Scaled EnablementScaled EnablementAll Research
Frontier Research — OpenAI

Monitoring Internal Coding Agents for Misalignment

OpenAI's own playbook for catching their internal coding agents going off-task — and what it tells every operator about deploying agents inside a real workflow.

Recent — OpenAI Research·7 min read·1 primary source
Sources Analyzed
How we monitor internal coding agents for misalignment
OpenAI · 2025
Source
The Source Material

01What "How we monitor internal coding agents for misalignment" is actually about

OpenAI publishes very little about how they run agents in their own engineering organization. "How we monitor internal coding agents for misalignment" is the rare exception — a documented account of how they detect when one of their internal coding agents is doing something it shouldn't be: pursuing a side objective, taking shortcuts that produce plausible-but-wrong code, or otherwise drifting from the intent of the task.

The methodology is interesting. The implication is more interesting. OpenAI is the lab that built the model — they have the weights, the training data, the eval harnesses, the engineers who designed the architecture. And they still need explicit, dedicated monitoring infrastructure to deploy these agents inside their own company.

02Reading "How we monitor internal coding agents for misalignment" as a structural argument

Pull back from the specific monitors and ask what shape of organization is implied by the post. The picture: an agent runtime, a parallel monitoring layer that watches it, a separate review function staffed by humans who didn't build the agent, and an escalation pathway with someone empowered to halt a run.

That isn't a feature inside an engineering team. It's a small operational org with its own reporting line. Most companies stand up an 'AI engineering team,' assign monitoring to it as a side responsibility, and discover six months later that the people building the agent are also the people grading it. "How we monitor internal coding agents for misalignment" is implicitly arguing against exactly that structure.

03What "How we monitor internal coding agents for misalignment" leaves out — and matters more

OpenAI describes the discipline in "How we monitor internal coding agents for misalignment." They don't describe the cost. The cost is real: dedicated monitoring infrastructure, a separate review function, ongoing eval maintenance as the model and the workflow change. We've watched clients deploy two coding agents and discover they need the equivalent of a small SRE team to make those agents production-trustworthy.

That's the unsexy line item nobody includes when the agent is being scoped. We argue for putting it in the budget on day one, because finding it in month four is how a deployment gets quietly rolled back.

"If the lab that built the model still needs a separate review function to trust it in production, the cost of monitoring belongs in the agent's budget on day one — not in the post-mortem."
Our Take

How this maps to the work

Every agentic-workflow engagement we run ends with the same conversation: who watches the agent, with what dashboards, on what cadence, with what trigger to intervene. The default answer for most teams is 'the engineer who built it' — which is exactly the answer OpenAI's own research argues against.

We treat agent monitoring as a first-class part of the operating model, not an afterthought. Pre-named failure modes, separate review function, an honest line item in the budget. The cost of putting this in is small. The cost of not having it the first time an agent silently produces a wrong output for two weeks is large.

How We Add Value

Three engagements we run against this thesis.

None of these require a multi-year transformation. Each is scoped to land specific operating-model improvements with a measurable result.

01

Pre-named failure-mode catalog

We catalog the specific ways an agent on your workflow can fail — silent failure, scope drift, hallucinated completion, tool misuse — and design a monitor for each one before the agent ships.

02

Separate review function with its own reporting line

We design the human-review layer so the engineer who built the agent isn't the one grading it. Independent eyes, defined cadence, documented escalation. Often the most resisted recommendation we make. Always the one that pays back fastest.

03

Honest cost model for the monitoring layer

Before the agent is approved, we put a number on the staffing and infrastructure required to keep it production-trustworthy. The deployment decision should be made against the real cost, not the marketing one.

Continue Reading

Other reports in the series.

2026Frontier

Cross-Architecture Model Diffing with Crosscoders

Anthropic on a method for surfacing — without telling it where to look — what's actually different between two LLMs. The operating-model implication for every team about to swap a model in production.

2026Frontier

Emotions in Models — Interpretability Research

Anthropic's interpretability team on emotional patterns inside frontier models — and why that matters when one is sitting inside a client workflow.

2025Annual

Agents Arrived. Most Operating Models Aren't Ready.

McKinsey, Bain, and Deloitte's 2025 outlooks tell three versions of the same story: the unit of automation moved from a task to a workflow to an agent — and most companies are about to find out their workflows weren't built for software that acts.

Working with us

If this maps to what you're carrying — let's talk.

Most engagements start with a 30-minute conversation about the specific operating-model question on your desk this quarter.

Start a conversationAll research