What does Devlog do?
Devlog helps you answer questions like:
- What did the backend team do last week?
- Did we ship any security features last year?
- What was I working on last month?
Spend less time debating the past, spend more time building the future.
Why?
Everyone at a tech company needs to know what the engineers are doing. But it can take your CTO/VP of Eng/Director/EMs a lot of time to figure that out.
Ticketing systems like Linear or Jira do a good job of telling you what your team hoped to do (back when the project got planned) but are missing important details about what actually got done.
Only your source code can tell you what has actually been merged and shipped.
How does it work?
While your team ships code, Devlog automatically analyzes every Pull Request that your team ships, in every Repository that you've connected, and describes the work in language that you can understand.
Of course, you and your team can correct the results. Even computers need a little help sometimes.
Who can see my team's data?
We faithfully follow Github's permissions models to determine data visibility.
To sync data from your Github organization to Devlog, you or your organization admin has to install the Devlog Github Application.
Once installed, you can choose which repositories you want to sync to Devlog. Sync a few or just one monorepo; we don't care how your team does the work, we can help show you what they're shipping.
Your engineering team logs in to Devlog using their Github accounts, and can only see data from repositories that they can look at on the Github website.
Want to leave? Uninstall the Devlog Github App and your data will be immediately and permanently removed from our database. We do this with hard deletion so your data is really gone right away.
How secure are you?
We are a 12-factor app hosted on Fly.io using Neon as our database. We use the OpenAI Enterprise API to analyze your pull requests. We use Posthog for product analytics, including session recording.
We do not share your data with anyone else.
All authentication and data syncing happens via the Github Apps API. Github API tokens are encrypted with symmetric AEAD (ChaCha20Poly1305) encryption before being stored in our database.
Your other Github data (pull requests, etc.) is stored unencrypted in our database, in the same database as other customers. If you are interested in self-hosting or single-tenant data isolation, please contact us.
We are a small team but we use proper access control lists and rules to minimize the number of employees who have acess to your code.
We do not yet have a SOC2 certification but we will happily answer any questions you may have, or fill out any security questionnaire, so that we can work together.
We have point-in-time database backups (30 days) but otherwise use hard-deletion to remove data.
Noticed a security problem? Please contact us right away, we will triage reports within 24 hours and pay bounties for anything serious. We don't have an official program set up yet but we will do right by you.
What do you mean by alpha?
Devlog is currently under very active development. At this point you can absolutely sign up, log in, and start using it — we'd love that! — but please be aware that this is alpha-quality software and you may experience frequent bugs and changes.
We want to be up-front with you about the state of things so that you don't think we're bad at making software. We're good at software, we promise. We're working as fast as we can to make things stable and production ready.
Go ahead, try it out, and let us know if you run into anything confusing or broken.
Contact us
Devlog is a semi-stealth project being built by Peter Downs.
Please email devlog@peterdowns.com with any questions.