The latest articles on DEV Community by Taha Baş (@rtahabas). https://dev.to/rtahabas https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3996401%2Fe1dcf932-0716-44d6-ac3c-0bff4ec8f90f.jpg https://dev.to/rtahabas en Taha Baş Mon, 22 Jun 2026 07:49:25 +0000 https://dev.to/rtahabas/observability-told-me-exactly-how-much-money-my-agents-wasted-i-wanted-something-that-says-no-4176 https://dev.to/rtahabas/observability-told-me-exactly-how-much-money-my-agents-wasted-i-wanted-something-that-says-no-4176 <p>Most AI cost tooling is an autopsy. It tells you, in detail, what you already spent — token counts, per-call traces, a<br> dashboard that turns red after the bill is locked in. None of it does the one thing I kept wanting: refuse the call before<br> it goes out.</p> <p>I ran into this building agent tooling. Once I had more than a couple of agents hitting paid APIs on a schedule, two<br> problems showed up that nothing off the shelf solved cleanly.</p> <p>Problem 1: observability is not control</p> <p>Watching spend and stopping spend are different systems, and every tool I tried lived on the watching side. I could<br> reconstruct, after the fact, that agent 4 had a bad night. What I couldn't do was tell agent 4 "you're done for today"<br> without a hard limit that fires before the request leaves.</p> <p>The closest thing providers offer is per-key budgeting. That sounds right until you run more than one agent. Keys get<br> shared, and the moment three agents share an API key a per-key cap can't tell them apart — you've lost the unit that<br> actually matters, which is the agent.</p> <p>So the cap I wanted was specific:</p> <ul> <li>per agent, not per key</li> <li>enforced in the request path — over budget means the call is refused before it goes out, not logged after it returns</li> <li>two dimensions: calls/day and a max per single call</li> <li>a kill-switch on call-rate spikes, because the runaway-loop case is the one that hurts at 3am</li> </ul> <p>Problem 2: I didn't want to hand over my keys</p> <p>Plenty of "AI gateway" products will do governance for you — by becoming the thing that holds your API keys and signs<br> requests on your behalf. For a fleet that touches real money, handing custody of credentials to a third party is a hard no.<br> I wanted enforcement without custody: keep my own keys, let something in front of the fleet enforce the rules.</p> <p>What I ended up building</p> <p>Couldn't find a drop-in that did per-agent, request-path enforcement without taking custody, so I built one. It's a proxy<br> you point agents at. They keep their own keys. No rewrite, no framework lock-in — LangChain, CrewAI, or a raw script all<br> talk to the same proxy.</p> <p>The integration is boring on purpose:</p> <p><code>import { createPaymentClient } from "@gatewards/agent-sdk";</code></p> <p><code>const client = createPaymentClient({<br> apiKey: process.env.GATEWARDS_AGENT_KEY, // identifies THIS agent<br> proxy: true,<br> });</code></p> <p><code>// your agent's calls go through the proxy unchanged<br> const res = await client.get("https://api.example.com/data");</code></p> <p>You set the cap per agent (calls/day + max per call). When an agent goes over, the proxy returns a refusal in the request<br> path — your call gets a 429, not a silent overage you discover tomorrow. When an agent's rate spikes into loop territory,<br> the pipeline auto-pauses instead of grinding through your budget.</p> <p>Because every call is already tagged by agent identity, attribution stops being a grep session. You get "which agent spent<br> what" for free, as a side effect of the thing that enforces the caps.</p> <p>The one that surprised me: cross-agent dedup</p> <p>This one I didn't plan for. Several agents poll the same endpoints — same GET, same params, different agents. The proxy<br> caches identical GET responses across the whole fleet, so five agents making the same call pay for one. On a polling-heavy<br> fleet that turned out to be a bigger line-item win than the caps.</p> <p>What it deliberately doesn't do</p> <p>Honesty matters more than a clean pitch, so the limits up front:</p> <ul> <li>It doesn't estimate dollar caps. Caps are calls/day and max-per-call, not "$5/day". Estimating real-time per-call cost across arbitrary upstream APIs is a guess, and I'd rather give you a primitive that's exact than a dollar figure that's wrong. If you genuinely need a $ cap, I want to hear it — that's an open design question for me.</li> <li>Dedup is GET-only by default. POST caching is opt-in per pipeline, because deduping a non-idempotent call is how you ship a bug.</li> <li>It's a proxy in your request path. That's a dependency. It's built to fail open on its own errors rather than take your fleet down, but you should know it's there.</li> </ul> <p>Where it is</p> <p>It's live at <a href="https://gatewards.com/" rel="noopener noreferrer">gatewards.com</a>, and the SDK is open source (Apache-2.0): <strong>npm i @gatewards/agent-sdk</strong></p> <p>If you're running a fleet and fighting the same thing, I'd genuinely like to compare notes — especially on the cap-primitive<br> question. Is calls/day + max-per-call enough, or does the lack of a dollar cap break it for you? Tell me where this falls<br> short.</p> ai llm devops typescript