Skip to content

Agent Lifecycle Hooks Specification

Defines a portable hook model for Base Coat agents so memory, telemetry, error handling, and session rotation can be attached to agent execution without modifying every agent prompt.

Tracking: Issue #145

1. Why Hooks Exist

Hooks provide controlled interception points around an agent session, tool execution, and context lifecycle.

They exist to solve recurring operational needs:

  • Load memory and project context before work begins
  • Persist handoff state when a session ends or rotates
  • Enforce guardrails before risky tool calls
  • Capture failures and learn from them after the fact
  • Detect loops, budget exhaustion, and degraded sessions early
  • Emit consistent telemetry without embedding logging logic into every agent

A hook system should be optional, composable, and failure-tolerant. If a hook fails, the agent should degrade gracefully rather than crash.

2. Hook Points

Hook When It Fires Use Cases
SessionStart Agent session begins Inject memory, load project context, set persona
SessionEnd Session ending or rotating Save handoff state, persist memory, cleanup
PreToolUse Before any tool call Validate permissions, inject known-fix warnings, log
PostToolUse After tool completes Track errors, update knowledge base, detect loops
PreCompact Before context compaction Save full state before lossy compression
PostCompact After compaction Verify critical context preserved
OnError Tool call fails Log to error KB, check retry policy
OnBudgetExceeded Token budget threshold hit Force session rotation, trigger handoff

SessionStart

Runs once at the beginning of an agent session.

Typical responsibilities:

  • Load persistent memory relevant to the repo, issue, branch, or account
  • Rehydrate a previous handoff document after session rotation
  • Inject task framing such as repo conventions, current sprint context, or persona guidance
  • Initialize telemetry correlation IDs for the session

SessionEnd

Runs when a session is about to terminate normally or rotate into a fresh session.

Typical responsibilities:

  • Persist learned facts, summaries, or handoff notes
  • Flush buffered telemetry and tool traces
  • Record unresolved blockers for the next session
  • Clean up temporary runtime state created by hook infrastructure

PreToolUse

Runs before any tool invocation is sent.

Typical responsibilities:

  • Check whether the tool is allowed in the current mode or repo
  • Warn about known failure patterns before expensive calls
  • Add contextual hints, such as "this build often fails unless restore ran first"
  • Record intent for audit and measurement

PostToolUse

Runs after a tool completes, regardless of success or failure.

Typical responsibilities:

  • Capture outputs, exit status, latency, and token cost
  • Detect repeated failing patterns that indicate a loop
  • Update success and failure knowledge bases
  • Enrich future reasoning with newly learned constraints

PreCompact

Runs immediately before context is compacted or summarized.

Typical responsibilities:

  • Save the full working state before lossy compression occurs
  • Snapshot open todos, current plan, key file paths, and unresolved errors
  • Generate a structured handoff payload for the next session

PostCompact

Runs immediately after compaction finishes.

Typical responsibilities:

  • Verify that critical state survived compaction
  • Re-inject missing anchors such as issue number, branch name, or open blockers
  • Record compaction quality metrics for later tuning

OnError

Runs when a tool call or hook-managed action fails.

Typical responsibilities:

  • Normalize the error into a reusable failure signature
  • Check retry policy and fallback guidance
  • Store actionable failure context in an error knowledge base
  • Suppress duplicate alerts when the same failure repeats rapidly

OnBudgetExceeded

Runs when token usage crosses a configured threshold.

Typical responsibilities:

  • Trigger session rotation before output quality degrades further
  • Save a compact but complete handoff summary
  • Block additional large context loads or expensive tool calls
  • Emit telemetry so budget tuning can be improved later

3. Hook Response Types

Hooks do not need to behave the same way. A useful framework supports a small set of standard outcomes.

Response Type Behavior Typical Uses
Pass-through Hook runs and execution continues unchanged Logging, telemetry, passive checks
Inject context Adds additionalContext to the next reasoning step Memory recall, known-fix hints, repo conventions
Block Prevents the action from continuing Budget exceeded, unsafe tool, loop detected
Modify Transforms input or output Compression, redaction, normalization

Pass-through

The hook observes the event, records data, and returns control without changing execution.

Use when:

  • Measuring latency or token usage
  • Auditing tool usage
  • Recording session metadata

Inject context

The hook appends extra context for the next reasoning step.

Use when:

  • Loading persistent memory on SessionStart
  • Surfacing known error workarounds on PreToolUse
  • Reattaching preserved context on PostCompact

Example:

{
  "action": "injectContext",
  "additionalContext": [
    "Repo convention: run pwsh tests/run-tests.ps1 before merge.",
    "Known fix: package step may require deleting stale dist artifacts first."
  ]
}

Block

The hook stops execution and returns a reason.

Use when:

  • A tool is disallowed in the current environment
  • The agent exceeded its budget and must rotate
  • A loop detector sees repeated failing commands

Example:

{
  "action": "block",
  "reason": "Token budget exceeded at 82% of effective window; rotate session before continuing."
}

Modify

The hook changes the input or output before control returns to the agent.

Use when:

  • Redacting secrets from tool output
  • Compressing verbose logs before they enter context
  • Normalizing error objects into a consistent structure

Example:

{
  "action": "modify",
  "modifiedOutput": {
    "summary": "dotnet restore failed due to private feed auth",
    "redacted": true
  }
}

4. Common Hook Contract

A portable hook contract keeps the framework implementation-neutral while still giving enough structure for tooling.

Event Envelope

{
  "hook": "PostToolUse",
  "timestamp": "2025-04-27T18:42:31Z",
  "sessionId": "sess_01J...",
  "agent": "backend-dev",
  "repository": "IBuySpy-Shared/basecoat",
  "branch": "feat/145-hooks-framework",
  "budget": {
    "usedTokens": 78124,
    "effectiveLimit": 160000
  },
  "tool": {
    "name": "powershell",
    "success": false,
    "durationMs": 6422
  }
}

Response Envelope

{
  "action": "passThrough",
  "priority": 50,
  "additionalContext": [],
  "warnings": [],
  "metadata": {
    "hookId": "anti-loop-detector"
  }
}

Suggested fields:

  • actionpassThrough, injectContext, block, or modify
  • priority — used for ordering when multiple hooks run on the same event
  • additionalContext — optional context to inject into the next reasoning step
  • warnings — non-blocking notices for the agent runtime
  • modifiedInput / modifiedOutput — only present for modify responses
  • metadata — diagnostic fields that should not affect reasoning semantics

5. Implementation Patterns

Registering Hooks

A Base Coat deployment can register hooks in three common ways:

  1. mcp.json — route hook logic through MCP tools or middleware
  2. hooks.json — declare file-based hook handlers for runtimes that support native hook configs
  3. Code-based registration — use application code when the host runtime exposes an SDK

Pattern A: mcp.json

Use this when the runtime exposes extensibility through MCP servers or wrapper tools.

{
  "hooks": {
    "SessionStart": [
      { "tool": "memory.load_session_memory", "priority": 10 },
      { "tool": "telemetry.begin_trace", "priority": 90 }
    ],
    "PostToolUse": [
      { "tool": "errors.capture_tool_outcome", "priority": 20 },
      { "tool": "loops.detect_repeat_failures", "priority": 80 }
    ]
  }
}

Pattern B: hooks.json

Use this when the runtime supports direct declarative hook configuration.

{
  "version": 1,
  "hooks": {
    "PreToolUse": [
      { "command": "python hooks/pre_tool.py", "priority": 20 }
    ],
    "OnBudgetExceeded": [
      { "command": "python hooks/rotate_session.py", "priority": 10 }
    ]
  }
}

Pattern C: Code-Based Registration

Use this when the host runtime has a programmable middleware layer.

runtime.hooks.register('SessionStart', async (event) => {
  const memory = await loadMemory(event.repository, event.branch);
  return {
    action: 'injectContext',
    additionalContext: memory
  };
});

Cross-Platform Notes

Runtime Hook Pattern Notes
GitHub Copilot Via MCP tools or wrapper orchestration Prefer hook behavior implemented as tool calls or middleware around tool dispatch
Claude Code Native hooks Map Base Coat hook names onto the runtime's native lifecycle events where possible
Codex hooks.json style config Prefer declarative registration for portability and simpler auditability

GitHub Copilot

Base Coat should treat GitHub Copilot hooks as an orchestration concern rather than a prompt-only concern. The cleanest integration point is usually:

  • wrapper logic around tool dispatch
  • MCP tools that act as hook processors
  • session middleware that injects additional context between turns

Claude Code

Claude Code can map Base Coat hooks onto native lifecycle events. Where names differ, preserve Base Coat semantics first:

  • session open maps to SessionStart
  • tool preflight maps to PreToolUse
  • tool completion maps to PostToolUse
  • context compression maps to PreCompact and PostCompact

Codex

Codex-style runtimes fit well with a declarative hooks.json model. Keep handlers small, deterministic, and side-effect-aware so the config remains portable across environments.

Error Handling in Hooks

Hooks must never crash the agent runtime.

Required behavior:

  • Catch all exceptions inside each hook
  • Emit diagnostics to telemetry or a debug log
  • Return pass-through when recovery is safe
  • Only block when the hook has a deliberate policy reason, not because the hook itself broke
  • Avoid recursive hook invocation loops unless explicitly supported

Recommended pattern:

async function safeRunHook(handler, event) {
  try {
    return await handler(event);
  } catch (error) {
    logHookFailure(event.hook, error);
    return {
      action: 'passThrough',
      warnings: [`Hook failed: ${error.message}`]
    };
  }
}

Hook Ordering

When multiple hooks are registered for the same event, evaluate them in deterministic order.

Recommended ordering rules:

  1. Sort by ascending priority (lower number runs first)
  2. If priorities tie, sort by stable registration order
  3. block ends the chain unless the runtime explicitly supports "continue after block" for telemetry-only hooks
  4. modify passes its transformed payload to the next hook in the chain
  5. injectContext responses are accumulated unless a later hook explicitly overwrites them

Example order for PreToolUse:

  1. permission validator (priority: 10)
  2. budget guard (priority: 20)
  3. known-fix injector (priority: 50)
  4. telemetry logger (priority: 90)

This order ensures hard policy checks run before advisory enrichment and logging.

6. Integration with Base Coat Features

Hooks become valuable when they connect to other Base Coat patterns instead of operating in isolation.

Memory Persistence → SessionStart / SessionEnd

Flow:

  1. SessionStart loads repo, branch, or issue-scoped memory
  2. Agent works with enriched context
  3. SessionEnd persists learned facts, unresolved blockers, and handoff notes

Example:

{
  "SessionStart": [
    { "tool": "memory.load_relevant_facts", "priority": 10 }
  ],
  "SessionEnd": [
    { "tool": "memory.persist_session_summary", "priority": 20 }
  ]
}

Error Knowledge Base → PreToolUse / PostToolUse

Flow:

  1. PreToolUse checks whether the current tool or command matches a known failure signature
  2. If so, the hook injects a warning or workaround
  3. PostToolUse stores the observed outcome back into the knowledge base

Example use cases:

  • warn that packaging often fails if dist/ contains a stale archive
  • recommend authentication steps before a cloud CLI call
  • record new failure signatures for later reuse

Anti-Loop Detection → PostToolUse

Loop detection is usually outcome-based, so PostToolUse is the right anchor.

Detect patterns such as:

  • same command failing 3 times with the same error text
  • alternating between two tools without progress
  • repeated compaction with no reduction in context pressure

Typical response:

{
  "action": "block",
  "reason": "Loop detected: identical failing command executed 3 times in 6 minutes. Escalate or change strategy."
}

Session Rotation → OnBudgetExceeded

When the session crosses a budget threshold, hooks should rotate before quality collapses.

Recommended sequence:

  1. block new large context loads
  2. trigger PreCompact
  3. persist handoff state
  4. rotate session
  5. trigger SessionStart in the fresh session
  6. verify restored anchors in PostCompact

Telemetry → All Hooks

Every hook point can emit telemetry.

Suggested measurements:

Hook Metrics
SessionStart memory hits, session bootstrap latency
SessionEnd persisted facts, handoff size
PreToolUse tool category, policy checks, warnings injected
PostToolUse duration, success rate, retry count, loop score
PreCompact pre-compaction token load, handoff size
PostCompact retained anchors, compression ratio
OnError normalized error class, recurrence count
OnBudgetExceeded trigger threshold, rotation frequency

A minimal but robust Base Coat hook runner should follow these rules:

  1. Hooks are opt-in and independently configurable
  2. Each hook runs in isolation and cannot crash the main agent
  3. Responses are normalized into a shared contract before the runtime acts on them
  4. Blocking policies are explicit and auditable
  5. All mutations are traceable in telemetry
  6. Session-rotation hooks preserve enough state for a clean handoff
  7. Sensitive data should be redacted before hook output is stored or reinjected

Suggested Defaults

Concern Default
Hook timeout 1-3 seconds for synchronous hooks
Failure behavior Pass-through with warning
Ordering Lowest priority value first
Context injection limit Keep hook-injected context small and task-specific
Storage Persist summaries and signatures, not raw sensitive output
Budget trigger Warn at ~70%, rotate by ~80% of effective limit

8. Example End-to-End Flow

SessionStart
  └─ load memory, bootstrap telemetry, inject repo conventions

PreToolUse
  └─ validate tool policy, inject known-fix hints

Tool executes

PostToolUse
  └─ capture result, update error KB, score for loop behavior

... repeated tool usage ...

OnBudgetExceeded
  └─ block further expensive work, trigger rotation

PreCompact
  └─ persist full handoff state before compression

PostCompact
  └─ verify issue number, branch, blockers, and next step survived

SessionEnd
  └─ flush telemetry, persist memory, cleanup runtime state

This is the intended control loop: hooks add guardrails and continuity around the agent, while the agent remains focused on task execution.

9. Design Guidance for Base Coat Authors

When adding hook support to a Base Coat-aligned runtime:

  • Start with SessionStart, PostToolUse, and OnBudgetExceeded first; they provide the highest operational value
  • Keep hook handlers narrowly scoped; one hook should own one concern
  • Prefer structured outputs over free-form prose so downstream automation can reason over results
  • Treat hook-added context as scarce; inject only what improves the next decision
  • Version hook contracts if they will be shared across runtimes
  • Document which hooks are advisory versus policy-enforcing