Storygame Logo
Tech Ltd
Storygame/Blog/How to Build an AI Agent That Actually Works in Production (Not Just a Demo)

How to Build an AI Agent That Actually Works in Production (Not Just a Demo)

Storygame
2026-03-19

The Demo-to-Production Gap Is Massive

Every week, someone posts a demo on Twitter showing an AI agent booking flights, writing code, or managing a CRM. It takes 30 lines of Python and looks incredible. Then a company tries to build the same thing for production and discovers it takes 6 months, a team of 4, and $500K.

The gap between a demo and production AI agent is not a small step — it is a chasm. This guide covers exactly what it takes to cross it.

Why Demos Work and Production Fails

Demo conditions are perfect. The input is curated. The happy path always works. There is no error handling because errors do not happen in demos. There are no edge cases because you only show one case.

Production is the opposite. Users send garbled input. APIs time out. The LLM hallucinates. The database returns unexpected schemas. Two users trigger the same workflow simultaneously. The context window fills up. The API key rotates.

Here is what demo code typically ignores:

  • Error handling: What happens when the LLM returns garbage? When a tool call fails? When the API rate-limits you?
  • Guardrails: What stops the agent from sending an email to the wrong person? From executing a destructive database query? From spending $10,000 on API calls?
  • Observability: How do you know what the agent did? Why it made a decision? Where it went wrong?
  • Latency: Users will not wait 45 seconds for a response. Demos conveniently skip the loading time.
  • Cost: That $0.10 demo call becomes $50,000/month at production volume.
  • Concurrency: One user at a time works. A thousand users at a time breaks everything.

The Production AI Agent Architecture

Here is the architecture pattern we use for every production agent:

┌────────────────────────────────────────────────────────┐
│                    API Gateway / Auth                    │
├────────────────────────────────────────────────────────┤
│                  Rate Limiter / Queue                    │
├────────────────────────────────────────────────────────┤
│              Agent Orchestration Layer                   │
│  ┌──────────┐  ┌───────────┐  ┌──────────────────┐    │
│  │ Planner  │  │ Executor  │  │ Response Builder │    │
│  └──────────┘  └───────────┘  └──────────────────┘    │
├────────────────────────────────────────────────────────┤
│                    Guardrails Layer                      │
│  ┌──────────┐  ┌───────────┐  ┌──────────────────┐    │
│  │ Input    │  │ Output    │  │ Action           │    │
│  │ Filter   │  │ Filter    │  │ Validator        │    │
│  └──────────┘  └───────────┘  └──────────────────┘    │
├────────────────────────────────────────────────────────┤
│                   Tool / MCP Layer                       │
├────────────────────────────────────────────────────────┤
│              Observability + Logging                     │
└────────────────────────────────────────────────────────┘

Let us break down each layer.

Layer 1: Input Validation and Preprocessing

Before the agent even sees the user's request, you need:

Input Sanitization

  • Strip prompt injection attempts (yes, users will try to jailbreak your agent)
  • Normalize input format (encoding, length limits, character sets)
  • Classify intent to route to the right agent or sub-agent

Context Assembly

  • Retrieve relevant context from your knowledge base (RAG)
  • Load user session history (but only what is relevant — do not stuff the context window)
  • Fetch real-time data the agent might need (user profile, account status, recent orders)

Cost Guard

  • Estimate token usage before calling the LLM
  • Reject or truncate requests that would exceed cost thresholds
  • Track per-user and per-session costs

Layer 2: Agent Orchestration

This is where the LLM does its work, but with structure:

Planning Step

The agent should plan before acting. Use a planning prompt that outputs structured steps:

Given the user request and available tools, output a plan:
1. What information do I need?
2. Which tools should I call and in what order?
3. What could go wrong at each step?
4. What is my fallback if a step fails?

Execution with Retries

  • Every tool call gets a timeout (5-30 seconds depending on the tool)
  • Failed tool calls get retried with exponential backoff (up to 3 retries)
  • If a tool consistently fails, the agent should gracefully degrade (tell the user it cannot complete that step rather than hallucinating a result)

Response Assembly

  • Compile results from all tool calls
  • Use a separate LLM call to synthesize the final response (do not just dump raw tool outputs)
  • Apply output formatting rules (markdown, JSON, whatever the consumer expects)

Layer 3: Guardrails (The Most Overlooked Layer)

This is what separates hobby projects from production systems:

Action Guardrails

  • Allowlists: The agent can ONLY call tools and endpoints you have explicitly permitted
  • Rate limits: Maximum number of tool calls per request (prevents infinite loops)
  • Spending limits: Cap on API costs, database writes, or external service calls per session
  • Confirmation gates: High-impact actions (delete, send, purchase) require human approval

Output Guardrails

  • PII detection: Scan responses for personal data that should not be exposed
  • Hallucination checks: Cross-reference factual claims against your knowledge base
  • Tone and brand: Ensure responses match your brand voice and professional standards
  • Content filtering: Block harmful, illegal, or off-topic content

Circuit Breakers

  • If the agent fails 3 times in a row, stop retrying and escalate
  • If latency exceeds 30 seconds, return a partial response with an explanation
  • If cost exceeds threshold, gracefully decline and route to a human

Layer 4: Observability (You Cannot Fix What You Cannot See)

Every production agent needs:

Structured Logging

Log every step with structured data:

  • Request ID, user ID, session ID
  • Each LLM call: model, prompt tokens, completion tokens, latency, cost
  • Each tool call: tool name, input, output, latency, success/failure
  • Final response: content, confidence, tokens used

Tracing

Use distributed tracing (OpenTelemetry) to follow a request through the entire pipeline. When something goes wrong at 3 AM, you need to see exactly what happened.

Dashboards

Build dashboards for:

  • Success rate (what percentage of requests complete successfully)
  • Latency (p50, p95, p99)
  • Cost per request (track trends over time)
  • Tool call failure rates (identify unreliable integrations)
  • User satisfaction (thumbs up/down, escalation rate)

Alerting

  • Alert on success rate drops (below 95%)
  • Alert on cost spikes (more than 2x the daily average)
  • Alert on latency spikes (p95 above 20 seconds)
  • Alert on repeated failures for the same user

Layer 5: Human-in-the-Loop

No AI agent should be fully autonomous in production. Here is how to keep humans in the loop without killing the speed advantage:

Escalation Triggers

  • Agent confidence below threshold
  • User explicitly requests a human
  • High-stakes actions (financial transactions, legal documents, medical advice)
  • Agent fails to resolve after 2 attempts

Escalation UX

  • Seamless handoff (human gets full context of what the agent tried)
  • User is not forced to repeat themselves
  • Agent summarizes what it attempted and where it got stuck

Feedback Loop

  • Human corrections feed back into the system
  • Track which types of requests get escalated most (these are your improvement targets)
  • Use escalation data to improve prompts, add tools, or adjust guardrails

The Testing Problem

You cannot unit test an LLM. But you can build an evaluation framework:

Evaluation Dataset

  • Build a set of 100+ real-world test cases with expected outcomes
  • Include edge cases, adversarial inputs, and multi-step workflows
  • Run the full evaluation suite on every change (prompt, model, tool, guardrail)

Metrics That Matter

  • Task completion rate: Did the agent accomplish what the user asked?
  • Factual accuracy: Are the agent's claims correct?
  • Tool call accuracy: Did the agent call the right tools with the right parameters?
  • Safety: Did the agent avoid harmful actions?

Continuous Evaluation

  • Run evaluations nightly against production traffic (anonymized)
  • Compare new model versions or prompt changes against the baseline
  • Track regression over time (models change, data drifts)

Common Pitfalls We See

  1. No fallback plan: The agent either works perfectly or fails completely. Always have graceful degradation.
  2. Context window stuffing: Dumping everything into the context makes the agent slower, more expensive, and less accurate. Be surgical about context.
  3. Ignoring latency: Users expect sub-5-second responses. If your agent takes 30 seconds, redesign the flow (stream partial results, run tools in parallel).
  4. No cost tracking: A single bad prompt can cost thousands of dollars at scale. Monitor this from day one.
  5. Testing in production: By the time you find a bug in production, it has already affected real users. Invest in staging environments and evaluation suites.

The Production Readiness Checklist

Before you launch, verify every item:

  • [ ] Error handling covers LLM failures, tool failures, timeout, and rate limits
  • [ ] Guardrails prevent destructive actions without human approval
  • [ ] Input validation rejects prompt injection and oversized requests
  • [ ] Output filtering catches PII, hallucination, and off-brand responses
  • [ ] Observability is in place: structured logs, traces, dashboards, and alerts
  • [ ] Cost tracking is active with per-request and per-user monitoring
  • [ ] Latency is under 5 seconds for 95% of requests (streaming for longer ones)
  • [ ] Evaluation suite has 100+ test cases covering happy paths and edge cases
  • [ ] Escalation path to humans is seamless with full context handoff
  • [ ] Load testing confirms the system handles expected concurrent users
  • [ ] Rollback plan exists if the agent behaves unexpectedly in production
  • [ ] Documentation covers architecture, deployment, monitoring, and incident response

If you cannot check every box, you are not ready for production. And that is fine — better to delay launch than to launch a broken agent that damages user trust.

At Storygame, we build production-ready AI agents that handle real workloads, not demos. If you are ready to move from prototype to production, talk to our team about your use case.

Post Info
Analysis
tag-icon
AI AgentsAI