PreToolUse additionalContext

1. Created skill with PreToolUse hook that returns additionalContext

PreToolUse additionalContext enables hooks to inject context into model awareness before tool execution.

How It Works

A PreToolUse hook can output JSON containing an additionalContext field, which the runtime injects as a system reminder before passing a tool call to the model. The hook runs synchronously before the tool (e.g., Read, Write) executes, receives no blocking error if the hook fails, and does not prevent tool execution.

hooks:
  PreToolUse:
    - matcher: "Read"
      hooks:
        - type: command
          command: echo '{"additionalContext": "Your message here"}'

The context field must be valid JSON; only the additionalContext key is parsed. Multiple hooks across skill and global scopes can fire for the same tool.

Test Setup and Result

On 2026-01-16, Claude Code 2.1.9 was tested by creating a skill with a PreToolUse hook that echoed JSON containing additionalContext. Triggering a Read call fired the hook, the JSON was parsed, and the injected context appeared as a <system-reminder> block in the model's context window. The test passed.

Four verified behaviors emerged:

Hook fires before tool execution
JSON must be valid; only additionalContext key is used
Context injected as system reminder (non-intrusive, timestamped)
Execution is non-blocking (hook failure does not stop the tool)

Use Cases

Security warnings on sensitive file access, dynamic metadata annotation, audit logging with context, and situational instruction injection. A hook might check file path against a policy list and warn the model before Read executes, or log tool invocations with enriched context without blocking them.

Caveats

The hook output must be JSON on stdout. Malformed JSON is silently dropped. Context scales linearly with token cost; frequent injections can accumulate. Skill-scoped and global hooks both fire; no precedence order is defined if both match.

Evidence & receipt

file2.1.9/tests/02-additional-context/TEST-RESULTS.md

◇ ed25519 receipt

idprimitive_18bad30f531272e2c7354854

alged25519

pubkey9b87705613b1e2fd064d57fa75a6b679d2856ceafad6b1daa8f982493871b6dd

sig

4357a23ab27ea20c9c14351e6ac778b62348d531b6d96f21eec8c9cdca266d975e8f15d89751303bb5ea982bf86501a98dd4a227b52228b48cda0786ccb5db0e

Signed with an ed25519 key held off the repo. Anyone can verify against the published public key; nobody without the secret key can forge it. Click verify: it recomputes the signature in your browser. The signature proves integrity and authorship of this exact content — not a third-party timestamp or that the underlying claim is objectively true. signedAt is when the @f3/attest pipeline ran, not when the work happened; the evidence refs carry the source dates.

Connected

instance-of Sandbox / Capability Class
introduces (in) 2.1.9 Test (2.1.9) Release
verifies (in) PreToolUse additionalContext — runtime test Test

PreToolUse additionalContext

Primitive

Kind	Primitive
Introduced	Claude Code 2.1.9
Class	Sandbox / Capability
Epistemic	tested · runtime-test
Evidence	1 ref
Receipt	ed25519 · verifiable

Hands-on runtime test · Claude Code 2.1.9

Cite this page

Hunter, R. "PreToolUse additionalContext." The Runtime Atlas. Content-addressed entity primitive_18bad30f531272e2c7354854, ed25519-signed (integrity, not third-party timestamp). https://ryanhunter.io/atlas/e/2-1-9-additional-context

@misc{atlas-2-1-9-additional-context,
  title  = {PreToolUse additionalContext},
  author = {Hunter, Ryan},
  note   = {The Runtime Atlas; entity primitive_18bad30f531272e2c7354854; ed25519-signed for integrity},
  url    = {https://ryanhunter.io/atlas/e/2-1-9-additional-context}
}