079eb60e30
Add docs/architecture/glitchtip-readonly-tools-design.md: implementation- ready design for the GlitchTip observability boundary's read-only tool set — minimum tools (whoami, list_projects, list_unresolved, get_issue, recent_events, search; GET-only), field-level allowlist projection with an explicit never-returned list (headers, cookies, auth fields, emails, IPs, bodies, locals, raw frames), default fingerprint/release/summary+permalink output, raw access gated behind a distinct approval-only glitchtip.event.read_raw operation, cursor pagination with explicit truncation flags, per-service credential/profile requirements (token by reference, fail closed), Sentry-compat API subset note, fail-closed failure matrix, mocked testing strategy with negative PII assertions, and a readiness checklist. Namespace left to ADR-0001 owner decision #2. Design only; no implementation, no mutation tools, no code behavior changed. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>