Builds an ineffective, unsafe, incomplete, or poorly ordered plan for achieving the user's goal. Unlike Step Omission, the whole sequence or strategy is flawed, not only one missing step. Unlike Workflow Misalignment, the plan may be logically poor even if it follows the expected process style.
Each step is individually sensible, but the sequence destroys the data a later step depends on.
User: Plan the zero-downtime migration to the new schema. Assistant: 1. Drop the legacy columns to clean up the schema. 2. Deploy the new application code. 3. Backfill the new columns from the legacy data. 4. Verify row counts match.
The ordering is fine, but the plan assumes every step succeeds โ no rollback point, no verification gates, nothing about what happens if the backfill dies halfway.
User: Plan the zero-downtime migration to the new schema. Assistant: 1. Add the new columns. 2. Deploy code that writes to both. 3. Backfill. 4. Switch reads to the new columns. 5. Drop the legacy columns.
The plan sequences around its dependencies and makes each phase verifiable and reversible before the irreversible step runs.
User: Plan the zero-downtime migration to the new schema. Assistant: 1. Add new columns (reversible). 2. Deploy dual-write code; verify write parity on a sample. 3. Backfill in batches with a resume checkpoint. 4. Switch reads behind a flag; monitor for a day, flip back if error rates move. 5. Only then drop legacy columns, after a final row-count audit.
Models generate plans as plausible text, not as searched and validated action sequences. On benchmarks where plan correctness can be checked mechanically, success rates are low even for simple domains (Valmeekam et al., 2023, "On the Planning Abilities of Large Language Models").
Sound planning requires a world model of action preconditions and effects. The model approximates these from text, where preconditions are usually left implicit, so plans assume states that will not hold when a step actually runs.
A plan is emitted linearly in one decode. There is no backtracking, so a dependency problem the model only becomes able to see at step seven cannot revise the already-committed ordering of steps one through six.
Training data consists of finished, idealized procedures. Tutorials and writeups omit dead ends, failure handling, and recovery, so generated plans inherit a happy-path shape with no contingencies.
Ordering many interdependent steps is compositional reasoning, and it degrades as the number of interacting constraints grows, independent of how familiar each individual step is.
Preference tuning rates plans on how convincing they read. Raters rarely execute them, so a confident, well-structured bad plan earns the same reward as a workable one.
Categories of checks that can identify the issue. These are strategies, not specific implementations.
Extract the plan's steps, build the precondition-effect graph, and check that no step consumes state an earlier step destroyed or depends on one that hasn't run yet. Dropping legacy columns before the backfill that reads them is detectable from the plan text alone, before anything executes.
Run an adversarial judge prompted to attack the plan rather than admire it โ where are the rollback points, which steps are verifiable, what happens when the backfill dies halfway. Happy-path shape is the warn-level signature, and convincing structure is exactly what fools human raters.
Maintain planning tasks in domains with mechanical validators or executable environments, and score whether the plan achieves the goal when actually run โ never how plausible it reads. Plausibility and validity diverge sharply for generated plans.
High-level reliability strategies that reduce how often this failure occurs.
Before any step executes, check the plan's precondition-effect graph mechanically and send it back with the broken dependency named โ "step 3 reads legacy data that step 1 dropped." A plan is emitted linearly with no backtracking, so revision has to come from outside the decode; the validator supplies the second pass the architecture doesn't.
Run a separate critique pass prompted to attack the plan before it's accepted โ what happens when the backfill dies halfway, where are the rollback points, which step is the first irreversible one. Training data is finished, idealized procedures, so contingencies don't appear unless a step demands them; the critic is that step.
Require plans to sequence reversible phases before irreversible ones, with a verification gate ahead of each point of no return โ the ok example's flag-guarded read switch before the column drop. This bounds the damage of plan flaws that survive validation and critique, which some always will.