Venture Crane

Where We Stand: AI Agent Operations in February 2026

Feb 21, 2026 · 15 min read · by Venture Crane
agent-operationsinfrastructurestate-of-the-artmethodology

Where We Stand: AI Agent Operations in February 2026

We have been running AI agent teams in production for months. Not experimenting. Not prototyping. Running - sessions, handoffs, fleet dispatches, PR pipelines, content production, documentation enforcement - across multiple product ventures, every day, 12+ hours a day. Hundreds of sessions logged. Thousands of commits merged.

Where the technology actually is. What works. What breaks. What the data says versus what the marketing says. The gap between the narrative and the reality is wide enough to waste months of effort if you walk in believing the wrong things.

The Narrative vs. the Numbers

The narrative says we are entering the age of fully autonomous AI agents. Dario Amodei predicted with 70-80% confidence that a single-person company could reach $1B by 2026. Sam Altman has a CEO group chat betting on the timeline. Solo-founded startups surged from 23.7% in 2019 to 36.3% by mid-2025. The agentic AI market is estimated at $9-11 billion in 2026, projected to hit $45-53 billion by 2030.

The numbers tell a different story. Seven independent studies confirm AI agents fail 70-95% of the time on complex tasks. Gartner predicts more than 40% of agentic AI projects will be canceled by the end of 2027 due to escalating costs, unclear business value, or inadequate risk controls. Only about 130 of thousands of claimed agentic AI vendors offer legitimate agent technology. The rest are “agent washing” - rebranding chatbots, RPA, and existing automation.

Deloitte surveyed 550 US cross-industry tech leaders. 80% say they have mature basic automation capabilities. Only 28% say the same about automation with AI agents. Only 12% expect comparable ROI from agents within three years.

Both things are true simultaneously. The technology is real and improving rapidly. The gap between a demo and a production system remains the central challenge.

What the Stack Looks Like Now

The industry has settled on a three-layer taxonomy for agent infrastructure, articulated by LangChain and refined by practitioners like Phil Schmid:

Frameworks provide building blocks - tool definitions, agentic loops, basic primitives. LangGraph leads with approximately 6.17 million monthly downloads. CrewAI has 44,000+ GitHub stars and powers 1.4 billion agentic executions across enterprises including PwC and IBM. Microsoft AutoGen handles conversational agent architectures. OpenAI shipped the Agents SDK in March 2025 to replace their experimental Swarm project.

Runtimes provide execution environments - state management, error recovery, checkpointing. This layer is where most teams underinvest and where most projects die.

Harnesses provide the full operational layer - prompt presets, lifecycle hooks, planning, filesystem access, sub-agent management, human approval flows. Schmid frames this clearly: the model is the CPU, the context window is RAM, the harness is the operating system, and specific agent logic is the application. “2025 proved agents could work. 2026 is about making agents work reliably, and the harness determines whether agents succeed or fail.”

The emerging pattern among teams that ship: prototype with CrewAI’s intuitive role-based model, productionize with LangGraph’s stateful graph architecture. Or skip frameworks entirely and build directly on the coding agent runtimes - Claude Code, Cursor, Codex - with custom orchestration above.

MCP Became the Standard

The Model Context Protocol is the biggest structural development in the space. Anthropic introduced it in November 2024. OpenAI adopted it in March 2025 across the Agents SDK, Responses API, and ChatGPT desktop. Google DeepMind followed in April. By November 2025: 10,000+ active MCP servers, 97 million monthly SDK downloads. In December 2025, Anthropic donated MCP to the Agentic AI Foundation under the Linux Foundation, co-founded with OpenAI and Block, backed by Google, Microsoft, AWS, Cloudflare, and Bloomberg.

MCP is now adopted by ChatGPT, Cursor, Gemini, Microsoft Copilot, and VS Code. Forrester predicts 30% of enterprise app vendors will launch their own MCP servers in 2026.

The consensus forming: MCP wins for agent-to-tool connections. Google’s A2A protocol - launched April 2025, backed by 50+ companies - handles agent-to-agent coordination. Both now live under the Agentic AI Foundation.

If you are building agent infrastructure and not building on MCP, you are working against the emerging consensus. The protocol has network effects now.

Multi-Agent is Going Native

Three developments in the last month changed the landscape:

Claude Code Agent Teams shipped as an experimental feature with Opus 4.6. A lead agent spawns teammates - each a full, independent Claude Code instance with its own context window. Shared task lists with dependency tracking. Inter-agent messaging. Worktree isolation per teammate. Addy Osmani’s assessment: “Let the problem guide the tooling, not the other way around. If a single agent in a focused session gets you there faster, use that.”

VS Code released native multi-agent development support on February 5, 2026. The IDE is becoming the agent orchestration surface. You can run Claude Code, Aider, Codex, OpenCode, and Amp in separate workspaces within one interface, each with Git worktree isolation.

GitHub launched Agentic Workflows in technical preview on February 17, 2026. Markdown-defined workflows compiled to GitHub Actions YAML. Sandboxed execution with read-only repo access. Supports Claude Code, Codex, or Copilot as the agent. GitHub calls this “Continuous AI” - the agentic evolution of CI/CD. Eddie Aftandilian, GitHub Next principal researcher, describes it as capturing “how autonomous agents extend the CI/CD model into judgment-based tasks.”

The direction is clear. Multi-agent orchestration is moving from custom infrastructure into the platforms themselves. If you built custom orchestration, expect parts of it to be absorbed. Build accordingly.

What Actually Works in Production

We track what works not by what seems impressive but by what ships reliably, passes verification, and survives contact with real codebases. Here is what the practitioner community converges on, cross-referenced with our own operational data.

Narrow Scope Wins

Systems solving specific, well-defined problems outperform ambitious general-purpose agents. Every time. The compounding error math is unforgiving: even at 99% accuracy per step, a 100-step task has only a 36.6% chance of succeeding. In practice, accuracy per step is lower than 99%.

Cognition’s own performance review of Devin tells the story. PR merge rate doubled from 34% to 67%. Vulnerability fixes ran at 20x efficiency. Java migrations at 14x speed. But an independent evaluation by Answer.AI found only a 15% success rate on 20 attempted open-ended tasks. The pattern: strong on well-scoped tasks with clear acceptance criteria, unreliable on ambiguous work.

The implication for team design: decompose aggressively. The unit of work for an agent should be a single GitHub issue with clear acceptance criteria, not “build the feature.” Time-box execution. Define what “done” looks like before the agent starts.

Human Checkpoints are Non-Negotiable

An Amazon AI engineer reportedly stated they know of “zero companies who don’t have a human in the loop” for customer-facing AI. From the Hacker News practitioner thread on agent orchestrators, successful teams emphasized keeping agent counts low - 2-3 maximum - to avoid becoming a review bottleneck. One developer managing a 500K+ line codebase reported running multiple distinct tasks across agents, spending a few minutes on architectural reviews while glossing over client code specifics.

The “Claude writes, Codex reviews” cross-model pattern is showing promise for quality assurance. Eval-driven loops using observability and benchmarks outperform pure code generation.

The honest constraint: if you can barely keep up reviewing one agent’s output, running four in parallel does not multiply throughput. It multiplies risk. Human review capacity is the actual bottleneck, not agent execution speed. We learned this through fleet sprint operations, where dispatching work to multiple machines revealed that the limiting factor was never agent throughput - it was the human’s ability to review and merge.

Session Continuity Matters More Than You Think

Every agent-based system faces the same challenge: agents lose context between sessions. This is compounded when multiple agents coordinate on a shared codebase.

The platforms handle in-session coordination reasonably well now. Claude Code Agent Teams provides shared task lists and inter-agent messaging. OpenAI’s Agents SDK has session-based context management. Microsoft’s Agent Framework maintains conversation history across handoffs.

None of them solve cross-session persistence. When an agent ends a session at midnight and a new session starts at 8 AM on a different machine, the new agent knows nothing about what happened. The handoff problem - structured transfer of context, decisions, blockers, and next steps between sessions - remains unsolved at the platform level.

Teams running agents seriously need a handoff system. The implementation details vary, but the requirements are consistent: persist what was accomplished, what was decided, what is blocked, and what should happen next. Make that available at session start. Without this, every session begins from scratch, and you lose the compounding benefit of continuous operation.

Fleet Operations Reveal the Real Failure Modes

Running agents on a single machine hides problems that fleet operations expose immediately:

Stale state. When Machine A pushes to origin/main and Machine B has a local main that is 15 commits behind, Machine B’s agent creates PRs against stale code. The fix: always branch from origin/main, never local main. This cost multiple failed PRs before it was encoded as a mandatory pre-flight check.

Environment divergence. Agent runtimes strip environment variables matching patterns like TOKEN, KEY, and SECRET from subprocess environments. This is a security feature that becomes an operational hazard. The agent’s preflight check passes because it tests process.env.GH_TOKEN directly, but the gh CLI it spawns never receives the token. The symptom is “Bad credentials (HTTP 401)” and the cause is invisible unless you know to look for it. Both Codex and Gemini CLI do this. Claude Code does it too unless explicitly configured otherwise.

Cascade failures. One agent error spirals through coordinated work. Practitioners describe “death spirals” requiring semaphore-like protocols to force serialization on critical tasks. The more agents you run in parallel, the more likely one failure poisons shared state.

The coordination tax. Practitioners report handoff latency of 800-1200ms per transition between agents. A five-agent workflow can accumulate 4-6 seconds of pure handoff overhead while the actual LLM calls take only 2 seconds total. Framework overhead, not intelligence, dominates response time.

These are not theoretical problems. They are operational realities that show up the first week you scale beyond a single machine.

What Breaks and Why

The Composio 2025 AI Agent Report identifies three root causes of agent pilot failures:

Dumb RAG - bad memory management, responsible for 51% of enterprise AI failures. Agents that cannot access the right context at the right time make confident, wrong decisions.

Brittle Connectors - broken I/O between agents and external systems. Custom connectors on failed pilots burned $500K+ in engineering salary at some enterprises.

Polling Tax - no event-driven architecture, wasting 95% of API calls checking for state changes that have not happened.

From Anthropic’s own engineering on their multi-agent research system: minor failures cascade into trajectory changes. Their solution was building resumable systems with graceful error handling rather than full restarts. The practical lesson: design for partial failure. Assume agents will fail mid-task and build the ability to resume from the last known good state.

AI-generated code shows consistent blind spots. Authentication flows, input validation, and async race conditions are systematic weaknesses across all models. If your verification pipeline does not specifically test these areas, agent-generated code will ship bugs in predictable categories.

The Token Economics

Anthropic’s engineering team found that token usage alone explains 80% of the performance variance in their BrowseComp evaluation of multi-agent systems. Multi-agent systems consume roughly 15x more tokens than single chat interactions, while single agents use about 4x more than chat. Claude Code uses 5.5x fewer tokens than Cursor for equivalent tasks in independent benchmarks, which matters when you are running 12 hours a day.

Enterprise usage runs $1K-$5K+ per month in API costs for heavy usage. Usage varies 10x between maintenance and active development phases, making budgets unreliable. Annual maintenance of agent infrastructure - retraining, monitoring, security updates - runs 15-30% of total infrastructure cost.

The cost trajectory is improving. Devin dropped from $500/month to $20/month with its 2.0 release in April 2025. The industry is moving toward pay-per-task pricing that aligns cost with outcomes rather than consumption.

But today, cost management is a real operational concern. If you are not tracking token usage per task, you are flying blind.

What’s Commoditized and What Isn’t

Understanding what is becoming commodity versus what remains differentiated determines where to invest effort.

Commoditized (Don’t Build This)

  • Foundation model intelligence. GPT-4, Claude, Gemini are converging on capability. Switching costs between them are dropping.
  • Tool connectivity. MCP is the universal standard. Generic MCP servers for Slack, GitHub, databases are proliferating - 20,000+ implementations exist.
  • Basic agent loops. Every framework does this. Every IDE is adding native support.
  • Prompt libraries and templates. Trivially reproducible.
  • Simple multi-agent orchestration. Claude Code Agent Teams, VS Code multi-agent, GitHub Agentic Workflows are shipping this as native features.

Still Differentiated (Build This)

  • Domain-specific harness logic. Workflow-specific orchestration, approval flows, error handling that encode business rules the platforms will not generalize.
  • Execution trajectories. The runs themselves become training data. Phil Schmid argues the competitive advantage shifts to “the trajectories your harness captures.” This is genuinely hard to replicate.
  • Integration depth. Months of connecting to real systems, handling edge cases, building institutional knowledge about what breaks. Deep vertical expertise creates switching costs.
  • Operational reliability. Retry logic, cascade prevention, graceful degradation, handoff state management, fleet coordination. The boring infrastructure work that separates production from demos.
  • Cross-session institutional memory. What was decided, what failed, what the codebase looks like, what the customer needs. Platforms provide context windows. They do not provide institutional memory.

The “Build to Delete” Principle

Phil Schmid’s prescription is worth internalizing: architect systems permitting rapid logic replacement. Manus refactored their agent harness five times in six months to remove rigid assumptions as models evolved. Every model release changes the optimal way to structure agents.

The practical application: keep your custom layer thin. Own orchestration - what to run, where, and how to monitor it. Let the platform own execution - how the agent thinks, writes code, and uses tools. When the platform absorbs a capability you built, migrate to the native version. Do not fight it.

What You Should Watch

Observational Memory

Mastra published a new approach to agent memory in early 2026. Instead of traditional RAG retrieval, two background agents - Observer and Reflector - compress conversation history into an append-only observation log that stays in context. Results: 94.87% on LongMemEval, 3-6x compression for text, 5-40x for tool-heavy workloads, and up to 10x cost reduction through prompt caching.

This is significant because it addresses the cross-session memory problem differently than handoff documents or vector databases. The observation log forms a fixed prefix that benefits from provider prompt caching, which dramatically cuts costs on repeated interactions. If you are managing agent memory manually through handoff documents, this approach is worth evaluating.

GitHub Agentic Workflows

Three days old as of this writing, but potentially the most consequential development for teams running issue-to-PR agent pipelines. Markdown-defined workflows. Sandboxed execution. Native GitHub integration. Free with GitHub Actions. If this matures, self-hosted agent dispatch becomes harder to justify for standard workflows. Watch the security model and the reliability data as they come in.

Google’s A2A Protocol

Agent-to-Agent protocol, launched April 2025, backed by 50+ companies. Task-based architecture: submitted, working, input-required, completed/failed/canceled. Designed as complementary to MCP - A2A handles agent-to-agent coordination while MCP handles agent-to-tool connections. Both now under the Agentic AI Foundation. If you are building agent-to-agent communication, check whether A2A fits before designing a proprietary protocol.

The Context Window Plateau

Context windows are plateauing at approximately 1 million tokens. The frontier is not bigger windows but better context management. This is why agent teams with isolated context per teammate are winning over single agents with massive context. Design your agent architecture for focused context, not maximal context.

Lessons from Hundreds of Sessions

We have been running this operation since January 2026. Here is what we would tell someone starting today.

Start with session discipline, not agent count. Start-of-day initialization that loads prior context, end-of-day handoffs that persist what happened. Get this right before you add a second agent. Most teams jump to multi-agent before they have reliable single-agent operations.

Encode your verification requirements. Every unit of agent work should have a verification step that runs automatically. Typecheck, lint, format, test. If the agent cannot pass verification in three attempts, stop and escalate. Do not let agents brute-force through failing tests.

Make failure visible. Log what agents attempt, what fails, what gets retried. When an agent stores a description as a secret value instead of the actual secret, you need the audit trail to catch it. When an agent silently loses environment variables because the runtime stripped them, you need the diagnostic tooling to see it. Trust but verify is not sufficient. Instrument and verify.

Decompose issues before dispatching. A GitHub issue that says “build the notification system” is too large for an agent. Break it into issues with clear acceptance criteria, each completable in a single session. The overhead of decomposition is vastly less than the cost of an agent wandering off-scope on an ambiguous task.

Track what the platforms ship. Claude Code Agent Teams, GitHub Agentic Workflows, VS Code multi-agent support - these are all shipping in the same month. The capabilities you build custom today may be native tomorrow. Keep your custom layer thin enough to migrate gracefully.

The human is the bottleneck. Optimizing agent speed further does not improve total throughput once you are running three or more in parallel. The constraint moves to review capacity, integration oversight, and architectural decisions that agents cannot make. Design your workflow around the human’s capacity, not the agents’.

The Honest State of Play

We are in the transition from “agents are magic” to “agents are tools with specific economics.” The 40% project cancellation rate Gartner predicts is the market correcting for overpromising. The teams that survive are those that treat agent operations like engineering - with verification pipelines, failure budgets, session discipline, and operational instrumentation - not like a demo that scales itself.

The technology is real. MCP standardized the tool layer. Multi-agent coordination is going native in the platforms. Context management techniques like observational memory are cutting costs by an order of magnitude. Models are getting better every quarter. The 20-hour autonomous coding task is plausibly within reach by year-end.

But reliability remains the fundamental constraint. Human oversight remains non-negotiable. Integration work - connecting agents to real systems with real failure modes - is where most projects die. And the operational knowledge required to run agents in production - the environment variable gotchas, the stale-state bugs, the cascade failure patterns - that knowledge only comes from doing the work.

The space rewards practitioners over theorists. Build the harness. Run the sessions. Log the failures. Share what you learn.

That is where we stand.

Share: Hacker News Reddit

Related

Ship LogApr 12, 2026
Killing the QA grading theatre
ArticleApr 9, 2026
What Happens When Your AI Agent Briefing Lies
The session briefing said 10 alerts. There were 270. Fixing it took four tracks, $741 in compute, and a captain who refused to accept done.
ArticleMar 28, 2026
Cross-Venture Context - Teaching Agents Where They Are
Agents operating across multiple products need spatial awareness. Without it, they target wrong repos and leak secrets across contexts.