Audit vendors actually being used
Your AI CEO separates the tools you pay for from the tools you use.
You'd think active-vs-zombie needs a manager poll — Astra reads the SSO logs, API call counts, and deploy pipelines instead.
The short answer
Astra audits vendor usage by joining three data sets: every invoice paid in the last 90 days (Brex + QuickBooks), every login event in your identity provider (Okta or Google Workspace), and every API call or deploy event tied to that vendor's keys (Datadog, GitHub Actions, Vercel). For each vendor she scores active/inactive based on logged usage, names the actual humans using it, and surfaces the gap between paid seats and active seats. Bonus pass: vendors with no SSO, no API trace, and no human owner — usually the first kill list. Output is a Lark table sorted by waste size, with each row showing paid cost, active users, last-real-use timestamp, and a one-line recommendation. You learn which $2k/mo tool has 3 logins this quarter and which $89/mo tool is load-bearing for 40 people.
How Astra actually does it
- 1Pull invoice + cost truth
90 days of Brex + QuickBooks vendor charges, normalize to monthly, group by category.
BrexQuickBooks - 2Pull usage truth from identity
Okta or Google Workspace SSO event logs — last login per user per app, active-seat count.
OktaGoogle Workspace - 3Pull machine-usage truth
API call counts (Datadog), deploy events (GitHub Actions, Vercel), webhook activity for tools without SSO.
DatadogGitHubVercel - 4Score active vs zombie
Vendor is Active if ≥1 login OR ≥1 API call in last 30 days. Otherwise Zombie. Edge case: "infrastructure" tools (Cloudflare, AWS) auto-mark Active.
Notion - 5Lark table + owner pings
Sorted-by-waste table to Lark. For tools with no SSO and unknown owner, ping #ops in Slack: "Whose tool is X?"
LarkSlack
What it looks like in chat
A Lark table of every paid vendor with active users / last-use timestamp / monthly cost / Active or Zombie verdict, plus auto-pinged owner inquiries for any unknown SaaS.
Quarterly, plus on-demand before any board update or budget review.
Ask Astra this right now
We'll spin up your workspace, hand the prompt to Astra, and you see the answer in 60 seconds. Free.
Try this with AstraFrequently asked questions
What if we don't use SSO for everything?
Astra falls back to API-call data, deploy logs, or webhook activity. For purely-human tools without any digital trace (e.g., a $200/mo design plugin), she pings the declared owner in Slack with a 5-day deadline. Silence defaults to "cancel candidate" — keeps things moving.
Will infra tools like AWS or Cloudflare get flagged as zombies?
No — she auto-marks infrastructure category vendors as Active by default. She still surfaces them in a separate cost-optimization pass (right-sizing recommendations) but never recommends canceling load-bearing infra without a migration plan.
How granular does she get on per-seat usage?
Per-user, per-app, with last-login timestamp. So you can see "Linear: 35 paid seats, but Sarah and Mike haven't logged in for 90+ days." Useful for offboarding cleanup too — she'll flag any user with paid seats across 3+ tools who hasn't logged into anything in 30 days.
How often should I re-run this?
Quarterly is enough for most companies. After org changes (layoffs, restructure, M&A) run it within 30 days — that's when zombies pile up fastest. Astra can also auto-flag any new SSO app added with no owner assigned within 14 days.
Run your one-person company.
Hire your AI team in 30 seconds. Start for free.
Free to start · No credit card required · Set up in 30 seconds