foundation.protocols.ai.observation.*

foundation.protocols.ai.observation.session.start

Bridge-observed session start. Includes bridge version for provenance.

{
  "type": "foundation.protocols.ai.observation.session.start",
  "content": {
    "session_id": "3f057459-de35-4b1a-84d7-484a38194b6a",
    "agent_name": "claude-code",
    "bridge_version": "1.0.0",
    "timestamp": 1776199855184
  }
}

foundation.protocols.ai.observation.session.end

Bridge-observed session end with aggregate statistics.

foundation.protocols.ai.observation.tool.pre

Tool about to be used. Emitted before execution starts.

foundation.protocols.ai.observation.tool.post

Tool execution completed. Includes exit code and duration.

foundation.protocols.ai.observation.tool.failure

Tool execution failed with error.

foundation.protocols.ai.observation.file.read

File read observed. Includes content hash for integrity verification.

foundation.protocols.ai.observation.file.write

File write observed. Includes diff metrics and content hash.

foundation.protocols.ai.observation.command.exec

Shell command execution observed. Includes truncated stdout/stderr previews.

foundation.protocols.ai.observation.notification

Generic notification from the bridge observation layer.

foundation.protocols.ai.observation.security.blocked

An action was blocked by a security check.

foundation.protocols.ai.observation.security.guidance

A security check issued guidance (advisory, not blocking).

foundation.protocols.ai.observation.cost.observed

Token usage and cost snapshot from the bridge observation layer.

foundation.protocols.ai.observation.privacy.sensitive

Sensitive content detected (credentials, keys, PII). Reports whether content was redacted.

foundation.protocols.ai.observation.subagent.start

A subagent was spawned. All subsequent tool events from this agent carry the agent_id in their subagent_id field.

foundation.protocols.ai.observation.subagent.stop

A subagent completed or was terminated.