跪拜 Guibai
← All articles
AI Programming

Kimi K3 Handles a Full-Stack WeChat Mini Program, Breaks Production, and Fixes Itself

By 孟健AI编程 ·
Read original on juejin.cn ↗ Google Translate ↗ Alt translation

A Chinese model now operates at the GPT-5.5 / Opus 4.8 tier on real full-stack projects, not just benchmarks. The production incident — where K3 broke the site, detected it, rolled back, diagnosed the root cause, and requested permission before redeploying — shows agentic coding tools are crossing from demo territory into systems that can self-correct under real constraints, which changes what teams can safely delegate.

Summary

A full-stack WeChat Mini Program for the ShipSolo platform was handed to Kimi K3 for the entire delivery cycle. The model first surveyed the existing codebase, D1 database schema, OAuth system, and domain constraints, surfacing four launch-blocking bugs before writing any code. It then proposed three backend data strategies with trade-off analyses, waited for human approval, and split the work across two parallel coder agents handling Worker interfaces and Mini Program fixes simultaneously.

During deployment, K3 built the OpenNext Worker on Windows and pushed it live, which broke all dynamic routes with 500 errors. It detected the failure through its own smoke test, rolled back immediately, traced the root cause to a Windows backslash-vs-forward-slash path mismatch in the build plugin, and proposed switching to Linux CI — requesting explicit permission before pushing the fix. The entire incident recovery happened without human intervention beyond the final authorization gate.

Benchmarks place K3 at 67.5 on DeepSWE (above GPT-5.5's 67.0), 88.3 on Terminal Bench 2.1, and first place on Program Bench at 77.8. The real-project experience confirms those numbers translate into practical delivery capability for medium-complexity systems, provided guardrails like smoke tests, rollback paths, and manual approval gates are built into the workflow.

Takeaways
K3 surveyed the entire existing codebase, database schema, OAuth flow, and domain constraints before writing any code, surfacing four launch-blocking bugs hidden in the repo.
Three backend data strategies were proposed with explicit trade-offs (reverse proxy + single D1, MySQL bidirectional sync, Cloudflare direct), and the model waited for human approval rather than choosing.
Two coder agents ran in parallel along dependency boundaries — Worker interfaces and Mini Program fixes — without blocking each other.
K3 deployed a broken build to production after a Windows path-separator mismatch produced empty route handlers, causing all dynamic routes to return 500.
The model detected the failure via its own smoke test, rolled back immediately, diagnosed the root cause by matching it to a known GitHub issue, and proposed switching to Linux CI.
Before executing the fix (push main), K3 explicitly requested human authorization rather than proceeding autonomously.
Benchmarks: DeepSWE 67.5 (above GPT-5.5's 67.0), Terminal Bench 2.1 88.3 (0.5 below GPT-5.6 Sol), Program Bench 77.8 (first place among listed models).
Smoke tests, pre-planned rollback paths, and manual approval gates for high-risk operations are non-negotiable when running coding agents on production systems.
Conclusions

The production incident is more instructive than the success: K3 broke the site, detected it, rolled back, diagnosed the cause, and requested permission before redeploying — all without human prompting. That self-contained recovery loop is what separates a demo agent from one you can trust on real infrastructure.

Benchmark scores and real-project capability aligned here in a way that is still rare. K3's Program Bench first-place ranking (77.8) translated directly into handling a four-layer stack with historical baggage, not a greenfield toy problem.

The model's instinct to stop and ask for permission before push main, DNS changes, or credential modifications suggests agentic coding tools are developing a usable permission model, but the author's insistence on process-level gates over model-level trust is the more durable takeaway.

Windows path-separator issues breaking OpenNext builds is a known, documented problem. K3 didn't discover it — it reproduced a known failure mode. The value was in the recovery, not the novelty of the bug.

Concepts & terms
OpenNext
An open-source adapter that packages Next.js applications for deployment on non-Vercel platforms like Cloudflare Workers, handling the translation between Next.js serverless functions and the target runtime.
D1
Cloudflare's serverless SQL database, built on SQLite, designed for use with Cloudflare Workers at the edge.
DeepSWE
A benchmark evaluating AI models on real-world software engineering tasks, measuring their ability to understand and modify existing codebases.
Terminal Bench 2.1
A benchmark that tests AI models on terminal-based tasks, including command-line operations, system administration, and debugging in shell environments.
ICP filing
China's Internet Content Provider registration requirement; any website or service hosted on mainland Chinese servers must obtain an ICP license, and WeChat Mini Programs can only communicate with domains that have completed this filing.
Source: juejin.cn ↗ Google Translate ↗ Backup ↗