Production Concerns

    Demo agents are easy. Production agents are hard. This is where the craft lives.

    Connections

    • To Evaluation: How does prod monitoring relate to eval?
    • To Debugging: How do you debug production issues?
    • Human-in-the-Loop: How do humans fit into production operations?

    Production War Stories

    Document production incidents, what happened, what you learned:

    Multi-Agent Production Lessons

    [2025-12-09]: Hard-won lessons from practitioners running multi-agent systems at scale (including a 400K LOC codebase). These patterns emerge repeatedly across production deployments.

    Context Switching Kills Productivity

    "It is better to start with fresh context on a fresh problem rather than using an existing context." Don't try to salvage a degraded agent—boot a new one. The cost of context confusion exceeds the cost of restarting. In multi-agent systems, this is even more important: let each subagent start fresh and focused rather than inheriting accumulated state.

    CLAUDE.md as Convention Encoding

    Document project conventions in CLAUDE.md. Agents read this to understand boundaries, patterns, and expectations. For large codebases, this is essential—agents can't infer all conventions from code alone. Investing time in clear specs saves 10× in agent iterations. The alternative is watching agents repeatedly violate conventions you thought were obvious.

    Lifecycle Hooks for Control

    Wire hooks at critical transitions:

    • PreToolUse: Validate commands before execution (catch dangerous operations)
    • SubagentStop: Record outputs, promote artifacts, log what was accomplished
    • ErrorEscalation: Notify human overseers when agents fail or hit edge cases

    These hooks provide observability and control points without requiring constant human monitoring.

    The Orchestrator Observes Itself

    [2025-12-09]: Hooks enable a powerful pattern—the orchestrator becomes self-aware of its own operations. PreToolUse and PostToolUse hooks capture every Claude Code action, creating real-time visibility into agent behavior.

    This enables:

    • Cost Tracking: Measure token consumption per tool invocation, per subagent, per task
    • Audit Trails: Log every agent action with context—who did what, when, and why
    • Real-Time Monitoring: Detect patterns, anomalies, or runaway agents as they happen
    • Platform Self-Awareness: The system knows what it's doing while it's doing it

    Traditional software logs after the fact. Hooks let platforms observe themselves during execution. This is the foundation for production-grade agent operations—you can't manage what you can't measure, and you can't measure what you can't observe.

    Implementation Pattern: Wire PostToolUse hooks to write structured logs (JSON) containing tool name, parameters, results, duration, and cost estimates. Aggregate these logs for operational dashboards showing agent activity in real-time.

    See Also:

    Test-First Discipline

    The test-first pattern works remarkably well with multi-agent systems:

    1. Dedicate a test-writing subagent to create tests that currently fail
    2. Verify the tests actually fail (don't skip this)
    3. Implementer subagent makes tests pass without changing tests
    4. Review subagent validates the changes

    This creates natural quality gates and makes progress measurable. Agents write better code when following this discipline—they have clear success criteria.

    Dedicated Review Gate

    Maintain a dedicated code-review subagent as a final gate. Configure it to enforce:

    • Linting and style conventions
    • Complexity bounds (cyclomatic complexity, file length)
    • Security checks (no secrets, no dangerous patterns)

    This catches issues before they reach humans, and the reviewing agent doesn't have the sunk-cost bias of having written the code.

    Documentation Investment

    Time spent on clear specs saves 10× in agent iterations. If you're watching agents go in circles, the problem is usually upstream in the specification, not in the agents themselves. Write clear specs once, save debugging time forever.

    Opus 4.5 for Orchestration

    Practitioner consensus: Opus 4.5 is particularly effective at managing teams of subagents. It handles the coordination overhead well and produces more coherent multi-agent workflows than smaller models used for orchestration.

    Sources: How I Manage 400K Lines of Code with Claude Code, Claude Agent SDK Best Practices, Multi-Agent Orchestration: Running 10+ Claude Instances

    Google Cloud Deployment Gotchas

    [2025-12-09]: Hard-won lessons from practitioners deploying Google ADK agents to production. These are framework-agnostic lessons that apply broadly—they just happen to surface most visibly with ADK on Google Cloud.

    Infrastructure Permissions

    Enable Cloud Run Admin API before deployment. Missing permissions fail with cryptic errors that don't obviously point to the permission issue. This isn't ADK-specific—it's a Google Cloud pattern. Before deploying anything, verify required APIs are enabled.

    Environment Variable Naming

    Generic environment variable names conflict with system variables. MODEL is particularly problematic—it conflicts with Google Cloud's internal variables.

    The fix: prefix everything. Use GEMMA_MODEL_NAME instead of MODEL, ADK_API_KEY instead of API_KEY. This namespacing prevents silent conflicts that cause mysterious runtime behavior.

    MCP Session Affinity

    MCP connections are stateful. At scale, this means:

    • Load balancers need session affinity (sticky sessions)
    • Connection loss requires reconnection handling
    • Horizontal scaling is constrained by state distribution

    Plan load balancing accordingly. Stateless is easy; stateful requires architecture decisions.

    Asyncio Everywhere

    ADK and MCP both assume async-first Python. Common mistakes:

    • Writing sync tool implementations (blocks the event loop)
    • Forgetting await on async calls
    • Not using async context managers for connections

    Default to async def for everything. Sync code in an async codebase serializes naturally parallel operations—you lose the concurrency benefits without obvious errors.

    The "Works Locally, Fails in Cloud" Pattern

    Local development hides many issues:

    • Environment variable sources differ (local shell vs. Cloud Run secrets)
    • Network topology changes (localhost vs. VPC)
    • Permission models differ (local user vs. service account)

    Always test in a staging environment that mirrors production. "It works on my machine" is particularly dangerous with agent systems where subtle environment differences cause behavioral changes.

    See Also: Google ADK: Production Lessons — ADK-specific deployment experiences

    Hook-Based Enforcement Patterns

    [2026-02-05]: Production agent systems require runtime validation beyond prompt instructions. Hook-based enforcement provides time-budgeted validation, pre-edit dependency injection, and scope enforcement for reliable operations at scale.

    Your Mental Model

    Hooks are enforcement points, not just observability. While PostToolUse hooks enable monitoring (see The Orchestrator Observes Itself), hooks also enforce constraints:

    • Time budgets prevent runaway operations
    • Pre-edit checks inject required context
    • Scope validation blocks out-of-bounds modifications

    This philosophy: "Permissive tools + strict prompts + hook enforcement"—tools provide capabilities, prompts guide behavior, hooks enforce boundaries.

    Time-Budgeted Hook Execution

    The constraint: Hooks run synchronously, blocking agent execution. Long-running hooks degrade user experience.

    Production budgets:

    Hook Budget Purpose
    SessionStart 3-5s Load domain expertise, check MCP health
    PreEdit 10-15s Query code intelligence (LSP, type systems)
    PreToolUse 5-10s Validate command safety, check credentials
    PostToolUse 3-5s Log action, update metrics

    Graceful degradation:

    async function sessionStartHook(context: SessionContext): Promise<void> {
  const timeout = 5000; // 5 second budget
 
  try {
    await Promise.race([
      loadExpertise(context.domain),
      sleep(timeout)
    ]);
  } catch (error) {
    logger.warn("SessionStart hook timed out, continuing with defaults");
    // Graceful fallback: agent proceeds without expertise injection
  }
}

    Why time budgets matter:

    • Agents remain responsive (no 30s hangs)
    • User experience preserved (fast feedback loops)
    • Failure modes explicit (timeout → fallback path)

    Pre-Edit Dependency Injection

    The pattern: Before file modifications, inject dynamic context agents need for correct implementation.

    Example: TypeScript module editing

    async function preEditHook(file: string): Promise<void> {
  if (!file.endsWith('.ts')) return; // Only TypeScript files
 
  // Query TypeScript language server for:
  // - Current imports in file
  // - Type definitions for interfaces
  // - Available exports from modules
  const typeContext = await queryTSServer(file);
 
  // Inject as temporary context for this edit session
  injectContext({
    imports: typeContext.imports,
    types: typeContext.types,
    exports: typeContext.exports
  });
}

    What this prevents:

    • Missing imports (agent knows what's already imported)
    • Type mismatches (agent sees type definitions)
    • Undefined references (agent knows available exports)

    Cost: 10-15s latency before edit begins (acceptable for complex changes)

    Session-Start Expertise Injection

    The pattern: Load domain-specific expertise dynamically based on repository structure or task context.

    Example: Domain detection + expertise loading

    async function sessionStartHook(): Promise<void> {
  const repo = detectRepository();
 
  if (repo.hasDir('.claude/agents/experts/github')) {
    const expertise = await loadExpertise('github');
    injectContext({ github_patterns: expertise });
  }
 
  if (repo.hasDir('src/api')) {
    const apiPatterns = await loadExpertise('api-development');
    injectContext({ api_patterns: apiPatterns });
  }
 
  // Continue for all detected domains...
}

    What this enables:

    • Context-aware agent behavior (knows repository patterns)
    • Zero configuration (automatic domain detection)
    • Expertise reuse (same patterns across projects)

    Trade-off: 3-5s session startup latency for dynamic expertise loading

    Scope Enforcement Hook

    The pattern: Validate file modifications against agent's declared contract before write operations.

    Example: Contract-based scope validation

    async function preEditHook(file: string, agent: AgentContext): Promise<void> {
  const contract = agent.contextContract;
 
  // Check allowed_modifications globs
  const allowed = contract.outputs.allowed_modifications || ['**/*'];
  const isAllowed = allowed.some(glob => minimatch(file, glob));
 
  if (!isAllowed) {
    throw new ScopeViolationError(
      `Agent ${agent.name} attempted to modify ${file}, ` +
      `but only allowed to modify: ${allowed.join(', ')}`
    );
  }
 
  // Check forbidden patterns
  const forbidden = contract.outputs.forbidden_patterns || [];
  const isForbidden = forbidden.some(glob => minimatch(file, glob));
 
  if (isForbidden) {
    throw new ScopeViolationError(
      `Agent ${agent.name} attempted to modify forbidden path: ${file}`
    );
  }
}

    What this enforces:

    • File ownership (agents can't modify files outside their scope)
    • Safety boundaries (prevents accidental system file modification)
    • Coordination constraints (Implementation Pattern file ownership)

    Performance: <1s validation (glob matching is fast)

    Shared Hook Utilities

    The problem: Hooks across all agents need common functionality—logging, timeout management, MCP health checks.

    The solution: Shared utilities library:

    .claude/hooks/
├── utils/
│   ├── logger.ts        # Structured logging
│   ├── timeout.ts       # Time budget enforcement
│   ├── mcp-health.ts    # MCP server availability checks
│   └── context-inject.ts # Dynamic context loading
├── sessionStart.ts      # Uses utilities
├── preEdit.ts           # Uses utilities
└── preToolUse.ts        # Uses utilities

    Why this matters:

    • Consistency (all hooks log uniformly)
    • Reusability (timeout logic once, used everywhere)
    • Testability (test utilities independently of hooks)

    Permissive Tools + Strict Prompts + Hook Enforcement

    Philosophy:

    1. Permissive tools: Agents have broad tool access (Write, Edit, Bash)
    2. Strict prompts: Instructions guide desired behavior ("Only modify auth module")
    3. Hook enforcement: Runtime validation ensures compliance (scope checks, safety gates)

    Why this works:

    • Flexibility (agents can adapt to unexpected needs within boundaries)
    • Safety (hooks prevent dangerous operations)
    • Clarity (prompts explain intent, hooks enforce hard limits)

    Anti-pattern: Overly restrictive tools (agent can't handle edge cases) + weak hooks (no enforcement of constraints). This fails silently—agents work around restrictions or violate assumptions.

    Production Deployment Considerations

    Hook failure modes:

    • Timeout → graceful degradation (proceed without enhancement)
    • MCP unavailable → skip optional features (log warning)
    • Validation failure → hard stop (prevent incorrect operation)

    Monitoring:

    • Log all hook executions (timing, success/failure)
    • Alert on repeated hook failures (system degradation)
    • Track timeout rates (indicates budget tuning needed)

    Testing:

    • Unit test hook logic separately
    • Integration test hook + agent behavior
    • Load test hook performance (ensure budgets hold under load)

    Connections

    Sources: Advanced external .claude/ implementation patterns, hook infrastructure analysis from KotaDB system.

    LinkedIn
    youtube