Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.fact0.io/llms.txt

Use this file to discover all available pages before exploring further.

Compliance guide

This page is for compliance leads, GRC managers, and security reviewers. Engineers should start with the Quickstart.

What LedgerFlow provides

  • Immutable, hash-chained audit history per organization
  • Dashboard filtering by actor, action, time range, outcome
  • PDF audit reports and ZIP evidence packs
  • Public verification URLs for external auditors
  • Read-only share links for customer security teams

Dashboard access

Cloud: app.ledgerflow.io/dashboard/audit Filter bar supports actor, actor type, action, resource, outcome, and date range.

Evidence export

ExportEndpointFormat
SOC 2 PDF packGET /v1/export/pdfPDF
Full evidence packGET /v1/export/evidence-packZIP (PDF + metadata)
Exports are themselves logged as audit.export events.

Chain verification

GET /v1/verify?from=&to= walks the SHA-256 chain and reports:
  • valid — chain intact
  • events_checked — count scanned
  • root_hash — terminal hash
  • first_broken_event_id — if tampering detected
Share verification: GET /v1/share/verify with share-link token.

SOC 2 mapping (informative)

Control areaLedgerFlow capability
CC6.8Tamper-evident audit trail
CC7.2Security event monitoring via audit dashboard
CC9.2Exportable evidence for risk assessment
Consult your auditor for control mapping specific to your environment.