Skip to content
EvalHub mascot EvalHub
Docs Blog

Evaluation-Driven Development

Evaluation-Driven Development (EDD) is the AI equivalent of Test-Driven Development (TDD). Instead of writing unit tests before code, you define evaluation criteria before deploying or fine-tuning a model. EvalHub’s agent metadata powers each phase of the cycle — agents discover what to measure, construct valid jobs, and interpret results without hardcoded knowledge.

See also the animated MCP EDD Workflow diagram on the Home page and the edd_workflow MCP prompt.

The EDD cycle

Section titled “The EDD cycle”
PhaseGoalAgent metadata used
DefineChoose the right evaluations and set thresholdsevaluates, recommended_when, target_type
MeasureRun evaluations and capture scoreshints, collection pass thresholds
IterateImprove the model and re-evaluateresult_interpretation, score_ranges, complements

Phase 1: Define criteria

Section titled “Phase 1: Define criteria”

Discover evaluations that match the user’s goals. Never assume provider or collection IDs exist — always fetch live metadata from the API.

  1. Match user intent to evaluates tags

    Terminal window
    export EVALHUB_BASE_URL="https://evalhub.apps.my-cluster.example.com"
    export EVALHUB_TOKEN="$(oc whoami -t)"
    export EVALHUB_TENANT="eval-test"

    Filter providers by capability:

    import os
    from evalhub import SyncEvalHubClient
    

    with SyncEvalHubClient(
        base_url=os.environ["EVALHUB_BASE_URL"],
        auth_token=os.environ["EVALHUB_TOKEN"],
        tenant=os.environ["EVALHUB_TENANT"],
    ) as client:
        safety_providers = client.providers.list(evaluates="safety")
        for p in safety_providers:
            if p.agent:
                print(p.resource.id, "", p.agent.summary)

    Or via MCP: call discover_providers with {"evaluates": ["safety"]}.

  2. Filter by target type

    If you know what the user is evaluating:

    agent_providers = client.providers.list(target_type="agent")
    model_providers = client.providers.list(target_type="model")
    perf_providers = client.providers.list(target_type="inference_server")

  3. Confirm with recommended_when

    Read the provider’s recommended_when strings to verify the match. These are natural-language conditions written for LLM consumption.

  4. Set thresholds

    • Read result_interpretation for metric direction and baselines (e.g. Garak: lower attack_success_rate is better; scores above 0.3 indicate vulnerability)
    • Check benchmark score_ranges when available (e.g. "0.0-0.25" = below random chance for 4-choice MCQ)
    • Start conservatively; tighten thresholds as the model improves

Phase 2: Measure scores

Section titled “Phase 2: Measure scores”

Run the evaluation using IDs discovered in Phase 1. Read hints before constructing the job request.

  1. Read operational hints

    provider = client.providers.get("garak")
    if provider.agent:
        for hint in provider.agent.hints:
            print(hint)

    Example hints for Garak:

    • The model endpoint must support OpenAI-compatible chat completions
    • Use the quick benchmark for a fast smoke test (~2 minutes)

  2. Submit the evaluation

    from evalhub.models.api import (
        BenchmarkConfig,
        JobSubmissionRequest,
        ModelConfig,
    )
    

    job = client.jobs.submit(JobSubmissionRequest(
        name="edd-safety-baseline",
        model=ModelConfig(
            url="http://vllm:8000/v1",
            name="mistral-7b-instruct",
        ),
        benchmarks=[BenchmarkConfig(id="quick", provider_id="garak")],
    ))
    result = client.jobs.wait_for_completion(job.id, timeout=3600)

    Or submit a collection for a comprehensive assessment:

    from evalhub.models.api import CollectionConfig, JobSubmissionRequest, ModelConfig
    

    job = client.jobs.submit(JobSubmissionRequest(
        name="edd-safety-suite",
        model=ModelConfig(url="http://vllm:8000/v1", name="mistral-7b-instruct"),
        collection=CollectionConfig(id="safety-and-fairness-v1"),
    ))

  3. Interpret results using agent metadata

    After the job completes, use result_interpretation to explain scores:

    MetricValueInterpretation
    attack_success_rate0.15Lower is better; above 0.3 indicates significant vulnerability
    Collection aggregate0.82Weighted average; pass threshold for Safety & Fairness v1 is 0.758

    The MCP get_job_status tool enriches completed benchmarks with result_interpretation and complements from provider agent metadata.

Phase 3: Iterate

Section titled “Phase 3: Iterate”

If thresholds are not met, improve the model and re-evaluate. Tag each run (e.g. edd-iteration-1, edd-iteration-2) so you can compare in MLflow.

Iteration strategies:

  1. Prompt engineering — adjust system prompts, few-shot examples
  2. Fine-tuning — additional training on domain-specific data
  3. Model selection — try a different base model
  4. RAG improvements — better retrieval, re-ranking, chunking
  5. Safety guardrails — add or tune content filters

After each iteration, check complements for follow-up evaluations. For example, after a Garak safety scan, complements: [lm_evaluation_harness, guidellm] suggests running accuracy benchmarks and throughput profiling.

Worked example: safety EDD

Section titled “Worked example: safety EDD”

Context: A developer is refactoring safety guardrails on a chat model and wants to measure impact before and after.

Define:

Use the edd_workflow MCP prompt with application_type: safety, or discover manually:

providers = client.providers.list(evaluates="safety", target_type="model")
# Recommend: garak (red-teaming) + safety-and-fairness-v1 collection (bias, toxicity, ethics)

Measure (before):

Run Garak quick benchmark and the Safety & Fairness collection. Record baseline scores.

Iterate:

Developer refactors guardrails.

Measure (after):

Re-run the same evaluations. Compare:

  • Garak attack_success_rate — should not increase
  • Collection aggregate score — should remain above 0.758
  • Individual benchmark scores — check result_interpretation for per-metric guidance

Agent response example:

Your guardrail refactor improved the Garak attack success rate from 0.22 to 0.15 (lower is better). The Safety & Fairness collection aggregate rose from 0.76 to 0.82, now above the 0.758 pass threshold. The toxigen benchmark improved most — toxicity avoidance is stronger. Consider running lm_evaluation_harness next (listed in complements) to check whether accuracy regressed.

Using the MCP edd_workflow prompt

Section titled “Using the MCP edd_workflow prompt”

The edd_workflow prompt provides structured guidance for each application type:

TypeDefineMeasureIterate
ragRetrieval quality and generation accuracy targetsRAG-specific benchmarksRetrieval pipeline and generation prompts
agentTask completion and tool use accuracyTool call correctness and task success rateAgent prompts and guardrails
safetySafety requirements and acceptable thresholdsToxicity, bias, harmful contentSafety guardrails and content filters
classifierPer-class accuracy targetsClass imbalance and edge casesClassification prompts and examples

Ask your AI agent:

Use the edd_workflow prompt for a safety application

The agent receives a structured Define → Measure → Iterate workflow and uses EvalHub tools and agent metadata to execute each phase.

Section titled “Related”
Agent Discoverability Metadata model and discovery APIs
MCP Prompts edd_workflow, evaluate_model, compare_runs
Agent Skills Skill scripts for discovery and EDD workflows
MCP Tools submit_evaluation and get_job_status