Dear User,
To improve query performance and stability for CWPP, Tencent Cloud plans to upgrade the CWPP data storage architecture and is sharing the alert record retention period and historical data cleanup schedule as follows:
Alert record retention period:
The console retains alert records generated within the last 180 days. Records older than 180 days are automatically cleaned up. This retention policy applies only to alert records displayed in the console and does not affect any historical data stored via purchased log analytics services.
Historical data cleanup schedule:
- Cleanup background: The 180-day retention period is an existing rule for the CWPP console, and Unusual Login and Password Cracking alerts already follow this rule. This historical data cleanup aims to apply the same rule consistently to historical data so that you can plan exports and archiving in advance.
- Cleanup time: 19:00-23:00 (Beijing Time, UTC+8), Apr 30, 2026
- Feature scope: Malicious Requests, High Risk Commands, Network Attack, Reverse Shell, Local Privilege Escalation, and Core File Monitor
- Data scope: Based on Apr 30, 2026 (Beijing Time, UTC+8), alert records in the above feature scope that exceed the 180-day retention period will be cleaned up (that is, records generated before Nov 1, 2025 (Beijing Time, UTC+8)).
Important reminder:
If you need to retain historical alert records, please export them before Apr 30, 2026. For long-term retention, we recommend using other archival options (for example, your own storage system or log analytics services).
If you need to view and export historical alert records, please visit the CWPP console .
If you have any questions in the process of using cloud products, you can submit a ticket , we will answer your questions as soon as we can!
Thank you!
Tencent Cloud Team
