An AI automation incident is useful only if the next run becomes safer. The review should not become a long blame document or a vague note that the model “made a mistake.” It should identify the exact input, source, prompt, script, review rule, or handoff gap that let the bad output move forward.
For a solo operator, the post-incident review has one job: convert a failure into a concrete operating change. That change might be a new stop condition, a source rule, a prompt test, a rollback step, or a clearer handoff note.
When To Run A Post-Incident Review
Run this review after a high-severity exception, failed client delivery, unsafe public draft, broken source check, or repeated manual repair.
Use it when:
- A workflow produced an unsupported claim.
- A source URL, data export, or input field failed during a run.
- A prompt change fixed one output but created a new risk.
- The operator had to rewrite the same section by hand again.
- Private data, access, or credentials appeared in the wrong place.
- A rollback or manual fallback was needed.
- A client, buyer, or public page received an output that should have stayed in review.
Do not wait for a large incident. Two repeated low-friction repairs are enough evidence to run a short review.
Copy This Review Template
Use this template after containment and before the workflow returns to unattended use:
Incident name:
Review date:
Workflow:
Owner:
Severity:
Affected output:
Delivered or published:
What happened:
Expected behavior:
Actual behavior:
Detection method:
Source evidence checked:
Root cause:
Contributing factors:
What stopped the issue:
What failed to stop the issue:
Required change:
Prompt update:
Script update:
Source rule update:
Acceptance criteria update:
Runbook update:
Handoff update:
Rollback update:
Retest required:
Retest owner:
Restart decision: resume / resume with review / keep paused / retire
Next review date:The template is intentionally direct. If a field is hard to complete, the workflow probably has a documentation gap that should be fixed before it runs again.
Separate The Root Cause From The Trigger
The trigger is the event that exposed the problem. The root cause is the operating gap that allowed the problem to matter.
Use this distinction:
| Trigger | Possible root cause |
|---|---|
| Source URL failed | No replacement source rule or freshness check. |
| Spreadsheet column changed | Input contract did not name required fields. |
| AI made an unsupported claim | Prompt allowed claims without source evidence. |
| Output tone missed the client expectation | Handoff checklist did not define the review standard. |
| Prompt fix broke another case | No regression test or last accepted run comparison. |
Fixing only the trigger makes the workflow feel repaired while leaving the same weakness in place. The review should name the root cause and the smallest operating change that prevents the same pattern from returning.
Decide The Restart Level
Do not treat every fix as permission to resume full automation.
Use four restart levels:
| Restart level | Use when | Next action |
|---|---|---|
| Resume | The root cause is fixed and the output passes the acceptance criteria. | Return to the normal runbook. |
| Resume with review | The workflow is usable, but the next run needs a human check. | Add a temporary review threshold. |
| Keep paused | The source, access model, or output standard is still unclear. | Repair the operating artifact first. |
| Retire or rebuild | The same failure keeps returning after fixes. | Narrow the workflow or return it to manual service. |
This protects monetization over time. A workflow that keeps needing hidden judgment should not become a self-serve template or affiliate-supported recommendation page until the repeatable part is clearer.
Convert Lessons Into Operating Artifacts
Every review should end with one artifact update. Avoid broad promises such as “be more careful next time.”
Use this map:
| Finding | Artifact to update |
|---|---|
| Missing source evidence | Source log or source rule. |
| Weak output standard | Acceptance criteria. |
| Repeated manual edit | Prompt, script, or template. |
| Unsafe delivery path | Handoff checklist. |
| Failed rollback | Rollback plan. |
| Unclear owner | Runbook or maintenance calendar. |
| High-risk output escaped review | Human review threshold checklist. |
The point is to make the next run more controlled without adding unnecessary bureaucracy.
Keep The Review Packet Small
Save the minimum evidence needed to understand and retest the issue:
- The input or source that triggered the problem.
- The generated output.
- The review note that caught the problem.
- The prompt, script, or template version.
- The containment action.
- The artifact that changed after the review.
- The retest result.
Do not store API keys, passwords, private affiliate IDs, account-specific tracking links, or credentials in the review packet. Record where access is managed, not the private value itself.
Related Operator Stack Pages
- Use the AI automation incident response checklist before this review when the workflow is still paused or contained.
- Record the failure pattern in the AI automation exception log template.
- Preserve evidence in the AI workflow source log template.
- Update the AI automation acceptance criteria checklist when the review changes the output standard.
- Add recurring follow-up to the AI automation maintenance calendar template.
- Retest the fallback path with the AI automation rollback plan template.
- Update delivery notes in the AI automation client handoff checklist before giving the workflow to someone else.