Thanks @zachdaniel ,
The audit refers to monitor some critical resources changes “usually configuration resources” so that we can go to some UI to identify old value/new value and who did the change right from the start.
The sensitive data refers to those encrypted fields or in payment domain something like clear card number could be viewed only by users who have the privileges to do so while others could see a hashed or encrypted value.
I took a look at ash_state_ma chine and it seems serving the logic for changing the resources values utilizing maker/checker but looking for a sample repository or project to check it further.
btw , when will have the last chapter of the book?
