greentic-telemetry 0.5.4

Thin telemetry facade for Greentic: tracing/logging/metrics with OTLP + WASM.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151

# Operation Subscription Telemetry

## Overview

Operation subscriptions ("op subs") emit structured telemetry for every
provider operation in the Greentic pipeline. This gives full visibility into
what operations run, how long they take, and whether they succeed or fail —
without leaking sensitive payload data.

## What Gets Emitted

### Traces (Spans + Events)

Each operation produces:

| Telemetry Item | Type | Description |
|----------------|------|-------------|
| `greentic.op` | Root span | Wraps the entire operation lifecycle |
| `operation.requested` | Event on root span | Fired before execution starts |
| `operation.completed` | Event on root span | Fired after execution completes |
| `operation.error` | Event on root span | Fired on error (denied or invoke failure) |
| `greentic.op.pack_resolve` | Child span | Catalog lookup for provider pack |
| `greentic.op.card_render` | Child span | Adaptive Card rendering (if applicable) |
| `greentic.op.runner_exec` | Child span | Runner/flow execution |
| `greentic.op.component_invoke` | Child span | Direct WASM component invocation |
| `greentic.op.hooks` | Child span | Hook chain evaluation |
| `greentic.op.hook` | Child span | Individual hook binding execution |

### Root Span Fields

| Field | Type | Description |
|-------|------|-------------|
| `greentic.op.name` | string | Operation ID (e.g. `send_payload`) |
| `greentic.provider.type` | string | Provider type (e.g. `messaging.telegram`) |
| `greentic.tenant.id` | string | Tenant identifier (may be hashed) |
| `greentic.team.id` | string | Team identifier (may be hashed) |
| `otel.status_code` | string | `OK` or `ERROR` |
| `error.type` | string | Error classification (e.g. `denied`, `invoke_error`) |
| `error.message` | string | Human-readable error description |
| `greentic.meta.routing.provider` | string | Resolved provider after pack lookup |
| `greentic.meta.classification` | string | Reserved for future operation classification |
| `greentic.op.duration_ms` | f64 | Total operation duration in milliseconds |

### Metrics

| Metric | Type | Labels |
|--------|------|--------|
| `greentic.operation.duration_ms` | Histogram | op_name, provider_type, status, tenant_id [, team_id] |
| `greentic.operation.count` | Counter | op_name, provider_type, status, tenant_id [, team_id] |
| `greentic.operation.error_count` | Counter | op_name, provider_type, error_code, tenant_id [, team_id] |

## Payload Safety Defaults

By default, **no payload content** appears in telemetry. The `payload_policy`
controls what (if anything) is included:

| Policy | Payload Content | Payload Size | Payload Hash |
|--------|:-:|:-:|:-:|
| `none` (default) | - | - | - |
| `hash_only` | - | yes | yes (blake3 hex) |

The `drop_payloads: true` flag is an absolute override that forces `none`
regardless of `payload_policy`.

## Tenant Attribution

Controls which tenant/team identifiers appear in spans and metrics:

| Setting | Default | Description |
|---------|---------|-------------|
| `include_tenant` | `true` | Include `greentic.tenant.id` in spans |
| `include_team` | `true` | Include `greentic.team.id` in spans |
| `include_team_in_metrics` | `false` | Include `greentic.team.id` in metric labels |
| `hash_ids` | `false` | Hash IDs with blake3 before emitting |

Setting `hash_ids: true` enables privacy-preserving correlation — you can
still group traces by tenant, but raw IDs don't appear in your backend.

## How to Enable/Disable

### Full Disable

```json
{
  "enable_operation_subs": false
}
```

No events, spans, or metrics are emitted for operations.

### Metrics Only (No Traces)

```json
{
  "enable_operation_subs": true,
  "operation_subs_mode": "metrics_only"
}
```

Counters and histograms are recorded, but no trace events are emitted.

### Traces Only (No Metrics)

```json
{
  "enable_operation_subs": true,
  "operation_subs_mode": "traces_only"
}
```

### Exclude Specific Operations

```json
{
  "exclude_ops": ["healthcheck", "ping"]
}
```

Named operations are silently skipped in both traces and metrics.

### Include/Exclude Denied Operations

```json
{
  "include_denied_ops": false
}
```

When `false`, operations denied by pre-hooks do not emit `operation.completed`
events (the `operation.requested` event still fires).

## Recommended Defaults

```json
{
  "enable_operation_subs": true,
  "operation_subs_mode": "metrics_and_traces",
  "payload_policy": "hash_only",
  "include_denied_ops": true,
  "drop_payloads": false,
  "tenant_attribution": {
    "include_tenant": true,
    "include_team": true,
    "include_team_in_metrics": false,
    "hash_ids": false
  }
}
```

This gives strong platform observability without accidental data leaks.
Enable `hash_ids` in production if tenant IDs are PII-sensitive.