Agent Operations Design Notes (3/9) — Agent Team Design 101

Adding more agents does not automatically make a system smarter. More often, it makes responsibility blurrier, verification more expensive, and context conflicts easier to trigger. Good separation is not about building a more impressive structure. It is about building a structure where failure stays cheaper and easier to detect.

Key Takeaways

  • The default is usually a single agent. As structure expands, coordination cost and verification cost usually expand with it.
  • A subagent is worth adding only when the ownership boundary is clear, not because the role label sounds elegant.
  • A multi-agent design becomes valuable only when you can afford the cost of conflict management, not just when parallelism looks attractive.
  • The useful design questions come first: who can modify what, who is accountable for verification, and who merges final context before a decision.
  • In real operations, systems usually break less from raw reasoning quality than from context collisions, duplicated work, missed verification, and unclear responsibility.

1. Start with smaller definitions

For practical work, three structures are enough:

  • single agent: one working context handles planning, execution, and checking
  • subagent: a lead agent delegates a bounded slice of work and later integrates the result
  • multi-agent: several agents collaborate with relatively independent roles, state, or authority

The name matters less than the responsibility model behind it.

Anthropic's subagent model is close to a delegated unit with its own context window, tool limits, and permission surface. OpenAI Agents SDK handoffs are closer to transferring the conversation to another specialized agent. Some systems may look multi-agent in the UI while behaving more like one main agent with an extended tool surface. Others may look single-agent while internally separating execution, review, and routing.

So the real questions are simpler:

  1. Who can modify which assets?
  2. Who owns verification failure?
  3. Who reconciles context before the final decision?

2. Why most teams should start with a single agent

The biggest advantage of a single agent is not simplicity for its own sake. It is that conflict tends to stay visible in one place.

If planning goes off course, you can inspect the instructions. If the wrong file gets touched, you can narrow the scope. If verification is missing, you can add it inside the same flow. The failure location stays relatively legible.

As soon as you split the structure, you are no longer dealing with one problem.

  • the original task problem
  • the coordination problem between agents

Many teams underestimate the second category. Once you separate roles, new costs appear quickly:

  • handoff format design
  • repeated context transfer
  • merge criteria
  • verification ownership
  • retry paths after failure

That is why structure should not grow until the limits of a single flow are visible. Before adding more agents, it is usually cheaper to improve:

  • task scope
  • checklists
  • mid-stream verification checkpoints
  • separation between read-only stages and write stages

3. When subagents are actually useful

Subagents are best understood as a middle structure between one agent and a full team. Their value is not just that the role is different. Their value is that the boundary is short and the result is easy to recover.

Subagents tend to fit when:

  • only a specific file set or question needs investigation
  • you want several independent draft candidates for comparison
  • background research or auxiliary review should not flood the main context
  • the returned output is easy to merge, such as a summary, list, or candidate set

They tend to fit poorly when:

  • multiple subagents must edit the same file
  • the interpretation criteria are fuzzy
  • outputs are likely to be applied without verification
  • the lead agent still has to reread large raw context dumps to make sense of the result

In other words, a subagent should behave like a context compression device for the main agent. If it sends back a large block of unresolved context, much of the value of delegation is gone.

4. When multi-agent design becomes justified

Multi-agent structure starts to make sense not when role names multiply, but when different ownership and verification rules must coexist at the same time.

Typical examples:

  • generation and verification must be separated intentionally
  • external execution and internal approval need different authority
  • long-running asynchronous work has to operate in multiple lanes
  • each agent needs a distinct view of tools, data, or permissions

Even then, designing for parallelism alone is a common mistake. Parallel work is valuable only while shared understanding remains stable. The moment agents start operating on different assumptions, speed gains turn into reconciliation waste.

Multi-agent design earns its keep only if you can answer:

  • who guarantees the quality of each agent's input
  • who has priority when results conflict
  • where global failure is detected
  • who counts as the final author of the outcome

Without those answers, the system may look like specialization while functioning as responsibility diffusion.

5. First test: are ownership boundaries sharp enough

The first design question is not performance. It is ownership.

Good separation is usually described with sentences like these:

  • this agent only investigates
  • this agent only drafts
  • this agent only verifies
  • this agent only edits one designated file

Bad separation sounds like this:

  • both agents write, but one is more strategic
  • the reviewer can also patch things when needed
  • the researcher can produce the final version if the situation is urgent

The second set feels flexible at first, but it often creates edit conflicts and unclear accountability later.

In practice, permissions should usually be narrower than role descriptions.

Structure Recommended ownership pattern
single agent keep read, write, and verification responsibility coherent inside one bounded scope
subagent narrow the readable surface or the return format tightly
multi-agent separate modification rights, approval rights, and verification rights explicitly

As the number of agents rises, it becomes more important to define not just what each agent can do, but what each agent must not do.

6. Second test: does verification get cheaper or more expensive

This is where many designs collapse.

Splitting roles can make each role more legible, but it often makes the full result harder to trust. A single agent may only need verification like:

  • did it stay in scope
  • did it match the required format
  • did it support the key claim correctly

Once subagents or multiple agents enter the picture, extra verification layers usually appear:

  • was handoff information lost
  • did agents work from different assumptions
  • did edits overlap or conflict
  • did the merge distort meaning

So verification no longer happens only once at the end. It becomes layered:

  1. internal verification inside each agent
  2. handoff verification
  3. merge verification
  4. final artifact verification

If your team is not ready to pay for those layers, the better move is often to keep one main flow and insert verification checkpoints inside it.

The practical decision rule is simple:

  • split when verification becomes cheaper after separation
  • wait when verification becomes more expensive after separation

7. Third test: does the design reduce or amplify context collisions

In operations, systems often fail not because the model is weak, but because multiple contexts stay alive at once and start conflicting.

Context collisions usually show up in four forms:

  • the same goal is interpreted differently
  • the same file state is remembered differently
  • only some agents update to the latest decision
  • the same term gets reused with different meanings

With a single agent, these conflicts usually surface inside one flow. With multiple agents, each side may build a plausible intermediate output before the contradiction becomes visible. That makes the conflict more expensive, because each output already looks partially complete.

To reduce context collisions, it is often better to tighten the shared frame before adding agents:

  • lock the common goal statement into one short sentence
  • predeclare which files are editable
  • summarize the latest decision in one paragraph
  • standardize the return format

Subagents work well when they shrink context. Multi-agent systems often fail when too much free-form context is left open between roles.

8. Practical decision table

The structure choice can be summarized without much drama.

Situation Single agent Subagent Multi-agent
Scope is small and clear best fit usually unnecessary usually unnecessary
Research and drafting should be loosely separated possible good fit often excessive
Several roles need to touch the same asset risky usually poor fit risky without strict coordination
Verifier independence matters limited supportive potentially strong fit
Parallelism benefit is large limited conditional potentially strong fit
Keeping context up to date is hard relatively safer requires care most fragile
Approval and operating rules are complex can become bloated fast conditional potentially strong fit

The recommended default sequence is usually:

  1. start with a single agent
  2. split only easy-to-recover work into subagents
  3. adopt multi-agent structure only when ownership and verification boundaries can be stated explicitly

9. Three common misunderstandings

Misunderstanding 1. More role names means more sophistication

Usually not. Reducing failure paths matters more than naming more roles.

Misunderstanding 2. Parallelism always raises productivity

Parallelism pays only when merge cost is low. If merging is expensive, you have not really accelerated the system. You have only made complexity simultaneous.

Misunderstanding 3. A separate verifier automatically raises quality

A verifier only works as an independent quality control layer if input criteria, checklists, and decision authority are defined along with the role. A title alone is not a verification system.

10. A checklist for teams that want to start small

Before splitting the system, answer these five questions:

  1. Is the most expensive failure today a generation-quality problem, or a coordination problem?
  2. If we add one more agent, who owns which files or state?
  3. After separation, do verification steps actually decrease, or do they increase?
  4. Can different agents reliably share the latest decision?
  5. If conflict appears, is the final authority clearly assigned?

If these questions are hard to answer, it is usually a sign that the structure should stay simpler for now.

Conclusion

Single-agent, subagent, and multi-agent setups often get framed like maturity levels. In practice, they are not. More agents do not automatically mean a higher stage of design. The real issue is where the system chooses to place complexity.

Good separation does not imitate teamwork for appearance. It makes accountability clearer, verification cheaper, and context collisions visible earlier. By that standard, many teams do not need a bigger agent structure next. They need sharper ownership boundaries and cheaper verification design.

Related Internal Links

References

  • Anthropic, Create custom subagents
  • Anthropic, How Claude remembers your project
  • Anthropic, Configure permissions
  • OpenAI Agents SDK, Agents
  • OpenAI Agents SDK, Handoffs
  • OpenAI Agents SDK, Guardrails
  • drafts/blog/260519_ํ•˜๋„ค์Šค๋ถ€๋กE04_Subagent์™€AgentTeams๊ตฌ๋ถ„ํ•˜๊ธฐ_๋ธ”๋กœ๊ทธ.md
  • drafts/blog/260519_ํ•˜๋„ค์Šค์‹œ๋ฆฌ์ฆˆD02_ํ•˜๋„ค์Šค์„ค๊ณ„์˜7๊ฐ€์ง€๊ฒฐ์ •_๋ธ”๋กœ๊ทธ.md

Series overview: Series index

๋Œ“๊ธ€

๋Œ“๊ธ€ ์“ฐ๊ธฐ

์ด ๋ธ”๋กœ๊ทธ์˜ ์ธ๊ธฐ ๊ฒŒ์‹œ๋ฌผ

Agent Memory Engine (2/10) — Building an AI Agent Memory System with SQLite Alone

← 1/10 SQLite Memory Engine f… ๐Ÿ“š Series Index 3/10 memcore Completed → A memory engine that runs without daemons, without dependencies, anywhere ํ•ต์‹ฌ ์š”์•ฝ This post covers how to design an AI agent memory engine (memcore) on a single-file SQLite backend. - Structure: 25 modules, ~6,464 lines, 22 DB tables - Principles: no daemon, single-file portability, no required external dependencies, host-agnostic - Core techniques: 4-layer hybrid search (topic · vector · FTS5 · LIKE), U-tag dialectic-based confidence evolution, ingestion-layer bias rejection rules What This Post Covers One approach to building AI agent memory without a server or cloud vector DB. Specifically: (1) the limitations of text-file-based memory, (2) vector DB alternatives compared and selection criteria, (3) how to layer search tiers, (4) how to evolve confidence scores over time, and (5) how to block biased memory accumulation at the ingestion stage. Design Principles: Why Single-File SQLite Text-file-based ...
Read more »

"ML Foundations (9/9) — PyTorch vs TensorFlow, and the Road to Local LLMs"

์ด๋ฏธ์ง€
← 8/9 Deep Learning Architec… ๐Ÿ“š Series Index (series end) The final part. So far we've focused on models. Now we focus on the tools that actually run them . We'll lay out the philosophical difference between PyTorch and TensorFlow, and trace how Hugging Face transformers , llama.cpp , MLX , and Ollama built the bridge to running large language models on your own machine. By the end you should have the full mental model of "download a pretrained LLM and serve it locally." 0. Learning Objectives Explain the eager-vs-graph difference between PyTorch and TensorFlow. Explain, in graph terms, how autograd automates the backward pass. Use Hugging Face transformers ' AutoModel , AutoTokenizer , and pipeline abstractions. Describe llama.cpp's GGUF quantization, INT4 inference, and CPU-first flow. Describe Apple MLX's use of unified memory and how it differs from PyTorch. Run a local LLM with Ollama and call it through an OpenAI-compatible API. ...
Read more »

"RAG Core Study (14/26) — Evaluation Sets with RAGAS & DeepEval"

์ด๋ฏธ์ง€
Series overview: Series index ๐Ÿ“š Series Index Without an evaluation set, every RAG improvement is a story, not evidence. RAG systems fail in more than one place: retrieval, context selection, answer generation, and grounding. That means "looks better" is not a metric. Part 14 explains how to build a golden dataset , how RAGAS and DeepEval fit into the workflow, and why teams must separate retrieval quality from answer quality if they want tuning decisions to hold up. 0. Prerequisites Part 13 reranking — system quality now depends on multi-stage ranking. Part 1 grounding — a correct-looking answer is not enough. Part 12 Hybrid — multiple retrieval settings need comparison on fixed data. 1. Learning Objectives Build a small but useful golden dataset for RAG. Distinguish retrieval metrics from answer metrics . Use RAGAS and DeepEval in the right roles. Avoid the common traps in judge-model-based evaluation. 2. ํ•ต์‹ฌ ์š”์•ฝ An evaluation set for RAG is ...
Read more »

"ML Foundations (8/9) — Deep Learning Architectures: CNN, RNN, Attention"

์ด๋ฏธ์ง€
← 7/9 Deep Learning Training ๐Ÿ“š Series Index 9/9 PyTorch vs TensorFlow → What did we keep adding on top of an MLP? Vision went CNN, sequences went RNN/LSTM, and eventually both converged on Attention and the Transformer. Each architecture is easier to remember if you read it as what it gave up to gain something else . This part is the one-line summary of the decisive inflection points: LeNet → AlexNet → ResNet → LSTM → Attention → Transformer. 0. Learning Objectives Explain why CNN's convolution, pooling, and weight sharing match images so well. Trace what got unblocked from LeNet → AlexNet → VGG → ResNet as depth grew. State BPTT for RNNs and the vanishing/exploding gradient problem. Write the LSTM gate equations (forget, input, output) with intuition. Write the attention formula in query/key/value form and the scaled dot-product variant. State the precise reasons Transformers replaced RNNs (parallelism + long-range dependencies). 1. ํ•ต์‹ฌ ์š”์•ฝ CNN : weight sharin...
Read more »

"ML Foundations (7/9) — Deep Learning Training: Optimizers, Regularization, Initialization"

← 6/9 Neural Networks ๐Ÿ“š Series Index 8/9 Deep Learning Architec… → Building an MLP, as we did in Part 6, is not the same as getting it to train well . The right optimizer, regularization, initialization, and learning rate — when these line up, deep networks converge. When they don't, the network refuses to learn at all. This part is the catalog of those crafts, with formulas, paper citations, and code in one place. 0. Learning Objectives Compare and write the update rules for SGD, Momentum, Nesterov, and Adam. Explain how Dropout, BatchNorm, and LayerNorm work and where they belong in a model. Derive the variance formulas for Xavier and He initialization and match them to activations. Implement step, cosine, and warmup learning-rate schedules in PyTorch. Explain why gradient clipping is effectively required for RNNs and Transformers. Diagnose the most common training failures (NaN, plateau, overfitting) and apply first-line fixes. 1. ํ•ต์‹ฌ ์š”์•ฝ SGD : \(w \leftarro...
Read more »

OpenClaw to Hermes Migration (2/13) — What to Preserve, Partially Port, or Discard

← 1/13 Current Structure Inve… ๐Ÿ“š Series Index 3/13 What Moves to Hermes → A code review record classifying operational scripts into three tiers: preserve, partial-preserve, and discard. What This Post Covers An asset classification framework (preserve / partial-preserve / discard) for migrating a legacy agent system to a successor A concrete case applying the Strangler Fig + Subset Migration strategy to a memory pipeline Classification results evaluated across LOC, external dependencies, and replaceability axes A method for slimming down a bloated single file (1,310 LOC) using the migration as a natural entry point Problem Definition: Port Everything or Cut Deep? The OpenClaw inventory comprises multiple agents, multiple scheduler/daemon processes, and multiple operational scripts. When moving to the successor system, Hermes, the choice is not binary. A full port carries accumulated technical debt along with it; a minimal port discards hard-won domain logic. Code-revie...
Read more »

AI Agents I Built (5/7) — Building an Automated Blogger API Publishing System

← 4/7 My Life Organizer Agent ๐Ÿ“š Series Index 6/7 Dual → Designing a Markdown-Based Auto-Publish Pipeline with Blogger API v3 + OAuth 2.0 Key Summary Blogger API v3 + OAuth 2.0 enables a pipeline that converts Markdown files into publishable HTML posts blogger_publish.py handles the full flow — frontmatter parsing → body cleanup → HTML conversion → CSS injection → API post — in a single script For bulk publishing, quota management (delay, retry, TOC suppression) is the critical design concern Platform Selection Criteria API access is mandatory for AI agent-driven content publishing. A comparison of platforms: Platform API Cost AdSense Decision WordPress.com REST API Paid plan required Paid only Cost overhead Ghost REST API Self-hosted or paid Manual setup Ops overhead Blogger v3 API Free Native integration Adopted Blogger is free, exposes a REST API, and integrates natively with AdSense. For personal blog automation, this combination i...
Read more »