Monitor and govern runs
Use permissions, audit trails, and webhooks to keep workflows safe.
Governance in gospace is workspace-first: roles control who can run and change workflows, and audit trails make runs traceable.
Approvals and guardrails
- Keep sensitive actions behind explicit permissions.
- Use approvals for production-facing integrations.
- Prefer “advisory” workflows first, then automate once the outputs are stable.
When you’re ready to integrate with external systems, use webhooks so downstream services can validate and apply changes safely.
Audit logging
Every run should be auditable. gospace records:
- Input payloads and data lineage.
- Workflow changes and who made them.
- Actions triggered, with timestamps and recipients.
Export audit logs to your SIEM or data warehouse when needed.
Observability
Track:
- Run duration, failure rates, and retry behaviour.
- Webhook deliveries and downstream processing status.
- Usage by workspace.
Compliance automation
Use governance features to support compliance processes:
- Apply role-based access control with single sign-on.
- Enforce separation of duties for approvals and production changes.
- Keep evidence (audit logs, exports) organised by workspace and time range.