Get AI summaries of any video or article — Sign up free
OpenAI's Agent Builder thumbnail

OpenAI's Agent Builder

Sam Witteveen·
5 min read

Based on Sam Witteveen's video on YouTube. If you like this content, support the original creators by watching, liking and subscribing to their content.

TL;DR

Agent Builder uses a workflow of guardrails → structured classification → conditional routing to specialized nodes or agents.

Briefing

OpenAI’s Agent Builder turns agent design into a node-and-guardrail workflow: prompts, classification, conditional routing, and tool use are assembled visually, then deployed as a working agent. The practical payoff is speed—templates and drag-and-drop nodes let builders go from idea to an agent that can decide what to do next—while the key tradeoff is flexibility, since many capabilities are tied to OpenAI’s Agent Kit components.

Agent Builder’s templates show how multi-step agents are structured. Workflows resemble visual automation tools (think drag-and-drop nodes with configurable settings), but the logic is explicitly agentic: a guardrails stage can block unsafe requests, followed by a classification step that outputs structured JSON (for example, an enum like Q&A vs fact finding). Conditional edges then route the request to different downstream nodes. Tool-enabled nodes add control over outputs and enable retrieval or external actions, such as web search or code execution.

A second template example uses a prompt rewriter to make user questions more specific to a knowledge base, then classifies the rewritten query into categories like Q&A or fact finding. That classification is returned as JSON, including an “operating procedure” field, which drives an if/else split. Depending on the result, the workflow either answers from an internal Q&A path, performs fact-finding with tools, or asks for more details when the request doesn’t fit the expected buckets.

To build something hands-on, the workflow creator starts with a guardrails node and adds a query classifier that must return structured output. In the walkthrough, a “Westworld” theme park travel agent is built using a jailbreak guardrail (with a confidence threshold and model settings) and a classifier that labels user intent as Westworld, other, or non-travel. The conditional routing then selects one of three specialized agents:

- For Westworld queries, the agent uses a “file search” tool configured as a vector store built from a “Westworld travel” markdown guide. A system prompt instructs it to answer using only that information, avoid false details, and sell the experience convincingly. - For “other” travel topics (e.g., Shogun World or other Delos parks), the agent politely declines and directs users to other representatives. - For non-travel requests, it similarly refuses and points users to Delos customer support.

Testing shows the classifier correctly routes a request like “create me a sample itinerary… with pricing” to the Westworld agent, which retrieves pricing and itinerary details from the uploaded document. When the user asks about Disneyland, the workflow routes to the rejection path and returns a refusal consistent with the agent’s scope.

Once validated, the agent can be published and deployed either through a chat interface option or by exporting code via an Agents SDK. The builder highlights a likely ecosystem impact: Agent Builder lowers the barrier to creating agents, potentially pressuring automation platforms like n8n. The main concern is lock-in—an open, framework-agnostic version that exports to multiple agent systems (e.g., LangGraph or Pydantic AI) would broaden adoption. The workflow also supports wiring in external systems via MCPs, hinting at more extensibility beyond file search and built-in guardrails.

Cornell Notes

Agent Builder organizes AI agents as visual workflows: guardrails first, then structured classification, then conditional routing to specialized sub-agents. Templates demonstrate patterns like rewriting prompts, returning JSON enums (e.g., Q&A vs fact finding), and using tools such as web search or code execution depending on the classification. In the hands-on build, a Westworld travel agent uses a jailbreak guardrail and a classifier that labels requests as Westworld, other, or non-travel. If the request is Westworld, a file-search vector store built from a Westworld markdown guide powers grounded answers with pricing and itinerary details; if it’s Disneyland or another non-scope topic, the agent declines and redirects users. This matters because it shows how to combine safety, routing logic, and retrieval into a deployable agent quickly—while raising questions about framework lock-in.

How does Agent Builder decide which part of an agent should run next?

It uses structured outputs from a classification step and then conditional edges (if/else routing) to select the next node. In the examples, the classification returns JSON with an enum-like field (such as “operating procedure” or a custom “user topic”). That JSON value is passed into an if/else node, which routes to different downstream agents or tool paths depending on whether the request is Q&A, fact finding, Westworld, other, or non-travel.

What role do guardrails play in the workflow?

Guardrails run early and can block unsafe requests before classification and tool use. The walkthrough uses a “jailbreak” guardrail with configurable model and a confidence threshold. If the guardrail fails, the workflow ends; if it passes, it proceeds to classification and routing. The same guardrails area also mentions moderation-style blocking and hallucination grounding via vector stores.

Why does the Westworld agent rely on a vector store built from a markdown guide?

The Westworld agent uses file search configured as a vector store to retrieve grounded information from a specific knowledge base. The system prompt instructs the agent to answer using that information only and to avoid generating false details. When asked for an itinerary with pricing, the agent retrieves relevant sections from the uploaded Westworld travel guide and then formats the response with pricing and add-ons that match the document.

How does the classifier improve reliability for out-of-scope requests?

The classifier forces the agent to label intent into a small set of categories (Westworld, other, non-travel) using an enum schema. That structured label drives routing to dedicated refusal agents for out-of-scope topics. For example, a request about Disneyland is classified as “other,” so the workflow routes to a polite decline that says it only handles Westworld theme park travel planning and directs users to Delos customer support.

What tools and integrations can be wired into Agent Builder workflows?

The workflow includes built-in tools like file search (for retrieval via a vector store) and mentions web search and code interpreter in template examples for fact finding. It also supports MCPs (Model Context Protocol) by letting builders configure an MCP server and select OpenAI- or developer-provided MCPs, enabling external systems to be connected into the agent’s toolset.

Review Questions

  1. How does structured JSON output (enums) enable conditional routing in Agent Builder workflows?
  2. What combination of components (guardrails, classifier, vector store, specialized agents) is used to keep the Westworld travel agent from answering Disneyland questions?
  3. What tradeoffs does the walkthrough suggest when exporting or deploying agents via the Agents SDK compared with using other agent frameworks?

Key Points

  1. 1

    Agent Builder uses a workflow of guardrails → structured classification → conditional routing to specialized nodes or agents.

  2. 2

    Classification outputs are returned as JSON with enum fields, making routing deterministic and easier to control.

  3. 3

    Guardrails can block jailbreak attempts early, preventing downstream tool use and reducing unsafe behavior.

  4. 4

    File search can be configured as a vector store from uploaded documents, enabling grounded answers that match a specific knowledge base.

  5. 5

    A practical pattern is to create separate sub-agents for in-scope vs out-of-scope topics and route requests based on the classifier’s enum.

  6. 6

    Agents can be published and deployed via a chat interface option or exported through an Agents SDK for code-based integration.

  7. 7

    The main downside raised is potential lock-in to OpenAI’s Agent Kit and SDK rather than framework-agnostic portability.

Highlights

Agent Builder’s core pattern is safety-first routing: guardrails run before classification, and JSON enum outputs drive if/else workflow branches.
The Westworld demo shows retrieval grounding in action: pricing and itinerary details come from an uploaded markdown guide via file search.
Out-of-scope handling is explicit and reliable: Disneyland requests get routed to a refusal agent instead of attempting to answer.

Topics

Mentioned

Get summaries like this for any content

Videos, articles, research papers — all summarized by AI and searchable in one place.

Start building your library