RBAC & Audit Logs. Enterprise-Grade Access Control and an Audit Trail That Never Lies.
Granular role-based access control across organizations, projects, and roles. Immutable audit logs with retention — every action on every story and test permanently recorded.
Trusted by enterprise security and compliance teams
Admin, Manager, Tester, Developer, Viewer — granular enough for any team structure
Unauthorized actions possible — every operation validated against role permissions before execution
Regulated industries don't get to say "we're not sure who changed that"
In regulated industries — healthcare, finance, government — the question "who changed this requirement and when?" is not optional. It's an audit requirement. WalnutAI's immutable audit logs record every action across every story, test case, execution, and defect — with user identity, timestamp, and the exact change made — and retain them. When the auditor asks, the answer is ready instantly.
Granular permissions across every level of your organization
RBAC in WalnutAI operates at the organization, project, and role level. Admins configure access globally. Project owners control who can view, edit, or execute within their project. Viewers can access dashboards and reports without risk of accidentally modifying requirements or test cases.
Every action permanently recorded with full context
Every create, edit, delete, import, export, execution, and AI generation operation is written to an immutable audit log with the acting user’s identity, timestamp, IP address, and the before/after state of the changed item. Logs cannot be edited or deleted — not even by administrators.
Compliance documentation generated on demand
Audit reports for specific time periods, projects, users, or action types can be exported on demand — formatted for submission to compliance reviews, security audits, and internal governance processes. No manual log parsing, no hunting across systems for the history of a specific story or test case.
Scales across multi-tenant enterprise deployments
Organizations with multiple teams, business units, or client projects operate in isolated environments with independent RBAC configurations. A tester in one project has no visibility into another project’s requirements or results unless explicitly granted access.
Ready to ship with confidence?
See how WalnutAI connects requirements, code, testing, and deployment into one intelligent workflow.