EXPANSION30 min63 sections

Shipping Safely

THIS WEEK'S JOURNEY

Ship Fast, But Don't Ship Chaos

The pressure to ship AI products quickly has never been higher—but speed without safety is just recklessness in disguise. Every week brings news of another AI product that crashed spectacularly: runaway costs that bankrupted startups overnight, hallucinating chatbots that damaged brand reputation, or API outages that cascaded into complete system failures.

67%

of AI startups have experienced a production incident caused by missing safety controls

The majority of these incidents were preventable with basic safety mechanisms like rate limiting, cost caps, and circuit breakers.

Key Insight

Safety Infrastructure Is Speed Infrastructure

The counterintuitive truth is that safety mechanisms actually accelerate your shipping velocity. When you have kill switches, you can deploy with confidence knowing you can instantly roll back.

Moving Fast: With vs Without Safety Controls

Without Safety Controls

Deploy and pray—every release is a gamble with your entire s...

Incidents require manual intervention, often taking hours to...

Runaway costs discovered only when the monthly bill arrives

One bad deployment can take down the entire product for all ...

With Safety Controls

Deploy with confidence—automatic rollback if metrics degrade

Circuit breakers isolate failures in seconds, not hours

Real-time cost monitoring with automatic cutoffs at threshol...

Gradual rollouts limit blast radius to a small percentage of...

Notion

How Notion Ships AI Features to 30 Million Users Safely

Zero critical incidents during AI launch, 4.2-star average rating for AI feature...

Framework

The Safety Pyramid

Foundation: Observability

You can't protect what you can't see. Before implementing any safety controls, you need comprehensiv...

Layer 1: Rate Limiting

The first line of defense against abuse and runaway usage. Implement rate limits at multiple levels:...

Layer 2: Cost Controls

AI APIs are expensive and costs can explode unexpectedly. Implement hard spending caps, usage alerts...

Layer 3: Circuit Breakers

When dependencies fail, fail gracefully. Circuit breakers detect when an external service (like Open...

The $72,000 Mistake That Happens Every Month

A startup founder recently shared on Twitter that a bug in their AI feature caused an infinite loop that made 2 million API calls in 4 hours, resulting in a $72,000 bill from OpenAI. They had no cost caps, no rate limiting, and no alerting.

Key Insight

The Three Speeds of Safety Response

Not all safety mechanisms operate at the same speed, and understanding these tiers is crucial for building effective protection. Tier 1 is automatic and instant (milliseconds): circuit breakers, rate limiters, and cost caps that trigger without human intervention.

Anti-Pattern: The 'We'll Add Safety Later' Trap

❌ Problem

By the time you 'have time' to add safety controls, your system has grown so com...

✓ Solution

Build safety infrastructure in parallel with your first features, not after. Sta...

Linear

Linear's 'Paranoid by Default' Engineering Culture

The bug was fixed within 2 hours of detection, only 3 users were affected (all r...

The Safety Control Flow

User Request

Rate Limiter

Authentication

Feature Flag Check

Key Insight

The 1% Rule: Never Ship to Everyone First

The 1% rule is simple: no new feature or significant change should ever go to more than 1% of users initially. This isn't about lacking confidence in your code—it's about respecting the complexity of production environments.

Pre-Launch Safety Infrastructure Checklist

Start With the Kill Switch

If you only have time to implement one safety control before shipping, make it a kill switch. A simple feature flag that can instantly disable your AI feature is the most valuable safety mechanism you can have.

8 minutes

Average time for an uncontrolled AI cost incident to exceed $10,000

AI API costs can escalate faster than almost any other cloud expense.

Anthropic

How Anthropic Designed Claude's Usage Limits

Claude API maintains 99.9% availability despite massive demand spikes. Developer...

Key Insight

Graceful Degradation Is Better Than Total Failure

When your AI features encounter problems—and they will—you have two choices: fail completely or degrade gracefully. Graceful degradation means your product continues to function, just with reduced capabilities.

Basic Feature Flag with Kill Switch Patterntypescript

123456789101112
// Feature flag configuration with kill switch
interface FeatureConfig {
  enabled: boolean;
  rolloutPercentage: number;
  killSwitch: boolean; // Override that disables regardless of other settings
  allowedUserIds?: string[]; // For beta testing
}

const AI_FEATURE_CONFIG: FeatureConfig = {
  enabled: true,
  rolloutPercentage: 10, // 10% of users
  killSwitch: false,

Framework

The Safe Shipping Pyramid

Foundation: Kill Switches

The absolute bottom layer—instant shutdown capability that requires zero dependencies. This must wor...

Layer 2: Rate Limiting

Controls the velocity of potential damage. Even if bad outputs slip through, rate limiting ensures t...

Layer 3: Cost Caps

Financial circuit breakers that prevent runaway spending. AI costs can explode exponentially with re...

Layer 4: Circuit Breakers

Automatic detection and response systems that trip when anomalies are detected. Unlike kill switches...

Discord

Multi-Layer Kill Switch Architecture

The multi-layer approach meant 98% of users experienced zero downtime while the ...

Production-Ready Kill Switch Implementationtypescript

123456789101112
// Kill switch with local cache and fail-closed behavior
class AIKillSwitch {
  private cache: Map<string, { value: boolean; expiry: number }> = new Map();
  private readonly TTL_MS = 30000; // 30 second cache
  
  async isEnabled(feature: string, context: KillSwitchContext): Promise<boolean> {
    // Check local cache first
    const cached = this.cache.get(feature);
    if (cached && cached.expiry > Date.now()) {
      return cached.value;
    }

Rate Limiting Strategies for AI Features

Simple Rate Limiting

Fixed window: 100 requests per minute per user

Easy to implement and understand

Can be gamed by timing requests at window boundaries

Doesn't account for cost variation between requests

Sophisticated Rate Limiting

Sliding window with token bucket for smooth limiting

Cost-weighted limits: simple queries cost 1, complex cost 10

Adaptive limits that tighten under system stress

Per-user, per-org, and global limits working together

Key Insight

Cost-Weighted Rate Limiting Is Essential for AI

Traditional rate limiting counts requests equally, but AI requests vary wildly in cost. A simple classification might use 100 tokens ($0.0001) while a complex document analysis uses 100,000 tokens ($0.10)—a 1000x difference.

Implementing Effective Cost Caps

Establish Baseline Cost Metrics

Implement Pre-Execution Cost Estimation

Create Hierarchical Cost Budgets

Build Real-Time Cost Tracking

Implement Graceful Degradation

Anthropic

Claude API Cost Protection Mechanisms

These protections reduced billing disputes by 94% and prevented an estimated $2....

The Recursive Call Trap

The most common cause of AI cost explosions is recursive calls—AI output triggering another AI call, which triggers another, and so on. This can happen through prompt injection, agent loops, or simple bugs.

Framework

The Circuit Breaker Pattern for AI

Closed State (Normal Operation)

All requests flow through normally. The circuit breaker monitors error rates, latency percentiles, a...

Open State (Failure Mode)

When failure thresholds are exceeded, the breaker 'trips' and stops sending requests to the AI servi...

Half-Open State (Recovery Testing)

After a configurable timeout (typically 30-60 seconds), the breaker enters half-open state. It allow...

Failure Criteria Configuration

Define what constitutes a 'failure' for your use case. Common criteria include: error rate exceeding...

AI-Specific Circuit Breaker Implementationtypescript

123456789101112
class AICircuitBreaker {
  private state: 'closed' | 'open' | 'half-open' = 'closed';
  private failures: number[] = []; // timestamps of recent failures
  private lastStateChange: number = Date.now();
  
  private readonly config = {
    failureThreshold: 5,        // failures to trip
    failureWindowMs: 60000,     // 1 minute window
    openDurationMs: 30000,      // 30 seconds before half-open
    halfOpenRequests: 3,        // probes before closing
    costAnomalyMultiplier: 5,   // 5x normal cost = failure
    latencyThresholdMs: 10000   // 10 second timeout = failure

Anti-Pattern: The 'We'll Monitor It' Fallacy

❌ Problem

In 2023, a social media company launched an AI feature with monitoring but no au...

✓ Solution

Implement automated responses for every failure mode you can anticipate. Monitor...

Linear

Gradual Rollout Strategy for AI Features

Linear's AI feature launched with a 4.8/5 user satisfaction rating and zero publ...

Pre-Launch Safety Checklist

Key Insight

The 1% Rule: Your First Rollout Should Never Exceed 1%

Regardless of how confident you are in your AI feature, your initial production rollout should never exceed 1% of traffic. This isn't about lack of confidence—it's about unknown unknowns.

47 minutes

Average time to detect AI feature failures without proper monitoring

This is the average time between when an AI feature starts failing and when teams become aware of the issue—without proper monitoring in place.

Request Flow Through Safety Layers

User Request

Kill Switch Check

Rate Limit Check

Cost Budget Check

Practice Exercise

Implement a Complete Safety Layer

45 min

Test Safety Controls Weekly

Safety controls that aren't regularly tested tend to rot. Dependencies change, configurations drift, and assumptions become invalid.

Practice Exercise

Build a Complete Safety System in 2 Hours

120 min

Complete Safety Middleware Stacktypescript

123456789101112
import { Redis } from 'ioredis';
import { CircuitBreaker, RateLimiter, CostTracker, FeatureFlags } from './safety';

const redis = new Redis(process.env.REDIS_URL);

const safetyMiddleware = {
  flags: new FeatureFlags(redis),
  circuit: new CircuitBreaker({
    failureThreshold: 5,
    resetTimeout: 30000,
    monitorWindow: 60000
  }),

Pre-Launch Safety Verification Checklist

Anti-Pattern: The 'We'll Add Safety Later' Approach

❌ Problem

This approach almost always ends badly. A single viral moment can generate thous...

✓ Solution

Treat safety infrastructure as a launch requirement, not a post-launch optimizat...

Anti-Pattern: The Overengineered Safety System

❌ Problem

The product never ships, or ships so slowly that competitors win the market. The...

✓ Solution

Start with the minimum viable safety stack: feature flags, basic rate limits, co...

Anti-Pattern: The Set-and-Forget Configuration

❌ Problem

Safety systems become either too restrictive or too permissive. Legitimate users...

✓ Solution

Schedule monthly reviews of all safety system configurations. Track the ratio of...

Practice Exercise

Incident Response Simulation

45 min

Practice Exercise

Cost Optimization Under Safety Constraints

60 min

Essential Safety Infrastructure Resources

LaunchDarkly Feature Management Platform

tool

Upstash Redis for Rate Limiting

tool

OpenAI Usage Dashboard and Limits

tool

Release It! by Michael Nygard

book

Production-Ready Health Check Endpointtypescript

123456789101112
import { Router } from 'express';
import { safetyMiddleware } from './safety';

const healthRouter = Router();

interface HealthStatus {
  status: 'healthy' | 'degraded' | 'unhealthy';
  timestamp: string;
  components: {
    featureFlags: ComponentHealth;
    rateLimiter: ComponentHealth;
    costTracker: ComponentHealth;

Safety Systems Must Work When Everything Else Fails

Your kill switch must function when your main application is down. Your cost caps must work when your monitoring is broken.

Framework

The Safety Maturity Model

Level 1: Basic Protection

Implement the minimum viable safety stack: feature flags for on/off control, basic rate limits per u...

Level 2: Operational Readiness

Add circuit breakers for provider resilience, monitoring dashboards for all safety systems, alerting...

Level 3: Proactive Safety

Implement anomaly detection for unusual patterns, automated responses to common incidents, chaos eng...

Level 4: Safety Excellence

Achieve full observability across all AI operations, predictive cost management, automated complianc...

73%

of AI incidents could have been prevented with basic safety controls

Analysis of 500+ AI incidents reported to the AI Incident Database found that nearly three-quarters could have been prevented or significantly mitigated with basic safety infrastructure: feature flags, rate limits, cost caps, and kill switches.

Start Your Safety Journey Today

If you're reading this and don't have basic safety infrastructure in place, stop and implement it now. A feature flag system takes 30 minutes to set up with LaunchDarkly's free tier.

Notion

Scaling AI Features to Millions of Users Safely

Notion successfully rolled out AI to 30+ million users with zero major incidents...

Complete Safety System Architecture

User Request

Edge Rate Limiter (5...

Feature Flag Check (...

Budget Verification ...

Weekly Safety System Review

Don't Let Perfect Be the Enemy of Shipped

Some teams get so focused on building perfect safety systems that they never ship. Remember: a product that never launches can't help users, and it also can't hurt them.

Chapter Complete!

The four pillars of AI safety—feature flags, rate limits, co...

Gradual rollouts using feature flags let you validate AI fea...

Circuit breakers protect your application from cascading fai...

Cost management requires multiple layers: request-level esti...

Next: Start by auditing your current AI features against the Pre-Launch Safety Verification Checklist

PreviousNext