How to evaluate AI agents

Steps

1. 1

   Define success criteria before building evaluation tasks

   Evaluation is only as good as the success criteria it measures against. For each task type your agent handles, define what a correct outcome looks like — not what the correct path looks like. Multi-step agents can reach the right outcome via different paths, and evaluating path correctness instead of outcome correctness produces misleading results. Define failure criteria too: actions the agent should never take regardless of the task, and task-incomplete states that should be distinguished from task-failed states. Write these criteria down in a form your evaluation logic can apply consistently.

2. 2

   Build a task set that covers the input distribution

   Your evaluation tasks should represent the actual inputs your agent receives, including the edge cases. Draw tasks from production logs if available — these represent real inputs rather than idealized ones. If the agent is pre-launch, construct tasks from the task specification and include: straightforward cases the agent should handle easily, cases that require multiple tool calls or reasoning steps, edge cases where the task is ambiguous or information is incomplete, and adversarial cases designed to push the agent toward prohibited actions. A task set that covers only the easy cases will not reveal how the agent behaves under the conditions that actually cause problems.

3. 3

   Set up an isolated evaluation environment

   The evaluation environment must let agent tool calls execute without affecting production systems. For each external integration the agent uses, implement one of: a sandboxed version of the real system (a test database, a staging API), a mock that returns realistic but controlled responses, or read-only access to production data with writes intercepted. The mock or sandbox should reflect actual system behavior — including failure modes — rather than always returning success. Evaluation results from an environment that never returns errors do not tell you how the agent handles the error conditions it will actually encounter.

4. 4

   Run baseline evaluations and record results by task type

   Run the full task set through the agent in the evaluation environment and record: task completion rate overall, broken down by task type; step count per completed task (more steps than expected can indicate inefficiency or reasoning loops); tool selection accuracy where you have ground truth; escalation rate (tasks the agent handed off to humans); and error rate by type. Record raw outputs for each task, not just summary statistics — you need the outputs to diagnose failures and to compare runs after changes.

5. 5

   Establish a regression baseline and add evaluation to your change process

   The value of evaluation is in comparison: the agent today versus the agent after a prompt change, model update, or new tool. Commit your baseline results and run the same evaluation on every significant change. Define regression thresholds: how much can task completion rate drop, or error rate rise, before the change is blocked? These thresholds should reflect what your use case can tolerate — a small regression in a low-stakes task may be acceptable; any regression in a high-stakes one may not be.

6. 6

   Layer in production sampling as a quality monitor

   Offline evaluation against a fixed task set misses the fact that production inputs change over time. Complement offline evaluation with online evaluation: sample a fraction of real production runs and evaluate them against your success criteria — either automatically where criteria can be checked programmatically, or manually where human judgment is needed. Rising failure rates or new failure modes in production samples are the earliest signal that the agent's performance has drifted from your evaluation baseline.