dd-audit-security-investigation作者: datadog-labs
Answer "who did what" security questions from Audit Trail — deletions, config changes, login activity, permission changes, actions from a specific user or IP.
npx skills add https://github.com/datadog-labs/agent-skills --skill dd-audit-security-investigation来自 datadog-labs 的更多技能
agent-install
by datadog-labs
agent-install — an installable skill for AI agents, published by datadog-labs/agent-skills.
agent-skills
by datadog-labs
Datadog skills for AI agents. Essential monitoring, logging, tracing and observability.
dd-apm
by datadog-labs
APM - install, onboard, instrument, enable, set up, configure, traces, services, dependencies, performance analysis. Use for any request involving Datadog APM…
dd-audit
by datadog-labs
Audit Trail investigations - who changed what, key compromise, cost spike root cause, compliance evidence (SOC 2/PCI), and AI activity auditing.
dd-audit-ai-activity
by datadog-labs
Audit what the Bits AI assistant (MCP server) has done in your Datadog org — tool calls by user, resources accessed, and anomaly flags for AI governance.
dd-audit-compliance-report
by datadog-labs
Generate auditor-ready compliance evidence from Datadog Audit Trail for SOC 2 and PCI DSS. Maps framework controls to specific query patterns and produces…
dd-audit-cost-spike-investigation
by datadog-labs
Investigate a Datadog product usage or cost spike by correlating Usage Metering data (when/what spiked) with Audit Trail config changes (who changed what in…
dd-audit-key-compromise
by datadog-labs
Investigate a potentially compromised Datadog API key — timeline of actions, geo/IP breakdown, endpoints called, anomaly flags, and remediation steps.