ハーネスだけでは不十分——長期エージェントシステムには「環境エンジニアリング」が必要だ

Li Jeffrey @JeliPenguin Agent Harness Is Not Enough. 11 23 45 62K I would like to argue a simple point: long-horizon agent systems need environment engineering as well as harness engineering. In many agent systems, the word "harness" is used broadly. It often refers to the whole execution and control layer around an agent: tools, permissions, context handling, retries, approvals, streaming, and stop rules. That layer matters. The stronger claim here is that some of those responsibilities should be pulled into a durable environment contract rather than left implicit inside one swappable execution runtime. The key distinction is not between easy tasks and hard tasks. A strong harness can support very capable task execution. The more important distinction is between a task and a role. A task is bounded work with a local objective and a stopping point. A role is an ongoing operating responsibility across many tasks, runs, and changing context. Roles are therefore inherently long-horizon: the system has to remain coherent, retain what it learns, and improve over time. A harness can help an agent execute a task well. An environment helps a system sustain a role across runs. That is why long-horizon agent systems need environment engineering. 1. The Boundary: Harness vs Environment Here, the harness is the execution subsystem for a run. A large part of its job is context management: deciding what state becomes active for a given step, what stays out of the prompt, what tools are visible, and how the loop continues. The environment is the durable operating context around that subsystem. That split is the point of this piece: Harness engineering makes a run operable Environment engineering makes the operating context durable, inspectable, portable, and stable across runs The goal is not to minimize the harness. The goal is to keep key system invariants from being trapped inside one executor's private behavior. 2. The Harness-Swap Test There is a simple way to test whether your architecture really supports a role: If you replaced the harness tomorrow, what should still remain true? In a serious long-horizon system, at least these things should survive: The workspace contract and authored structure: the durable shape of the working environment, including location and structure of files, instructions, apps, skills, and other authored intent. Memory and continuity surfaces: The state that lets the system carry useful knowledge forward and resume coherently after interruption. Capability projection and visibility rules: The durable rules that determine what a given run is allowed to see and call. App and integration wiring: The durable way external tools, services, and domain-specific capabilities are connected into the role. Output artifacts and operator observability: The persistent results, traces, and operator-facing visibility that make the work inspectable and resumable across runs. If those invariants must survive a harness swap, then the environment is not incidental. It is a first-class contract around the harness. Taking context as an example. The exact prompt for a step may change when the harness changes, but the broader state it is compiled from should not. Not all relevant state should be in the prompt for every step. Some state is active in the current call, some is nearby runtime continuity, and much more is durable but retrievable. This is why memory should not be treated as synonymous with context. Most memory lives outside the prompt and only becomes hot context when the system decides it is relevant for a particular step. This also clarifies the harness. In large part, the harness is a context compiler operating against a larger environment: it selects from warm and cold state, builds the hot context for the current step, exposes the allowed action surface, and manages the control loop around that step. As for other surfaces, I wish to expand on them in follow up articles, so stay tuned! 4. The Environment Contract The environment is not one flat bag of features. It defines several layers of state around the harness boundary. The durable authored state encompasses the workspace root and its authored structure, including app manifests, skills, commands, and standing instructions. It also defines the template and packaging boundaries that establish a reproducible starting shape, ensuring consistency and clarity across environments and iterations. The durable adaptive state refers to information that evolves and persists across runs. This includes memory that survives over time, durable outputs, reusable artifacts, and evaluation traces. It also captures operator feedback, approvals, and other reward-like signals, along with reviewed improvements such as promoted memory or reusable skills that enhance future performance. Runtime continuity state consists of transient yet structured data that supports coherence between executions. It includes turn results, snapshots, checkpoints, and session-scoped continuity records. This runtime-owned state enables future runs to restore context effectively, maintaining warm context that allows subsequent steps or runs to resume efficiently without requiring all information to be promoted into durable memory. The projected execution state represents the visible and callable surface provided to the execution harness for a given run. It includes selected model routing, attachments, MCP visibility, permissions, and run metadata, along with the step-specific hot context package compiled from both warm and cold state to support precise and efficient execution. Some of these surfaces are already concrete in systems being built today. Others are part of the architectural direction. The thesis is about the system boundary: these concerns should be modeled as one environment contract rather than scattered across executor-specific behavior. That direction also lines up with the newer OpenAI Agents SDK update, which argues for separating harness from compute for security, durability, and scale. In that framing, durable execution comes from externalized state plus snapshotting and rehydration, rather than assuming that one live execution container is the whole system. 5. Portability Is Part of the Design Long-horizon systems need more than persistence. They need a durable unit that can be inspected, packaged, moved, and rehydrated without losing the operating shape of the role they are meant to carry. That means treating authored workspace content, adaptive state, and runtime-owned residue as different categories with different packaging rules. The goal is not that every piece of runtime state travels everywhere. The goal is that the durable environment can be reproduced deliberately, with clear boundaries around what belongs in the portable unit and what remains transient. Portability should be designed into the environment contract, not retrofitted after the fact. 6. Improvement Needs a Durable Boundary Long-horizon work is not just about carrying work forward across runs. It is also about getting better at that work over time. In the sense that matters here, long-horizon work often appears as a system holding a role across many runs and changing conditions. Memory evolution, reflection, continual learning, and reinforcement are important mechanisms for that improvement. But they only become system capability when the environment can hold durable records of: The hot context it acted under, and the warm or cold state it was drawn from The action surface it was allowed to use The outcomes, evaluations, and operator feedback that judged the run The review boundary that decides what may become durable memory, skill, policy, or capability If those signals are trapped inside one transient executor loop, they may help that loop, but they do not reliably improve the system's ability to handle long-horizon work across time. The point is to give roles a durable operating boundary where useful evidence can accumulate into better memory, stronger skills, safer policy, and other reviewed capability over time. Today, the clearest landing zones are durable memory, evolve flows, and candidate skills, but the broader direction is larger than that: repeated good work should become inspectable system capability rather than staying trapped inside a transient execution loop. 7. What's Next Long-horizon work is not just a longer chat. It is what happens when a system is expected to inhabit a role: it has to continue coherently across runs, survive interruptions, and stay inspectable to both the operator and the system. That is why we cannot stop at harnesses and we need to build against an environment contract: Apps and skills as durable workspace structure Memory with explicit storage and governance rules Runtime continuity that supports coherent resumption Explicit capability projection per run Portability and packaging boundaries around the whole operating unit This is the shift that makes agent systems easier to inspect, package, resume, and extend. It is also the core technical argument behind my open-source project holaOS. It is not another harness, it's an agent environment designed for long-horizon work, continuity, and self-improvement. In the next piece, I will introduce holaOS directly and show how environment engineering becomes concrete runtime architecture, memory models, and workspace contracts. Interested in building durable, evolvable agent systems? Follow for more insights —and join me on my repo! 👇 Want to publish your own Article? Upgrade to Premium 1:49 AM · Apr 22, 2026 · 62.9K Views 11 23 45 76 Read 11 replies