| ▲ | ambicapter 5 hours ago | |
> may have built observability dashboards and audit logs, but those are editable and partisan Why would these be editable? | ||
| ▲ | brian_kuan 5 hours ago | parent [-] | |
Because they live in infrastructure the vendor itself controls - there's some conflict of interest there. Things like retention, rotation, deletion, what gets included/excluded, etc are all decisions the vendor makes. Same reason why compliance requires audits! The hash chain doesn't make the log unwritable, it makes any edit detectable. | ||