Interface ChainedAuditEvent

Extended audit event with hash chain fields. These fields are added by the factory functions and stored in the JSONL trail.

Hash chain integrity:

prevHash: hash of the previous event (or "genesis" for the first event)
chainHash: SHA-256(prevHash + JSON(this event without chainHash))
To verify: recompute chainHash from prevHash + event data, compare

Actor identity (P27):

actor: Classification label — "human", "machine", or "system" (backward-compat string)
actorInfo: Optional structured identity (id, email, source). Present on human-influenced events (lifecycle, tool_call, decision). Absent on machine-only events (transition, error). When absent, JSON.stringify omits the field — chain hash stays identical for pre-P27 events.

interface ChainedAuditEvent {
    id: string;
    sessionId: string;
    phase: string;
    event: string;
    timestamp: string;
    actor: string;
    actorInfo?: Readonly<
        {
            id: string;
            email: string
            | null;
            displayName?: string | null;
            source: "unknown" | "env" | "git" | "claim" | "oidc";
            assurance: "best_effort" | "claim_validated" | "idp_verified";
            verificationMeta?: Readonly<
                {
                    issuer: string;
                    audience: string[];
                    keyId: string;
                    algorithm: string;
                    verifiedAt: string;
                },
            >;
        },
    >;
    detail: Readonly<Record<string, unknown>>;
    prevHash: string;
    chainHash: string;
}

Index

Properties

id sessionId phase event timestamp actor actorInfo? detail prevHash chainHash

Properties

`Readonly`id

id: string

`Readonly`sessionId

sessionId: string

`Readonly`phase

phase: string

`Readonly`event

event: string

`Readonly`timestamp

timestamp: string

`Readonly`actor

actor: string

`Optional` `Readonly`actorInfo

actorInfo?: Readonly<
    {
        id: string;
        email: string
        | null;
        displayName?: string | null;
        source: "unknown" | "env" | "git" | "claim" | "oidc";
        assurance: "best_effort" | "claim_validated" | "idp_verified";
        verificationMeta?: Readonly<
            {
                issuer: string;
                audience: string[];
                keyId: string;
                algorithm: string;
                verifiedAt: string;
            },
        >;
    },
>

`Readonly`detail

detail: Readonly<Record<string, unknown>>

`Readonly`prevHash

prevHash: string

`Readonly`chainHash

chainHash: string

Interface ChainedAuditEvent

Index

Properties

Properties

`Readonly`id

`Readonly`sessionId

`Readonly`phase

`Readonly`event

`Readonly`timestamp

`Readonly`actor

`Optional` `Readonly`actorInfo

`Readonly`detail

`Readonly`prevHash

`Readonly`chainHash

Settings

On This Page

Interface ChainedAuditEvent

Index

Properties

Properties

Readonlyid

ReadonlysessionId

Readonlyphase

Readonlyevent

Readonlytimestamp

Readonlyactor

Optional ReadonlyactorInfo

Readonlydetail

ReadonlyprevHash

ReadonlychainHash

Settings

On This Page

`Readonly`id

`Readonly`sessionId

`Readonly`phase

`Readonly`event

`Readonly`timestamp

`Readonly`actor

`Optional` `Readonly`actorInfo

`Readonly`detail

`Readonly`prevHash

`Readonly`chainHash