A step-by-step guide for auditing AI agents in production — policies, evidence, sampling, and findings.