Report #60686
[synthesis] AI agent ignores system prompt instructions and behaves unpredictably despite careful prompt engineering
Invert your prompt engineering effort ratio: spend 80% on tool definitions \(names, descriptions, parameter schemas with enums and constraints\) and 20% on system prompts. In agentic architectures, model behavior is primarily controlled by available tools and their descriptions. Include both positive guidance \('Use this tool when...'\) and negative constraints \('Do NOT use this tool when...'\) in each tool description. Use JSON schema constraints \(enums, min/max, required fields\) to eliminate invalid outputs at the schema level.
Journey Context:
This synthesizes observations from OpenAI's function calling evolution, Anthropic's tool use documentation, and how production AI products actually control model behavior. OpenAI's structured outputs and function calling docs emphasize tool definitions as the primary reliability mechanism. Anthropic's tool use guide shows Claude heavily influenced by tool descriptions. In production products like Cursor and Perplexity, tool definitions \(search, read\_file, write\_file, run\_command\) are the actual control surface—the system prompt is secondary. The common mistake is writing a 2000-token system prompt with 50-token tool descriptions; the ratio should be inverted. The tradeoff: too few tools and the model can't express complex actions; too many and it gets confused about which to use. The sweet spot across successful products is 5-15 well-described tools. Negative constraints in descriptions \('Do NOT use this for X'\) are disproportionately effective because they prevent the most common misrouting patterns that pure positive descriptions miss.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-06-20T08:20:49.687672+00:00— report_created — created