intermediate
5 min read
Friday, July 17, 2026

Your AI Agent's Hidden Costs: Why Smarter Tool Use Beats Raw Power

Stop building AI agents that break the bank! New research reveals that for many critical tasks, raw reasoning power isn't enough – it's about how efficiently your agent uses its tools. Discover why optimizing tool calls, not just LLM prompts, is the key to building truly effective and cost-efficient AI agents for real-world applications.

Original paper: 2607.15263v1
Authors:Paul KassianikBlaine NelsonYaron Singer

Key Takeaways

  • 1. Traditional AI agent evaluations often overlook operational costs; new research introduces a 'cost-success lens' for practical utility.
  • 2. For offensive tasks (e.g., CTFs), higher compute budgets generally improve performance, with scaled open-weight models becoming cost-competitive.
  • 3. For defensive tasks (e.g., SOC investigations), success hinges more on **disciplined tool use, telemetry navigation, and selective enrichment** than raw reasoning power.
  • 4. Developers must prioritize efficient tool orchestration and cost-aware decision-making in agent design, not just larger LLMs or better prompts.
  • 5. Future AI agent benchmarks should measure economic efficiency and operational fit alongside task success for a clearer picture of real-world usefulness.

# Beyond Brute Force: The Economic Reality of AI Agents

As developers and AI builders, we're constantly pushing the boundaries of what AI agents can achieve. Whether it's automating security tasks, streamlining customer support, or optimizing complex systems, the promise of autonomous agents is immense. But often, the focus is solely on task success – can the agent solve the problem? Can it find the vulnerability? Can it answer the query?

However, in the real world, every decision, every API call, every query to a database, and every inference step comes with a cost. This isn't just about monetary expense; it's about latency, compute resources, and the overall operational overhead. A new paper from Paul Kassianik, Blaine Nelson, and Yaron Singer, "Beyond Success Rate: Cost-Aware Evaluation of Offensive and Defensive Security Agents," tackles this crucial, often overlooked, aspect head-on. It's a game-changer for anyone building practical, deployable AI agents.

The Paper in 60 Seconds

This research challenges the conventional wisdom of evaluating AI security agents solely on their peak performance. Instead, it introduces a cost-aware evaluation framework, measuring agents' success against the resources they consume (inference steps, tool calls, data queries). The authors tested language model agents on offensive (Cybench CTF challenges) and defensive (Splunk BOTS v1 SOC investigations) tasks. Their key finding? Offensive tasks benefit from more compute, but defensive tasks demand disciplined tool use and selective data enrichment over raw reasoning power. This means for many real-world applications, building agents that *think smarter* about their tool interactions is more important than simply scaling up the underlying LLM.

Beyond Raw Power: Why Cost-Awareness is the New Frontier

Think about the AI agents you're building or integrating. Are they making decisions that are economically viable in a production environment? Current benchmarks often celebrate agents that can achieve a high success rate, regardless of the computational budget they blow through. This is akin to celebrating a race car that wins but guzzles fuel at an unsustainable rate.

For developers, this means a shift in perspective. It's no longer just about engineering the perfect prompt or fine-tuning the base model. It's about designing an agentic architecture that understands and optimizes for the cost of action. Every time your agent calls an external API, runs a complex query, or even performs a lengthy internal reasoning step, it incurs a cost. If your agent is going to be truly autonomous and useful in an operational setting, it needs to be *economically efficient*.

Red vs. Blue: Different Games, Different Strategies

The paper's core insight comes from evaluating agents across two distinct security domains:

Offensive (Red Team) Agents: These agents tackle challenges like vulnerability discovery, exploit development, and CTF completion. The research found that for these tasks, performance generally scales with additional test-time compute. More reasoning budget, more attempts, often leads to better results. Open-weight models, when given sufficient compute, can even approach the performance of frontier proprietary systems while remaining cost-competitive.
Defensive (Blue Team) Agents: These agents focus on SOC investigation, threat hunting, and incident response – tasks often characterized by navigating vast amounts of telemetry and making precise, timely decisions. Here, the scaling behavior was dramatically different. Success for defensive agents does not scale in the same way with raw reasoning budget alone. Instead, it depends much more heavily on:

* Disciplined tool use: Knowing *when* to call a specific tool and *which* tool to call.

* Telemetry navigation: Efficiently sifting through logs and alerts.

* Selective enrichment: Knowing *what* additional data is needed and *when* to fetch it, rather than blindly pulling everything.

This distinction is critical. It suggests that simply throwing a more powerful LLM at a defensive problem won't necessarily yield better results if the agent hasn't learned to interact intelligently with its environment and tools. It's about orchestration efficiency, not just raw processing power.

What This Means for Developers and AI Architects

This research provides a clear roadmap for building more effective and practical AI agents:

1.Prioritize Tooling and Orchestration: For tasks that resemble defensive operations (e.g., debugging, monitoring, customer support), focus your efforts on building robust, intelligent tool use capabilities. Design agents that explicitly model the cost of using different tools or querying different data sources.
2.Beyond Prompt Engineering: While prompt engineering remains vital, it's time to elevate tool orchestration engineering. How do your agents decide *which* tool to use, *when* to use it, and *what* parameters to pass? This decision-making process itself can be optimized for cost and effectiveness.
3.Cost-Aware Benchmarking: If you're evaluating agents, don't just measure accuracy or success rate. Incorporate metrics like API calls, compute cycles, and latency. This gives a much clearer picture of an agent's practical utility. You might even consider adopting frameworks similar to Glicko-2 rating systems, but for agents, to assess their cost-efficiency and skill across various tasks.
4.Hybrid Architectures: The findings suggest that for some tasks, a larger, more powerful LLM might be worth the cost. For others, a smaller, more specialized model coupled with sophisticated tool-use logic could be far more efficient. This advocates for thoughtful, hybrid architectures tailored to the task at hand.

Building Smarter Agents: Practical Takeaways

Instrument Everything: Log every tool call, every API request, every inference step. Understand where your agent is spending its budget.
Cost-Aware Decision Making: Can your agent learn to estimate the cost (time, money, compute) of a potential action before executing it? This could involve training a smaller model to predict the utility-to-cost ratio of different tool calls.
Contextual Tool Selection: Instead of a static tool list, can your agent dynamically choose tools based on the specific sub-problem it's trying to solve and the current context? This is where sophisticated multi-agent systems shine, allowing agents to specialize and collaborate efficiently.
Feedback Loops for Efficiency: Implement feedback mechanisms where agents learn from past costly actions. If a certain tool call consistently yields no useful information but costs a lot, the agent should learn to de-prioritize it.

This research from Soshilabs (and their interactive website, [evals.frontier.security](https://evals.frontier.security)) is a crucial step towards building AI agents that are not just intelligent, but also economically viable and operationally fit. It's a call to action for developers to think beyond raw capability and embrace the nuanced reality of cost-aware AI.

The future of AI agents isn't just about what they *can* do, but what they can do *efficiently*.

Cross-Industry Applications

DE

DevTools / SaaS

Autonomous Debugging & CI/CD Optimization

Significantly reduces debugging time and operational costs for software teams, leading to faster deployment cycles by optimizing diagnostic tool usage.

SA

SaaS / E-commerce

Cost-Aware Customer Support Agents

Improves resolution rates and customer satisfaction while dramatically lowering the operational cost per support interaction by intelligently querying data sources.

FI

Finance

Efficient Algorithmic Trading

Enhances profitability by reducing data acquisition costs and optimizing decision-making under resource constraints in autonomous trading systems.

LO

Logistics / E-commerce

Optimized Supply Chain Management

Reduces operational overhead and increases efficiency in complex logistical networks by prioritizing essential data queries and simulations.