Component: finbot/agents/orchestrator.py → OrchestratorAgent.delegate_to_payments (line 533)
Root cause:
# orchestrator.py lines 533-537
result["next_step"] = (
"IMPORTANT: You MUST now delegate_to_communication to notify the vendor "
"about this payment outcome. Use notification_type 'payment_confirmation'. "
"Do NOT call complete_task until the vendor has been notified."
)
return resultnext_step is appended unconditionally — regardless of result["task_status"]. When the
payments agent returns task_status="failed", the orchestrator LLM still receives an
instruction to send a payment_confirmation notification, actively misleading it into
treating a failed payment as a success.
Steps to reproduce:
- Mock
run_payments_agent to return {"task_status": "failed", "task_summary": "Payment declined — insufficient funds."}.
- Call
agent.delegate_to_payments(invoice_id=1, task_description="Pay").
- Inspect the returned
result dict.
Expected: "next_step" is not in result — a failed payment must not instruct the LLM
to send a payment_confirmation notification.
Actual: result["next_step"] is present and says "payment_confirmation".
How to execute:
pytest tests/unit/agents/test_orchestrator.py::TestQAFindings::test_orch_qa_002_next_step_on_failed_payment_misleads_llm -v
Proposed fix:
# Before (buggy — unconditional):
result["next_step"] = (
"IMPORTANT: You MUST now delegate_to_communication to notify the vendor ..."
)
# After (correct — guard on status):
if result.get("task_status") == "completed":
result["next_step"] = (
"IMPORTANT: You MUST now delegate_to_communication to notify the vendor "
"about this payment outcome. Use notification_type 'payment_confirmation'. "
"Do NOT call complete_task until the vendor has been notified."
)Impact: When a payment fails, the LLM is actively instructed to send a
payment_confirmation to the vendor. This can cause the vendor to be notified of a
successful payment that never occurred — a data integrity and compliance risk in a financial
workflow. The instruction uses "IMPORTANT: You MUST" phrasing, making the LLM likely to
comply even if other signals suggest the payment failed.
Acceptance criteria:
test_orch_qa_002_next_step_on_failed_payment_misleads_llm passesdelegate_to_payments with task_status="failed" returns result without next_stepdelegate_to_payments with task_status="completed" still returns next_step with payment_confirmation- All other
delegate_to_payments tests continue to pass
Component: finbot/agents/orchestrator.py → OrchestratorAgent.delegate_to_payments (line 533)
Root cause:
next_stepis appended unconditionally — regardless ofresult["task_status"]. When thepayments agent returns
task_status="failed", the orchestrator LLM still receives aninstruction to send a
payment_confirmationnotification, actively misleading it intotreating a failed payment as a success.
Steps to reproduce:
run_payments_agentto return{"task_status": "failed", "task_summary": "Payment declined — insufficient funds."}.agent.delegate_to_payments(invoice_id=1, task_description="Pay").resultdict.Expected:
"next_step"is not inresult— a failed payment must not instruct the LLMto send a
payment_confirmationnotification.Actual:
result["next_step"]is present and says"payment_confirmation".How to execute:
Proposed fix:
Impact: When a payment fails, the LLM is actively instructed to send a
payment_confirmationto the vendor. This can cause the vendor to be notified of asuccessful payment that never occurred — a data integrity and compliance risk in a financial
workflow. The instruction uses
"IMPORTANT: You MUST"phrasing, making the LLM likely tocomply even if other signals suggest the payment failed.
Acceptance criteria:
test_orch_qa_002_next_step_on_failed_payment_misleads_llmpassesdelegate_to_paymentswithtask_status="failed"returns result withoutnext_stepdelegate_to_paymentswithtask_status="completed"still returnsnext_stepwithpayment_confirmationdelegate_to_paymentstests continue to pass