Append-only. Public by default.

• AIR-ID issuance when a resource is elevated past draft.
• Sovereignty review decisions (basis, status, reviewer notes, rubric version).
• Official-resource endorsements and revocations.
• Lifecycle transitions (listed, deprecated, removed).
• Provider verification decisions.
• Schema or configuration changes affecting public listings.

Audit rows are never deleted or rewritten. Resources are soft-deleted via a deletedAt field, but the audit trail behind a removed resource stays intact and resolvable. Reviewer notes on sovereignty and official-resource decisions are public on the resource detail page.

A read-only public log of recent events will appear here. While the listing surface is being built out, the underlying audit data is already captured for every governance action. See §8 for the normative form, and governance for who decides what.