Compliance
Export Policy Gateway audit logs to Elastic
Send Policy Gateway audit logs into Elastic for SIEM queries, data streams, and dashboards.
Updated 2026-01-16
Stream Policy Gateway audit logs into Elastic so security teams can query AI decisions in their SIEM or observability stack.
Exports are available on enterprise plans; contact help@abliteration.ai to enable a log export sink.
{
"destination": "elastic",
"dataset": "policy_gateway.audit",
"namespace": "prod"
}What gets exported
Policy Gateway audit logs include consistent decision metadata for compliance reviews.
Export configuration
Ship audit logs into an Elastic data stream or index for long-term retention.
Sample Elastic event
Elastic data streams accept structured JSON events.
{
"data_stream": {
"type": "logs",
"dataset": "policy_gateway.audit",
"namespace": "prod"
},
"service": {
"name": "policy-gateway"
},
"event": {
"dataset": "policy_gateway.audit",
"action": "rewrite"
},
"policy": {
"policy_id": "support-guardrails",
"decision": "rewrite",
"effective_decision": "rewrite",
"reason_code": "REWRITE",
"policy_user": "user-12345",
"project_id": "support-bot",
"policy_target": "support-bot",
"rollout_mode": "enforced",
"enforced": true,
"triggered_categories": ["self-harm/intent"],
"allowlist_hits": ["refund policy"],
"denylist_hits": [],
"model": "abliterated-model",
"created_at": "2026-01-16T18:22:11Z"
}
}