DOC: idempotenc
STATUS: ● PUBLISHED
CONCEPT

Idempotency in Data Pipelines

Why the same run twice should produce the same result once.

ANTHONY PENA · @FROGWEBP MAY 24, 2026 5 MIN READ

An idempotent operation is one you can run any number of times and get the same result. In data engineering, this is the property that makes pipelines safe to retry, re-run, and recover from. It’s the one thing that separates pipelines that fail gracefully from ones that corrupt data when they fail.

Why idempotency matters

Pipelines fail. The network blips, a dependency is slow, the cluster dies mid-run. If your response to failure is “just run it again,” you need the re-run to not double-count, double-insert, or compound the state the first run left behind.

Non-idempotent pipeline: fail halfway through → retry → events processed twice → metrics inflated.

Idempotent pipeline: fail halfway through → retry → same result as if the first attempt completed cleanly.

The four techniques

1. Upsert, not insert. INSERT ... ON CONFLICT DO UPDATE replaces “add a row” with “ensure this row exists with these values.” Re-running the same event twice produces one row, not two.

2. Deterministic IDs. If the row’s identity is derived from its content (e.g., MD5(event_id || date || type)), the upsert key is stable across runs. The same event always maps to the same row.

3. Delete-then-insert for aggregates. If you’re re-materializing a partition or a day’s aggregates, delete the target window first and recompute from scratch. The result is always exactly what the source data says, regardless of how many times you run.

4. Status columns with idempotent transitions. pending → processing → done. A re-run of a “done” row is a no-op. FOR UPDATE SKIP LOCKED (in PostgreSQL) handles concurrent workers claiming rows exactly once.

What idempotency is not

Idempotency is not the same as exactly-once delivery. Exactly-once is a guarantee from the message broker that it never delivers a duplicate. Idempotency is a property of your consumer that makes duplicates harmless even when the broker delivers them.

Build idempotent consumers; treat exactly-once delivery as a nice-to-have.

Takeaway

Design every pipeline stage to be answerable to the question: “what happens if this runs twice?” If the answer is “the same thing as running once,” you have an idempotent pipeline. If the answer is “I hope it doesn’t,” you have a fragile one.

@frogwebp brand mark
ANTHONY PENA · @FROGWEBP
I build data systems and write about everything around them, the architecture, the failures, what each one teaches me. Documenting in public since 2021: the process, not just the result.
THE CODEX THE LOG
// MORE IN CONCEPT
CONCEPT JUN 19
REFRESH MATERIALIZED VIEW CONCURRENTLY: How It Works, How to Break It
The incremental refresh, and the one mistake that turns it into a full rewrite.
5 MIN READ →
CONCEPT JUN 08
Incremental Materialized Views, Explained
The difference between 'recompute on a timer' and 'update as data arrives.'
5 MIN READ →
CONCEPT JUN 07
Star Schema vs Snowflake — When to Actually Use Each
Both are dimensional models. The difference is how far you normalize.
6 MIN READ →

// NEWSLETTER — THE BUILD LOG SIGNAL

When I ship something or learn something worth keeping, it lands here first — build logs, concepts, and the honest process behind them. Come along; no spam, leave anytime.