Webhook Observability and Evidence
Observability for webhook delivery covers delivery tracking, audit trails, integrity verification, and machine-readable evidence for AI and compliance review.
Delivery Observability
Each webhook event generates observable delivery data:
| Data | Description |
|---|---|
| Delivery receipts | Per-event delivery outcome with source, destination, status, timestamp |
| Delivery history | Complete attempt history including retries and DLQ events |
| Failure metadata | Failure reason, classification, and timing for each failed attempt |
| Latency tracking | Per-hop timing for delivery path performance |
Evidence Integrity
Delivery evidence is protected against tampering:
- Hash-chain audit log — each entry contains a hash of the previous entry
- Merkle integrity comparison — evidence snapshots verified against content-addressed roots
- Append-only storage — evidence records are never deleted, only superseded
Machine-Readable Evidence
Evidence manifests are available for automated review:
- Capability Manifest — machine-readable capability status and proof status
- Non-Claims Registry — explicit scope boundaries
- Compliance Map — internal readiness mapping
- Validation Map — how to validate evidence locally