Testing AI-based systems brings a unique challenge: what happens when the results are non-deterministic? How do you validate a system that

Test the AI Boundaries

Even if you can’t predict exact AI outputs, you can test the contract:

`def test_categorisation_returns_valid_category():
result = categorise_expense(”Starbucks Coffee”)

assert result in VALID_CATEGORIES
assert isinstance(result, str)
assert len(result) > 0`

This doesn’t care if the AI chose “Food & Dining” or “Coffee Shops”; it just ensures the response is structurally valid and within expected bounds.

Test Confidence Thresholds

If your system uses confidence scores (it should), test the logic that acts on them: […] The companies shipping reliable AI features aren’t the ones with perfect models. They’re the ones with robust testing that catches when things go wrong.

Start Here

If you’re building AI features without adapted testing practices, start small:

1. Add one eval: Pick your most critical AI feature. Create a 20-item eval set. Run it manually.
2. Test boundaries: Add unit tests for your AI scaffolding code—the parts that should be deterministic.
3. Monitor one metric: In production, track one quality metric continuously. Just one.
4. Set one threshold: Define what “acceptable” means quantitatively, then test against it.

These four changes will catch 80% of AI-related issues. You can sophisticate later. […] You’re not testing what specific videos were chosen, but that each pipeline stage contributed appropriately.

Layer 3: Evals (The Game Changer)

Evals (evaluations) are how you test AI quality at scale. This is where you accept non-determinism but measure whether the AI meets your specified thresholds.

Think of evals as QA for AI: instead of testing for exact correctness, you test for acceptable quality across a representative sample.

Building an Eval Set

Start by creating a test dataset of real-world scenarios with multiple valid answers:

Non-deterministic software, by its very nature, can produce different outputs for the same input under seemingly identical conditions. This unpredictability presents significant challenges for testing.

This article explores some of the fundamental characteristics of non-deterministic software, discuss established best practices for testing such systems, examine recent innovations in the field with a focus on AI-driven techniques, and provide practical examples complete with Python code samples. It’ll also investigate the unique challenges posed by LLMs in software testing and offer guidance on implementing a comprehensive testing strategy for these complex systems. […] ## Advanced Techniques for Testing Complex Non-Deterministic Systems

Using AI to generate test cases can go beyond generative AI and LLMs. For example, machine learning models can analyze historical test data and system behavior to identify patterns and generate test cases that are most likely to uncover bugs or edge cases that a human tester might miss.

Let’s see an example of using a simple machine learning model to generate test cases for a non-deterministic function. […] Another crucial strategy for testing non-deterministic software is to check if it is feasible to create repeatable test environments. This involves controlling as many variables as possible to reduce the sources of non-determinism during testing. For example, you can use fixed random seeds, mock external dependencies, and use containerization to ensure consistent environments.

When dealing with AI, especially LLMs, you can use semantic similarity measures to evaluate outputs rather than expecting exact matches. For instance, when testing an LLM-based chatbot, you might check if the model’s responses are semantically similar to a set of acceptable answers, rather than looking for specific phrases.

Here’s an example of how to test an LLM’s output using semantic similarity:

Test core functionality rather than exact outputs

Focus tests on validating that the AI component fulfills its essential purpose as shown in the following example:

// Check that the classification happens (not the exact classification) Assert( Response.Category = "Positive" || Response.Category = "Neutral" || Response.Category = "Negative", "Response should include a valid sentiment category" )

Use structural validation for complex outputs

For complex AI responses, validate the response structure rather than specific content as shown in the following example: […] ### Use the Preview.AIExecutePrompt function

The Preview.AIExecutePrompt function enables controlled execution of AI prompts within your tests. The following example demonstrates how to use it:

Response: ParseJSON( Preview.AIExecutePrompt("CustomPrompt", { Context: "You are a helpful assistant.", Question: "What is the capital of France?" }).Text)

This approach allows you to:

Implement tolerance-based validation

Instead of expecting exact matches, verify that outputs meet criteria within acceptable thresholds. The following code is an example:

// Validate that the sentiment score is within appropriate range Assert(Response.SentimentScore >= 0.7, "Sentiment score should be positive")

Test core functionality rather than exact outputs […] To create effective tests for AI-powered components:

Common patterns for AI testing

The following examples illustrate common approaches for testing AI-powered features in Power Platform applications. These patterns help you validate content classification, boundary conditions, and other scenarios where AI outputs might vary.

Content classification testing

// Test that a content classifier produces valid categories ClassifyContent(Text: Text): Record = With({ Result: ParseJSON(Preview.AIExecutePrompt("Classifier", { Content: Text }).Text) }, Assert( Result.Category In ["News", "Opinion", "Advertisement"], "Content should be classified into valid category" ))

Boundary testing

In turn, these processes help CTOs efficiently project deployment timelines and plan risk mitigation strategies.

Testing frameworks designed for AI agents address these challenges through five key shifts:

Embrace probabilistic validation instead of exact output matching
Monitor behavior over time rather than single-point verification
Measure behavioral bounds instead of deterministic correctness
Incorporate human judgment where automated testing reaches its limits
Validate reasoning processes alongside functional outcomes

Framework #1: Simulation-Based Testing

Simulation-based testing validates agent behavior in synthetic environments before production deployment, exposing agents to edge cases systematically rather than discovering failures in production. […] Create adversarial test suites targeting known vulnerability classes: prompt injection attempts, context manipulation, input validation bypass, reasoning chain poisoning, and resource exhaustion attacks. The goal is discovering failure modes through intentional stress rather than hoping production remains benign.

Success in adversarial testing requires measuring robustness under attack. Track two primary metrics: […] Conventional QA is built on predictability. Unit tests verify expected outputs, integration tests confirm components interact correctly, and regression tests ensure updates don’t break functionality.

Agents operate differently; they produce variable, contextual responses based on probabilistic reasoning. The same input might yield different outputs depending on context, conversation history, or model state.

This fundamental mismatch invalidates traditional testing approaches in four ways.

Non-determinism means that each AI generation can produce slightly different results, such as different wording of a sentence or different pixels in a generated image. In highly regulated industries this is particularly challenging as AI models must be explainable, and organizations must be able to prove their outputs are correct. Nobody wants “hallucination” in a banking or payments transaction. Join Googlers Aja Hammerly and Jason Davenport as they dive into non-determinism in AI, learn how it affects AI projects, and what developers need to know when working with generative AI models. […] you’re working with are going to produce unexpected outputs sometimes. Whether those systems are external APIs or LLMs, you need to design your agents and applications to catch errors, fall back on reasonable defaults or other error handling, and then return a logical message to the user if you can’t actually complete their task. And I think most folks are comfortable with handling unexpected outputs. And as you pointed out, it’s pretty normal software engineering or application development, but I do think debugging non-deterministic systems is a bigger challenge for many of us. Uh, I get that. And I’ll be honest, sometimes when I’m coding with LLMs, they do things that make me scratch my head. I’ve lost hours debugging issues because I didn’t understand exactly where the issue was in a […] too. Right. Of course, and a lot of systems that don’t use generative AI actually already work that way. An example that most folks watching this will know is merging code. Computers have been able to handle some kind of merges on their own for decades. But when they can’t handle a merge situation, they do their best and then it gets sent over to a human with the necessary information for that human to resolve the issue. You could do the same thing in your audentic flow. All right. So, what other options do we have if the evaluator identifies places where our AI agents behavior isn’t up to our standards? Like I seem to say in most of these videos, it’s actually just basic software engineering. You need to assume that the systems you’re working with are going to produce unexpected outputs