Capstone: ship a composed LLM feature that holds at the seams

Build a production-grade RAG-backed assistant for a real corpus (your docs, a support KB, or a policy set) that composes prompt caching, tool calls, RAG, and streaming under an enforced per-conversation cost budget, gated by end-to-end evals — and prove each seam holds with before/after numbers.

• Stand up a streaming chat endpoint (SSE or equivalent) against a real LLM API, answering questions over a corpus you index into a vector store with chunking + embeddings.
• Compose all four layers in one request path: a cache_control-marked STATIC prefix (system rules + tool schemas), RAG context injected AFTER the breakpoint, at least two real tools (e.g. lookup_order, get_policy) the model can call mid-turn, and token streaming to the client.
• Implement the stream as a state machine (text / tool_use_requested / awaiting_tool_result / resumed): on a tool_use stop, run the tool, append exactly one tool_result per tool_use id, and resume — never resolve the UI on a tool_use stop.
• Enforce a budget, don't just alert: a hard gate before every model call asserting step ≤ MAX_STEPS and spent ≤ BUDGET_USD, refusing the call when a ceiling is hit, plus dedupe by hash(tool_name, args) to kill repeat-call loops.
• Rerank retrieval down to the few relevant chunks (top 3–5) and verify the static prefix's cache hit rate stays high under varied queries — measure read vs write tokens from the API usage fields.
• Build an end-to-end eval suite that runs the LIVE retrieval path on a labelled question set, scoring both the final answer (correctness/faithfulness) and retrieval (recall@k, context precision) — not generation on frozen golden context.
• Wire it into CI as a deploy gate: a retriever or prompt change that regresses end-to-end answer quality or retrieval metrics must fail the build.

• A seam table with before/after numbers: cache hit rate (target ≥70% on the static prefix under varied queries), cost per conversation (under the enforced budget), streamed time-to-first-token, and end-to-end answer/retrieval scores — all measured, not estimated.
• A demonstrated runaway-prevention test: feed an input that triggers a repeat-call loop and show the budget gate refuses the next call and returns an error instead of spending unbounded dollars.
• A demonstrated stream/tool test: a question that triggers a tool mid-turn streams text, runs the tool, and resumes to a complete answer with the spinner resolving correctly — and a truncated/orphaned tool_use is detected and recovered, not left dangling.
• A demonstrated eval gate: intentionally degrade retrieval (e.g. drop the reranker or shrink top_k) and show the end-to-end suite goes red in CI while a generation-only suite on frozen context would have stayed green.
• A one-page write-up tracing one real request through all four layers, naming what each boundary assumes and how your composition prevents the upstream layer from violating it.