Multi-agent orchestration
Multi-agent setups split work across planner, worker, and critic roles, or run parallel attempts. Benefits include quality; risks include expanded attack surface and cost blowups.
Risks
| Risk | Mitigation |
|---|---|
| Prompt injection propagates | Sanitize inter-agent messages; treat sibling agent output as untrusted |
| Shared memory poisoning | Version and sign scratchpad state; isolate per-tenant |
| Runaway loops | Max iterations, max tool calls, max spend per task |
| Confused deputy across agents | Central policy service for tool execution |
Operations
- Budgets per workflow: tokens, wall-clock time, tool invocations.
- Circuit breakers when error rates spike.
Related
- Tool use: budgets and circuit breakers for tool-heavy flows