Built this for European SMBs needing log management with: - GDPR compliance (self-hosted, data residency) - Boring tech philosophy (PostgreSQL+TimescaleDB, zero AI/ML) - Transparent deployment (Docker Compose, no hidden scripts)
Stack: SvelteKit, Fastify, PostgreSQL+TimescaleDB, BullMQ License: AGPLv3 (network copyleft for cloud provider protection)
Features: - Multi-tenancy, SIEM (Sigma rules + MITRE ATT&CK) - PII masking, OpenTelemetry traces, anomaly detection - Real-time streaming, alert correlation
Storage: Pluggable architecture in development - TimescaleDB (default, production-ready, 80%+ compression) - ClickHouse support coming for enterprise scale - Hot/warm/cold tiers with S3 archival
Production-tested: Millions of logs/day, 10-50x faster dashboard queries via continuous aggregates.
Why AGPLv3? Protects against cloud vendor forks while aligning with European data sovereignty needs. Understand it's controversial - happy to discuss.
GitHub: https://github.com/logtide-dev/logtide Docs: https://logtide.dev/docs
Questions welcome on architecture, scaling, or SIEM implementation!