Franky Joy is a Raptors Fellow, IEEE senior member, award-winning innovator and technical lead at Lane Automotive.

getty
Agentic AI is changing software engineering faster than any tool shift we’ve seen since cloud adoption. These systems suggest code, plan tasks, generate implementations, run tools and sometimes execute changes end-to-end.
That level of autonomy creates a new engineering reality in which the bottleneck is no longer writing code. It’s trusting, governing and validating what gets produced. After working through multiple real-world deployments of AI-assisted development workflows, it has become clear that teams most often fail because they assume autonomy means reliability.
Here’s how experienced engineers actually approach agentic AI and where they choose to draw the line.
1. Production Readiness Means Asking 'How Does It Fail?'
A common mistake is to evaluate agentic AI like a code generator. Senior engineers evaluate it like a distributed system. A system is not production-ready because it does well in the happy path; it is production-ready because it fails safely under stress, ambiguity and partial failure.
For example, an AI agent generates a retry mechanism for an API integration. It passes unit tests and performs well under normal load.
But in production, partial timeouts lead to duplicate retries. Idempotency keys are inconsistently applied. Downstream services get duplicated transactions. The system doesn’t crash—it corrupts data silently.
That’s the real danger with agentic AI: Failure without obvious failure signals.
Experienced teams therefore ask a different question. What does this system do when everything goes slightly wrong at the same time?
2. Autonomy Without Boundaries Is Not Efficiency, It’s Risk Accumulation
Agentic AI also introduces execution capability, not only suggestion. That changes the risk model completely. Strong engineering teams do not allow unrestricted autonomy. Instead, they design bounded agency with sandboxed execution environments, restricted tool access (no direct production writes), approval gates for irreversible actions and scoped responsibilities per agent.
An AI agent can generate infrastructure changes (Terraform, ARM templates, etc.), but it can’t apply them directly. A human reviews diffs, validates blast radius and approves deployment.
This is not bureaucracy. It is controlled blast radius design. Without such a notion of a clear inference, a single incorrect inference can scale into a system-wide outage in seconds.
3. 'It Compiles' Is The New 'It Works On My Machine' Problem
Agentic AI accelerates output, not correctness. One of the most common failure patterns seen in AI-assisted codebases is false confidence from executable output: code runs locally, tests pass superficially, CI greenlights changes and production breaks under real-world conditions.
For example, an AI adds a caching layer to enhance performance. Benchmarks look better. Latency drops.
But under production load, cache invalidation is incomplete, stale reads increase and downstream systems make decisions on outdated data. Nothing technically “fails,” but business correctness fades.
For that reason, experienced engineers treat AI-generated code as syntactically valid hypotheses that still require validation against reality.
4. Observability Becomes A First-Class Requirement, Not An Afterthought
When humans write code, debugging is distributed across individuals. When agentic AI writes code, debugging becomes systemic.
Teams interested in agentic AI should be tracking defect rate per AI-generated change, rollback frequency by source (human versus AI), latency shifts after agent modifications and production incidents correlated to AI commits.
For example: A team introduces an AI refactoring agent that helps in microservices. Within weeks, deployments increase in speed. However, there is a 25% increase in incident frequency. Without the visibility, it would seem to be "random instability," but instead, they find a pattern in behavior where the agent is always mishandling concurrency in shared libraries.
You can’t control what you cannot see. With AI, that risk becomes exponentially more dangerous.
5. Security And Authorization Logic Must Remain Human-Owned
One of the greatest misconceptions among the data science community is that AI can handle “routine security logic.” Authentication, authorization, encryption and access control are not code-generation problems. They are intent interpretation problems under adversarial conditions.
When an AI agent changes RBAC rules during a “cleanup refactor” and accidentally gives higher permissions to service accounts, for example, no alarms trigger and no errors occur. Everything “works” until audit or breach detection.
Experienced engineers follow a strict rule: If a mistake can become a security incident, then AI can suggest, but not decide.
6. The Right Mental Model: AI As A High-Speed Junior Engineer
The most effective framing I have seen in production environments is simple. Agentic AI behaves like a very fast junior engineer who never gets tired, never asks clarifying questions and is confident even when wrong.
That combination is powerful, but dangerous without supervision. Therefore, teams should structure workflows accordingly. AI proposes, but humans review. Automated systems validate, but observability confirms behavior in production. Speed increases, but responsibility does not shift.
7. The Real Differentiator: Engineering Discipline, Not AI Capability
After enough exposure to agentic workflows, it becomes clear that the success factor is not the AI model, but the engineering discipline around it.
Low-performing teams trust output because it “looks right.” This causes them to over-automate early, reduce review rigor to match speed gains and discover problems only after production impact.
High-performing teams do the opposite. They define strict boundaries of autonomy, require human approval for irreversible actions and treat AI output as untrusted until validated. They measure defect impact, not just velocity, and design systems that fail safely, not silently.
Closing Thought
Agentic AI can be a force multiplier for both good engineering and bad engineering. Used correctly, it accelerates delivery while maintaining control. Used loosely, it accelerates chaos just as efficiently.
The teams that will prove most successful in this era are not the ones that adopt AI the fastest. They are the ones that understand a simple principle: Autonomy without verification is not progress, but deferred failure.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?

1 hour ago
2













English (US)