[Webinar] Master Snowflake: Control Without Compromise
Save Your Spot ›

Drift Detection

Make out of process change visible, before it breaks delivery.

Drift happens in real environments. Emergency fixes, manual edits, and one off changes can cause databases to diverge from approved change history. Drift detection turns unknown divergence into visible, actionable signals.

Explore Shift-Left Observability
Explore Database Security
Learning Center
Policy Checks
Drift Detection
Rollback and Recovery
Audit Evidence Automation
AI Governance for Schema Change
Related Content
Heading H2

Why this matters

When environments drift, promotions fail, behavior becomes inconsistent, and audit trails weaken. Teams often discover drift only after something breaks, which increases incident time and delivery friction.

Common failure modes

  • A release fails because staging and production no longer match
  • Manual changes bypass the approved workflow and are never captured
  • Teams spend hours diagnosing “why this environment is different”
  • Audit questions expose gaps in traceability for what changed and when

What good looks like

Drift checks compare expected state to actual state and generate clear reports teams can act on. Drift becomes a managed workflow: detect, classify, reconcile, and record.

Drift as a security signal

Drift is not just an engineering nuisance. It can be the earliest indicator of out of process change, including changes made with elevated privileges, emergency fixes that bypass review, or modifications executed outside approved pipelines. Mature teams treat high risk drift events as both delivery risk and security risk.

Risk scoring and anomaly detection

Not all drift is equal. Teams that scale governance prioritize drift based on risk so response is fast and focused.

A drift risk score commonly considers:

  • Environment, production versus non production
  • Object criticality, customer facing tables and high impact schemas
  • Change type, destructive operations versus additive changes
  • Actor context, service accounts and privileged users
  • Frequency and pattern, unusual spikes or repeated manual edits

Risk scoring and anomaly detection reduce noise, improve response focus, and support faster detection of meaningful drift.

Database Change Governance metrics this pillar improves

  • Mean Time to Detect (MTTD): improves when drift is detected quickly and prioritized by risk.
  • Mean Time to Recover (MTTR): improves because teams spend less time diagnosing divergence during incidents.
  • Automated Evidence Coverage (AEC): improves when drift reports become part of the ongoing evidence trail.

Implementation approach

Start small and expand.

  1. Start with production and shared staging environments
  2. Run drift checks on a schedule aligned to delivery pace
  3. Classify drift by severity to avoid alert fatigue
  4. Define a standard remediation path: reconcile into the approved workflow
  5. Record the drift event and resolution as part of your audit trail

See drift detection in practice

If you want to operationalize drift visibility and reduce MTTD and MTTR, start with Shift-Left Observability.
Observability

FAQ

What is drift?

Any change in the database that is not reflected in the approved change process, including manual edits and emergency fixes.

Is drift always malicious?

No. Most drift is operational. Governance is about visibility and control, not blame.

Does drift detection support security use cases?

Yes. Drift can indicate unauthorized or unreviewed change. Many teams route high risk drift events into security workflows.

Do we need risk scoring and anomaly detection on day one?

No. Start with visibility and reporting, then add risk scoring to prioritize what matters most.

Why Liquibase
Community vs SecureDatabase DevOpsWhat is Liquibase?Liquibase vs Flyway
Products
Liquibase SecureSupport & ServicesSupported DatabasesPricing
Solutions
Compliance & AuditDatabase SecurityDeveloper Self-ServiceObservabilityAI-Ready DatabasesPublic SectorAWS
Resources
DownloadsDocsUniversityBest Practice GuidesWhitepaperseBookReportsVideos & WebinarsCase StudiesBlog
Community
ContributorsContribute CodeShare ExpertiseAdvocateSupportLiquibase LegendsLegends Badges
Company
CompanyContact UsCareersLeadershipPartnersCustomer LovePressPartnersNewsEvents
GitHub direction linkLinkedin direction linkX direction linkYouTube direction linkDiscord direction linkReddit direction link

© 2023 Liquibase Inc. All Rights Reserved.Liquibase is a registered trademark of Liquibase Inc.(737) 402-7187