plugin-icon

TraceVault Audit Log

Security-focused activity logging, audit reporting, retention controls, privacy tools, and filtered exports for WordPress.
バージョン
1.0.0
最終更新日時
Jul 12, 2026
TraceVault Audit Log

TraceVault Audit Log gives administrators a clear, searchable audit trail for important WordPress activity. It records user, content, media, comment, plugin, theme, settings, and optional WooCommerce events into optimized custom tables, then makes that activity easy to review from wp-admin.

Use it to investigate account activity, track content changes, review system-level events, export filtered reports, and control how long audit data stays on the site.

Key Features

  • Custom database tables for audit logs, metadata, and settings.
  • Batched log writes to reduce runtime overhead.
  • Indexed filters for event type, severity, user, role, IP address, object, date, and keyword search.
  • Activity Logs screen with readable event labels, quick filters, CSV/JSON exports, and clear controls.
  • Configurable admin date display, including WordPress format, relative time, and fixed timestamp formats.
  • REST API endpoints for logs, stats, and exports.
  • Retention controls, IP anonymization, personal data export, and personal data erasure support.
  • Multisite activation support.
  • Developer hooks and filters for custom event types.
  • Quiet defaults: verbose option-update logging is disabled unless enabled, and noisy cache-style options are ignored.

Logged Activity

TraceVault Audit Log can record:

  • Users: login, logout, failed login attempts, profile updates, password changes, role changes, user creation, and deletion.
  • Content: post and page creation, updates, deletion, media upload/deletion, comment creation, comment status changes, and comment deletion.
  • System: plugin activation/deactivation/deletion, plugin and theme install/update completion, theme switch, and selected settings changes.
  • WooCommerce: order create/update/status change, product create/update, and coupon create/update when WooCommerce is active.

Privacy and Retention

Audit logs can contain operationally sensitive data. TraceVault Audit Log keeps the controls local to your WordPress install:

  • No external logging service is required.
  • Retention defaults to 90 days and can be changed from settings.
  • IP anonymization can be enabled before storage.
  • Personal data exporter and eraser callbacks are registered for WordPress privacy tools.
  • Data deletion on uninstall is opt-in so audit history is not removed accidentally.

Developer Friendly

Developers can create custom events with tracevault_log_event() and extend behavior with filters such as tracevault_allowed_events and tracevault_log_data_before_insert.

無料有料プラン
インストールすることで、WordPress.com の利用規約サードパーティプラグイン利用規約に同意したことになります。
最大テスト回数
WordPress 7.0.1
このプラグインをダウンロードして、 サイトに使用できます。