// per-tool methodology
gcp audit log analyzer
drop google cloud audit log json · api calls · iam changes · storage access · vm events · security findings · runs locally
public grade
B
solid triageraw 10/14 · raw 9–11 / 14
Bwhat this grade means
real parsing or rule engine · at least one structured export · honest about boundaries
capability class · export / document parser
structured exports — JSON, CSV, EML, ZIP, HTML — parsed against the file format spec
max grade for this class: A
- parser fidelity depends on export format version and vendor schema drift
- malformed or truncated exports may skip records silently — check the system log
known limitations
- meets the public B minimum ship bar: raw ≥ 9/14, UI dimension = 2, IF/OU/DQ/RB/HN ≥ 1 each, no critical red flags
- expect rough edges on uncommon schema variants, oversized inputs, or partially corrupted artifacts
- treat flags as leads — corroborate with primary sources before drawing conclusions
- outputs require independent verification before any legal, financial, medical, safety, or evidentiary use
B minimum ship bar
- newly added forensics tools must clear the public B minimum before merging
- minimum: letter grade B or A · raw score ≥ 9/14 · UI dimension = 2 · IF/OU/DQ/RB/HN ≥ 1 each · no critical red flags (missing engine, placeholder logic, no exports)
- the ship bar is enforced by quality.audit.json sidecars and npm run tools:grade-forensics --check