmt fixes & add prettier configuration
213ac6b
@chrisgitiota
New Capability restrictions: issued_to, valid_until and valid_from
71d2dd4 
Also split of the role and capability management from the AT main module to allow reuse with other products.
@chrisgitiota
Merge branch 'feat/audit-trails-dev' into feat/audit-trails-dev-caps-…
d9f7829 
…extended

# Conflicts:
#	audit-trail-move/sources/audit_trail.move
#	audit-trail-move/sources/capability.move
#	audit-trail-move/tests/capability_tests.move
#	audit-trail-move/tests/create_audit_trail_tests.move
#	audit-trail-move/tests/role_tests.move
#	audit-trail-move/tests/test_utils.move
@chrisgitiota
chore: Fixed format issues
a8d084e
@chrisgitiota
Only revoke cap_to_destroy if they are contained in issued_capabilities
8a5297b
@itsyaasir
chore: function sig refactor & adding of emitting events
a091087
@itsyaasir
refactor: update capability permission checks and enhance test coverage
06d26b9 
- Changed capability permission checks in `has_capability_permission` and `destroy_capability` functions to use `cap.trail_id()` instead of `cap.id()`.
- Improved test cases for capability creation, revocation, and metadata updates, ensuring proper permission handling and error scenarios.
- Added new tests for locking configurations and metadata management, enhancing overall test coverage for the audit trail functionality.
@itsyaasir
refactor: improve test readability with consistent formatting
d55e41b 
- Reformatted function calls in locking and role tests for better readability by aligning parameters across multiple lines.
- Enhanced clarity in test cases related to locking configurations and role permissions, ensuring easier maintenance and understanding of the test logic.
@itsyaasir
fix: correct typos in permission documentation and improve comments
5f45822 
- Fixed typos in comments related to the `Permission` enum and `admin_permissions` function for clarity.
- Enhanced documentation to better reflect the intended roles and permissions within the audit trail system.
@itsyaasir
fix: enhance documentation clarity in new_metadata function
d894813
@itsyaasir
refactor: update TrailImmutableMetadata structure and related functio…
08966a0 
…ns to use non-optional name field; adjust tests for consistency
@itsyaasir
refactor: enhance documentation and add role management tests
06fac21
@itsyaasir
Merge pull request #176 from iotaledger/chore/add-events-audit-trails
446eb4e 
chore: function refactor, adding of emitting events & improving test coverage
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/make-immutable-md-opt…
1b3ed35 
…ional
@itsyaasir
Merge pull request #178 from iotaledger/chore/make-immutable-md-optional
622190b 
chore: make `ImmutableMetadata` optional
@itsyaasir
fix: add error handling for existing roles in role management functions
a2c8023
@itsyaasir
refactor: rename record_count to sequence_number for clarity and upda…
a4491b1 
…te related tests
@chrisgitiota
Merge branch 'feat/audit-trails-dev' into feat/audit-trails-dev-caps-…
650acfe 
…extended

# Conflicts:
#	audit-trail-move/sources/audit_trail.move
#	audit-trail-move/tests/capability_tests.move
@chrisgitiota
All existing tests migrated to the latest RoleMap interface
84e4e82
@chrisgitiota
Merge branch 'main' into feat/audit-trails-dev-caps-extended
fbd271a
@chrisgitiota
Removed superfluous "public use fun" statements and function prefixes
cce0159
@chrisgitiota
Merge pull request #174 from iotaledger/feat/audit-trails-dev-caps-ex…
4afb700 
…tended
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/audit-trails-bugs
af3ec03
@itsyaasir
chore: Disable the abort_without_constant lint for all test modules.
0e851cf
@itsyaasir
Merge pull request #179 from iotaledger/chore/audit-trails-bugs
3968c63 
fix: creation of roles & make the sequence and record number clear
@itsyaasir
Merge branch 'main' into feat/audit-trails-dev
3704f30
@itsyaasir itsyaasir self-assigned this Jan 22, 2026
itsyaasir added 11 commits April 30, 2026 15:02
@itsyaasir
Merge pull request #253 from iotaledger/chore/fix-tf-package-id-resolver
1f13c12 
chore: simplify `TfComponent` Package resolution
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/add-return-values-for-at
49a7f58
@itsyaasir
docs: update README files for IOTA Notarization Suite and add new ban…
0b7efbd 
…ner image
@itsyaasir
docs: update title in README for clarity
9e64fb4
@itsyaasir
Merge pull request #248 from iotaledger/chore/add-return-values-for-at
d7ff478 
chore: enhance audit trail API with return values
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/update-readme
ec1c3da
@itsyaasir
Merge pull request #255 from iotaledger/chore/update-readme
1951bec 
chore: update readme docs for notarization & at
@itsyaasir
Fix Markdown table alignment in README
1fe4a92
@itsyaasir
Skip unauthorized tagged records in batch deletes
fbd1942
@itsyaasir
Refactor conditional formatting for record tag validation in batch de…
86dd523 
…lete
@itsyaasir
Merge pull request #256 from iotaledger/chore/skip-for-invalid-record…
88102a0 
…-tag

Skip unauthorized tagged records in batch deletes
itsyaasir and others added 18 commits May 8, 2026 10:40
@itsyaasir
Refactor audit-trail record deletion helpers
343470d
@itsyaasir
Merge pull request #259 from iotaledger/chore/address-pr-256-review-c…
47b3167 
…omments

chore: refactor and rename functions
@chrisgitiota
Merge branch 'main' into feat/audit-trails-dev
1994b2f 
# Conflicts:
#	Cargo.toml
#	bindings/wasm/notarization_wasm/Cargo.toml
@chrisgitiota
Fix missing secret-storage dep due to latest upstream branch merges
c2afb5c
@itsyaasir
feat: Add migration permission to admin permissions and corresponding…
adaf45a 
… test
@itsyaasir
feat: Implement count-based locking for record deletion and update re…
2457853 
…lated documentation
@itsyaasir
fix: Correct indentation in is_record_locked function for improved re…
0e6e7b8 
…adability
@itsyaasir
Add product selector to docs upload workflow
6bcc990
@chrisgitiota
Fix aws upload URL for audit-trail-wasm
97c1cb8
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/security-audit
1719a07
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/fix-upload-ci-workflow
73ee281
@itsyaasir
Merge pull request #262 from iotaledger/chore/fix-upload-ci-workflow
76b8c33 
Split product-specific workflow publishing and docs uploads
@itsyaasir
Merge branch 'feat/audit-trails-dev' into chore/security-audit
21c0199
@chrisgitiota @itsyaasir
Rewrite of delete_records_batch and is_record_locked functions (#263
901dae0 
)

- Rewrite of the `delete_records_batch()` and `is_record_locked()` functions to only evaluate against the existing records once when the transaction begins (has been evaluated for each deleted record before)
- `window_count_based(0)` is now forbidden in favor of using `window_none()` instead to prevent silently misconfigured trails.
-  Client-relevant asserts in Move `locking` module are validated in the AT Rust libraries public surface now

The Move locking module has two client-relevant asserts, now being also validated in the Rust crate:
  1. ECountWindowMustBePositive — window_count_based(0) is rejected.
  2. EUntilDestroyedNotSupportedForDeleteTrail — TimeLock::UntilDestroyed cannot be used as the trail-level delete lock (but it is valid for write_lock).

The tf_components::timelock module also asserts EPastTimestamp on unlock_at/unlock_at_ms when the timestamp is in the past. This is not mirrored in the Rust crate because it depends on the on-chain clock at execution time, so a client-side check would either be redundant (if the user picks a far-future timestamp) or wrong (if the transaction is built well before submission and a borderline timestamp lapses).

---------

Co-authored-by: Yasir <yasir@shariff.dev>
@chrisgitiota
Fix fmt issues
760c7df
@chrisgitiota
Fix prettier-move issues
9e782b1
@chrisgitiota
Fix clippy issues
1871a78
@itsyaasir
Merge pull request #261 from iotaledger/chore/security-audit
5709483 
Fix audit-trail Move security audit findings
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@itsyaasir itsyaasir

@chrisgitiota chrisgitiota

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[AT]: Extend the CI to include the AT Packages

3 participants

@itsyaasir @chrisgitiota @qrayven