What is the difference between an AI agent and a chatbot in 2026?

A chatbot returns text. An agent takes actions. The architectural difference: an agent has tools (irreversible operations like sending email), a workspace (a file system it can read and write), and verification steps that catch errors before they reach the user. A chatbot that calls one API function isn't an agent yet. An agent that can read a database, write a draft, ask a sub-agent to check it, and execute a multi-step plan is.

When do you use Tools versus Bash versus Code Generation in an agent?

Tools for atomic, irreversible operations where structure matters (send_email, charge_card, delete_record). Bash for composable, low-stakes workflows where the agent might chain 5-10 commands (file search, lint, run tests). Code Generation for dynamic logic where the right call depends on inputs the developer can't predict (SQL queries against a schema the agent just learned about, data transformations on unknown shapes). Most production agents use all three.

What is a skill in the Claude Agent SDK?

A skill is a folder containing files (markdown instructions, code snippets, examples) that an agent can discover and read on demand. It encapsulates domain-specific expertise without consuming context up front. The agent only reads the skill when it's relevant to the current task. Think of it as a junior employee reading the right SOP document at the right time instead of being briefed on everything before starting work.

Why use sub-agents instead of one big agent?

Two reasons. First, isolation: a sub-agent that searches a large document set or runs a verification check returns just the result, keeping the main agent's context clean. Second, parallelization: spinning up 5 sub-agents to process 5 sheets of a spreadsheet in parallel is faster and cheaper than one agent doing them sequentially. The trade-off is orchestration complexity: more moving parts to debug.

What are hooks and when do you use them?

Hooks are deterministic insertion points in the agent execution pipeline. You use them when you need a non-LLM check or context update to happen at a specific moment: before a tool call (validate arguments), after a tool result (sanitize output), at session start (inject live user state). Hooks are how you enforce rules the LLM might forget. They're not a replacement for verification sub-agents but a complement.

How often should you rewrite an AI agent codebase?

Approximately every six months. Models evolve fast, SDKs evolve fast, the boundary of what's possible shifts every quarter. An agent codebase from 18 months ago is likely held together by workarounds that no longer make sense. The discipline of throwing out and rewriting is part of the cost of operating in this space, and the teams that do it well outpace the ones that try to keep an aging codebase alive.

How much does it cost to run a production AI agent?

Wildly variable depending on usage. A back-office classifier that runs 1,000 times a day on a frontier model is in the $20-80/month range. A customer-facing agent with multi-step reasoning, 5-10 tool calls per interaction, and 10,000 daily users runs in the thousands to tens of thousands of USD per month. The pricing model you charge users (subscription vs usage-based) has to match the cost curve from day one or the unit economics break.

AI for Business

Anatomy of a Production AI Agent in 2026: What the Claude Agent SDK Reveals

The architectural choices that separate a real production AI agent from a clever demo. Tools vs Bash vs Code generation, skills, sub-agents, hooks, and why agent codebases need to be rewritten every six months.

By Jorge Del Carpio · May 17, 2026 ·

ai-agentsclaude-agent-sdkai-architectureagent-developmentproduction-ai

TL;DR

A production AI agent in 2026 is not a single LLM call wrapped in a chat interface. It's three distinct action paradigms working together (Tools, Bash, Code Generation), skills providing progressive context disclosure, sub-agents handling isolation and parallelization, and hooks enforcing deterministic verification. The architectural decisions you make in week 2 of an agent build determine whether it survives production in month 6. This piece walks through each layer with the trade-offs, based on what we heard at a recent Claude Agent SDK talk by Anthropic and 265+ projects we've shipped.

Quick Answer: What Makes an AI Agent Production-Ready in 2026

A production agent has four architectural components most demos skip. First, three distinct action paradigms working together: Tools for atomic operations, Bash for composable workflows, Code Generation for dynamic logic. Second, skills (folders of files the agent reads on demand) instead of giant system prompts. Third, sub-agents for context isolation and parallel processing. Fourth, hooks that enforce deterministic checks the LLM might forget. The teams that ship agents that survive month 6 architect for all four from week 1. The teams that ship demos pick one and pretend the rest will figure itself out.

What a Real Agent Talk Actually Sounds Like

We recently recorded a Claude Agent SDK talk by Anthropic that walked through the actual architectural choices behind production agents. The headline insight: the gap between “I built an agent” and “I shipped an agent” is not the model. It’s the surrounding architecture.

Three statements from the talk are worth opening with.

“You should be rewriting your agent codebase every six months.” That’s not technical debt as failure. It’s technical debt as inevitable. Models, SDKs, and patterns are moving fast enough that an agent designed against the constraints of late 2024 has workarounds that no longer make sense in late 2026.

“The Agent SDK is the React of agent frameworks.” It gives you primitives and abstractions, but the actual product is still yours to design. There’s no shortcut to thinking through tool design, verification, and state management.

“Build with the capabilities of today, aggressively, to win market share. Don’t wait for perfect.” This is the part most teams underweight. The companies that shipped half-broken agent products in 2024 and iterated had compounding advantage by mid-2026 that the companies waiting for cleaner abstractions didn’t catch up.

The architecture below is what you actually build to make those three statements operational.

The Three Action Paradigms: Tools, Bash, Code Generation

Every action your agent takes happens through one of three paradigms. They’re not interchangeable. Picking the wrong one inflates context cost, breaks reliability, or both.

Paradigm	Best For	Trade-off	Example
Tools	Atomic, irreversible actions	High context cost, low composability	send_email, charge_card, delete_record
Bash	Composable, multi-step workflows	Latency from discovery, lower structure	grep + awk + sort piped together
Code Generation	Dynamic logic against unknown data shapes	Slower (lint + compile loop), more API surface	SQL queries against a just-discovered schema

Tools are the right call for anything irreversible. Sending an email, charging a credit card, deleting a row, posting to a public channel. You want maximum structure: typed arguments, schema validation, clear contracts. The LLM treats a tool like a function it can call. Each tool call costs context (the schema definition lives in the system prompt), so the rule is one tool per high-stakes operation, not 47 tools because every imaginable action got a wrapper.

Bash wins for composable workflows. Searching a codebase, running a test suite, processing files. A single Bash script can chain grep, awk, sort, and pipe the result somewhere. The agent can iterate: write a script, see the output, refine the script. The trade-off is latency. The agent has to discover what commands exist (the SDK pattern is a --help flag on each script). For frequent operations, the latency cost is worth it because the composability cost would be brutal in a tools-only world.

Code Generation is the wildcard. It’s what you reach for when the right call depends on data the developer didn’t see coming. A SQL query against a schema the agent just discovered. A data transformation on a file format the agent has never processed. The agent writes code, runs it, reads errors, fixes the code. The lint-and-compile loop is slower per iteration but unlocks behavior tools and Bash can’t replicate.

Most production agents use all three. A customer support agent might use Tools for sending the final email (irreversible), Bash for searching the knowledge base (composable), and Code Generation for parsing an attached invoice into structured data (dynamic).

The architectural decision in week 2 is which paradigm to use for which operation. Get this wrong and you spend month 5 fighting context inflation or reliability holes.

Skills: Progressive Context Disclosure Without the 40-Page System Prompt

The naive way to give an agent domain expertise is to dump everything into the system prompt. “You are a frontend designer. You follow these 47 design principles. Here are 12 example components…”

That works until the system prompt is 8,000 tokens and the agent forgets the first half by the time it acts.

Skills solve this with a folder. The skill is a directory of files: a top-level markdown describing what the skill does, sub-files with detailed instructions, example assets, code snippets. The agent doesn’t read the whole folder up front. It reads the top-level file to know the skill exists, then reads sub-files only when relevant.

This is progressive context disclosure. The agent discovers expertise as it needs it instead of being briefed exhaustively before starting work.

A practical example from the talk: a frontend design skill that an AI engineer built. The top-level file describes the design philosophy. Sub-files cover color systems, typography choices, layout patterns, component library decisions. When the agent is asked to design a landing page, it reads the top-level skill, then pulls the color and typography sub-files. It never loads the layout patterns sub-file because that task didn’t need it. Context cost stays low. Capability stays high.

For SMB-facing agents, skills are how you encode domain knowledge without rewriting the system prompt every time the operator adds a new edge case. The skill grows. The system prompt doesn’t.

Sub-Agents: Isolation and Parallelization

A sub-agent is a fresh agent session spun up by the main agent to handle a sub-task. It has its own context window, its own tools, and its own conversation history. It returns just the final result to the main agent.

Two patterns make sub-agents worth the orchestration complexity.

Isolation. A verification sub-agent reads a generated SQL query and decides if it’s safe to run. It doesn’t need the full history of the user’s intent. It just needs the query and the rules. Spinning up a fresh session keeps the main agent’s context clean and avoids the meta-failure mode where an agent verifies its own work too generously.

Parallelization. A research sub-agent reads 20 documents to extract key facts. Doing this in one agent context is brutal: either you blow the context window, or you serialize and wait 5 minutes. Five sub-agents reading 4 documents each in parallel finishes in under a minute and returns a concise summary.

The Agent SDK gives you primitives for both. The hard part is deciding when the orchestration overhead is worth it. The heuristic from the talk: any sub-task that would consume more than 20% of the main agent’s context, or that would benefit from running in parallel with other sub-tasks, is a sub-agent candidate.

For SMB use cases, the most common sub-agent patterns are: search (read the knowledge base, return relevant snippets), verification (check a proposed action against rules), and summarization (read 50 customer support tickets, return key themes).

Hooks: Deterministic Insertion Points

Hooks are non-LLM code that runs at specific moments in the agent execution pipeline. They’re how you enforce rules the LLM might forget or refuse.

The talk highlighted four hook patterns worth using.

PreToolUse. Validate arguments before a tool runs. Make sure the email is going to an allowlisted domain. Make sure the SQL query has a LIMIT clause. Make sure the API call has a valid auth token. Deterministic checks the LLM doesn’t need to remember.

PostToolUse. Sanitize or augment tool output. Strip PII before it goes back to the agent. Add metadata the agent can use downstream. Log the result for audit.

SessionStart. Inject live state. The user’s current preferences. The current date. The team’s active project. Things the agent should always know but that change between sessions.

UserPromptSubmit. React to a user message before the LLM sees it. Detect a high-stakes request and require additional confirmation. Route to a specialist agent based on intent.

For SMB-facing agents, hooks are how you keep customer-facing behavior consistent. The LLM might draft a great response that violates a brand voice rule once in 200 cases. A hook catches that 0.5% before it reaches the customer.

The Spreadsheet Pattern: How Agents Handle Big Data

The talk spent significant time on spreadsheets and large databases because it’s the use case that breaks naive agent designs.

The wrong approach: load the whole spreadsheet into context. A 50,000-row file blows the context window and produces an agent that does nothing useful with the data.

The right approach uses three layered techniques.

Translate the format. Convert the spreadsheet to SQL via a temporary SQLite database, or to a queryable structure. The agent already knows SQL syntax. It can query specific rows, aggregations, joins. Trying to get an agent to “find rows where column G is between 100 and 200” via natural language pattern matching is painful. SQL is the abstraction it understands.

Annotate metadata. Add header annotations describing what each column means. The agent reads the metadata once, queries the data many times.

Use sub-agents for parallel processing. Sheet-wise summarization runs 5 sub-agents across 5 sheets concurrently. Faster, cheaper, and the main agent gets a clean summary back.

This pattern transfers. Any large data source benefits from translate-annotate-parallelize. Email archives. Document repositories. Customer support history. The architectural move is the same.

Reversibility, Checkpoints, and Undo

Some agent actions are reversible. Code edits are reversible because version control. File writes are reversible if you snapshot. Database updates are reversible if you use transactions.

Other actions are not. Sending an email. Charging a card. Posting publicly. Deleting a record.

The talk made the case for designing agents around this distinction. Reversible actions get aggressive automation, checkpoints, and version control. Irreversible actions get human-in-the-loop approval, audit logging, and explicit confirmation flows.

For an SMB agent that drafts customer emails, the right pattern is: agent drafts, human approves with one click, system sends. The agent runs autonomously through the drafting (cheap and reversible). The send is gated (expensive and irreversible).

This is also where checkpoints earn their cost. Long agent workflows should snapshot state at key transitions. If the user wants to revert to “before the agent started reorganizing my inbox,” the snapshot is what makes that possible.

Context Window Management: The UX Problem Most Teams Ignore

Context windows are larger every quarter, but they’re not infinite, and they’re definitely not free. A 200K-token context costs more per call than a 50K-token context.

The talk highlighted four UX patterns for managing context effectively.

Compaction. Summarize old conversation turns into a compressed form. Keep the gist, drop the verbatim history.

Clearing. Reset the conversation when the user starts a new task. Most users don’t naturally do this. The UI should make it easy.

Summarization diffs. For workflows where state lives outside the chat (like code edits in a repo), drop the verbatim history and keep the diff. The agent doesn’t need to remember every line. It needs the current state.

Reset flow. A “start fresh” button that preserves user preferences and skills but drops everything else.

For non-technical SMB users, context management is invisible to them. They don’t know what a token is. They just notice the agent gets slow or confused after 50 turns. The UX work is hiding the complexity while keeping performance acceptable.

Pokemon Agent: Why a Toy Example Teaches Production Patterns

The talk demoed a Pokemon agent built on the PokéAPI. It seems like a toy. It’s actually a complete production pattern in miniature.

The agent does this: a user asks “build me a competitive Pokemon team for a tournament.” The agent uses Code Generation to write TypeScript that queries the PokéAPI for type matchups, base stats, and move pools. It uses Tools to format the final team output. It uses sub-agents to research individual Pokemon in parallel. It uses skills for “what makes a competitive team” expertise. It logs every tool call for debugging.

Swap “Pokemon” for “B2B SaaS customer support knowledge base” and the architecture is identical. The toy domain forces clarity on the architecture choices that real production use cases obscure.

This is why the talk landed for builders. The Pokemon demo isn’t a gimmick. It’s a complete production agent in 200 lines of code, with every architectural decision visible.

Deployment Options: Local vs Sandboxed Cloud

Two deployment paths get most production agents to users.

Local. Run the agent on the user’s machine. Lower latency. Private data stays on the device. Suitable for power-user tools, internal SMB applications, developer tooling. The trade-off: harder to update, harder to monitor centrally.

Sandboxed cloud. Run the agent in a per-user sandboxed environment in the cloud. Standard SaaS deployment economics. Centralized monitoring. Easier updates. The trade-off: latency, privacy concerns for sensitive data, sandbox isolation cost.

The talk mentioned live-editable dev servers as a third pattern: the agent exposes a development server with hot reload, and the UI updates as the agent works. This is the “interactive agent” pattern that’s becoming common in builder-facing products like Lovable, Cursor, and Replit.

For SMB-facing agents, the deployment choice usually comes down to data sensitivity. If the data must stay on-prem, local. If centralized monitoring matters more, cloud. Most production agents end up cloud because the operational cost of supporting local installations across customer machines is brutal.

Monetization: Heavy Users Will Break Your Pricing Model

The most underweighted point in the talk was monetization. Agents are expensive to run. Pricing models that ignore this go bankrupt.

The pattern that breaks: flat subscription pricing where heavy users consume 20-50x more than light users. You priced for the average user. The top 5% consume 60% of your compute. Your margins go negative on power users while your value proposition is “unlimited usage.”

The pattern that works: a base subscription plus usage-based pricing above a generous threshold. Light users see the simple price. Heavy users pay proportionally to consumption. Cost scales with revenue.

Designing this in from day one is much easier than retrofitting it after launch. The retrofit conversation with existing users (“we’re capping your usage at the previous unlimited tier”) is always painful.

For SMB-facing AI products in 2026, the working model is roughly: $50-200/month base, with overage pricing kicking in above a defined number of agent actions or sub-agent invocations. The exact numbers depend on the cost per action, but the structure is the structure.

What to Build This Quarter

If you’re building an AI agent product in 2026, four questions to answer this quarter.

One: which of the three action paradigms does your agent actually need, and have you separated them cleanly? If your agent has 47 tools and zero Bash scripts, you probably haven’t.

Two: where do your skills live and what triggers their loading? If your system prompt is 6,000+ tokens, you should be using skills instead.

Three: which actions are reversible and which aren’t, and is your UI honest about that? If a wrong agent action could delete a customer’s data, the approval flow has to be explicit.

Four: what’s your pricing model and does it survive the top 5% of users? If you don’t know, model it before launch.

If you’re building or refactoring an AI agent for an SMB use case and want a second set of eyes on the architecture, we run free 30-minute technical reviews: book a 30-minute call. We’ve shipped 265+ projects and the same architectural patterns repeat.

For the strategic context before the architecture, the 5-phase framework for SMB owners covers what to figure out before you write the first line of code. For the build rhythm once you start, the 8-week implementation playbook covers the production layer.

Frequently asked questions

What is the difference between an AI agent and a chatbot in 2026?: A chatbot returns text. An agent takes actions. The architectural difference: an agent has tools (irreversible operations like sending email), a workspace (a file system it can read and write), and verification steps that catch errors before they reach the user. A chatbot that calls one API function isn't an agent yet. An agent that can read a database, write a draft, ask a sub-agent to check it, and execute a multi-step plan is.
When do you use Tools versus Bash versus Code Generation in an agent?: Tools for atomic, irreversible operations where structure matters (send_email, charge_card, delete_record). Bash for composable, low-stakes workflows where the agent might chain 5-10 commands (file search, lint, run tests). Code Generation for dynamic logic where the right call depends on inputs the developer can't predict (SQL queries against a schema the agent just learned about, data transformations on unknown shapes). Most production agents use all three.
What is a skill in the Claude Agent SDK?: A skill is a folder containing files (markdown instructions, code snippets, examples) that an agent can discover and read on demand. It encapsulates domain-specific expertise without consuming context up front. The agent only reads the skill when it's relevant to the current task. Think of it as a junior employee reading the right SOP document at the right time instead of being briefed on everything before starting work.
Why use sub-agents instead of one big agent?: Two reasons. First, isolation: a sub-agent that searches a large document set or runs a verification check returns just the result, keeping the main agent's context clean. Second, parallelization: spinning up 5 sub-agents to process 5 sheets of a spreadsheet in parallel is faster and cheaper than one agent doing them sequentially. The trade-off is orchestration complexity: more moving parts to debug.
What are hooks and when do you use them?: Hooks are deterministic insertion points in the agent execution pipeline. You use them when you need a non-LLM check or context update to happen at a specific moment: before a tool call (validate arguments), after a tool result (sanitize output), at session start (inject live user state). Hooks are how you enforce rules the LLM might forget. They're not a replacement for verification sub-agents but a complement.
How often should you rewrite an AI agent codebase?: Approximately every six months. Models evolve fast, SDKs evolve fast, the boundary of what's possible shifts every quarter. An agent codebase from 18 months ago is likely held together by workarounds that no longer make sense. The discipline of throwing out and rewriting is part of the cost of operating in this space, and the teams that do it well outpace the ones that try to keep an aging codebase alive.
How much does it cost to run a production AI agent?: Wildly variable depending on usage. A back-office classifier that runs 1,000 times a day on a frontier model is in the $20-80/month range. A customer-facing agent with multi-step reasoning, 5-10 tool calls per interaction, and 10,000 daily users runs in the thousands to tens of thousands of USD per month. The pricing model you charge users (subscription vs usage-based) has to match the cost curve from day one or the unit economics break.

References

Article Claude Agent SDK Documentation — Anthropic (2026)
Article Claude Code Documentation — Anthropic (2026)
Report The Spark Report: AI in Agencies, Spring 2026 — Jules and Emma Love, We Are Spark Ltd (2026)
Expert Jorge Del Carpio, CEO at Kreante — Jorge Del Carpio (2026)
Company Anthropic, US AI safety lab maintaining the Claude API and Agent SDK — Anthropic, PBC (2026)

Share this article

Independent coverage of AI, no-code and low-code — no hype, just signal.

If you're looking to implement this for your team, Kreante builds low-code and AI systems for companies — they offer a free audit call for qualified projects.