Wolf-Tech Logo
Back to Blog

Agentic Features in B2B SaaS: Build, Buy, or Wait — A 2026 Decision Framework

#agentic AI B2B SaaS
Sandor Farkas - Founder & Lead Developer at Wolf-Tech

Sandor Farkas

Founder & Lead Developer

Expert in software development and legacy code optimization

A FinTech buyer's procurement questionnaire we reviewed in early Q2 2026 had thirty-one questions on it — eleven of them about agents. Does the product use agentic workflows? Are tools approved before invocation? Is there a per-trajectory token budget? How are unsafe tool sequences detected? What is the rollback plan when an agent picks the wrong tool? The vendor answering had shipped an "AI agent" feature nine months earlier: one LangChain chain wrapping a frontier model, five tool definitions, called from a Symfony controller. It worked beautifully in the sales demo and roughly half the time in production. The deal stalled, then died.

This is the shape agentic AI in B2B SaaS has taken in 2026. Every buyer is asking about agents. Most agent features that shipped in 2025 fall into a narrow band of disappointment — too ambitious for a deterministic workflow to handle, not scaffolded enough to be a real autonomous system. The teams quietly winning right now are the ones with a sober framework for deciding when an agent is actually the right tool, when a boring state machine wins, and when the smartest move is to wait for the underlying tooling to catch up. This post is that framework, with concrete architecture patterns for a Symfony + Next.js stack at the end.

What "Agentic" Actually Means in 2026

The industry has roughly converged on a working definition: an agentic AI system is one in which an LLM dynamically chooses which tools to call and in which order to achieve a goal, rather than a fixed pipeline where the LLM merely fills in slots in a pre-written script. Three properties separate it from a regular LLM feature.

Tool selection is dynamic — the model picks from a menu of tools at each step instead of being routed through a fixed call. There is iteration — the model receives the output of one tool and decides what to do next, often across many turns. And there is a goal — not a single prompt-to-answer transaction, but a multi-step trajectory aimed at producing a result that may have been impossible to script up front.

That definition matters because the engineering work for an agentic feature is dramatically different from a chat or summarisation feature. You need a tool registry with authorisation, per-trajectory budgets, observability across multi-turn runs, evaluation frameworks that grade trajectories rather than just outputs, and a security review of every tool the agent can invoke. Skipping any one of these is what produced 2025's wave of public agent failures.

The Build, Buy, or Wait Decision Framework

For each candidate agentic feature on the roadmap, score it across five dimensions. Numbers are deliberately rough — the goal is a defensible decision, not a spreadsheet.

Determinism gap. Could a finite state machine, a rules engine, or a structured-output prompt handle this? If yes, the gap is small and an agent is overkill. If the input space and required actions are wide and irregular — open-ended customer support, multi-system research, code repair across a long-tail of repositories — the gap is real.

Tool diversity. How many tools does the workflow need, with how much branching? Below five tools and one or two branches, hand-coded almost always wins. Above ten tools with conditional sequencing, hand-coded becomes a maintenance burden and the dynamic dispatch of an agent earns its keep.

User stakes. What does a wrong action cost? An agent that mis-routes a low-priority support ticket costs nothing. An agent that initiates a refund, files a compliance report, or modifies production data needs human approval gates regardless, which usually means the deterministic version will satisfy the requirement faster.

Vendor lock-in tolerance. Buying an agent platform — LangChain Hub, LlamaIndex Cloud, the platform-of-the-quarter — is a coupling decision. If the feature is core to your product, every prompt template, eval suite, and tool definition you put in someone else's runtime is technical debt the day they raise prices or pivot.

Tooling maturity. Is the eval infrastructure for your domain mature enough that you can detect regressions before customers do? For general code generation and customer support, yes. For domain-specific agents in healthcare, legal, or anything safety-critical, the public eval frameworks are still thin in 2026.

The decisions map cleanly. A high determinism gap, low or moderate stakes, and decent tooling for your domain points toward build — but build with proper scaffolding (tool registry, trajectory observability, evals in CI) rather than a controller that imports a frontier model SDK directly. A high determinism gap with immature tooling points toward wait — ship the deterministic version, instrument it, and let the data tell you when the agent will actually move the metric. High stakes regardless of the gap means build deterministically now and revisit later when human-approval ergonomics on agent platforms improve. A moderate determinism gap with frequent tool churn — many integrations changing weekly — is the rare case where buying an agent platform genuinely beats a custom build, because the platform absorbs the integration churn for you.

When Agentic Workflows Genuinely Add Value

The cases where agents earn their seat in production share a pattern: the input space is wide, the action space is wide, and the cost of any single wrong action is bounded.

Customer support triage at scale fits this. A first-line agent that can read a ticket, query the knowledge base, look up the customer's plan, and either resolve directly or hand off with the right context can outperform a router-shaped deterministic flow once the action menu crosses a few dozen options. Research and synthesis tasks fit too — investigating a market, gathering competitive intelligence, or compiling a document review where the next search depends on what the previous search returned. Code generation and repair, where the right tool depends on what the code itself looks like, is the canonical case. So is long-tail integration work — connecting a new system to your platform where building a hand-coded mapping is a multi-week project but an agent with the right tool primitives can do it in an afternoon.

The common thread is that an agent's freedom to choose is converting cost: the alternative is a person doing the same work, and the per-trajectory cost of a frontier-class run is a fraction of an hour of that person's time.

When a Deterministic Workflow Wins

Wherever predictability is the product, a deterministic workflow wins. Document classification with a known taxonomy. Form-filling with a fixed schema. Financial calculations of any kind. Anything a user might re-run and reasonably expect the same answer to come back. High-frequency, low-margin features where cost predictability matters more than peak quality — feature pages, onboarding helpers, in-product hints — are dramatically better served by a templated RAG flow than by a multi-turn agent.

The pattern: when the input space is narrow or the output is structured, the "freedom" an agent provides is just a place for hallucinations and unnecessary tool calls to live. A clean retrieval step plus a structured-output prompt costs an order of magnitude less, finishes in one round-trip, and never picks the wrong tool because there is no menu to pick from.

A useful gut check before committing to an agent: write the deterministic version on a whiteboard. If it fits, ship it. The agentic version is a candidate for v2 once you have real usage data showing where the deterministic version falls down.

When It Is Smarter to Wait

The "wait" decision is the most underrated and the one with the highest expected value across most B2B SaaS roadmaps in 2026.

The 2025 agent landscape had three structural problems that 2026 has only partially fixed. Trajectory-level evaluation was crude — most teams shipped agents with output-level scoring at best, and never noticed the agent was doing the right thing for the wrong reasons. Tool-use security models were thin — prompt injection through tool outputs is now a well-documented attack surface, and the patching guidance is still maturing. And cost was unpredictable — long-running agents could spike per-call costs by 10–50x compared with a deterministic baseline, in ways that did not show up until production traffic hit.

If your domain does not yet have mature public eval frameworks, wait. If your tools do not yet have hardened authorisation models that constrain what an agent can do on a user's behalf, wait. If your runway cannot absorb a 5x cost overshoot in a quarter, wait. "Wait" does not mean "do nothing" — it means ship the deterministic version, instrument it heavily, and let the data tell you what to upgrade when.

Architecture Patterns for Symfony and Next.js

When you do decide to build, the architecture has three structural pieces. They are deliberately boring. The agent itself is unpredictable; everything around it must be predictable.

Tool Registry With Authorisation and Budgets

Every tool the agent can call goes through a registry. The registry checks that the user has permission to invoke each tool, that the tool is rate-limited per user and tenant, and that the agent has not exceeded its per-trajectory budget.

// src/Service/Agent/ToolRegistry.php
final class ToolRegistry
{
    /** @param iterable<Tool> $tools */
    public function __construct(
        private readonly iterable $tools,
        private readonly Authorization $authz,
        private readonly TrajectoryBudget $budget,
        private readonly LoggerInterface $log,
    ) {}

    public function invoke(string $name, array $args, AgentContext $ctx): ToolResult
    {
        $tool = $this->resolve($name);
        $this->authz->assertCanInvoke($ctx->userId, $tool, $args);
        $this->budget->reserveStep($ctx->trajectoryId, $tool->costEstimate($args));

        $this->log->info('agent.tool.invoke', [
            'trajectory' => $ctx->trajectoryId,
            'tool' => $name,
            'user' => $ctx->userId,
        ]);

        return $tool->run($args, $ctx);
    }

    private function resolve(string $name): Tool
    {
        foreach ($this->tools as $t) {
            if ($t->name() === $name) return $t;
        }
        throw new UnknownToolException($name);
    }
}

The registry is the single chokepoint for security review. If a tool is not registered, the agent cannot call it, full stop. If a user is not authorised, the call fails before it reaches the tool. This is also where prompt-injection mitigation lives — any tool that returns user-influenced text gets a wrapper that strips or quotes content the agent might otherwise interpret as instructions.

Trajectory Observability

You cannot debug an agentic feature with raw LLM logs. Each trajectory needs a single ID that ties together every model call, tool call, and decision in the run. Propagate it through Symfony Messenger handler context, log it on every step, and surface it in the Next.js UI for support escalation.

// app/lib/agent-tracing.ts
export type TrajectoryStep =
  | { kind: 'model_call'; durationMs: number; tokensIn: number; tokensOut: number; costEur: number }
  | { kind: 'tool_call'; tool: string; durationMs: number; ok: boolean; costEur: number }
  | { kind: 'decision'; reasoning: string };

export type Trajectory = {
  id: string;
  startedAt: string;
  steps: TrajectoryStep[];
  totalCostEur: number;
};

The eval suite reads from the same shape. Trajectory-level evals — run a corpus of representative goals through the agent in CI, score the trajectory (which tools were called, in what order, with what outcome) against a rubric, and block deploys that regress — are what separate teams that ship agents from teams that ship agent-shaped bug factories.

Server-Side Execution, Client-Side Streaming

Agents do not belong in the browser. Long-running, retry-prone, security-sensitive workflows belong on the server. Use Symfony Messenger (or any Postgres-backed queue) to run the trajectory; stream incremental updates to the Next.js client via Server-Sent Events.

// src/Controller/Api/AgentController.php
#[Route('/api/agent/run', methods: ['POST'])]
public function run(Request $req, MessageBusInterface $bus): JsonResponse
{
    $trajectoryId = Uuid::v7()->toRfc4122();
    $bus->dispatch(new RunAgentTrajectory(
        trajectoryId: $trajectoryId,
        userId:       $this->getUser()->getUserIdentifier(),
        goal:         $req->getPayload()->getString('goal'),
    ));
    return $this->json(['trajectoryId' => $trajectoryId]);
}

#[Route('/api/agent/{id}/events', methods: ['GET'])]
public function events(string $id, TrajectoryStream $stream): StreamedResponse
{
    return new StreamedResponse(function () use ($id, $stream) {
        foreach ($stream->subscribe($id) as $event) {
            echo 'data: ' . json_encode($event) . "\n\n";
            flush();
        }
    }, 200, [
        'Content-Type' => 'text/event-stream',
        'Cache-Control' => 'no-cache',
        'X-Accel-Buffering' => 'no',
    ]);
}

// app/(app)/agent/[id]/page.tsx
'use client';
import { useEffect, useState } from 'react';
import type { TrajectoryStep } from '@/lib/agent-tracing';

export default function AgentTrajectory({ params }: { params: { id: string } }) {
  const [steps, setSteps] = useState<TrajectoryStep[]>([]);
  useEffect(() => {
    const es = new EventSource(`/api/agent/${params.id}/events`);
    es.onmessage = (e) => setSteps((s) => [...s, JSON.parse(e.data)]);
    return () => es.close();
  }, [params.id]);
  return <TrajectoryView steps={steps} />;
}

The shape — tool registry plus trajectory ID plus SSE streaming — is what we recommend by default for any agentic feature in a Symfony + Next.js stack. It works on a single Hetzner box, scales linearly with workers, and gives you the audit trail enterprise procurement now expects. A focused code quality audit on an existing AI integration is usually the fastest way to see whether the current implementation can grow into this shape or needs to be rebuilt.

Closing

The single most useful question to ask before building an agent feature in 2026 is not can we? — almost any team can wire up a frontier model and a few tool definitions in an afternoon. The useful questions are will the trajectory shape survive an enterprise audit, will the cost stay bounded under real traffic, and will the eval suite catch a regression before a customer does? Teams that can answer those three questions ship agents that close deals. Teams that cannot ship demos that quietly turn into procurement liabilities a quarter later. The build, buy, or wait framework above exists to make that distinction visible before the first commit lands.

Wolf-Tech helps European B2B SaaS teams design and harden agentic features on PHP/Symfony backends and Next.js frontends — tool registries, trajectory observability, evaluation pipelines, and the boring scaffolding that turns an agent demo into a custom software development deliverable that holds up in production. Contact us at hello@wolf-tech.io or visit wolf-tech.io for a free consultation.