Skip to main content
Serval provides multiple ways to audit workflow activity directly through the UI or through workflows.

Example Audit Workflows

Create these workflows by pasting the prompt into the workflow builder.

Weekly Workflow Audit Report

Generate a CSV report of all workflow runs with detailed metadata. Prompt:
Create a scheduled workflow that runs every Monday at 9am. It should list all workflows in the team, get the run history for each workflow from the past 7 days, and generate a CSV report with columns for workflow name, workflow ID, run ID, status, started at, completed at, triggered by, and duration. Post the report to #it-ops in Slack with a summary of total workflows, total runs, successful runs, and failed runs.

Failed Workflow Alert

Get notified immediately when any workflow fails. Prompt:
Create an event-triggered workflow that runs whenever a workflow fails. Send a Slack message to #it-alerts with the workflow name, run ID, error message, and timestamp.

Daily Run Summary

Get a daily digest of workflow activity. Prompt:
Create a scheduled workflow that runs every day at 9am. Get all workflow runs from the past 24 hours and post a summary to #it-ops in Slack showing the count of successful, failed, and pending approval runs.

Monthly Workflow Usage Report

Track which workflows are used most frequently. Prompt:
Create a scheduled workflow that runs on the first of every month at 9am. List all workflows, count how many times each was run in the past 30 days, calculate the success rate for each, and post the top 10 most-used workflows to #it-ops in Slack.

Access Change Audit

Track all access provisioning and deprovisioning activity. Prompt:
Create a scheduled workflow that runs every Friday at 5pm. Get all workflow runs from access provisioning and deprovisioning workflows in the past week. Generate a CSV with user email, application, action (granted/revoked), approver, and timestamp. Post to #security in Slack.

Approval Turnaround Report

Monitor how quickly approvals are being processed. Prompt:
Create a scheduled workflow that runs every Monday at 9am. Find all workflow runs from the past week that required approval. Calculate the average time between when approval was requested and when it was approved or denied. Post a summary to #it-ops in Slack with the average approval time and list any approvals that took longer than 24 hours.

Compliance Use Cases

SOC 2 Reporting

Generate evidence of access changes with timestamps and approvers

Change Management

Track all workflow modifications with version history

Access Reviews

Audit which workflows granted or revoked access

Incident Response

Review workflow activity during security investigations

Best Practices

Schedule regular exports

Create scheduled workflows that generate weekly or monthly audit reports

Alert on failures

Set up immediate notifications for workflow failures

Track high-risk workflows

Pay extra attention to workflows that modify access or sensitive data

Retain exports

Store audit exports in your organization’s document management system