Skip to main content

A Software as a Service (SaaS) log collection framework.

Project description



Grove logo

Grove is a Software as a Service (SaaS) log collection framework, designed to support collection of logs from services which do not natively support log streaming.

Grove enables teams to collect security related events from their vendors in a reliable and consistent way. This data may then be stored and analyzed with a team's existing tooling in order to support threat detection and compliance programmes.

Out of the box, Grove provides:

  • 🪵 Reliable and periodic collection of logs.
  • ☁️ Support a large number of widely used SaaS applications and services.
  • 🧱 Plugin based "connectors" to enable support for new applications and services.
  • 🧳 "Bring your own" caching, output, configuration, and secrets backends.

Grove was created and is currently maintained by the HashiCorp security team.

Please note: While this is not an official HashiCorp project, security is still very important to us! If you have found a potential security issue with Grove, please contact us via email at security@hashicorp.com, rather than filing a GitHub issue.

Supported Sources



Overview of supported services, also listed below

Currently the following log sources are supported by Grove out of the box. If a source isn't listed here, support can be added by creating a custom connector!

  • Atlassian audit events (e.g. Confluence, Jira)
  • FleetDM host logs
  • Dropbox team event logs
  • GitHub audit logs
  • GSuite alerts
  • GSuite activity logs
  • Okta system logs
  • Oomnitza activity logs
  • 1Password sign-in attempt logs
  • 1Password item usage event logs
  • 1Password audit logs
  • PagerDuty audit records
  • SalesForce Cloud event logs
  • SalesForce Marketing Cloud audit event logs
  • SalesForce Marketing Cloud security event logs
  • Slack audit logs
  • Snowflake login history
  • Snowflake query history
  • Snowflake session history
  • Stripe events
  • Tines audit logs
  • Terraform Cloud audit trails
  • Torq activity logs
  • Torq audit logs
  • Twilio monitor events
  • Twilio message logs
  • Workday activity logs
  • Zoom activity logs
  • Zoom operation logs

Documentation

Please see the Grove documentation for full documentation, information about Grove's internals, and API information.

Quick Start

To run Grove for the first time using Docker, ensure docker is installed and run:

git clone https://github.com/hashicorp-forge/grove
cd grove
docker compose up

This should see log messages from a "heartbeat" connector every 5 seconds. For more detailed examples and information, please see the Grove documentation.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

grove-2.2.0.tar.gz (573.3 kB view details)

Uploaded Source

Built Distribution

grove-2.2.0-py3-none-any.whl (153.1 kB view details)

Uploaded Python 3

File details

Details for the file grove-2.2.0.tar.gz.

File metadata

  • Download URL: grove-2.2.0.tar.gz
  • Upload date:
  • Size: 573.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for grove-2.2.0.tar.gz
Algorithm Hash digest
SHA256 2a25fc7307ae8de4b46dfd8e5ff3fed3e26b8e0a628070dc319364843e4118b2
MD5 084fb298a77968b11fc75c2d28b2b717
BLAKE2b-256 714b6c7b0653772c897a8aa8a8aa253dc7a415fed49467c67adfdec104ef8823

See more details on using hashes here.

Provenance

The following attestation bundles were made for grove-2.2.0.tar.gz:

Publisher: release.yml on hashicorp-forge/grove

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file grove-2.2.0-py3-none-any.whl.

File metadata

  • Download URL: grove-2.2.0-py3-none-any.whl
  • Upload date:
  • Size: 153.1 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for grove-2.2.0-py3-none-any.whl
Algorithm Hash digest
SHA256 25849d16779d6893c45b887d6cfe2d8ebfa0b18992cc91baf97a2a2d8f54786d
MD5 25002a02367866d4b661e72001c8ba9e
BLAKE2b-256 fa33ee8c531ac7f239b752e175beedd7e74aff2fa912eb41eed3829aa61be627

See more details on using hashes here.

Provenance

The following attestation bundles were made for grove-2.2.0-py3-none-any.whl:

Publisher: release.yml on hashicorp-forge/grove

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page