Elios logo
Elios
Elios InsightsAbout Us
Talk with Elios

BLOG POST

How to Keep Software Quality from Falling When Agentic Coding Makes Teams 2x Faster

Matthew Groff, VP of Technology · 12 min read

A balance scale compares agentic coding output with QA checklists, security review, and release approval.

Agentic coding tools like Claude Code can push code through engineering faster than the software development lifecycle (SDLC) can prove it should ship.

We are already seeing this inside AI-native engineering teams. Engineers ship more code, and they ship it faster. PRs pile up, specs change midstream, and QA falls behind. By the time a change reaches release, no one's quite as sure it's ready.

The first wave of AI coding adoption focused on developer output, which made sense. Tools like Claude Code, Codex, and other agentic coding environments make it easier to research a codebase, plan a change, write code, and iterate against tests.

The second wave is harder, and most teams haven't built for it: proving that all of that new code should actually ship.

If engineering output doubles while validation stays fixed, the bottleneck moves to QA, review, and release confidence.

Treat 2x as an operating target, not a guarantee. Buying a tool will not make every team twice as fast. Dexter Horthy of HumanLayer recently described the goal as helping engineers "move 2-3x faster across the entire SDLC". The phrase that matters is across the entire SDLC. Code generation alone misses the point.

How to handle SDLC quality control when engineers use Claude Code

Treat Claude Code and similar tools as a change in engineering throughput. Software quality control still has to prove the work should ship.

The practical answer is a layered SDLC: repo-level agent rules, deterministic formatting, linting, type checks, unit tests, integration tests, E2E tests, security scans, AI-assisted review, human review, QA, and production monitoring. Agents can help at every one of those layers, but none of them gets to make the final call on shipping.

The engineer who opens a PR owns the PR, even when an agent wrote most of the code. That standard keeps accountability clear while the team gets faster.

The SDLC has to absorb the new speed

AI coding tools can improve individual productivity, but software delivery is a system. Code creates value only when the change matches the intended behavior, survives review, passes the right tests, and reaches users without breaking adjacent workflows.

You ship faster with these tools. The discipline that has to come with that speed is still reading what the agent wrote before it goes anywhere. When teams skip that, bugs land later in QA or production, where they cost far more to fix. Dexter Horthy of HumanLayer landed on exactly this point after revising his own workflow: "Don't read the plans. Please read the code."

Do not solve it by slowing the engineers down. Speed up the quality system until it can keep pace with them.

Quality slips when only coding gets accelerated

Most engineering organizations already have pieces of a quality system: ticket requirements, code review, CI checks, tests, QA, and production monitoring. Agentic coding changes the pressure on every layer.

Tickets carry more weight because agents use them as context. A vague acceptance criterion becomes a vague prompt. A stale requirement becomes a wrong implementation target. A missing decision log forces the next human or agent to guess whether the code intentionally diverged from the ticket.

Code review carries more load because more code can arrive faster. AI-assisted review can help, but a human still has to own approval. The accountability cannot be outsourced to the same class of system that generated the change.

QA absorbs the mismatch because it is often the first function to notice that the ticket, code, product behavior, and user expectation no longer agree.

Agentic coding turns quality control into the constraint that determines whether AI speed becomes business value or review debt.

The SDLC guardrails agentic coding makes more important

Agentic coding raises the stakes on the engineering guardrails you already have. A weak gate now leaks bugs at machine speed, faster than anyone can eyeball them.

Start with the rules the agent reads. Repo instructions such as CLAUDE.md, AGENTS.md, or tool-specific rule files should describe the architecture boundaries, testing expectations, security rules, code style, dependency rules, and review standards that already matter to the team. If those rules live only in a senior engineer's head, the agent won't follow them.

Claude Code's own memory documentation makes the limit clear: CLAUDE.md is context, not enforced configuration. Use it to teach the agent how the repo works. Use hooks when the rule must run every time, such as formatting files after edits, blocking risky commands, or running lint before a commit.

Then make the mechanical gates boring and automatic:

  1. Run Prettier or the repo formatter before review.
  2. Run linting and type checks on every PR.
  3. Require unit tests for local logic and edge cases.
  4. Require integration tests where services, APIs, jobs, or permissions meet.
  5. Require E2E tests for the user paths that would create business risk if broken.
  6. Run security and dependency scans before release.
  7. Use AI-assisted review to find missed files, risky diffs, dead paths, and missing tests.
  8. Require a human author self-review before requesting approval.
  9. Require a named human reviewer to approve the PR.
  10. Give QA the context, automation, and time to validate the behavior before release.

This is quality control for faster teams. It keeps software quality from depending on whoever happened to read the diff most carefully that day.

Dexter Horthy of HumanLayer gives a practical warning in HumanLayer's advanced context engineering guide: "A bad line of a plan could lead to hundreds of bad lines of code."

That is the right standard for agentic coding in real SDLC work. The team has to shape context, break work into testable units, and create feedback loops that expose failure early.

Green tests can still lie

The most dangerous quality failure is a green test suite that gives false confidence.

A green build that is quietly wrong waves the whole team forward, and everyone keeps building on a problem no one has seen yet.

A test name can claim one behavior while the test exercises another. A page-object method can say it submits a manual workflow while actually following an automatic path. A selector failure can get swallowed while the test keeps going. An E2E test can click through a screen without asserting the state that would prove the feature works.

That kind of false coverage gets more expensive in an AI-accelerated SDLC.

Agents are good at satisfying the visible test suite. Once the codebase becomes the most current documentation of how the system behaves, a misleading test becomes misleading documentation. The next agent may read it, trust it, and reinforce the wrong behavior.

Measure software quality by behavior, not by the count of tests. The only question worth asking: do the tests fail when the user-facing behavior breaks?

QA becomes the reconciliation layer

In an AI-native engineering workflow, QA has to move earlier than the final manual checkpoint before release.

QA becomes the discipline that reconciles four versions of truth:

  1. What the ticket says should happen
  2. What the code actually does
  3. What the user experiences in the product
  4. What the regression suite proves

When those four disagree, QA is usually where the mismatch shows up first.

Accurate tickets matter because they are operating context for humans and agents. If the code deviates from the ticket, log the decision. If the ticket is wrong, update it. If the test suite is green but does not prove the behavior, fix the test.

Bad tickets used to waste meetings. In an agentic SDLC, they can instruct the machine to do the wrong thing faster.

Agentic QA is the missing counterweight

Giving developers agents while leaving QA with a longer checklist accelerates only one side of the system.

The quality function needs the same acceleration engineering now has.

A practical agentic QA workflow looks like this:

  1. Read the ticket, linked spec, recent PRs, and existing E2E coverage.
  2. Generate a QA scenario plan covering happy paths, boundary conditions, permissions, async states, and regression risks.
  3. Use browser automation to inspect the real product state.
  4. Compare the deployed UI to the ticket and code path.
  5. Write or update Playwright E2E tests with behavior-first names.
  6. Add assertions that fail when the user-facing behavior is broken.
  7. Run the tests through deterministic CLI commands.
  8. Diagnose failures as product bugs, test bugs, locator drift, data setup issues, or ticket drift.
  9. Update the coverage map and decision log.
  10. Keep a human QA owner accountable for the final release signal.

The result is more validation per QA hour, with clearer human ownership.

Playwright MCP helps agents see the product

Playwright MCP is useful because it gives agents a browser interface through structured accessibility snapshots and deterministic actions. That makes it a good fit for exploratory QA, scenario discovery, test repair, and workflows where the agent needs to inspect the actual page state instead of guessing from code alone.

Use it inside a disciplined QA loop.

Do not ask an agent to wander through the application until it finds something interesting. Start with the ticket. Start with the expected behavior. Start with the existing coverage. Then use browser automation to check whether the product and the code tell the same story.

A better loop:

  1. Research the intended change.
  2. Plan the quality risks.
  3. Inspect the real product.
  4. Turn the scenario into repeatable E2E coverage.
  5. Run the suite.
  6. Record what changed and why.

Context still has a cost. Agents need the right context, not every file, every ticket, and every browser snapshot at once.

HumanLayer's 12-Factor Agents guide uses three phrases that map cleanly to quality control in the SDLC: "Own your context window," "Contact humans with tool calls," and "Own your control flow." In practice, those principles separate an agent that produces code from a software process that can trust the change.

The release decision has to stay human-owned

AI can assist every layer of software quality, but it cannot own the release decision.

At release time, the evidence matters more than the agent activity. Formatting, linting, and type checks prove the code meets baseline rules. Unit, integration, and E2E tests prove behavior at different levels. AI-assisted review can surface risky diffs and missing coverage. Human review has to judge intent, maintainability, security, and product fit. QA has to prove that the product experience matches the ticket.

The farther a bug gets through that stack, the more expensive it becomes.

The best place to catch an issue is before code merges. The next best place is QA. The worst place is production, when an end user discovers the issue and turns it into support load, trust loss, or revenue risk.

Releasing is a business decision. It weighs risk against deadlines, customers, and the revenue on the line, and that judgment belongs to a person who can be accountable for it.

Treat QA capacity as part of AI deployment

Engineering leaders should stop treating AI coding adoption as a developer-only program. The useful rollout question shifts from code volume to validation capacity:

Can our SDLC validate twice as much change without letting software quality fall?

A validation-first rollout changes the plan. QA needs AI-native workflows. Tickets need better structure. E2E coverage has to stay current. Code review needs both AI assistance and human accountability. The organization has to measure release confidence instead of coding throughput alone.

Matt Pocock makes the same case from the engineering side: once agents take over the implementation, the work that decides quality moves into QA and review, where human judgment keeps the output from turning into slop (Matt Pocock's AI coding workshop). QA teams are already adopting AI in quality engineering. Doing it well takes discipline: honest coverage, tests that fail for real reasons, and a human who owns the result.

Build a quality system that can absorb the new speed of software delivery.

AI speed without quality is not progress

There is a reason the AI coding productivity debate is still unsettled. Some studies show major gains on bounded coding tasks. The METR early-2025 study found that experienced open-source developers working in familiar mature repositories took 19% longer with AI tools in its randomized trial. METR later noted in a 2026 update that those historical results no longer reflect current AI impact, and that wider agentic tool adoption makes clean productivity measurement harder.

Speed of code generation is the easy thing to measure, and the least useful on its own.

The harder question is whether your SDLC can prove a given change should ship. That proof is built from sharper tickets, tests that fail for the right reasons, real human review, and QA that keeps up with the volume. Claude Code and tools like it make engineers faster. Doing the QA work with the same urgency is what keeps that speed from turning into release risk.

Useful references for agentic SDLC quality

Start with primary docs and practitioner material:

  1. Claude Code memory docs for how CLAUDE.md guides behavior without enforcing it.
  2. Claude Code hooks docs for deterministic actions around agent work.
  3. Playwright MCP docs for browser inspection and E2E automation through agents.
  4. HumanLayer 12-Factor Agents for context, control flow, human contact, and production agent discipline.
  5. HumanLayer advanced context engineering for research, planning, and implementation in complex codebases.

Deploy the people and process around the tools

AI only ships when people and process change. The same is true inside the SDLC.

If your engineering team has adopted agentic coding tools, quality control has to become part of the AI deployment plan. You need engineers, QA specialists, and delivery operators who know how to work with agents, manage context, keep tests current, and make human-owned release decisions.

Elios deploys the AI-native specialists and Embedded Teams that help organizations move faster without handing quality to chance. We source them through Elios Insights, our AI-matching platform and quarter-million-plus specialist network, so the right engineers and QA specialists are in front of you in 48 hours.

Give us one problem. Let us prove it.

Talk with Elios

Subscribe to our newsletter

New posts delivered to your inbox. Playbooks, signals, and hard lessons in AI deployment.

By clicking “Subscribe Now” you agree to our Terms of Use and Privacy Statement. You can unsubscribe anytime.

FEATURED BLOG POSTS

Latest Insights from Elios

How to Keep Software Quality from Falling When Agentic Coding Makes Teams 2x Faster
How to Keep Software Quality from Falling When Agentic Coding Makes Teams 2x Faster
Matthew Groff, VP of Technology · 12 min read
Do You Need a Managed Agent?
Do You Need a Managed Agent?
Matthew Groff, VP of Technology · 7 min read
How to Make Your Company AI-Native: A Practical Guide
How to Make Your Company AI-Native: A Practical Guide
Matthew Groff, VP of Technology · 8 min read
See All Blog Posts

Wherever you are with AI, we’ll help you deploy it.

We’ll deploy a qualified specialist or AI Pod in less than seven days, and leave the capability behind.

Talk with Elios
Elios logoElios

Make your team AI-native. We deploy AI into your business and the people who run it.

Solutions

  • Forward Deployed Engineers
  • Forward Deployed Specialists

Engage

  • Talk with Elios
  • How We Engage
  • How We Screen for AI-native Talent

Candidates

  • Explore Jobs
  • Join the Network

Company

  • About Us
  • Elios Insights

Resources

  • Blog

1“Convertible to full-time” describes an option that may be available on certain engagements. Any conversion is subject to a separate written agreement, eligibility, and applicable terms; Elios does not guarantee conversion.

2 Source: RAND Corporation, 2024, The Root Causes of Failure for Artificial Intelligence Projects and How They Can Succeed.

© 2026 Elios, Inc.PrivacyTerms