Hi all! I'm looking for some advice/direction/opinions... We have a need to be able to audit and/or send alerts whenever someone performs a potentially high-impact operation in the UI. Specifically we want to be able to audit all modifications made to variables and connections, and we'd like the ability to send alerts whenever someone pauses or unpauses a DAG. We're planning to do the changes ourselves and submit a PR but I'd like to get some feedback before starting. The general approach in my mind was to add connection+variable mutations to the existing audit logs, and also introduce a new cluster policy hook "on_administrative_event(object_type, action_performed, actor, event_details)" (or something like that) which would be invoked after (potentially) any administrative object is modified.
So, is there value to this sort of thing for airflow in general? Would a PR along these lines have a chance at being merged? Any advice on direction/approach would be greatly appreciated....I've never ventured this far into the codebase before so any code orientation tips would also be appreciated. Thx! - Chris
