Close
Schedule a call
Blog
Agentic Coding at Amplified (Part II): Best Practices
Published
May 28, 2026

AI coding tools are moving beyond autocomplete into full engineering workflows: codebase exploration, implementation drafts, debugging, testing, pull request review, and documentation. But faster code generation does not automatically mean safer product delivery. As Andrej Karpathy notes, teams need to distinguish between casual “vibe coding” and more rigorous agentic engineering: when the marginal cost of producing code drops, the challenge becomes making sure that output translates into real product progress.

At Amplified, our experience points to a clear pattern: AI coding works best when it is embedded in a structured engineering workflow. Agents can reduce repetitive work, support debugging, improve test coverage, and help teams navigate large codebases, but they should not be asked to infer missing requirements, own architecture, or ship unreviewed changes. Our internal analysis made this especially visible: reactive bug fixing and repetitive PR review triage represented 51% of the analyzed sessions, while only 15% were primarily spent on direct feature implementation.

What We Do Not Believe

Click the image to zoom
Human-Led AI Engineering

The best AI coding workflows are collaborative: humans define the intent, agents accelerate execution, and humans validate correctness.

A strong developer-agent workflow usually looks like this:

  1. The developer defines the task and business goal. Using techniques advocated and popularized by Matt Pocock, instead of the passive "specs to code" trap, the developer runs an active "grilling session" where the AI relentlessly interviews them to uncover edge cases.
  2. The developer provides context, constraints, relevant files, and acceptance criteria.
  3. The agent explores the codebase and proposes a plan.
  4. The developer reviews and adjusts the plan.
  5. The agent implements the scoped change. 
  6. The agent runs tests, linting, build checks, or targeted commands.
  7. The developer reviews the diff.
  8. The agent fixes specific issues.
  9. The team validates through CI, review, and QA before merge. To avoid integration chaos, GitHub researcher Maggie Appleton emphasizes moving this collaboration into shared Agent Collaboration Environments (ACE) where PMs, designers, and developers can course-correct the agent in real-time.

In The Last Software Engineer, Kent C. Dodds makes a useful distinction: the role of software developers is shifting. In the past, the challenge was aiming at the right feature and building it. Today, AI agents increasingly act like homing arrows that can steer themselves toward implementation. The scarce resource is no longer code production alone, but product engineering: the human judgment required to decide exactly what should be built.

The bottleneck is shifting away from manually writing every line of code and toward defining better tasks, testing outputs, reviewing changes, and understanding how those changes affect the broader system. As AI accelerates implementation, human judgment becomes even more important for validation, quality, and direction.

Why Engineering Discipline Still Matters 

Agentic coding does not remove the need for strong engineering discipline. It makes that discipline more important. When AI can generate code quickly, the quality of the surrounding workflow becomes the deciding factor: how clearly the task is defined, how well constraints are documented, how carefully outputs are tested, and how thoroughly changes are reviewed.

The Anatomy of AI-Driven Friction
  • Agent-generated code can look correct while still introducing flawed logic, fragile implementations, hallucinated dependencies, outdated API parameters, race conditions, state pollution, or subtle production bugs.
  • Without explicit guardrails, agents can create architectural drift by placing logic in the wrong layers, bypassing service contracts, or ignoring security and tenant-isolation rules.
Blurring System Boundaries and Validation Loops
  • Agents may apply local or monolithic assumptions to distributed systems, overlooking service contracts, API versioning, shared payload structures, and downstream consumers.
  • Tests written by the same model that generated the implementation can become tautological, confirming assumptions instead of validating real behavior.
  • Agentic development therefore depends on strong inputs: technical design docs, source-of-truth hierarchy, API references, test strategy, production readiness checks, PR scope plans, and shared domain language such as CONTEXT.md.
  • Without these inputs, the agent fills gaps with assumptions — sometimes useful, sometimes wrong, expensive, or unsafe.

Bounded Workflows

For agentic coding to be useful in real product environments, teams need approved workflows.

A good workflow does not give the agent unlimited autonomy. It defines what the agent can do, when it must stop, and what must be verified before changes move forward.

Click the image to zoom

Best Practices

Prompting & Task scoping 

Good prompts are specific, constrained, and outcome-driven. Instead of asking an agent to “implement this,” developers should define scope, constraints, and validation steps: use the existing service layer, follow known component APIs, propose a plan before coding, run build, lint, and relevant tests, and never create commits or PRs without approval.

Effective prompts reduce guessing by providing exact file paths, line references, API signatures, expected versus actual behavior, security failure modes, feature flag patterns, permission guards, known build errors, and test requirements. Existing code should remain the repository’s source of truth.

Agents work best with clear task boundaries. Broader requests should be split into scoped steps that clarify what to change, what not to change, and what validation is required.

Good agentic tasks include:

  • generating tests for existing code;
  • refactoring contained modules;
  • migrating repetitive patterns;
  • improving type coverage;
  • updating documentation;
  • debugging known errors;
  • implementing a well-specified feature slice.

Weak tasks include:

  • “build the whole feature” without a plan;
  • “fix the architecture” without constraints;
  • “make it work” without acceptance criteria;
  • “review everything” without risk categories.

Teams should work in tight loops: make one change, run the app or tests, review the diff, and refine. For debugging, include hard evidence — error messages, stack traces, logs, timing data, and reproduction steps — before asking for a conceptual fix, boundary-case analysis, and targeted fixtures.

Defining constraints

Explicit constraints give AI agents clearer boundaries: what to reuse, what to avoid, and where not to improvise. Inspired by John Ousterhout’s deep module philosophy, the goal is to expose simple, stable interfaces while hiding complex internals, making systems easier for both humans and agents to reason about safely.

Click the image to zoom
Verification & Testing 

Verification and testing should be mandatory parts of the pre-submit workflow, not optional follow-up tasks. Before any commit or PR submission, agents should run a structured verification process covering component API verification, route protection checks, input validation, loading, empty, and error states, permission gates, security TODOs, and build, lint, and test execution.

Testing should be deliberate, not automatic. Agents should not write tests blindly; before generating test files, they should explain what behavior each test verifies, what bug it would catch, what real failure would make it fail, which edge cases are covered, and which tests would be tautological.

This prevents false confidence from AI-generated tests that look useful but do not validate real behavior. The retrospective recommended a pre-submit-checklist skill and a test-strategy validation step to ensure verification catches implementation risks early and testing remains behavior-focused.

Agent Instructions, Skills & Progressive Disclosure

Project-level instructions keep agents aligned during implementation by defining task rules, testing expectations, security checks, and approval boundaries.

But putting every rule, guideline, and API detail into one giant system prompt can push the agent into the “Dumb Zone” by overloading its attention. Instead, teams should use Progressive Disclosure: give the LLM only the context it needs, when it needs it, without polluting the context window.

This can be managed through two layers:

  • AGENTS.md / .claude.md: a shared baseline of MUST, SHOULD, and NEVER rules for accessibility, UI behavior, design tokens, components, security, performance, and testing expectations. This keeps agent behavior consistent across the repo without micromanaging every task.
  • Agent Skills: small, composable workflows for specific tasks like /tdd, /diagnose, or /improve-codebase-architecture. Skills are invoked only when needed, giving the LLM focused context without bloating the base prompt.
Systemic Governance: Engineering Rules for AI Safety

To prevent recurring AI mistakes and structural decay, teams must move from passive code review to active, automated governance. Guardrails should become non-negotiable checkpoints in the delivery lifecycle, not just markdown guidelines.

The key principle is Separation of Verification: AI-generated code should be validated by manually designed tests or by a separately prompted LLM that only sees the open specification, not the implementation internals.

Teams should also enforce boundary checks in CI/CD using tools like ArchUnit, SonarQube, or custom AST parsers to block layer leaks, direct SQL bypasses, and unauthorized cross-service calls.

Finally, AI agents should work through SDKs, OpenAPI contracts, and abstract interfaces rather than the full repository. This preserves software health while still enabling agentic engineering velocity.

Turning AI Speed into Reliable Engineering Practice

Agentic coding can make software teams faster, but speed alone is not the goal. At Amplified, we see AI coding agents as accelerators for disciplined engineering work, not as replacements for human judgment.

The key lesson is that AI performs best when it works inside clear boundaries: well-scoped tasks, explicit constraints, strong prompts, reusable instructions, testing, CI/CD checks, and careful human review. Agent-generated code should be treated as a draft that must be validated for correctness, maintainability, security, and product fit.

As AI accelerates implementation, engineering discipline becomes even more important. The teams that benefit most will be those that stay in control of requirements, architecture, verification, and delivery quality.

In Part III , What We Are Learning About Making AI Coding More Consistent , we will explore whatmakes AI-assisted engineering more predictable, reliable, and reusable across real projects and delivery workflows.

Other articles...
Software Project Management, Part II: 7 Things Every Software Project Manager Should Do In Each Sprint
In the Agile methodology, software development projects progress through sprint cycles: short periods where a specific part of the project is completed.
Development
September 9, 2022
Integrated Software Development at Amplified
Every engineer is either a full-stack developer, or is on track to become a full-stack developer. Amplifiers love technical challenges and are always looking for opportunities to expand their skillsets.
Development
January 19, 2021
Software Project Management, Part IV: What PMs Do Outside of a Sprint
Being a software project manager goes beyond running sprints and daily meetings - here are 7 key responsibilities you’ll handle outside the sprint cycle.
Development
October 7, 2022
Home
Technologies
WebLAB
Portfolio
XR
About us
Blog
Privacy Policy
All rights reserved 2026 - Amplified Software