ποΈ Building Production-Grade Fullstack Products with AI Coding Agents π€ β A Practical Playbook π - Part 1
An opinionated, end-to-end field guide for engineers and small teams who want to ship fast, high-quality, production-ready fullstack software with AI coding agents (Claude Code, GitHub Copilot, Cursor, Codex, Windsurf, Cline, Aider) as the primary execution surface.
No theory-only fluff. Every section ends with concrete rules, real tool names, and the failure modes that bite in production. If you only read three sections, read Β§2 The Mental Model, Β§6 Context Engineering, and Β§19 Anti-Patterns.
Companion reads: π Spec Kit vs. Superpowers β‘ β A Comprehensive Comparison & Practical Guide to Combining Both π, π» Vibe Coding Interview Guide: Ace AI-Assisted Coding Assessments π€, π The SaaS Template Playbook π, π¦Έ The Solo-Founder Playbook: Zero Hero π, ποΈ Building High-Quality AI Agents π€ β A Comprehensive, Actionable Field Guide π.
π Table of Contents
- β‘ Read This First β 7 Truths
- π§ The Mental Model β Director, Not Typist
- π οΈ The 2026 Tooling Landscape
- 𧱠The Stack Decision β Boring Tech, Sharp Edges
- π The Project Skeleton β Day 0 Setup
- π Context Engineering β The 10x Multiplier
- π The Repo as a Programming Language β CLAUDE.md, AGENTS.md, .cursorrules
- π The Spec β Plan β Code β Verify Loop
- β‘ Parallel Agent Workflows β Worktrees & Subagents
- π¨ Frontend Patterns That Survive AI Generation
- βοΈ Backend Patterns That Survive AI Generation
- ποΈ Database & Migrations β Where AI Fails Hardest
- π The Type-Safe Boundary β OpenAPI, tRPC, Codegen
- π§ͺ Testing Strategy β AI's Highest Leverage Point
- π Code Review β Two Humans, Two Robots
- π CI/CD, Preview Environments & Deploys
- π Security, Secrets & Sandbox Discipline
- π Observability, Cost & Token Hygiene
- β οΈ The Anti-Pattern Catalog
- ποΈ Daily / Weekly Practitioner Cadence
- πΊοΈ The 90-Day Roadmap from Zero β Production
- π Cheat Sheet & Prompt Library
1. β‘ Read This First β 7 Truths
These are the lessons that come up over and over in 2025β2026 retrospectives from teams shipping real product with AI agents. Internalize them before you write your first prompt.
-
The bottleneck moved from typing to thinking. AI generates code roughly 5β20x faster than humans type, but humans still review, design, debug, and own the system. The 10x productivity stories you hear are real only for teams that re-organized around this shift. Teams that kept their old process (write ticket β assign β wait β review) get maybe 1.5x. The shape of work changes; the speed only follows.
-
Context engineering > prompt engineering. A great prompt in a bad context (no
CLAUDE.md, no examples, wrong directory, no codebase conventions) produces worse output than a mediocre prompt in a well-engineered context. Most "the AI is bad" complaints are context complaints in disguise. -
The PR is the unit of work, not the ticket. The smallest reviewable, deployable, revertible chunk wins. Agents that produce 800-line PRs that touch 14 files are worse than agents that produce 80-line PRs across 5 commits. Train your agents to ship small.
-
Verification is now your highest-leverage skill. Anyone can generate code. Almost nobody can cheaply verify it. Tests, types, schemas, contracts, linters, preview environments, screenshots β the more the agent can self-check, the more autonomous the loop becomes.
-
Boring stacks compound. AI agents are trained on terabytes of TypeScript + React + Postgres + Tailwind. They are measurably better on those stacks than on Elm + Roc + FoundationDB. Your taste edge is your taste, not your stack. Pick the most mainstream stack you respect and never look back.
-
You will spend more on tokens than on humans by the end of year 2. Internal usage data from Anthropic and OpenAI partner reports through Q1 2026 show senior engineers running $200β$600/month in agent token spend at full velocity. Plan a budget, monitor it, optimize prompt caching and model selection. (Yes, it's still cheaper than another engineer.)
-
The "vibe coding" trap is real and unforgiving. Accepting code you don't understand is fine for a throwaway script and catastrophic for production. Andrej Karpathy's literal vibe-coding ("forget that the code even exists") is what causes the security breaches, prompt-injection escapes, and 2 AM pages that the news keeps reporting. You remain the engineer of record. Always.
The rest of this playbook is the implementation of those seven truths.
2. π§ The Mental Model β Director, Not Typist
The single most important reframing is this:
You are a director of a small team of fast, confident, occasionally wrong junior engineers. Your job is to set context, decompose work, review output, and own the final product. The agents do the typing.
This implies three role shifts:
π§βπ« From "writer" to "spec-writer"
Old: spend 70% of time writing code, 20% reviewing, 10% designing. New: spend 50% specifying & reviewing, 30% testing & verifying, 20% writing the parts that still need a human (architecture decisions, security-critical paths, ambiguous UX).
A senior engineer's output curve looks like:
Productivity β (clarity of spec) Γ (quality of harness) Γ (verification speed)
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
(taste + judgment)
If you can specify cleanly, set up a good harness, and verify fast, agents amplify you 5β10x. If any of those three are weak, agents amplify you 1.5x and your spent tokens 10x.
π§° From "tool user" to "harness builder"
The harness is the set of things the agent reads, writes, and runs outside the model itself: your CLAUDE.md, .cursorrules, slash commands, MCP servers, hooks, test runners, lint rules, scripts, prompt templates, custom skills.
A senior engineer invests the first 1β3 days of any new project building the harness before writing real product code. It is the single highest-ROI activity. See Β§6 Context Engineering.
π¬ From "ship it" to "verify and ship it"
Verification is now the bottleneck. Every minute you save by having the agent generate faster is wasted if you spend two minutes verifying. The successful workflow is:
Spec β Agent generates β Agent runs tests β Agent runs lint
β Agent generates a screenshot/curl trace
β You review the diff and the evidence β Merge
The agent should produce evidence (test results, screenshots, log output, type-check output) alongside the code. If it doesn't, your harness is wrong.
π― The taste budget
You have a finite "taste budget" per day β the number of small decisions you can make well. Spending it on indentation, import ordering, or "should this be a hook or a context?" is waste. Spending it on data model, API contract, and UX flow is leverage.
Push every low-taste decision into the harness (linters, formatters, generators, templates). Save taste for the things only you can do.
Actionable rules
- Treat the first day of every project as "harness day". No feature code until the harness is good.
- For every feature, write a 1β3 paragraph spec first. Paste it into the agent. Iterate on the spec before code.
- Never accept code you couldn't write yourself given enough time. You don't have to prefer to write it. You have to be able to audit it.
3. π οΈ The 2026 Tooling Landscape
There are roughly four families of AI coding tools you'll encounter. Most production teams use two or three of them together β not one.
3.1 π₯οΈ The Agentic CLIs
Long-horizon, terminal-native agents that read/write files, run commands, and operate autonomously inside a repo. This is where the action is today.
| Tool | Owner | Strength | Cost shape | When to pick |
|---|---|---|---|---|
| Claude Code | Anthropic | Best general-purpose agent. Skills, hooks, plan mode, subagents, 1M-context Opus. | Subscription (Pro/Max) + token usage | Default for senior engineers; multi-hour autonomous work |
| Codex CLI | OpenAI | Tight GPT-5+ integration, fast on terminal tasks | Subscription + tokens | OpenAI-first shops; quick CLI workflows |
| Aider | open source | Repo-aware diffs, git-native, model-agnostic | BYOK | Hackers who want full control + cheap models |
| Cline / Roo Code | open source | VS Code agent, MCP-first | BYOK | When you want IDE integration but open weights |
| Devin | Cognition | Fully autonomous, Slack/PR-driven | Per-seat ($500/mo) | Async background work on bounded tasks |
| Replit Agent / Bolt / v0 / Lovable | various | One-shot fullstack scaffolders | Subscription | Throwaway prototypes; demos; idea validation |
Pick one as your primary, one as your secondary. Most teams converge on Claude Code as primary (long-horizon, autonomous, best harness) and Cursor or Copilot in-IDE as secondary (inline edits, autocomplete).
3.2 πͺ The IDE Agents
In-editor companions optimized for fast, low-latency edits and pair-coding style flow.
| Tool | Notes |
|---|---|
| Cursor | Best-in-class agent mode, tab-tab autocomplete, multi-file edits. Effectively a VS Code fork. Still the leader for pure IDE flow as of mid-2026. |
| GitHub Copilot | Now ships with agent mode + GPT-5.4, Sonnet 4.6, and Gemini 3.x; supports MCP, hooks (.github/hooks/*.json, Preview), .github/copilot-instructions.md, .github/prompts/*.prompt.md, custom chat modes, and reads .claude/settings.json/AGENTS.md directly. The "default safe choice" in regulated/enterprise environments and now a credible peer to Claude Code on the harness axis. |
| Windsurf | Cascade agent is strong; acquired by OpenAI in 2025, now integrated with Codex. |
| Zed | Native agent panel, fast, opinionated, model-pluggable. The rising option for terminal-and-keyboard purists. |
| JetBrains AI | Solid in JetBrains IDEs (GoLand, IntelliJ, PyCharm). |
3.3 π€ The Background / Async Agents
Run on your PRs, in CI, or on a Slack mention. These don't replace your CLI/IDE agent β they complement it.
- CodeRabbit, Greptile, Coderabbit Pro β automated PR review. Good for catching obvious bugs, missing tests, security smells. Treat them as a robot junior reviewer, not a robot senior.
- GitHub Copilot Code Review β first-party PR review.
- Linear Magic / Jira AI β convert issues to draft PRs.
- CodeSee, Sourcegraph Cody β code search + comprehension on large repos.
3.4 π§ͺ The Specialized Surfaces
- v0.dev / Subframe / Galileo β UI generation from prompts/screenshots.
- Supabase AI / Neon AI β schema + query generation against your real DB.
- PostHog / Sentry AI β log + error explanation.
- Storybook + Chromatic β visual regression baked in.
3.5 The pragmatic stack for one engineer
If you want a no-nonsense recommendation:
| Surface | Pick |
|---|---|
| Primary agent | Claude Code (Opus 4.7 for big things, Sonnet 4.6 for everything else) |
| IDE assistant | Cursor or Copilot in VS Code |
| PR reviewer | CodeRabbit (free tier on public repos) |
| UI scaffolding | v0.dev for first-pass screens |
| Background tasks | Devin only if you have a real budget; otherwise skip |
Two agents in your daily flow is the sweet spot. Three is fine. Four is procrastination.
Actionable rules
- Pick one CLI agent and one IDE agent. Stop tool-shopping.
- Don't pay for a tool you used < 3 times in the last month.
- Always have an open-source fallback (Aider/Cline) in case your primary is down.
4. 𧱠The Stack Decision β Boring Tech, Sharp Edges
AI agents perform measurably better on mainstream stacks. The training data is more comprehensive, the patterns are well-known, the gotchas are documented, and your harness inherits a decade of community tooling. This is not the place to be clever.
4.1 The defaults (pick from here unless you have a reason not to)
| Layer | Pick | Why |
|---|---|---|
| Frontend framework | React 19 + Vite, or Next.js 15 (App Router) | Largest training corpus by 10x. React 19's Actions + RSC are now stable. |
| Mobile | React Native + Expo SDK 53+, Flutter (Dart / cross-platform), or web-first | Avoid native unless you must. Flutter if your team prefers Dart or needs iOS + Android + web from one codebase. |
| Styling | Tailwind CSS v4 + shadcn/ui | Tailwind's class-string syntax is extremely AI-friendly. shadcn = AI-readable component code in your repo. |
| State | TanStack Query (server state) + Zustand or Jotai (client state) | No more useEffect for data fetching. |
| Forms | React Hook Form + Zod | Schema-driven validation = type-safe contracts. |
| Backend language | TypeScript (Node 22+ / Bun 1.2+) or Go 1.23 or Python 3.12 + FastAPI | Pick TS if your team is JS; Go if you need raw throughput; Python if ML is core. |
| Backend framework | Hono / Elysia / Fastify (TS), Gin / chi / Fiber (Go), FastAPI / Litestar (Python) | Modern, fast, type-safe. Gin is the most-trained-on Go HTTP framework; chi for minimalists. Avoid Express for greenfield. |
| Database | PostgreSQL (always) | Boring. Wins. Use jsonb for flexibility. |
| ORM / DB layer | Drizzle or Prisma (TS), pgx / sqlc / GORM (Go), SQLAlchemy 2.x (Python) | pgx (v5): pure Go PostgreSQL driver β raw SQL, max performance, LISTEN/NOTIFY, batching; the foundation both sqlc and GORM build on. sqlc: codegen layer on top of pgx (.sql files β typed functions). GORM: reflection-based active-record (uses pgx or database/sql). Drizzle: TS schema β SQL migrations, no separate client. Prisma: .prisma DSL β migrations + full ORM client. |
| Migrations | Drizzle Kit (TS), goose or golang-migrate (Go), Alembic (Python) | All AI-friendly; agents can read and write the migration files. |
| Auth | Clerk / Auth.js / Better Auth (TS); Casdoor for self-hosted OIDC / SSO / social-login; Supabase Auth if you're already there | Don't roll your own. Ever. |
| Resend + React Email | Modern, scriptable, AI-friendly templates. | |
| Payments | Stripe (still). Polar.sh for OSS-friendly indie. | |
| File storage | Cloudflare R2 or S3 + pre-signed URLs | |
| Search | Postgres FTS for <1M rows; Typesense or Meilisearch otherwise | |
| Realtime | Postgres LISTEN/NOTIFY + SSE for simple; Liveblocks or Convex for collab | |
| Background jobs | Inngest or Trigger.dev or Hatchet | Code-first, type-safe, agent-friendly. Skip BullMQ unless you must. |
| Message bus | NATS JetStream | Durable pub/sub for async inter-service events; always use the JetStream API (not core NATS) for persistence. See Β§8 for full patterns. |
| Cache / rate-limit | Redis (Upstash for serverless) | Session store, distributed rate-limiter, ephemeral state; use Lua scripts for atomic multi-step ops. See Β§8 for patterns. |
| Hosting (web) | Vercel / Fly.io / Cloudflare Pages/Workers / DigitalOcean App Platform | |
| Reverse proxy | Caddy (automatic HTTPS, zero-config TLS certs) or nginx | Preferred for self-hosted VPS / DigitalOcean Droplets; handles cert renewal automatically. |
| Hosting (db) | Neon or Supabase or Railway Postgres | Branchable DBs are huge for agent workflows β see Β§12. |
| Monitoring | Sentry + PostHog + Axiom (managed logs); or self-hosted Prometheus + Grafana + Loki (logs) + Tempo (traces) | Grafana Cloud has a generous free tier that covers most early-stage products. |
| CI/CD | GitHub Actions, period. | |
| AI code review | CodeRabbit / Greptile / Qodo PR-Agent (BYOK, self-hostable) / Copilot Code Review | Qodo PR-Agent BYOK for teams that cannot send diffs to a third-party cloud. |
4.2 What to avoid
- Custom CSS systems. Agents are great at Tailwind, mid at CSS Modules, bad at bespoke design tokens you defined in JSON.
- Microservices on day 1. A modular monolith is faster to build, faster for the agent to navigate, and almost always wins until you're at ~$5M ARR.
- GraphQL as the default contract. It's fine, but REST + OpenAPI (or tRPC for monorepos) is simpler and the agent is better at it. Use GraphQL only when you have a real federation need.
- NoSQL by default. Postgres + jsonb covers 95% of use cases and the agent will not silently corrupt a foreign key.
- Server-driven UI frameworks the agent has barely seen (Phoenix LiveView, htmx + Alpine, etc. β fine choices, just slower for agents).
- Hand-rolled auth, hand-rolled rate-limiting, hand-rolled crypto. Three things that get teams hacked when agents write them.
4.3 The monorepo question
For most teams: one git repo, one pnpm (or bun) workspace, separate packages for web, api, db, shared. Use turborepo or nx only if your build graph genuinely needs it.
Agents are more effective in a monorepo because they can see the whole product in one context window (especially with 200k+ context models). Splitting too early creates more friction than it saves.
Actionable rules
- Default to: React 19 + Vite + Tailwind + shadcn / Hono or FastAPI / Postgres + Drizzle or sqlc / Vercel + Neon.
- Resist the urge to evaluate a 5th JS framework. Ship something instead.
- If the agent struggles with your stack in the first week, the stack is wrong β not the agent.
5. π The Project Skeleton β Day 0 Setup
Before any feature work, get the skeleton right. The agent will fight you for the rest of the project if you don't.
5.1 The "first commit" checklist
# 1. Repo bootstrapped with a real template (not from scratch)
pnpm dlx create-t3-app # or Next.js, or your team's template
# 2. Strict everything
# - TypeScript: "strict": true, "noUncheckedIndexedAccess": true
# - ESLint: recommended + import/order + your team rules
# - Prettier: shared config
# - Husky + lint-staged: pre-commit hooks
# - .editorconfig
# 3. Test runner installed and the first test passing
pnpm add -D vitest @testing-library/react @playwright/test
pnpm test # 1 passing β don't skip this
# 4. CI green on a blank PR
gh workflow run ci.yml
# 5. Deploy preview working
vercel link && git push # see a preview URL
# 6. .env.example committed; .env in .gitignore
# 7. README has: install, dev, test, deploy, troubleshoot
# 8. AGENTS.md / CLAUDE.md / .cursorrules in place (see Β§7)
Until all 8 items are green, no feature work. This usually takes a half day. It pays back the first time the agent needs to find your test runner or your lint config.
5.2 The directory shape
For a typical fullstack app:
repo/
βββ apps/
β βββ web/ # React + Vite (or Next.js)
β β βββ src/
β β β βββ components/ # shared UI (atoms, molecules)
β β β βββ features/ # vertical slices: auth, billing, dashboard
β β β βββ pages/ or routes/
β β β βββ hooks/
β β β βββ lib/ # api client, utils
β β β βββ types/
β β βββ e2e/ # Playwright
β β βββ package.json
β βββ api/ # Hono / FastAPI / Go
β βββ src/
β β βββ routes/ # HTTP layer
β β βββ services/ # business logic
β β βββ repos/ # DB access
β β βββ schemas/ # request/response shapes
β β βββ middleware/
β βββ migrations/
β βββ package.json
βββ packages/
β βββ shared/ # cross-package types, zod schemas
β βββ db/ # Drizzle schema, generated types
β βββ config/ # eslint, tsconfig, tailwind shared
βββ scripts/ # one-liners agents can run
βββ docs/ # ADRs, runbooks, RFCs
β βββ decisions/
βββ AGENTS.md
βββ CLAUDE.md
βββ .cursorrules
βββ .env.example
βββ README.md
Two non-obvious principles:
- Feature-first, not type-first. Don't put all components in
/componentsand all hooks in/hooks. Use/features/billing/containing billing's hooks, components, and types together. Agents navigate features 5x faster than they navigate file-type buckets. - One file = one responsibility. AI generates better when each file has a clear, narrow purpose. Avoid 800-line "kitchen sink" files. Aim for files under 300 lines.
5.3 Scripts that pay back forever
In scripts/ (and exposed via package.json or a Makefile):
dev # start everything in watch mode
test # run all tests
test:watch
lint
lint:fix
typecheck
build
migrate:up
migrate:new name=<x>
db:seed
db:reset
gen:api # generate types from OpenAPI
gen:db # generate Drizzle/sqlc types
e2e
e2e:headed
Document them in CLAUDE.md. Agents will discover and use them β but only if you tell them they exist.
Actionable rules
- Spend the first half-day on the skeleton. Don't ship feature code on a broken skeleton.
- Feature-folder, not type-folder.
- Every script the agent might want is in
package.jsonorMakefileand documented inCLAUDE.md.
6. π Context Engineering β The 10x Multiplier
If there's one idea to take from this guide, it's this:
The agent's output quality is dominated by the context you provide, not the model you pick.
Switching from Sonnet 4.6 to Opus 4.7 might give you a 1.3x quality bump. Going from a bad context to a good context gives you a 3β5x bump. They are not the same lever.
6.1 What "context" actually means
There are six layers, and you need all six tuned:
| Layer | What it is | Where it lives |
|---|---|---|
| 1. System / role | Who the agent is, what voice, what discipline | CLAUDE.md, system prompts |
| 2. Project conventions | Stack, layering rules, file structure, naming | CLAUDE.md, AGENTS.md, .cursorrules |
| 3. Task spec | What to build, why, constraints, success criteria | Your prompt + linked spec file |
| 4. Code context | Relevant files, types, patterns | Auto-loaded by agent + explicit @file mentions |
| 5. Tool surface | What it can run (tests, scripts, MCP servers) | Tool config, skill defs |
| 6. Memory / history | What's been decided before, what failed, what worked | Memory files, conversation log, ADRs in docs/ |
A frequent mistake is over-investing in layer 3 (prompts) and under-investing in layers 2, 5, and 6.
6.2 The "load-bearing" files
These are files the agent reads at the start of nearly every session. Treat them like API contracts β small, precise, evergreen.
CLAUDE.md(orAGENTS.mdβ the emerging cross-tool standard) β the project's operating instructions..cursorrulesβ Cursor-specific rules (similar content, narrower scope).README.mdβ install + dev + test, agent-readable.docs/decisions/β ADRs (architecture decision records). Why we picked X over Y.docs/runbooks/β common operational tasks.
AGENTS.md is becoming the cross-tool standard, used by Codex, Aider, Cline, and others. Symlinking CLAUDE.md β AGENTS.md (or just maintaining both) is a one-line move that pays off when teammates use different tools.
6.3 What goes into a great CLAUDE.md
Five sections, in this order:
- Project summary β 3 sentences max. What is this product? Who uses it?
- Architecture β one paragraph + ASCII diagram. Service boundaries.
- Stack & conventions β bullet list per language: layering, error handling, testing, lint.
- Common commands β
make dev,pnpm test, etc. - Pitfalls β the project-specific gotchas you've already discovered.
Look at this repo's own CLAUDE.md for a working example. The whole file is <200 lines. It is the single highest-ROI document in the project.
6.4 What NOT to put in CLAUDE.md
- Long lists of file paths the agent can discover by
ls. - API documentation that lives elsewhere.
- A history of every decision (use ADRs instead).
- "Always be respectful, please write good code" filler.
The agent has a context budget. Every token in CLAUDE.md is a token not spent on understanding the task. Keep it tight.
6.5 Slash commands & skills
Claude Code, Cursor, and GitHub Copilot all support custom slash commands now β they're prompt templates with arguments you fire with /<name>. Storage location differs:
| Tool | Location | File shape |
|---|---|---|
| Claude Code | .claude/commands/*.md or ~/.claude/commands/*.md |
Markdown body = prompt; frontmatter optional |
| GitHub Copilot | .github/prompts/*.prompt.md |
YAML frontmatter (mode, tools, description) + markdown body |
| Cursor | .cursor/commands/ or Settings β Custom Commands |
Markdown prompts |
For most teams: keep the canonical prompts in docs/prompts/ as the source of truth, then symlink (or generate) into each tool-specific directory.
Examples worth building once:
/pr β "Open a PR for the current branch with title and body
derived from the diff."
/migrate β "Generate a new migration with the given name."
/spec X β "Write a spec for feature X. Output to docs/specs/."
/review β "Review the diff in the current branch as a senior eng."
/run β "Start the dev server, run the feature, screenshot it."
/test name=Y β "Run the test suite for service Y."
These look trivial but compound massively. Every team that ships fast has 10β20 of these. They are the "muscle memory" of your agent harness.
Skills β the agent-invoked cousin of slash commands
Slash commands are user-triggered (/<name>); skills are model-triggered β the agent loads them automatically when it sees a task that matches the skill's description. This is the difference between a keyboard shortcut and an instinct.
A skill is just a folder with a SKILL.md file:
.claude/skills/migrate/
βββ SKILL.md # YAML frontmatter + instructions
βββ references/ # extra files SKILL.md links to
βββ scripts/ # helper scripts the skill may run
---
name: migrate
description: Create, run, or roll back a database migration in this repo.
Trigger when the user mentions schema changes, new tables,
new columns, or "migration".
---
This repo uses goose. To create a new migration:
1. Run `make migrate-new name=<snake_case_name>`
2. Edit the generated `migrations/<timestamp>_<name>.sql`
3. Both `-- +goose Up` and `-- +goose Down` must be present.
4. Apply with `make migrate-up`; verify with `make migrate-status`.
[β¦]
Paths the major tools look in (open standard since April 2026 β same SKILL.md format works in all of them):
| Tool | Project skills | User skills |
|---|---|---|
| Claude Code | .claude/skills/ |
~/.claude/skills/ |
| GitHub Copilot | .github/skills/ |
~/.copilot/skills/ |
| Cross-tool (Codex, Cursor, Aider, β¦) | .agents/skills/ |
~/.agents/skills/ |
Recommended setup: keep skills in .agents/skills/ as the source of truth, then symlink .claude/skills/ and .github/skills/ to point at it. Discover and install community skills via gh skill install <repo>.
Use slash commands for deterministic workflows you fire on demand (/pr, /review). Use skills for domain knowledge the agent should reach for automatically (migrations, error handling conventions, runbook procedures, codegen invariants). A well-staffed harness has ~10 slash commands and ~5β10 skills.
6.6 MCP servers β context as a service
The Model Context Protocol (MCP) has stabilized in 2025β2026 as the de facto plugin standard for agents. The registry now has thousands of MCP servers; the ones you actually want for fullstack work are:
| MCP server | What it gives the agent |
|---|---|
| Filesystem | Read/write/list files (built into most agents) |
| GitHub / GitLab | Open PRs, read issues, comment |
| Linear / Jira | Read tickets, update status |
| Postgres / Supabase | Run SQL against branch DBs |
| Sentry / PostHog | Read error/event data |
| Playwright / browser-use | Drive a real browser, take screenshots |
| Slack | Post updates / read threads |
| Vercel / Fly / Cloudflare | Inspect deploys, read logs |
A senior engineer has 5β10 MCP servers wired up. They turn the agent from "code generator" into "actual collaborator that can read your DB, drive your browser, and update your Linear ticket."
6.7 Hooks β the guardrails layer
Both Claude Code and GitHub Copilot (CLI + VS Code Chat, Preview) ship a hooks system that runs shell commands at lifecycle points: PreToolUse, PostToolUse, Stop, UserPromptSubmit, SessionStart, SubagentStart/SubagentStop, PreCompact. Cursor and Cline have lighter equivalents. Use them for guardrails the model can't be trusted to enforce in its own prose. See the cross-tool callout below for the portability rules.
The minimal .claude/settings.json for a stack of Go API + Python ML service + React frontend + Postgres + Redis + NATS JetStream:
{
"hooks": {
"PreToolUse": [
{ "matcher": "Bash", "command": "scripts/hooks/guard-destructive.sh" },
{ "matcher": "Edit|Write", "command": "scripts/hooks/guard-generated.sh" }
],
"PostToolUse": [
{ "matcher": "Edit|Write", "filePattern": "**/*.go",
"command": "scripts/hooks/post-edit-go.sh" },
{ "matcher": "Edit|Write", "filePattern": "**/*.py",
"command": "scripts/hooks/post-edit-py.sh" },
{ "matcher": "Edit|Write", "filePattern": "**/*.{ts,tsx}",
"command": "scripts/hooks/post-edit-ts.sh" },
{ "matcher": "Edit|Write", "filePattern": "{migrations,db/schema}/**",
"command": "scripts/hooks/post-schema-change.sh" }
],
"Stop": [
{ "command": "scripts/hooks/on-stop.sh" }
]
}
}
Below are real, copy-pasteable hook scripts. Each one has caught a specific class of AI-generated bug in production.
π guard-destructive.sh β block dangerous shell commands
#!/usr/bin/env bash
# scripts/hooks/guard-destructive.sh
# exit 1 = block; exit 0 = allow.
# Portable across Claude Code, Copilot CLI, and VS Code Copilot.
set -e
CMD="${CLAUDE_TOOL_INPUT:-${COPILOT_TOOL_INPUT:-${TOOL_INPUT:-$1}}}"
ENV="${APP_ENV:-development}"
block() { echo "π« BLOCKED: $1" >&2; exit 1; }
# 1. Postgres β no DROP / TRUNCATE / DELETE-without-WHERE on prod
if [[ "$ENV" == "production" ]]; then
echo "$CMD" | grep -qiE 'DROP\s+(TABLE|DATABASE|SCHEMA)' && block "DROP on production"
echo "$CMD" | grep -qiE '\bTRUNCATE\b' && block "TRUNCATE on production"
echo "$CMD" | grep -qiE 'DELETE\s+FROM\s+\w+\s*;' && block "DELETE without WHERE"
fi
# 2. Redis β never FLUSH prod, warn on staging
if echo "$CMD" | grep -qE '\b(FLUSHALL|FLUSHDB|DEBUG\s+FLUSHALL)\b'; then
[[ "$ENV" == "production" ]] && block "Redis FLUSH on production"
echo "β Redis FLUSH detected (env=$ENV)" >&2
fi
# 3. NATS JetStream β no stream/consumer purge or delete on prod
if echo "$CMD" | grep -qE 'nats (stream|consumer) (rm|delete|purge)'; then
[[ "$ENV" == "production" ]] && block "NATS destructive op on production"
fi
# 4. Git β no force-push to protected branches
if echo "$CMD" | grep -qE 'git push.*--force(-with-lease)?'; then
echo "$CMD" | grep -qE '(main|master|release/|prod)' && block "force-push to protected branch"
fi
# 5. Secrets β never read or commit prod env files
echo "$CMD" | grep -qE '(cat|less|head|tail|cp)\s+.*\.env\.(prod|production)' \
&& block "reading .env.production"
# 6. rm -rf outside repo or /tmp
echo "$CMD" | grep -qE 'rm\s+-rf?\s+/[^t]' && block "rm -rf outside repo / /tmp"
exit 0
πΉ post-edit-go.sh β verify Go after every edit
#!/usr/bin/env bash
# scripts/hooks/post-edit-go.sh
set -e
CHANGED=$(git diff --name-only --diff-filter=AM | grep '\.go$' || true)
[[ -z "$CHANGED" ]] && exit 0
echo "β gofmt + goimports"
gofmt -w $CHANGED
goimports -w -local "github.com/yourorg/yourrepo" $CHANGED
echo "β go vet"
go vet ./...
echo "β golangci-lint (changed packages, only new issues)"
PKGS=$(echo "$CHANGED" | xargs -n1 dirname | sort -u | sed 's|^|./|')
golangci-lint run --fast --new-from-rev=origin/main $PKGS
# Regenerate sqlc if any SQL query file changed
if echo "$CHANGED" | grep -q "internal/db/queries/"; then
echo "β sqlc generate"
sqlc generate
fi
echo "β go test -race -count=1 -short (changed packages)"
go test -race -count=1 -timeout=60s -short $(go list $PKGS 2>/dev/null || echo "./...")
echo "β Go checks passed"
Caught in the wild: agent introduced a goroutine that closed over a loop variable.
go testpassed;go test -raceflagged the data race. The hook caught it before the PR opened.
π post-edit-py.sh β verify Python after every edit
#!/usr/bin/env bash
# scripts/hooks/post-edit-py.sh
set -e
CHANGED=$(git diff --name-only --diff-filter=AM | grep '\.py$' || true)
[[ -z "$CHANGED" ]] && exit 0
echo "β ruff (lint + fix + format)"
uv run ruff check --fix $CHANGED
uv run ruff format $CHANGED
echo "β mypy --strict"
uv run mypy --strict $CHANGED
# Target tests for changed modules; fall back to the fast suite
TEST_TARGETS=""
for f in $CHANGED; do
rel=$(echo "$f" | sed 's|^src/|tests/|; s|\.py$|_test.py|')
[[ -f "$rel" ]] && TEST_TARGETS="$TEST_TARGETS $rel"
done
if [[ -n "$TEST_TARGETS" ]]; then
echo "β pytest (targeted)"
uv run pytest -q --no-header $TEST_TARGETS
else
echo "β pytest -m 'not slow'"
uv run pytest -q --no-header -m "not slow" --maxfail=1
fi
echo "β Python checks passed"
Caught in the wild: agent annotated a service as
-> Userwhile the implementation returnedOptional[User].mypy --strictrejected the call site that diduser.email.
βοΈ post-edit-ts.sh β verify React / TypeScript after every edit
#!/usr/bin/env bash
# scripts/hooks/post-edit-ts.sh
set -e
cd apps/web
CHANGED=$(git -C ../.. diff --name-only --diff-filter=AM | grep -E '\.(ts|tsx)$' || true)
[[ -z "$CHANGED" ]] && exit 0
echo "β tsc --noEmit"
pnpm exec tsc --noEmit
echo "β eslint --max-warnings=0 (changed)"
pnpm exec eslint --max-warnings=0 --no-warn-ignored $CHANGED
echo "β vitest related (changed)"
pnpm exec vitest related $CHANGED --run --reporter=dot
# Block hand-edits to the generated API client
if echo "$CHANGED" | grep -q "src/lib/api/generated"; then
echo "π« BLOCKED: edited generated API client. Run 'pnpm gen:api' instead." >&2
exit 1
fi
# Reject sneaky @ts-ignore / @ts-expect-error without rationale
SNEAKY=$(git diff -U0 $CHANGED | grep -E '^\+.*@ts-(ignore|expect-error)' | grep -v "// reason:" || true)
if [[ -n "$SNEAKY" ]]; then
echo "π« BLOCKED: @ts-* directive without '// reason: β¦' comment" >&2
echo "$SNEAKY" >&2
exit 1
fi
echo "β TS checks passed"
Caught in the wild: agent silenced a real type error with
// @ts-expect-errorrather than fixing the data shape. The hook required a// reason: β¦justification, which surfaced the real bug.
π guard-generated.sh β protect generated and immutable files
#!/usr/bin/env bash
# scripts/hooks/guard-generated.sh
# Portable across Claude Code (CLAUDE_TOOL_FILE_PATH),
# VS Code Copilot (TOOL_INPUT_FILE_PATH), and Copilot CLI.
TARGET="${CLAUDE_TOOL_FILE_PATH:-${TOOL_INPUT_FILE_PATH:-${COPILOT_TOOL_INPUT_FILE_PATH:-$1}}}"
[[ -z "$TARGET" || ! -f "$TARGET" ]] && exit 0
# 1. Files with a GENERATED banner are never hand-edited
if head -3 "$TARGET" 2>/dev/null | grep -q "GENERATED β DO NOT EDIT"; then
echo "π« BLOCKED: $TARGET is generated. Re-run the generator." >&2
exit 1
fi
# 2. Already-committed migrations are immutable
if [[ "$TARGET" == migrations/*.sql || "$TARGET" == backend-go/migrations/*.sql ]]; then
if git log --oneline -- "$TARGET" 2>/dev/null | grep -q .; then
echo "π« BLOCKED: $TARGET is an applied migration. Create a NEW file." >&2
exit 1
fi
fi
exit 0
π post-schema-change.sh β keep types in sync across the stack
#!/usr/bin/env bash
# scripts/hooks/post-schema-change.sh
set -e
CHANGED=$(git diff --name-only --diff-filter=AM)
# Postgres schema β regenerate Go (sqlc) + OpenAPI + TS client
if echo "$CHANGED" | grep -qE '(internal/db/schema/|migrations/.*\.sql$)'; then
echo "β sqlc generate"
(cd backend-go && sqlc generate)
echo "β openapi export"
(cd backend-go && go run ./cmd/openapi-gen > ../apps/web/openapi.json)
echo "β TS client regen"
(cd apps/web && pnpm gen:api && pnpm exec tsc --noEmit)
fi
# Pydantic schemas β regen JSON Schema for FE
if echo "$CHANGED" | grep -q "backend-python/src/schemas/"; then
echo "β JSON Schema export"
(cd backend-python && uv run python scripts/export_schemas.py)
fi
# NATS subjects file β regen typed publishers/consumers (Go + TS)
if echo "$CHANGED" | grep -q "shared/nats/subjects.yaml"; then
echo "β nats codegen"
go run ./cmd/nats-codegen
fi
echo "β Schema regen complete"
Caught in the wild: agent renamed
users.email_addressβusers.email. Without this hook the TS client still referencedemail_address; runtime 500s on first call. With it, regen ran andtscflagged six frontend call sites in the same turn.
π on-stop.sh β last-chance sanity check before the agent yields
#!/usr/bin/env bash
# scripts/hooks/on-stop.sh
set -e
# 1. Secret patterns in the staged diff
SECRETS=$(git diff --cached | grep -E '(AKIA[0-9A-Z]{16}|ghp_[A-Za-z0-9]{36}|sk-(ant-|proj-)?[A-Za-z0-9]{40,}|-----BEGIN [A-Z ]+PRIVATE KEY-----)' || true)
if [[ -n "$SECRETS" ]]; then
echo "β POSSIBLE SECRET in staged diff:" >&2
echo "$SECRETS" >&2
fi
# 2. Debug leftovers
LEFTOVERS=$(git diff | grep -E '^\+.*(console\.log|fmt\.Println|print\(.*(DEBUG|XXX)|TODO\(claude\)|debugger;)' || true)
if [[ -n "$LEFTOVERS" ]]; then
echo "β DEBUG NOISE in diff:" >&2
echo "$LEFTOVERS" >&2
fi
# 3. Run the quick suite
echo "β make test-quick"
make test-quick
exit 0
Why each hook earns its keep
| Hook | Class of bug it blocks | Concrete near-miss |
|---|---|---|
guard-destructive |
Catastrophic prod op via wrong DB / Redis / NATS URL | Agent ran TRUNCATE users after psql $STAGING_URL resolved to prod via stale env |
guard-generated |
Lost work after next codegen | Agent edited generated.ts; next gen:api produced a confusing reverted diff |
post-edit-go (race) |
Concurrency bugs that pass non-race tests | Goroutine closing over loop variable; panics under load |
post-edit-py (mypy strict) |
None.foo at runtime |
Service returned Optional[User]; caller did .email |
post-edit-ts (no @ts-) |
Silenced real type errors | Agent suppressed a type mismatch instead of fixing the shape |
post-schema-change |
Type drift across services | Column renamed in Postgres; TS client still referenced old name |
on-stop |
Secrets, prints, TODO(claude) shipped in PRs |
Agent left console.log(authToken) while debugging a Stripe webhook |
π Cross-tool: the same hooks work in GitHub Copilot too
As of mid-2026 GitHub Copilot ships its own hooks system with a near-identical lifecycle model β PreToolUse, PostToolUse, PostToolUseFailure, Stop, SessionStart, SessionEnd, UserPromptSubmit, SubagentStart, SubagentStop, PreCompact, plus a few CLI-only events (notification, permissionRequest). Both event-name styles (PreToolUse and preToolUse) are accepted.
Both Copilot CLI and VS Code's Copilot Chat read configuration from:
.github/hooks/*.jsonβ Copilot's native path; or.claude/settings.json/.claude/settings.local.jsonβ the same files Claude Code uses, read directly.
This means the seven scripts above port across both tools with zero changes β provided you handle three gotchas:
-
VS Code Copilot ignores
matcher/filePatternvalues. Every hook fires on every tool invocation. The scripts above already self-filter by inspectinggit diff --name-only, so they remain correct. If you write a new hook that only checks$TOOL_INPUT_FILE_PATH, add agit difffilter inside the script or you'll run a full Go test suite on everyBashinvocation. -
Env-var names differ between tools. Claude Code exposes
$CLAUDE_TOOL_INPUT/$CLAUDE_TOOL_FILE_PATH; VS Code Copilot uses$TOOL_INPUT_FILE_PATH; Copilot CLI has its own variants. The scripts above use a portable shim:INPUT="${CLAUDE_TOOL_INPUT:-${COPILOT_TOOL_INPUT:-${TOOL_INPUT:-$1}}}" FILE="${CLAUDE_TOOL_FILE_PATH:-${TOOL_INPUT_FILE_PATH:-${COPILOT_TOOL_INPUT_FILE_PATH:-$1}}}" -
Cloud agent β local.
notificationandpermissionRequestevents don't fire in Copilot's cloud agent. Stick toPreToolUse+PostToolUse+Stop+SessionStartfor guardrails that must work on every surface.
VS Code adds two ergonomics on top of the JSON config: /hooks in chat to manage them with a UI, /create-hook to AI-generate one, and a Output β Copilot Chat Hooks panel to watch them fire in real time. Copilot Hooks is still in Preview as of mid-2026, so pin to the hooks reference and the VS Code hooks docs β the schema is stable but minor names are still moving.
TL;DR β what you actually maintain
| Artifact | Claude Code | Copilot CLI | VS Code Copilot |
|---|---|---|---|
.claude/settings.json |
native | β reads directly | β reads directly |
.github/hooks/*.json |
β | native | β |
scripts/hooks/*.sh |
universal | universal | universal (matchers ignored β scripts must self-filter) |
/hooks UI to manage |
β | β | β |
So in practice: maintain one set of shell scripts under scripts/hooks/, point both .claude/settings.json and .github/hooks/*.json at them, and the same guardrails fire across every tool your team uses.
Hooks are not optional. They're how you sleep at night.
Actionable rules
- Spend a half-day writing your
CLAUDE.md+AGENTS.md. Keep it under 200 lines.- Maintain 10β20 slash commands. Add a new one any time you type the same prompt twice.
- Wire up at least 3 MCP servers: GitHub, your DB, and a browser/Playwright.
- Add hooks for the dangerous stuff: pushing to main, destructive DB commands, secret commits.
7. π The Repo as a Programming Language
Think of your project's "agent harness" β the CLAUDE.md, AGENTS.md, .cursorrules, slash commands, hooks, scripts, lint rules, generators β as a domain-specific language the agent compiles against.
The same prompt sent to a repo with a great harness vs. a bare repo produces radically different output. This isn't a metaphor β it's how the models genuinely behave.
7.1 The load-bearing files
The instruction files agents read on every session:
| File | Audience | Length |
|---|---|---|
AGENTS.md |
Codex, Aider, Cline, Cursor (newer), Copilot agent mode β the emerging cross-tool standard | 100β250 lines |
CLAUDE.md |
Claude Code | Symlink to AGENTS.md |
.github/copilot-instructions.md |
GitHub Copilot (auto-loaded in every chat) | Symlink to AGENTS.md |
.github/instructions/*.instructions.md |
Copilot, path-scoped via applyTo: frontmatter |
50β150 lines each, narrow scope |
.cursorrules |
Cursor specifically | 50β100 lines; narrower, IDE-style rules |
Recommended setup: AGENTS.md is the single source of truth. Symlink CLAUDE.md and .github/copilot-instructions.md to point at it. Keep .cursorrules and any Copilot path-scoped instruction files short and tactical (e.g., "always import from @/lib/api, never relative paths").
# one-line setup, repeat per repo
ln -s AGENTS.md CLAUDE.md
mkdir -p .github && ln -s ../AGENTS.md .github/copilot-instructions.md
7.2 The "house style" pattern
Rather than scattering style rules across .cursorrules and CLAUDE.md, write a single docs/style.md and reference it from both. Agents will follow links β but only if the linked file is small enough to load (~few hundred lines max).
Example skeleton:
# House Style
## TypeScript
- "any" is banned outside `src/types/external.d.ts`.
- Server-state is React Query; client-state is Zustand.
- All async functions return `Result<T, E>` from `@/lib/result`, never bare throws across boundaries.
## React
- One component per file; named export.
- Tailwind only; no `style={{...}}`.
- Forms: react-hook-form + zodResolver.
- Tests co-located: `Foo.tsx` + `Foo.test.tsx`.
## API
- Routes thin; services own logic; repos own SQL.
- Every endpoint has a zod schema in `packages/shared/`.
- Errors return `{ code, message }`; never raw 500s.
7.3 Examples beat rules
A rule like "use the Result pattern for error handling" produces inconsistent output. A rule like:
Error handling β example
// GOOD
async function getUser(id: string): Promise<Result<User, NotFoundError>> {
const row = await db.users.find(id);
if (!row) return err(new NotFoundError("user", id));
return ok(row);
}
// BAD β throws across service boundary
async function getUser(id: string): Promise<User> {
const row = await db.users.find(id);
if (!row) throw new NotFoundError(...);
return row;
}
...produces consistent output because the model is a pattern-matcher and you gave it a pattern.
For every non-trivial convention, put a 5-line good example and a 5-line bad example. This single technique improves output adherence by a wide margin.
7.4 Versioning the harness
Your CLAUDE.md and friends will drift. Treat them as code:
- Reviewed in PRs.
- Updated whenever the convention changes (refactor agents to update them in the same PR).
- Periodically audited (every 1β2 months) β agents will sometimes invent rules that aren't actually there, and human readers can spot mismatches.
A /review-harness slash command that has the agent read CLAUDE.md and check the current codebase against it is a great quarterly hygiene task.
Actionable rules
- Have
AGENTS.mdas the single source of truth. SymlinkCLAUDE.mdif your team uses Claude Code.- Every convention gets a GOOD/BAD example, not just a rule.
- Audit the harness every quarter β both for staleness and for "rules we wrote but don't actually follow".
8. π The Spec β Plan β Code β Verify Loop
The single most reliable feature workflow has four phases, and skipping any of them is the most common reason agents go off the rails.
ββββββββββ ββββββββ ββββββββ ββββββββββ
β SPEC βββββΆβ PLAN βββββΆβ CODE βββββΆβ VERIFY ββββββ
ββββββββββ ββββββββ ββββββββ ββββββββββ β
β² β
ββββββββββββββββββββββββββββββββββββββββββββββββ
(fail β back to plan or spec)
8.1 SPEC β write it like a human
A great feature spec is 200β600 words and answers:
- What user problem does this solve? (one line)
- What's the smallest version that's still valuable? (the MVP within the MVP)
- What does the UI/UX look like? (rough sketch or screenshot; v0.dev output is fine)
- What's the data model? (tables/columns/relationships)
- What's the API surface? (3β10 endpoints with shapes)
- What are the non-goals? (what you are not doing)
- What are the success criteria? (1β3 testable conditions)
Store this in docs/specs/<feature>.md. Agents reference it across multiple sessions.
Spec-Driven Development (SDD) as a discipline got real traction in 2025β2026 through tools like GitHub's Spec Kit. The deeper lesson: for any non-trivial feature, the time you spend writing the spec is repaid 3β5x in the code phase. Skipping it for a 2-hour task is fine. Skipping it for a 2-day task is malpractice.
8.2 PLAN β make the agent show its work
Once the spec is solid, ask the agent to produce a plan, not code. Most tools have a "plan mode" or equivalent now:
- Claude Code:
Planmode (Shift+Tab). - Cursor: ask for a plan first; reject if it starts coding.
- Cline: built-in plan/act split.
A good plan:
- Lists files to be created or modified.
- Identifies risks ("this changes the user table schema; existing rows need a default").
- Calls out questions ("should this endpoint be paginated?").
- Estimates work in stages (so you can ship a partial version).
Review the plan as carefully as you'd review code. A bad plan produces unfixable code.
8.3 CODE β small chunks, frequent commits
Once you approve the plan, let the agent execute β but:
- One logical chunk at a time. Schema β repo β service β route β frontend hook β frontend component β tests. Not all at once.
- Commit after each chunk. Or at minimum, after each layer. Reverting one bad chunk is easy; untangling 14 files is not.
- Don't let the agent silently expand scope. If it starts refactoring something tangential, stop it. Open a separate task.
The 80-line PR is the unit of work. Long PRs are a smell, not a virtue.
8.4 VERIFY β the make-or-break step
Verification has at least four levels. Use all of them for any non-trivial feature:
- Type-check passes (
pnpm typecheck). This is free; never skip. - Lint passes (
pnpm lint). Free; never skip. - Tests pass (
pnpm test). The agent wrote them β but did they pass? - Manual verification (you click the feature in a browser). Yes, you. With your eyes. There is no substitute. Tools like Playwright + screenshots can automate this for the agent, but a human glance for golden-path UX is still required.
For backend-only changes:
curlorhttpiethe endpoint. Verify the shape.- Check the DB after the call. Verify the row.
- Check the logs. Verify nothing weird.
For visual changes:
- Screenshot before/after. Visual diff if possible.
- Test on mobile width (375px) and desktop (1280px).
Make the agent produce the evidence. Don't take its word that "tests pass" β make it paste the output. Don't take its word that "the screenshot looks right" β make it attach the screenshot.
8.5 The fail-loop
When verification fails (and it will), the right response is:
- Don't ask the agent to "fix it" with no context. Give it the failing output verbatim.
- Suspect the spec first, not the code. Did you specify it clearly?
- Suspect the plan second. Did the plan account for this edge case?
- If looping >3 times without progress, stop. Step out, think, possibly start a fresh context.
The "infinite-loop debugging" anti-pattern is real and costs a lot of tokens. After 3 failed attempts, the agent is less likely to fix it on attempt 4, not more.
8.6 The evidence playbook β by stack
Verification only counts if the agent produces concrete artifacts you can look at. "Tests passed" is a claim; the test output pasted into the PR is evidence. Here is what to demand from each layer of the canonical Go + Python + React + Postgres + Redis + NATS JetStream stack.
πΉ Go backend β what to demand
# 1. Build + vet + race-tested tests with coverage
go build ./... && go vet ./... \
&& go test -race -count=1 -timeout=2m -coverprofile=cover.out ./...
# 2. Coverage on the changed package
go tool cover -func=cover.out | grep -E 'billing|^total'
# 3. Benchmark if perf-sensitive (e.g. invoice total recalc)
go test -bench=BenchmarkInvoiceTotal -benchmem -count=5 -run=^$ \
./internal/service/billing/
# 4. Live HTTP trace against the dev server
curl -i -X POST http://localhost:8080/v1/invoices \
-H "Authorization: Bearer $TEST_JWT" \
-H "Idempotency-Key: dev-$(uuidgen)" \
-d '{"customer_id":"cus_123","line_items":[{"sku":"PRO","qty":1}]}' \
| tee /tmp/invoice-trace.txt
The agent's "done" message must contain, at minimum:
- The full
go test -raceoutput (PASS/FAILline, no race-detector warnings). - Coverage delta for the changed package β e.g.
internal/service/billing: 87.4%. - The HTTP trace for at least one happy-path and one error-path request.
Red flag: "tests pass" with no output, or coverage drops on a package that gained new code.
π Python service β what to demand
# 1. Lint + type + tests + coverage in one shot
uv run ruff check src/ \
&& uv run mypy --strict src/ \
&& uv run pytest -q --cov=src --cov-report=term-missing tests/
# 2. Async-safe under load β the bug agents miss most often
uv run pytest tests/load/ -k "concurrent" --count=50
# 3. Hot-path profiling (only for SLO-sensitive paths)
uv run py-spy record -o profile.svg -- python -m src.run_one_job
Demand:
- Full
pytest -qtail:N passed, M skipped in T s. coverage: N%for changed modules. Rejection threshold: drops >2 pts from main.Success: no issues found in N source filesfrom mypy.- For any new async code: confirmation the concurrency test ran 50Γ and passed.
Red flag: agent says "added type hints" but mypy was never run; or
pytestoutput is "omitted because it just passed".
βοΈ React / TypeScript frontend β what to demand
# 1. Strict typecheck + lint + unit + e2e
pnpm exec tsc --noEmit
pnpm exec eslint --max-warnings=0 .
pnpm exec vitest --run --coverage
pnpm exec playwright test --trace=on --reporter=html
# 2. Bundle-size delta (catch accidental imports of heavy deps)
pnpm exec vite-bundle-visualizer --json > bundle.json
node scripts/compare-bundle.js bundle.json bundle.main.json
# 3. Lighthouse against the preview URL
pnpm dlx @lhci/cli autorun --collect.url=$PREVIEW_URL
Demand:
tsc --noEmitclean β noerror TSxxxxlines.- Vitest pass count + coverage delta.
- A Playwright trace
.zipfor any new flow. Drag it into trace.playwright.dev and you can replay every click. - For UI changes: before/after screenshots (or visual-diff approval).
pnpm exec playwright test --update-snapshotsif intentional. - Bundle-size delta in KB. Rejection threshold: +50 KB gzipped is suspicious.
Red flag:
tscsays "ok" but the agent silently used// @ts-expect-error. Grep the diff for@ts-directives on every PR (the hook above does this automatically).
π Postgres β what to demand
For any new or modified query, demand EXPLAIN (ANALYZE, BUFFERS) against realistic data:
EXPLAIN (ANALYZE, BUFFERS, VERBOSE, FORMAT TEXT)
SELECT i.id, i.total, li.sku, li.qty
FROM invoices i
JOIN line_items li ON li.invoice_id = i.id
WHERE i.customer_id = $1
AND i.status = 'open'
AND i.created_at > now() - interval '30 days'
ORDER BY i.created_at DESC
LIMIT 50;
What the output must show:
Index Scan(orIndex Only Scan) oninvoicesβ notSeq Scanon a table larger than ~10 k rows.Execution Time: < 50 msagainst a β₯ 100 k row fixture.Rows Removed by Filteris not larger than rows returned (otherwise a predicate is non-sargable or the wrong index was picked).- For the join:
Hash JoinorNested Loopwith an index lookup β neverMaterialize β Seq Scan.
For migrations, demand a dry-run on a branch DB:
# Neon / Supabase / Railway branch per PR
neonctl branches create --name "pr-$PR_NUMBER" --parent main
DATABASE_URL=$BRANCH_URL go run ./cmd/migrate up
# Reversibility check β apply down then up again
DATABASE_URL=$BRANCH_URL go run ./cmd/migrate down 1
DATABASE_URL=$BRANCH_URL go run ./cmd/migrate up
# Schema-identity check β should diff to nothing
pg_dump --schema-only $MAIN_URL > /tmp/main.sql
pg_dump --schema-only $BRANCH_URL > /tmp/pr.sql
diff /tmp/main.sql /tmp/pr.sql # expected: only the new additions
Demand: up, down 1, then up again all complete cleanly, and pg_dump diffs to only the new additions.
Red flag: migration missing a
-- +goose Downblock, or anEXPLAINplan that showsSeq Scanonusers/events/messages.
π₯ Redis β what to demand
For any new Redis interaction, the agent must show:
# 1. Trace operations during the request
redis-cli MONITOR &
# ... exercise the code path through the API ...
# Expected: a small, bounded set of ops; every new key has a TTL.
# 2. Verify TTLs and key shape
redis-cli --scan --pattern 'ratelimit:*' | head
redis-cli TTL ratelimit:user:abc123 # β 60, never -1
redis-cli MEMORY USAGE ratelimit:user:abc123
# 3. For pipelines/Lua, show the script + its SHA
redis-cli SCRIPT LOAD "$(cat scripts/redis/ratelimit.lua)"
Good evidence looks like:
- Every key written has a
TTL(-1means "leaks forever"). Paste theTTLfor at least one fresh key. - Multi-step ops are atomic: a pipeline + WATCH/MULTI, or a Lua script. Never
INCRthenEXPIREas two round-trips on a fresh key β there's a race window where the key has no TTL. - Key namespace follows
{service}:{purpose}:{id}and is documented inCLAUDE.md. MONITORoutput for the request shows β€ expected ops per request (no N+1 Redis calls).
GOOD β atomic rate-limit with TTL on first write:
const rateLimitLua = `
local cur = redis.call("INCR", KEYS[1])
if cur == 1 then redis.call("EXPIRE", KEYS[1], ARGV[1]) end
return cur`
count, _ := rdb.Eval(ctx, rateLimitLua,
[]string{"ratelimit:user:" + userID}, "60").Int()
BAD β two round-trips, race window where TTL is unset:
count, _ := rdb.Incr(ctx, "ratelimit:user:"+userID).Result()
if count == 1 {
rdb.Expire(ctx, "ratelimit:user:"+userID, time.Minute) // can be lost
}
Red flag: keys without TTL,
KEYS *in a hot path,INCR/EXPIREsplit, or anyredis.callto read a list that grew unbounded (LLEN > 10000).
π§ͺ NATS JetStream β what to demand
The most common AI failures here: wrong ack policy, ephemeral consumer when it should be durable, missing MaxDeliver (poison loop), no DLQ, core nats.Publish for data that must persist.
For any new producer or consumer, the agent must paste:
# 1. Stream config β replicas, retention, limits explicit
nats stream info ORDERS
# Expect:
# Replicas: 3 Storage: File
# Retention: WorkQueue (or Limits)
# MaxAge / MaxBytes / MaxMsgs: set explicitly (not unlimited)
# 2. Consumer config β the most failure-prone part
nats consumer info ORDERS billing-worker
# Expect:
# Durable: billing-worker (NOT empty/ephemeral)
# Ack Policy: Explicit (NOT None)
# Ack Wait: 30s (matches handler timeout)
# Max Deliver: 5 (NOT -1 / unlimited)
# Filter Subject: orders.created
# Deliver Policy: All / New (deliberate choice)
# 3. End-to-end smoke β publish then check side-effect
nats pub "orders.created" '{"id":"ord-test","total":100}' \
-H "Nats-Msg-Id: ord-test"
nats consumer info ORDERS billing-worker # Delivered++
psql -c "SELECT * FROM invoices WHERE source_msg_id='ord-test'"
# 4. Poison-message handling β broken payload should land in DLQ, not loop
nats pub "orders.created" '{"broken":true}' -H "Nats-Msg-Id: ord-bad"
sleep $((6 * 30)) # max-deliver Γ ack-wait
nats stream info ORDERS_DLQ # Messages: 1
For producers, demand:
- Publish uses the JetStream API (
js.PublishAsyncin Go,js.publishin Python'snats-py), not corenats.Publish(no persistence). - A
Nats-Msg-Idheader is set for dedup β JetStream's default dedup window is 2 minutes. - Publish returns an ACK and the agent checks it (lots of agents forget the await).
GOOD β idempotent JetStream publish in Go:
ack, err := js.PublishAsync("orders.created", payload,
jetstream.WithMsgID(order.ID))
if err != nil { return err }
select {
case <-ack.Ok():
case <-ack.Err(): return fmt.Errorf("publish nacked: %w", err)
case <-time.After(2 * time.Second): return errors.New("publish timeout")
}
BAD β no msg ID, no ack check, no persistence guarantee:
err := nc.Publish("orders.created", payload) // core NATS, not JetStream
For consumers, demand:
- Durable name set (not ephemeral).
- Explicit ack with a bounded
MaxDeliverand a DLQ stream (or aRepublishPolicytargeting one). - Handler is idempotent: publishing the same
Nats-Msg-Idtwice must result in one DB row. The agent should paste a test that proves this.
GOOD β durable consumer, explicit ack, bounded deliveries:
cons, _ := js.CreateOrUpdateConsumer(ctx, "ORDERS", jetstream.ConsumerConfig{
Durable: "billing-worker",
AckPolicy: jetstream.AckExplicitPolicy,
AckWait: 30 * time.Second,
MaxDeliver: 5,
FilterSubject: "orders.created",
DeliverPolicy: jetstream.DeliverAllPolicy,
})
cons.Consume(func(msg jetstream.Msg) {
if err := handleOrder(ctx, msg.Data(), msg.Headers().Get("Nats-Msg-Id")); err != nil {
msg.NakWithDelay(backoff(msg)) // back off, will retry until MaxDeliver
return
}
msg.Ack()
})
Red flag:
AckPolicy: None(fire-and-forget loss),MaxDeliver: -1(poison loop until disk fills), any producer using corenats.Publishfor data that must persist, or a consumer handler that's not provably idempotent.
π¦ Putting it together β the "evidence pack" the agent must paste
For any non-trivial feature, the agent's "I'm done" message should look like:
β Go: go test -race ./... β ok, 23 packages, coverage 84.2%
β Python: pytest + mypy --strict β 121 passed, mypy clean
β TS: tsc + vitest + playwright β 0 errors, 87 unit, 12 e2e green
β Postgres: EXPLAIN ANALYZE attached β Index Scan, 8.2 ms on 1 M rows
β Redis: TTL verified + MONITOR clean β 3 cmds/req, all TTL = 60
β NATS: consumer info attached β durable, ack-explicit, max-deliver=5
β HTTP: curl traces (happy + error) β 201 / 422 shapes match schema
β Screenshot: before/after attached (UI)
Trace links, screenshot paths, and the actual EXPLAIN output should be inlined or attached. If a row is missing, the work isn't done β send it back.
Actionable rules
- For any task >1 hour, write a spec first. <1 hour is judgment.
- For any task >30 min, demand a plan before any code.
- Every chunk gets a commit. Every PR has working tests.
- Verification produces evidence: test output, EXPLAIN plans, Playwright traces, NATS consumer info, Redis TTLs, curl traces. Not narrated summaries.
- The agent ends with an evidence pack. Missing rows = not done.
- If you've looped 3 times without progress, restart with fresh context.
(...to be continued...) Read Part 2 here https://viblo.asia/p/building-production-grade-fullstack-products-with-ai-coding-agents-a-practical-playbook-part-2-bNVQG9OAJvR
If you found this helpful, let me know by leaving a π or a comment!, or if you think this post could help someone, feel free to share it! Thank you very much! π
All rights reserved
