ea5a3d145ab67ca8
7cd6fcc247a98354
38b2d9b9b0068f0f
6e9f88f64f76cf5b
933313238dcb7070
3f1fa6bbc84e3e9f
9e8ee06362804897
bb908fa9f4766cc2
7def5a9cf9be6728
943b7c2373f9dd59
9124b108347551a4
df3b9a6986bc9d20
6f934d83f8566715
eb2162f8a1b5b5cf
b27749a02d4a85f4
5a057fcc9a7c4eef
85d2744ecab2da28
f45d49bfaaa395d9
e70b969486177f03
78366edea137e8ae
20b706560de23c63
e2a579b14bafaabb
f3b6722f8fa3017c
a8daa0984d79e36b
f7d93a2244c74708
f46210d4277d7e37
35bb2c4eff7bc42f
cf7730687dbb55c7
13faee188dad96a0
bbcbce5e3b1254dd
ea4169b595db1d32
620268a73c81e348
5b7c2338862ee6a9
f8eb840401726cc7
65b598798117e162
00f1f3a76b675776
cb6c06c0448a28b2
af4bb6f320a5ecdc
2aeddcfbdcb876ce
3e7cc5d5510399f0
ea5a3d145ab67ca8
7cd6fcc247a98354
38b2d9b9b0068f0f
6e9f88f64f76cf5b
933313238dcb7070
3f1fa6bbc84e3e9f
9e8ee06362804897
bb908fa9f4766cc2
7def5a9cf9be6728
943b7c2373f9dd59
9124b108347551a4
df3b9a6986bc9d20
6f934d83f8566715
eb2162f8a1b5b5cf
b27749a02d4a85f4
5a057fcc9a7c4eef
85d2744ecab2da28
f45d49bfaaa395d9
e70b969486177f03
78366edea137e8ae
20b706560de23c63
e2a579b14bafaabb
f3b6722f8fa3017c
a8daa0984d79e36b
f7d93a2244c74708
f46210d4277d7e37
35bb2c4eff7bc42f
cf7730687dbb55c7
13faee188dad96a0
bbcbce5e3b1254dd
ea4169b595db1d32
620268a73c81e348
5b7c2338862ee6a9
f8eb840401726cc7
65b598798117e162
00f1f3a76b675776
cb6c06c0448a28b2
af4bb6f320a5ecdc
2aeddcfbdcb876ce
3e7cc5d5510399f0

Alpha

Laravel Audit to prove it!

SHA-256 cryptographic hash chain on your Eloquent models. Know who changed what, when — and prove it.

Get Started Live Demo GitHub

app/Models/Order.php

use GrayMatter\AuditChain\Concerns\HasAuditTrail;
use GrayMatter\AuditChain\Contracts\Auditable;

class Order extends Model implements Auditable
{
    use HasAuditTrail;
}

// Every change is cryptographically chained
$order = Order::create(['status' => 'pending']);
$order->update(['status' => 'shipped']);

Install in seconds

From composer install to audit trail in three steps.

Add a tamper-evident cryptographic chain to your existing Eloquent models.

Install the package

composer require graymatter/laravel-audit-chain

Publish & migrate

php artisan vendor:publish && php artisan migrate

Add the trait

use HasAuditTrail;

Built for security

Every entry is cryptographically linked to the one before it.

If someone modifies, deletes or inserts an entry, the chain breaks and the audit:verify command catches it immediately.

Tamper-evident

SHA-256 hash chain — any tampering is instantly detectable. Eloquent logs are write-protected.

Full traceability

Every change, every user, every timestamp — searchable and exportable.

Verification

Artisan command + programmatic API. Automated alerts via email and webhooks.

Use cases

Real scenarios, concrete answers.

Someone deleted a record. Who? When? Can you prove it?

Every change is chained. Run audit:verify.

The regulator requests a full audit log.

Export the complete chain — verifiable and tamper-evident.

A developer bypassed Eloquent to modify data directly.

The chain breaks. audit:verify catches it instantly.

Features

Security, traceability, and integrity verification for your models.

Security

Hash Chain

SHA-256 cryptographically linked chain. Any tampering is instantly detectable.

Chain Verification

Artisan command and programmatic API to verify chain integrity.

Data Privacy

Personal data annotation, export, and anonymization.

Traceability

Dual Mode

Light mode (activity log) or full mode (audit trail) depending on your needs.

Field Control

Include/exclude fields. $hidden captured at boot + security blocklist.

Custom Events

Record business events: published, approved, shipped.

Operations

Batch Grouping

Group related operations under a single batch UUID.

Queue Support

Offload recording to background jobs for better performance.

SoftDeletes

Auto-detection with restored and forceDeleted event capture.

Compliance

Notifications

Email and webhook alerts (Slack, Teams, Discord).

Separate Database

Isolate audit data in a dedicated database.

Compliance

Meets NIS2, SOC2, and ISO 27001 requirements.

use GrayMatter\AuditChain\Concerns\HasActivityLog;

class Post extends Model implements Auditable
{
    use HasActivityLog;
}

// hash: null, prev_hash: null
// Simple event logging

use GrayMatter\AuditChain\Concerns\HasAuditTrail;

class Order extends Model implements Auditable
{
    use HasAuditTrail;
}

// hash: SHA-256, prev_hash: linked
// Tamper-evident and verifiable

Two modes, one package

Choose the right security level for each model.

HasActivityLog for lightweight logging without hashing. HasAuditTrail for the full cryptographic chain. Both share the same API, table, and ecosystem.

Coming soon

AuditChain Monitoring Pro

Monitor your data integrity in real time. Detect anomalies before they become incidents.

Pro

Real-time Dashboard

Visualize audit chain status, event volumes, and trends at a glance.

Pro

Anomaly Detection

Smart alerts on unusual patterns: mass deletions, off-hours changes, suspicious access.

Pro

Scheduled Verification

Automated chain integrity checks with reports and history.

Pro

Compliance Reports

Auditor-ready PDF/CSV reports. NIS2, SOC2, ISO 27001.

Pro

User Activity Timeline

View all user actions on an interactive timeline.

Pro

Data Diff Viewer

Visually compare before/after changes on every audit entry.

Pro

Interested in AuditChain Monitoring Pro?

Monitoring, external anchoring, compliance reports and more. Get notified at launch.

No spam. Launch notification only.

Ready to get started?

Add immutable audit trails to your Laravel application in minutes.

terminal

$ composer require graymatter/laravel-audit-chain

Get Started View on GitHub

PHP 8.2+ · Laravel 11 & 12 · MIT License · Alpha