Compliance Reports

Compliance reports turn governance data into the evidence auditors ask for — on demand or on a schedule — with persisted snapshots so you can prove what was true at a point in time.

Admin console: /admin/reports

Report kinds

• Audit activity — actions over a period from the tamper-evident audit log.
• Access review summary — certification campaign outcomes.
• Sign-in activity — authentication events and patterns.
• ISPM posture trend — identity security posture over time (a Recharts trend on the reports page).
• Reconciliation drift — drift findings across targets over time.

Concepts

• Snapshot — a persisted, point-in-time result of a report, generated on demand or by schedule.
• runAndSnapshot — generate a report and store its snapshot; list and open prior snapshots from the API / UI.
• CSV export — exports neutralize formula injection (values that could be interpreted as spreadsheet formulas are escaped).

How it works

A report definition + period produces a result that can be rendered live and snapshotted. Scheduled snapshots build the history behind trend charts (e.g. the ISPM posture trend), and on-demand runs answer ad-hoc audit questions. Snapshots are immutable evidence.

Typical use

1. /admin/reports → choose a report kind and period.
2. Run it (and snapshot it), or schedule recurring snapshots.
3. View the posture-trend chart and open historical snapshots.

Related

• Reconciliation · Access Reviews