AI agents are good at generating tests. They are less reliably good at generating the right tests. Test-first prompts produce specs the agent can implement against; coverage-first prompts produce assertion soup. The second lever is the autonomous run-and-fix loop — the agent runs the tests it wrote, reads the failures, iterates until green. That is where the hours-per-week savings live, and where the biggest failure mode hides: a green bar that means nothing.
Why AI Is Good at Test Generation
Tests are structurally easier for language models than implementation. A test has a narrow shape: set up inputs, call a function, assert on outputs. Test names read like specs — it("returns empty array when input is null") — which maps cleanly onto patterns the model has seen many times.
Three characteristics make test generation a sweet spot:
- Explicit inputs and outputs. Implementation code has hidden dependencies; test code names them.
- Local reasoning. A unit test rarely touches more than the function under test. No codebase-wide mental model required.
- Cheap iteration. Running a test is fast and failures are readable. The agent can try, fail, adjust, pass — autonomously, many times.
The pillar, The Complete Guide to Prompting AI Coding Agents, covers the broader setup. This post is specifically about the tests step — when to run it, how to prompt it, what to distrust.
Test-First Prompting
Generate tests before the implementation exists. Treat test generation as a specification exercise: you are telling the agent what the component should do, in executable form. The agent then has an unambiguous target for the implementation step.
The prompt shape:
- Describe the component (function, module, endpoint) and its inputs and outputs.
- Enumerate acceptance criteria as bullets — "should X", "should reject Y", "should preserve Z under W."
- Ask for tests covering each criterion, with names mirroring the criterion language.
- Ask the agent not to write the implementation yet — just the tests.
Two things happen. First, the tests double as a spec you can eyeball before any implementation is written. Second, the agent writes the implementation against a concrete target instead of a vague prose description — executable specs produce code that passes them. This is the same logic behind spec-driven AI coding applied to the tests layer.
Test-first prompting also turns code review into test review. Reviewing generated tests is faster and more reliable than reviewing generated implementation — tests are a smaller surface, and their correctness depends on whether they describe the right behaviour, not whether they are cleverly written.
Property-Based Prompts
Specific-case tests are what models reach for by default — "when input is [1, 2, 3], output is 6." Fine but brittle, and they miss large regions of the input space.
Property-based prompts ask for invariants instead:
- "Generate tests for properties X, Y, Z that should hold for this function."
- "Output is idempotent — calling twice equals calling once."
- "Sort then sort equals sort."
- "For any valid input, output length ≤ input length."
Some frameworks ship property-based runners (fast-check, Hypothesis) that generate inputs automatically. If yours does, ask the agent to use it and spell out the properties. If not, have the agent write example-based tests that exercise each property across a spread of inputs — boundary cases, empty inputs, values near numeric limits.
Property-based prompts produce tests that survive refactoring. Specific-case tests break when the implementation changes shape; property tests break only when behaviour changes. That is usually the signal you want.
Autonomous Run-and-Fix Loops
This is where autonomous testing with AI earns its name: an agent runs the tests it wrote, reads the failures, and fixes the implementation until green. The loop:
- Generate tests (test-first).
- Generate a minimal implementation.
- Run the test command.
- On failure, read the output, edit the implementation, go to 3.
- On green, stop — or move to the next acceptance criterion.
Most modern coding agents can run this unattended. Prompting it well means specifying a few things up front:
- Test command.
pnpm test,cargo test,go test ./...— whatever the project uses. Do not make the agent guess. - Stopping condition. "Stop when all tests pass" is obvious; less obvious is "stop after three failed iterations and summarise what you tried." Unbounded loops waste time.
- Editing boundary. "Only edit
src/users/service.ts. Do not touch the tests." Stops the agent from passing tests by weakening them.
The third constraint matters most. Without it, an agent that cannot pass a test will sometimes rewrite the test instead. That looks like success and is not. Locking the test file — via the prompt or a pre-commit hook — is the single most effective guard. For recovery when the loop goes sideways, see agent debugging prompts.
When to Trust Autonomous Test Runs
Green tests mean the code does what the tests say — not what you want. Four checks separate the two:
| Check | Question | How to verify |
|---|---|---|
| Tests exist | Did the agent actually write meaningful tests? | Open the test file; count assertions |
| Tests run | Did they execute, or were they skipped? | Look at the test runner output, not just the exit code |
| Tests assert | Do they assert on the right things? | Read each assertion; ask "would this pass with wrong code?" |
| Tests match intent | Do they encode the behaviour you asked for? | Compare tests against acceptance criteria, not just at behaviour |
The common failure is the third: weak assertions. An agent writes expect(result).toBeTruthy() when the correct assertion is expect(result).toEqual({id: 1, name: "Ada"}). The test passes with almost any non-null return. Coverage tools say the line ran. Nothing says the behaviour is correct.
A heuristic: for each test, ask "what is the smallest implementation change that would break this test?" If the answer is "almost anything," the test is strong. If the answer is "only removing the function entirely," the test is weak. Weak tests are worse than no tests — they generate confidence that is not earned.
Reading AI-Generated Tests Critically
Things to look for when reviewing tests an agent wrote:
- Tautological tests.
expect(add(2, 2)).toBe(add(2, 2))— always passes, tests nothing. Rare but striking. - Assertions against the implementation. The test calls the function, then asserts the function returned what the function returned. No independent oracle.
- Over-mocking. Mocks of everything the function touches, until the test exercises only the agent's mental model. Integration tests become unit tests in disguise.
- Happy-path-only coverage. Every test is a success path. No tests for invalid inputs, errors, or boundaries. Real bugs live at the edges.
- Weak assertions.
toBeTruthy,toBeDefined,not.toThrow— assertions that pass for many wrong answers. Prefer equality against expected values. - Missing negatives. Tests assert what should happen; not what should not. Silent-success bugs slip through.
Over-mocking is the most common pattern. Agents mock every external dependency — database, HTTP client, file system — by default, because that is what training data shows. The result is a test suite that is fast, green, and almost useless. Real integration bugs go unfound. Balance the pyramid: some unit tests, some integration tests, a few end-to-end tests.
A Good Test-Generation Prompt (Hypothetical)
Paths, filenames, and framework details here are hypothetical.
Generate tests for a new function `normalizeEmail(input: string): string` in
`src/lib/normalize-email.ts`. Do NOT write the implementation yet.
Acceptance criteria:
1. Lowercases the local part and domain.
2. Removes leading/trailing whitespace.
3. Treats `+` tags in Gmail addresses as equivalent (foo+bar@gmail.com →
foo@gmail.com) but preserves them for other domains.
4. Returns the input unchanged if it does not look like an email (no `@`).
5. Throws `InvalidEmailError` on strings with multiple `@` characters.
Requirements:
- Use the existing test framework (vitest). Look at
`src/lib/normalize-url.test.ts` for style.
- One `describe` block, one `it` per criterion, plus edge-case tests.
- Use strong assertions: prefer `toEqual` over `toBeTruthy`.
- Include property tests where useful — e.g., "for any valid email,
normalizeEmail is idempotent."
- Do not mock. The function is pure.
After writing the tests, run `pnpm vitest src/lib/normalize-email.test.ts`
and show me the output. The tests should fail because the implementation
does not exist yet — that is expected.The prompt does several things deliberately: names the file and framework (no guessing), enumerates criteria one-by-one (they become test names), specifies assertion style (blocks weak assertions), forbids misplaced mocking, and ends with a run step confirming the tests exist and execute. The "fail because implementation does not exist" line is the TDD red step — the agent expects it and will not fake a pass.
Coverage vs. Spec Testing
Coverage metrics — line, branch — are easy to measure and easy to game. An agent optimising for coverage can write tests that execute every line without testing behaviour: call the function, assert something was returned, move on. 100% line coverage, 0% behaviour coverage.
Spec-based testing is harder to fake because assertions are tied to stated behaviour. If the spec says "returns 404 when the user is not found," a test that does not assert on status === 404 does not satisfy the spec, regardless of coverage.
Three practices keep AI-generated tests honest:
- Prompt for specs, not coverage. "Cover these behaviours" beats "reach 90% coverage."
- Review assertions, not coverage reports. Coverage is a ceiling on test quality, not a floor.
- Use coverage as a negative signal only. Low coverage means something is missing; high coverage confirms nothing.
Mutation testing tools (Stryker, Mutmut) go a layer deeper — they mutate the implementation and check that at least one test fails for each mutation. A high mutation score is strong evidence the tests actually test something. If your stack has one, have the agent run it and fix surviving mutants. Most projects do not need this rigour; for the ones that do, it is the closest thing to an objective test-quality metric.
Common Anti-Patterns
- Generate tests after the code. Tests encode what the implementation does, not what you wanted. Fix: generate tests first, from acceptance criteria.
- Unbounded fix loops. Agent iterates forever against a flaky or incorrect test. Fix: cap iterations; require a failure summary after N attempts.
- Agent edits tests mid-loop. Tests pass because they got weaker. Fix: lock the test file; implementation-only edits.
- Ignoring the tests the agent writes. Only pass/fail is checked. Fix: every AI-generated test file gets human review before merge.
- Coverage-first prompting. "Reach 90% coverage" produces test theatre. Fix: prompt from acceptance criteria; coverage is a side effect.
- Over-reliance on unit tests. Everything mocked, nothing end-to-end. Fix: at least one integration test per feature; mock only at system boundaries.
FAQ
Can AI agents replace a test engineer?
Not as of 2026. Agents generate more tests faster, which is useful, but judging what to test and what the real failure modes are is a human job. The agent writes the tests you specify; the test engineer figures out what to specify. The leverage is in pairing, not substituting.
What about flaky tests?
Agents make flakiness worse before better. An autonomous loop facing a flaky test may edit the implementation trying to fix a timing issue that is in the test. Stabilise the suite first — no sleeps, no real network calls, no order-dependent tests. A flaky baseline corrupts every downstream run.
Should the agent generate E2E tests too?
It can, but signal-to-noise is lower. E2E tests depend on UI selectors, fixtures, and environment setup the agent often gets wrong. A reasonable split: agent generates unit and integration tests autonomously; E2E tests are drafted and reviewed more carefully before merge. For autonomous tool interaction patterns generally, see the tool-use glossary entry.
How do I review AI-generated tests quickly?
Read test names first — they should read like a spec. Vague names ("works correctly," "handles input") mean vague tests. Skim assertions for weak ones (toBeTruthy). Check that negatives are present — tests for invalid inputs and error paths. Pass on all three usually means the tests are worth keeping.
Does this apply to non-code testing — e.g., prompt evals?
The pattern transfers. Prompt evals are tests for prompts: define acceptance criteria, encode them as pass/fail checks, iterate until satisfied. The same cautions apply — weak assertions, tautological checks, coverage-vs-spec tradeoffs. Treat eval generation as a spec exercise, not a metric chase.