Short Leash AI Coding Method: Beat Fable by Keeping Control

Greg Slepak, maintainer of security-critical software, distills over a year of research into AI coding agents into the short leash method. It's designed for expert developers who want AI to boost output without sacrificing quality — and claims to beat Fable 5 results even without frontier models.
The core problem Slepak identifies: AI agents regularly "go off the rails," produce ugly/inefficient code, or require YouTuber-style orchestration systems that remove the developer from the loop. His method keeps you in control at every step.
Short Leash Rules
- Plan the task, optionally using something like
tasks skillto break large tasks into steps. - Never use "YOLO" mode (aka "dangerously skip permissions").
- The AI only works while you are watching — no "vibe coding" while you play video games.
- Use a coding agent that displays a diff in the permissions prompt before making changes.
- Analyze each proposed diff — deny permissions whenever the AI is about to do something you don't want.
- Keep yourself in the loop to maintain up-to-date understanding of the codebase.
- Intervene frequently to prevent the AI from going off the rails.
- Commit after every subtask to protect against the AI deleting previous work (Slepak has seen Opus do this).
AI Reviews
Slepak recommends treating AI as a linter for PR reviews. The AI catches common mistakes, the human catches high-level issues. Both together outperform either alone. The AI needs sufficient context (issue, PR description).
He also notes that he built custom AI review tools performing as well as multi-billion-dollar systems, and maintains a fork of an agent called Crush.
📖 Read the full source: HN AI Agents
👀 See Also

How an Idle Agent Burned 50M Tokens a Day – and How to Fix It
An idle OpenClaw agent burned 50M tokens a day via heartbeat pings with a bloated session. A Reddit user shares how they traced the leak and fixed it with config changes.

OpenClaw 101: The Ultimate Setup Guide for New Users

Methodology for Consistent Benchmarking of Local vs Cloud LLMs
A developer shares a measurement setup using sequential requests and rule-based scoring to compare local models (via llama.cpp, vLLM, Ollama) with cloud APIs (GPT-5.4, Claude Sonnet 4.6, Gemini 3.1 Pro) through a unified endpoint like ZenMux.

Analysis of Claude Code's Production Engineering Patterns from Reverse-Engineered Source
A developer reverse-engineered approximately 500,000 lines of Claude Code's TypeScript source code into a 19-chapter technical handbook documenting production engineering patterns that emerge under real load, real money, and real adversaries.