***

title: Observability
sidebar-title: Overview
description: Understand how OpenShell logs sandbox activity, how to access logs, and how to export structured OCSF records.
keywords: Generative AI, Cybersecurity, Logging, OCSF, Observability, Monitoring
position: 1
---------------------

For clean Markdown of any page, append .md to the page URL. For a complete documentation index, see https://docs.nvidia.com/openshell/latest/observability/llms.txt. For full documentation content, see https://docs.nvidia.com/openshell/latest/observability/llms-full.txt.

OpenShell provides structured logging for every sandbox. Every network connection, process lifecycle event, filesystem policy decision, and configuration change is recorded so you can understand exactly what happened inside a sandbox.

This section covers:

* **[Sandbox Logging](/observability/logging)**: How the two log formats work, where logs are stored, and how to read them.
* **[Accessing Logs](/observability/accessing-logs)**: How to view logs through the CLI, TUI, and directly on the sandbox filesystem.
* **[OCSF JSON Export](/observability/ocsf-json-export)**: How to enable full OCSF JSON output for integration with SIEMs, log aggregators, and compliance tools.