Over 1,300 pull requests merged into Stripe’s codebase every week contain no human-written code [1]. Each one was generated by a coding agent, validated against a subset of Stripe’s battery of over 3 million tests [2], and handed to a human engineer who reviewed and merged it. Stripe calls these agents Minions, and they run in production on a payment infrastructure processing well over $1 trillion per year [3].
The instinct, when you read that number, is to ask what prompt they used. The answer is that the prompt is not the interesting part. What makes Minions work is a hybrid architecture called Blueprints: workflow templates where some nodes run an agentic coding loop and other nodes run deterministic code that enforces constraints the AI is not allowed to decide for itself. The test-validation step is not a request made to the model. It is a gate the harness enforces regardless of what the model thinks.
That distinction, between asking AI to do something and making the harness guarantee it happens, is the hybrid secret this article is about.

Figure 1 - The Stripe Minions hybrid architecture: Minions use Blueprints to mix AI coding nodes (planning, implementation) with deterministic nodes (test validation, CI policy enforcement). The deterministic gates are not optional. They run regardless of what the model decides. Validated against over 3 million tests per PR, at a rate exceeding 1,300 merged pull requests per week.
What Minions Actually Is
Stripe did not build Minions from a foundation model and a clever system prompt. They forked Block’s Goose coding agent in late 2024 and heavily modified it for fully unattended operation [2]. Where Goose was designed for interactive pair-programming with a human in the loop, Stripe’s fork removed everything meant for human confirmation and optimized the agent for one-shot task completion: start a task, complete it, produce a pull request, stop.
The entry points into a Minion run are multiple: Slack, a CLI, web interfaces, and integrations with Stripe’s internal platforms [3]. One documented trigger mechanism, reportedly a Slack emoji reaction on a message describing the desired change, initiates a run without requiring an engineer to monitor it [3]. This is operationally significant. A system that requires babysitting is not the same as a system that runs unattended.
The coding environment each Minion runs inside is a devbox that Stripe can spin up in 10 seconds [3][2]. Stripe describes these environments as “cattle, not pets” [2]: ephemeral, reproducible, and disposable. The agent gets a clean environment every time. It does not accumulate state from prior runs. It cannot make assumptions about its environment from a previous session.
The Minion agent has access to nearly 500 MCP tools [2] through Stripe’s internal tool server, which they call Toolshed. These tools expose Stripe’s internal systems to the agent in a structured, auditable way. Stripe’s first post described “more than 400 MCP tools” [3]; the second post, published 10 days later in February 2026, cited nearly 500 [2].

Figure 2 - The Minions infrastructure stack: A 10-second devbox provides a clean environment for each run. Toolshed exposes nearly 500 MCP tools. The Goose fork, heavily modified from Block’s open-source agent, runs the agentic loop. Slack, CLI, and internal platform integrations are all valid entry points.
This infrastructure is not a weekend project. The devbox system, the test suite, the tool library, and the agent customization represent years of compounding investment. We will return to this point when we discuss what is and is not transferable about Minions’ architecture.
Blueprints: The Hybrid Secret
The architecture that makes Minions reliable at scale is what Stripe calls Blueprints. A Blueprint is a workflow template that defines a sequence of nodes, where each node is either an agentic step or a deterministic step.
The agentic nodes are where the LLM does what LLMs do well: reading a task description, exploring the codebase, planning an implementation approach, writing code, and responding to feedback. These steps benefit from the model’s reasoning capability, and they cannot be hardcoded in advance.
The deterministic nodes are where the harness takes over. These nodes run code, not a prompt. They do not ask the model whether tests should be run. They run the tests. They do not ask the model whether CI policy is satisfied. They enforce it. The CI iteration policy in Minions is concrete: at most two rounds of CI before human review is triggered [2]. That is not a guideline in a system prompt. It is a policy encoded in the harness.
KEY INSIGHT: The hybrid secret is not a clever prompt. It is the structural decision about which parts of your workflow the LLM should drive and which parts should be driven by code that the LLM cannot override.
This mirrors the pattern that Cole Medin described when designing Archon, an open-source harness builder: “some steps the coding agent should NOT decide: context curation, test running, validation. These become deterministic bash nodes” [4]. The Archon YAML workflow system and Stripe’s Blueprints are independently developed implementations of the same insight.

Figure 3 - Blueprint node types in Stripe Minions: AI nodes handle reasoning-intensive work where model flexibility is an asset. Deterministic Blueprint nodes handle validation, CI enforcement, and process steps where reliability matters more than flexibility. The gates are non-negotiable.
The practical consequence of this design is straightforward. When a Minion finishes an implementation step, the harness does not ask the model to evaluate whether the code is correct. It runs a selected subset of Stripe’s 3 million tests. If the tests fail, the agent is given the failure output and asked to iterate. If the tests pass after at most two CI rounds, the harness produces a pull request. A human engineer reviews the PR. If the review passes, the code merges. The model’s judgment was applied to the coding problem. The test result was not subject to the model’s judgment.
Three Million Tests as a Deterministic Gate
Stripe has over 3 million tests. This is the infrastructure prerequisite that makes deterministic validation meaningful at Minions’ scale.
Think about what “validate against the test suite” means at that scale. For a typical software project, running the full test suite might take hours. Stripe’s CI system selectively runs the tests most relevant to each specific change, a subset selection problem that is itself a significant engineering challenge. The result is that each Minion-generated PR gets validated against a meaningful set of tests quickly enough to support the one-shot-to-PR workflow.
The deterministic validation step is where the objective pass/fail nature of tests makes them ideal as a harness gate. A test either passes or it does not. There is no ambiguity for the model to reason its way around. The test result is not a score the model can argue about. It is a binary outcome that the harness acts on deterministically.
This is the complement to the adversarial evaluator pattern we covered in Part 2 of this series. The adversarial evaluator is for subjective or semi-subjective quality: design, writing, legal analysis completeness, areas where “good” requires judgment. Deterministic validation is for objective quality: code correctness, linter compliance, type safety. Stripe uses deterministic validation for code because code correctness is objective. For domains where quality is not binary, an adversarial evaluator may still be required, but for the question “do the tests pass,” a deterministic gate is both sufficient and significantly cheaper.

Figure 4 - The 3 million test validation funnel: Stripe’s CI selectively runs a relevant subset of their 3 million tests for each Minion-generated PR. The result is binary. The harness enforces a maximum of two CI rounds before triggering human review. No model reasoning is involved in this gate.
KEY INSIGHT: For any workflow where quality is objectively measurable by code, a deterministic harness gate beats an evaluator agent. Tests either pass or they do not. That is not a judgment call.
The Infrastructure Prerequisite Problem
The Minions story has a natural appeal as a recipe. You might read “Slack trigger, agentic coding, test validation, pull request, human review” and think: we could do this. The architecture is straightforward. The pieces are off-the-shelf.
The pieces are not off-the-shelf. What Stripe built sits on top of a decade of compounding investment that is not available to most teams.
The devbox system, which spins up a clean development environment in 10 seconds [3][2], required standardized, fully reproducible environments across Stripe’s entire engineering organization. That is not the default state of most codebases. Most codebases have configuration drift, environment-specific workarounds, and dependencies that behave differently on different machines. Minions assume reproducibility at scale.
The Toolshed MCP server, which exposes nearly 500 tools [2], represents years of internal tooling development. Each tool is a programmatic interface to some internal Stripe system. Building those interfaces takes time, and maintaining them while the systems evolve takes more time.
The 3 million tests [2] are the most significant prerequisite of all. Stripe’s test suite is the product of sustained engineering discipline over many years. A team without a deep, fast, reliable test suite cannot use tests as a deterministic gate, because a slow or unreliable test suite defeats the purpose.

Figure 5 - Stripe-specific infrastructure vs transferable principles: The infrastructure (10-second devbox, 3 million tests, nearly 500 MCP tools) is Stripe-specific and the product of years of investment. The principles (hybrid deterministic nodes, hard CI policy limits, human review at merge) are transferable to any team willing to identify its own objective quality gates.
None of this means the pattern is inapplicable outside Stripe. It means the literal infrastructure is not transferable. The principles are.
The transferable principle is: identify the steps in your workflow where quality is objectively measurable, and encode those steps as deterministic gates the model cannot skip. If your codebase has 50 tests instead of 3 million, those 50 tests can still be a deterministic gate. The gate is less comprehensive than Stripe’s, but it is more reliable than asking the model to remember to test.
One-Shot Operation and What It Requires
Minions are designed for one-shot task completion. They receive a task, execute it, and produce a pull request. There is no interactive correction loop with a human engineer. The agent is not waiting for approval at intermediate steps.
One-shot operation is the goal, but the Blueprint architecture is how it is achieved reliably. Without the deterministic validation gates, one-shot operation is a gamble. The model might produce working code. It might produce code that passes a shallow self-review but fails tests. It might skip testing entirely because it is confident in its implementation.
With the Blueprint gates, one-shot operation becomes a defensible workflow. The model does not get to decide whether the tests ran. The harness runs them. The model does not get to decide whether the PR is ready. The harness checks the CI policy. The human engineer is still in the decision loop for the merge, but the human is reviewing a PR that has already been through objective validation, not raw model output.
This is the reliability gain that the hybrid architecture provides. It is not about making the model smarter. It is about removing the model’s ability to skip the steps that matter.

Figure 6 - One-shot to merged PR flow: From trigger to merged pull request, the Minion runs unattended. The deterministic gates (test validation, CI policy) ensure that what reaches the human reviewer has already passed objective quality checks. The human is the decision point at merge; the harness handles everything before.
Stripe also made a multi-tool synchronization decision worth noting. They synchronized Cursor’s rule file format across three separate agent systems: Minions, Cursor, and Claude Code. Any engineering guidance written once for one agent system automatically applies to all three. This is a harness-level design decision: instead of maintaining separate context instructions per tool, enforce a shared standard at the workflow level.
What Archon Democratizes
Open-source tooling is catching up to Stripe’s internal architecture. Archon, built by Cole Medin and released in April 2026, is a TypeScript harness builder that encodes the same hybrid principle Stripe uses in Blueprints, with YAML workflow files that define AI nodes, deterministic bash nodes, loop nodes, and dependency chains [4][5].
An Archon workflow for fixing a GitHub issue looks structurally similar to a Minions Blueprint: classify the issue, investigate the codebase, implement a fix, run tests via a deterministic bash node, handle failures via a loop, trigger a human approval gate, and open a pull request. The test-running step is a bash node, not an AI node. The tests run every time.
The difference is scale. Archon runs against a team’s actual test suite, whatever that is. Stripe’s Minions run against 3 million tests. The architecture is the same. The infrastructure behind the deterministic gate is very different.
Archon’s 17 packaged default workflows [4][5] include the adversarial development pattern (generator plus evaluator), the Plan-Implement-Validate loop with human review gates, and a meta-workflow that takes a workflow description and generates the YAML definition. These are consumer-grade implementations of the same harness patterns that production teams like Stripe have built internally. The packaging makes them accessible to teams without Stripe’s infrastructure investment.

Figure 7 - Minions Blueprints vs Archon YAML workflows: The structural patterns are equivalent. AI nodes for reasoning-intensive work, deterministic nodes for test execution and validation, loop nodes for iteration, human gates at decision points. The infrastructure depth behind each deterministic gate is what differs.
The Compounding Reliability Math
We covered the compounding failure math in the first article of this series. A 10-step agentic workflow where each step succeeds 95% of the time produces an overall success rate of roughly 60% (0.95^10). Getting to 99% per-step reliability across all steps requires sustained harness engineering effort. This is the march of nines applied to production AI systems.
Minions’ Blueprint architecture addresses the compounding math directly. By encoding the highest-stakes steps as deterministic gates, Stripe removes those steps from the compounding failure calculation. A deterministic step that runs test validation does not have a 95% success rate. It either runs or it does not. If it runs, the result is objective. The only failure mode is an infrastructure failure, which is a different category of problem than model reliability.
The practical consequence is that Stripe’s 1,300 PRs per week [1] are the PRs that passed the deterministic gates. The agents that produced code failing the test gates do not reach the PR stage. The human engineers who review the PRs are reviewing validated output, not raw model output. The human review step is still meaningful, but it is reviewing something that has already been filtered by an objective quality gate.
This is the march of nines in reverse: rather than trying to raise the model’s reliability on every step through prompting, Stripe removed a class of reliability problems from the model’s domain entirely. Test execution is not a model problem. It is a code problem. Encode it in code.

Figure 8 - Compounding failure vs deterministic gates: Prompting-based workflows accumulate failure across every step. Blueprint-style harnesses remove objective steps from the compounding calculation by encoding them as deterministic gates. The model’s reliability is still relevant for AI nodes; it is irrelevant for deterministic nodes.
KEY INSIGHT: You do not solve the march of nines by making the model more reliable on every step. You solve it by identifying which steps should not be model steps at all.
Conclusion
Stripe Minions is not a proof that AI coding agents are magic. It is a proof that hybrid harness architecture, where LLM nodes handle reasoning and deterministic nodes enforce constraints, can operate reliably at production scale. The 1,300 PRs per week [1] are the visible result. The invisible result is the number of runs that the test validation gate caught before they reached a human engineer.
The three concrete takeaways from Minions’ architecture apply regardless of team size or test suite depth.
First, identify the steps in your agentic workflow where quality is objectively measurable. These are the candidates for deterministic gates. You do not need 3 million tests to apply this principle. You need some tests, and the discipline to run them every time rather than asking the model to decide when running them seems worthwhile.
Second, accept that the infrastructure investment precedes the capability. Stripe did not build Minions in a month. The devbox system, the test suite, and the tool library are years of compounding engineering investment. Teams that want to apply the deterministic rails pattern need to invest in the infrastructure that makes those rails useful. The rails are only as reliable as the test suite behind them.
Third, the hybrid architecture draws a deliberate line between what AI should decide and what code should enforce. Planning and implementation benefit from model reasoning. Test execution, CI policy, and PR creation do not. Drawing that line, and encoding it in the harness rather than the prompt, is the design decision that separates production-grade AI automation from demos that work in favorable conditions.
Minions demonstrates that this separation is achievable at scale. Archon demonstrates that the pattern is accessible without Stripe’s infrastructure depth. The question for any team moving toward automated code delivery is not whether to draw the line, but where.
The Series
This is Part 3 of the 3-part Production Reliability sub-series:
- The March of Nines: Why Agent Skills Alone Won’t Reach Production Reliability
- The Adversarial Evaluator: GAN-Inspired Harness Architecture from Anthropic
- Stripe Minions and the Hybrid Secret: Deterministic Rails Around AI (this article)
References
[1] @stripe. “Over 1,300 Stripe pull requests merged each week are completely minion-produced, human-reviewed, but contain no human-written code (up from 1,000 last week).” X (Twitter). February 2026. https://x.com/stripe/status/2024574740417970462
[2] A. Gray. “Minions: Stripe’s one-shot, end-to-end coding agents, Part 2.” Stripe Dev Blog. February 19, 2026. https://stripe.dev/blog/minions-stripes-one-shot-end-to-end-coding-agents-part-2
[3] A. Gray. “Minions: Stripe’s one-shot, end-to-end coding agents.” Stripe Dev Blog. February 9, 2026. https://stripe.dev/blog/minions-stripes-one-shot-end-to-end-coding-agents
[4] C. Medin. “The Next Evolution of AI Coding Is Harnesses: Here’s How to Build Them.” YouTube. Archon channel. April 2026. https://www.youtube.com/watch?v=srx9iwnjK2M
[5] C. Medin. Archon GitHub repository. coleam00/Archon. https://github.com/coleam00/archon
Building production AI, or modernizing a legacy system?
That is the kind of work we do at Dotzlaw Consulting. Book a free 20-minute intro call and tell us what you are trying to build, or what is slowing you down.