Logging

The minimum severity that will be emitted. In development the logger also colorizes and pretty-prints; in production (NODE_ENV=production) it switches to compact output and drops caller info for performance.

• debug— Everything, including verbose internal tracing. Ideal locally, far too noisy for production.
• info— Lifecycle and notable events. The default and a sensible production baseline.
• warn— Recoverable problems and suspicious conditions only.
• error— Failed operations only.
• fatal— Process-threatening failures only.

Allow-list of scopes to emit. Use "*" to enable everything (the default). Use a category wildcard like "authentication.*" to keep one subsystem. Provide exact scopes like "tenant.provision" for surgical focus. An empty array [] silences all scoped logs, leaving only unscoped framework messages.

Example: ["authentication.*", "tenant.provision", "entity.create"]

How the scope tags above are produced: a subsystem calls logger.scoped('authentication.login') and every line it emits carries that scope. If the scope isn't in your allow-list the calls become genuine no-ops — filtering happens at the source, not just at output, so disabled scopes cost almost nothing.

Per-request child loggers carry a correlation id (shown as the first 8 chars in pretty output) and a merged context object, so every line from one request is traceable. Context is passed through redactSensitiveData first, so configured secret keys never reach a transport.

Console output is pretty + colorised in development and compact JSON in production (NODE_ENV-driven), with caller file:line attached only in dev. BufferedTransport batches entries (flush at 100 or every 1s). Audit is part of the logger: a DatabaseAuditTransport persists audit entries to your audit table — addTransport/addAuditTransport let you attach more sinks.

Convenience emitters used across the framework: request() logs method/path/status and auto-selects level by status (5xx→error, 4xx→warn, else info); db() logs a query with table + duration + row count; time()/timeAsync() measure and log an operation's duration.

The same logger writes the immutable audit trail (see the Audit section). trace() can both log and conditionally write an audit entry in one call, gated by auditEnabled — which is why audit and logging share this one component.