Logs for Password Reset Attempts?

I’ve got a self-hosted instance of GitLab and I’ve been receiving password reset emails to my user account (not admin account) for the last few days. I’m not sure if one of my developers doesn’t know how to fill out a password reset form, or if this is some sort of attack. I grepped /var/log/gitlab, but I didn’t see any connections around the time when the emails were sent. How can I find out the IP of who is submitting the password reset form?