Skip to main content
GET
/
api
/
v1
/
tasks
/
{id}
/
agent-audit-log
Get agent audit log
curl --request GET \
  --url https://neo.api.projectdiscovery.io/api/v1/tasks/{id}/agent-audit-log \
  --header 'Authorization: Bearer <token>'
{
  "events": [
    {
      "action": "<string>",
      "event_type": "<string>",
      "id": "<string>",
      "sequence": 123,
      "stream_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
      "task_id": "<string>",
      "agent_id": "<string>",
      "agent_type": "<string>",
      "completed_at": "2023-11-07T05:31:56Z",
      "duration_ms": 123,
      "error_message": "<string>",
      "input_summary": "<string>",
      "metadata": {},
      "output_preview": "<string>",
      "output_summary": "<string>",
      "started_at": "2023-11-07T05:31:56Z",
      "target": "<string>",
      "tool_call_id": "<string>",
      "tool_name": "<string>"
    }
  ],
  "has_more": true,
  "task_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a"
}

Authorizations

Authorization
string
header
required

JWT authentication token

Path Parameters

id
string<uuid>
required

Task ID

Query Parameters

limit
integer
default:500

Maximum number of events to return

Required range: 1 <= x <= 2000
starting_after
integer<int64>

Cursor for pagination - return events after this audit sequence

Required range: x >= 0
stream_id
string<uuid>

Scope the audit log to a single stream of the task. By default the log aggregates every stream (turn/resume) of the task in chronological order; pass a stream id to return only that stream's events. Unknown / non-matching ids yield an empty log.

event_type
string

Filter by exact event type

status
enum<string>

Filter by exact event status. Canonical values only: completed (success), failed, timeout, aborted, blocked (awaiting approval / suspended), started (still running).

Available options:
started,
completed,
failed,
timeout,
aborted,
blocked
agent_id
string

Filter by exact agent ID

tool_name
string

Filter by exact tool name

search
string

Case-insensitive substring search across every data point on an event (action, target, input/output summaries, error, tool name, agent id/type, tool_call_id, event_type, status, scope, metadata).

export
boolean
default:false

When true, return the FULL audit log as a downloadable file (Content-Disposition: attachment) instead of a paginated JSON response. Honors the filter/search params but ignores limit / starting_after. The response is the type-selected format.

type
enum<string>
default:json

Export file format, used only when export=true. json (default) or csv. Ignored for the normal paginated response.

Available options:
json,
csv

Response

Agent audit log events. A paginated JSON body normally; when export=true a downloadable json/csv file attachment.

events
object[]
required
has_more
boolean
required
task_id
string<uuid>
required