Skip to content

karimbaidar/false-success-lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
.github
.github
 
 
assets
assets
 
 
docs
docs
 
 
refund_demo
refund_demo
 
 
runs
runs
 
 
samples
samples
 
 
scripts
scripts
 
 
tests
tests
 
 
.dockerignore
.dockerignore
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
AGENTS.md
AGENTS.md
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
DCO.md
DCO.md
 
 
Dockerfile
Dockerfile
 
 
GOVERNANCE.md
GOVERNANCE.md
 
 
LICENSE
LICENSE
 
 
MARKETING.md
MARKETING.md
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
RENAME_REPO.md
RENAME_REPO.md
 
 
ROADMAP.md
ROADMAP.md
 
 
SECURITY.md
SECURITY.md
 
 
SUPPORT.md
SUPPORT.md
 
 
TRADEMARKS.md
TRADEMARKS.md
 
 
docker-compose.yml
docker-compose.yml
 
 
pyproject.toml
pyproject.toml
 
 
requirements-dev.txt
requirements-dev.txt
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

False Success Lab

Tests Static demo Python License

Live demo | Static Pages mirror | Core package: agent-consistency

Agents claim "done." The gate makes them prove it — then watch the gate block them.

False Success Lab is the interactive developer lab for agent-consistency. The landing page leads with a live, auto-playing refund run: a naive agent reports success, the deterministic gate intercepts the claim, blocks it because the payment provider has not confirmed settlement, and emits a tamper-evident receipt. The repo scanner is a secondary, top-of-funnel lead magnet — not the product.

False Success Lab architecture

What this is

False Success Lab is a developer-facing lab for understanding and demonstrating false-success risk in agent workflows. The hero is the deterministic gate + tamper-evident receipt that sits in the execution path and proves an outcome before success is claimed. Below the hero, a deterministic repo scanner produces a four-section report card (repo diagnosis, system map, critical gaps, fix plan) so you can find the same risk in your own code.

This repo is the experience layer, not a Python package. The canonical Python package and reliability engine is agent-consistency.

Why it exists

Agent workflows often treat a successful tool response as a completed outcome. That can create unverified completions: refund confirmations before settlement, support tickets closed without resolution evidence, access grants announced before the role is actually present, or trades marked complete before fill confirmation.

False Success Lab makes that failure mode concrete. It shows the naive behavior, then shows how a verified action, outcome gate, and proof trail block or review the completion claim.

What you can do in the lab

  • Scan public repos for false-success risk, with repo-fit confidence instead of fake certainty.
  • Import local scan reports without giving the browser filesystem access.
  • Run built-in false-success scenarios.
  • Compare naive vs protected behavior.
  • Inspect proof trails and receipt JSON.
  • Copy suggested Python, LangGraph, and tool-wrapper fixes.
  • Copy a clean Markdown report for issues, PR comments, or social posts.

Core flows

The first screen is the live gate hero. With no input it auto-plays a real pending_refund run and walks through five visible steps: (1) the naive agent emits "Refund complete ✅", (2) the gate intercepts the completion claim, (3) it BLOCKS because refund_settled is not confirmed (provider status is pending), (4) it renders the real receipt JSON produced by agent-consistency for that run, and (5) it shows the handful of lines that turn the naive path into the protected one. A Replay control re-runs it.

When the FastAPI backend is available the hero calls /api/runs directly and labels itself "Live engine run". For the static Pages build it falls back to a committed, engine-produced fixture (refund_demo/static/hero_run.json, regenerated with make hero-fixture) — it is never hand-authored.

Below the hero, the secondary scanner offers two entry points:

  1. Scan a public GitHub repo
  2. Import local scan report

Public GitHub Repo Scan

Provide a public GitHub URL such as:

https://github.com/org/repo

The FastAPI backend calls the scanner exposed by the installed agent-consistency package, downloads the public repo to a temporary directory, and returns a false-success report card plus Markdown output. The scanner accepts any public GitHub repo, but reports whether the repo looks like an agentic-workflow repo, workflow-adjacent repo, or general code. Weak matches are shown as possible risks that need review.

Local Report Import

Browsers cannot directly inspect arbitrary local folders, so local repo scans stay honest. Run the scanner in your repo:

agent-consistency scan . --format json > false-success-report.json

or:

agent-consistency scan . --format markdown

Then paste or upload that JSON/Markdown report into the lab.

Built-In Scenario Runner

Built-in scenarios let you understand the same class of failure before scanning your own code. Each scenario shows a naive completion path, a protected path, the report card, the proof trail, receipt JSON, missing evidence, and suggested fixes.

Built-in scenarios

Refund remains the flagship example, but False Success Lab covers a wider set of AI workflow risks including support, access, CRM, infrastructure, and trading scenarios.

Scenario Naive behavior Protected behavior
Refund customer Sends a completion email after refund API acceptance. Blocks until refund_settled is confirmed.
Close support ticket Marks work resolved before resolution evidence. Requires resolution proof before closure.
Delete account Announces deletion without idempotency or confirmation. Requires idempotency and deletion confirmation.
Provision server Claims infrastructure is ready after request acceptance. Requires readiness and desired-state checks.
Update CRM Claims a production record changed after a write call. Requires read-after-write confirmation.
Grant access Tells a user access was granted without checking final role/scope. Confirms principal, role, and scope.
Place trade Claims an order filled after broker submission. Requires broker fill confirmation.

Architecture

False Success Lab is the interactive demo surface for agent-consistency.

False Success Lab architecture

It has two main jobs:

  1. Scan agent repos for false-success risks.
  2. Replay built-in scenarios so developers can see the same failure in a controlled environment and copy the fix.

The lab is intentionally split into developer entry points, the interactive UI, a small backend layer, the real agent-consistency package, and outputs like report cards, proof trails, and copyable fixes.

  • Developer entry points: built-in scenario runner, public GitHub repo scan, and local report import.
  • Interactive UI: FastAPI-served static HTML, CSS, and JavaScript that keeps the demo lightweight and deterministic.
  • Lab backend: validates public scan requests, calls the scanner, and runs the refund scenario through the real workflow path where available.
  • Scanner: reads source code and returns repo applicability, a deterministic system map (entry points, side-effect actions, source systems to confirm), grouped findings with the exact missing confirmation per finding, and suggested fixes. The UI renders this as a four-section report card.
  • Verified action / outcome gate: blocks or reviews unverified completions before customer-visible claims continue.
  • Verifier packs: scenario-specific checks for the expected result, such as settlement, deletion confirmation, readiness, role scope, or trade fill.
  • Receipt / proof trail generation: records state reads, handoffs, tool calls, tool responses, outcome verification, and gate decisions.
  • Scenario result: shows naive vs protected behavior and whether the completion was allowed, blocked, or needs review.
  • Copyable fixes: Python, LangGraph, and tool-wrapper examples for moving from report-card findings to verified actions.

How it works with agent-consistency

agent-consistency is the canonical package and reliability engine. False Success Lab is the interactive report-card and scenario UI.

Use agent-consistency when you want to:

  • scan a repo
  • add verified actions
  • generate receipts
  • run the benchmark
  • integrate outcome gates into workflows

Use False Success Lab when you want to:

  • explore report cards visually
  • run built-in scenarios
  • compare naive vs protected behavior
  • inspect proof trails
  • copy fixes

The lab does not duplicate package logic unnecessarily. Public GitHub scanning and protected scenario execution call into agent-consistency where the backend has the required package APIs installed.

Run locally

python -m pip install -r requirements-dev.txt
make demo

Open:

http://127.0.0.1:8000

Equivalent direct command:

MODEL_PROVIDER=heuristic python -m uvicorn refund_demo.web:app --reload

The Vercel app is the primary live demo because it serves both the UI and the FastAPI backend required for public GitHub repo scans:

https://false-success-lab-api.vercel.app/

The GitHub Pages build is a static mirror. It can show built-in scenarios and pasted reports. Public GitHub scanning requires the FastAPI backend because it needs to download and scan a repo server-side.

make static-demo

Hosted backend

The free backend target is Vercel using the repo-local pyproject.toml tool.vercel.entrypoint setting. The current Vercel project is false-success-lab-api, which gives the primary live demo URL:

https://false-success-lab-api.vercel.app/

The static GitHub Pages mirror can also try that backend URL. You can override it for a test deployment by adding ?api=https://your-service.example.com to the Pages URL; the browser stores that API base URL for later visits.

Vercel's free Hobby plan is suitable for this personal demo backend, but it has usage caps and is intended for personal, non-commercial use. Vercel Functions still have duration and resource limits, so very large repository scans may need the local CLI path. The UI stays honest: if the backend is unavailable, it shows static demo mode and still supports local report import and built-in scenarios.

The hosted backend installs agent-consistency>=0.3.7,<0.4.0 from PyPI. That version includes repo applicability, grouped findings, raw exposure, and findings-first system maps that do not drop known entry points or source-system checks.

To deploy the backend:

  1. Import https://github.com/karimbaidar/false-success-lab into Vercel or run vercel --prod --name false-success-lab-api.
  2. Keep the default project name false-success-lab-api if possible.
  3. Check https://false-success-lab-api.vercel.app/api/health.
  4. Reopen https://false-success-lab-api.vercel.app/ and scan a public GitHub repo.

Repo rename / project note

This project was previously named agent-consistency-refund-demo.

It has evolved into False Success Lab because it now covers multiple false-success scenarios beyond refunds, including support, access, CRM, infrastructure, and trade workflows.

The GitHub repository has been renamed to karimbaidar/false-success-lab. The primary live demo is now the Vercel app: https://false-success-lab-api.vercel.app/. The GitHub Pages URL remains as a static mirror: https://karimbaidar.github.io/false-success-lab/.

See RENAME_REPO.md for the completed rename note and post-rename checks.

Contributing

Scenario contributions should include the scenario name, description, user goal, workflow steps, failure toggles, source system state, naive result, protected result, expected receipt fields, copyable fix code, and tests.

See CONTRIBUTING.md and docs/scenario-contributions.md.

Contributors

License

MIT. See LICENSE.

About

Make sure AI agents actually do what they claim, no more fake successes.

karimbaidar.github.io/false-success-lab/

Topics

workflow demo reliability multi-agent multi-agent-systems refunds ai-agents fastapi guardrails llm agentic-workflow agentic-ai agent-reliability agent-consistency outcome-verification

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages