Pin HuggingFace revisions in weights to commit SHAs on push

bolasim · bolasim · commit 3457f16bc5d1 · 2026-01-27T23:06:01.000-08:00
- Add hf_revision_resolver utility to resolve HF revisions to SHAs
- Modify BasetenRemote._prepare_push to pin unpinned HF revisions
- Resolves 'main' and missing revisions to commit SHAs
- Writes updated config.yaml with pinned revisions
- Ensures reproducible deployments (same config = same weights)
- Mirrors existing model_cache behavior but at push time
- Adds comprehensive tests for revision resolution

Fixes INF-2314
diff --git a/truss/remote/baseten/remote.py b/truss/remote/baseten/remote.py
@@ -179,6 +179,9 @@ def _prepare_push(
 
         config = truss_handle._spec._config
 
+        # Pin HuggingFace revisions in weights to commit SHAs
+        self._pin_hf_revisions_in_weights(truss_handle)
+
         config.validate_forbid_extra()
         encoded_config_str = base64_encoded_json_str(config.to_dict())
         validate_truss_config_against_backend(self._api, encoded_config_str)
@@ -199,6 +202,85 @@ def _prepare_push(
             team_id=team_id,
         )
 
+    def _pin_hf_revisions_in_weights(self, truss_handle: TrussHandle) -> None:
+        """Pin HuggingFace revisions in weights to commit SHAs.
+
+        This resolves unpinned revisions (e.g., "main", "dev", or missing revision)
+        to commit SHAs and writes the updated config back to config.yaml.
+
+        This ensures reproducible deployments - the same config always pulls the same weights.
+        """
+        from truss.util.hf_revision_resolver import (
+            build_hf_source,
+            is_commit_sha,
+            parse_hf_source,
+            resolve_hf_revision,
+        )
+
+        config = truss_handle._spec._config
+        weights = config.weights
+
+        if not weights or not weights.sources:
+            return
+
+        modified = False
+        changes = []
+
+        for source in weights.sources:
+            if not source.is_huggingface:
+                continue
+
+            try:
+                repo_id, revision = parse_hf_source(source.source)
+            except ValueError:
+                continue
+
+            # Skip if already a commit SHA
+            if is_commit_sha(revision):
+                continue
+
+            # If no revision specified, assume "main"
+            revision_to_resolve = revision if revision else "main"
+
+            # Resolve to commit SHA
+            # TODO: Extract token from source.auth_secret_name if available
+            try:
+                resolved_sha = resolve_hf_revision(
+                    repo_id, revision_to_resolve, token=None
+                )
+
+                if revision != resolved_sha:
+                    new_source = build_hf_source(repo_id, resolved_sha)
+
+                    source.source = new_source
+                    modified = True
+                    changes.append((repo_id, revision_to_resolve, resolved_sha))
+
+                    logging.info(
+                        f"Pinning HF revision: {repo_id}@{revision_to_resolve} "
+                        f"-> {resolved_sha[:8]}..."
+                    )
+            except Exception as e:
+                logging.warning(
+                    f"Failed to resolve {repo_id}@{revision_to_resolve}: {e}. "
+                    "Proceeding with unpinned revision."
+                )
+                continue
+
+        if modified:
+            # Write updated config back to file
+            config_path = truss_handle._truss_dir / "config.yaml"
+            config.write_to_yaml_file(config_path, verbose=True)
+
+            logging.warning(
+                "\n⚠️  Your config.yaml has been modified to pin HuggingFace revisions to commit SHAs."
+            )
+            logging.warning(
+                "   This ensures reproducible deployments. Modified sources:\n"
+            )
+            for repo_id, old_rev, new_sha in changes:
+                logging.warning(f"   {repo_id}@{old_rev} -> {new_sha[:8]}...\n")
+
     def push(  # type: ignore
         self,
         truss_handle: TrussHandle,
diff --git a/truss/tests/util/test_hf_revision_resolver.py b/truss/tests/util/test_hf_revision_resolver.py
@@ -0,0 +1,120 @@
+"""Tests for HuggingFace revision resolver."""
+
+from unittest.mock import Mock, patch
+
+import pytest
+
+from truss.util.hf_revision_resolver import (
+    build_hf_source,
+    is_commit_sha,
+    parse_hf_source,
+    resolve_hf_revision,
+)
+
+
+def test_parse_hf_source_with_revision():
+    """Test parsing HF source with explicit revision."""
+    repo_id, revision = parse_hf_source("hf://meta-llama/Llama-2-7b@main")
+    assert repo_id == "meta-llama/Llama-2-7b"
+    assert revision == "main"
+
+
+def test_parse_hf_source_with_sha():
+    """Test parsing HF source with commit SHA."""
+    sha = "a" * 40
+    repo_id, revision = parse_hf_source(f"hf://meta-llama/Llama-2-7b@{sha}")
+    assert repo_id == "meta-llama/Llama-2-7b"
+    assert revision == sha
+
+
+def test_parse_hf_source_without_revision():
+    """Test parsing HF source without revision (should return None)."""
+    repo_id, revision = parse_hf_source("hf://meta-llama/Llama-2-7b")
+    assert repo_id == "meta-llama/Llama-2-7b"
+    assert revision is None
+
+
+def test_parse_hf_source_invalid():
+    """Test parsing non-HF source raises ValueError."""
+    with pytest.raises(ValueError, match="Not a HuggingFace source"):
+        parse_hf_source("s3://bucket/path")
+
+    with pytest.raises(ValueError, match="Not a HuggingFace source"):
+        parse_hf_source("gs://bucket/path")
+
+
+def test_is_commit_sha():
+    """Test commit SHA detection."""
+    # Valid SHAs
+    assert is_commit_sha("a" * 40)
+    assert is_commit_sha("0123456789abcdef" * 2 + "01234567")
+    assert is_commit_sha("f" * 40)
+
+    # Invalid SHAs
+    assert not is_commit_sha("main")
+    assert not is_commit_sha("v1.0.0")
+    assert not is_commit_sha("a" * 39)  # Too short
+    assert not is_commit_sha("a" * 41)  # Too long
+    assert not is_commit_sha(None)
+    assert not is_commit_sha("")
+    assert not is_commit_sha("gggggggggggggggggggggggggggggggggggggggg")  # Invalid hex
+
+
+def test_build_hf_source():
+    """Test building HF source URI."""
+    sha = "abc1230000000000000000000000000000000000"
+    uri = build_hf_source("meta-llama/Llama-2-7b", sha)
+    assert uri == f"hf://meta-llama/Llama-2-7b@{sha}"
+
+
+def test_build_hf_source_with_branch():
+    """Test building HF source URI with branch name."""
+    uri = build_hf_source("meta-llama/Llama-2-7b", "main")
+    assert uri == "hf://meta-llama/Llama-2-7b@main"
+
+
+@patch("truss.util.hf_revision_resolver.HfApi")
+def test_resolve_hf_revision(mock_hf_api):
+    """Test resolving HF revision to SHA."""
+    mock_repo_info = Mock()
+    mock_repo_info.sha = "a" * 40
+    mock_hf_api.return_value.repo_info.return_value = mock_repo_info
+
+    sha = resolve_hf_revision("meta-llama/Llama-2-7b", "main")
+    assert sha == "a" * 40
+
+    # Verify API was called correctly
+    mock_hf_api.assert_called_once_with(token=None)
+    mock_hf_api.return_value.repo_info.assert_called_once_with(
+        repo_id="meta-llama/Llama-2-7b", revision="main", repo_type="model"
+    )
+
+
+@patch("truss.util.hf_revision_resolver.HfApi")
+def test_resolve_hf_revision_without_revision(mock_hf_api):
+    """Test resolving HF revision when no revision specified (uses default)."""
+    mock_repo_info = Mock()
+    mock_repo_info.sha = "b" * 40
+    mock_hf_api.return_value.repo_info.return_value = mock_repo_info
+
+    sha = resolve_hf_revision("meta-llama/Llama-2-7b", None)
+    assert sha == "b" * 40
+
+    # Verify revision=None was passed
+    mock_hf_api.return_value.repo_info.assert_called_once_with(
+        repo_id="meta-llama/Llama-2-7b", revision=None, repo_type="model"
+    )
+
+
+@patch("truss.util.hf_revision_resolver.HfApi")
+def test_resolve_hf_revision_with_token(mock_hf_api):
+    """Test resolving HF revision with auth token."""
+    mock_repo_info = Mock()
+    mock_repo_info.sha = "c" * 40
+    mock_hf_api.return_value.repo_info.return_value = mock_repo_info
+
+    sha = resolve_hf_revision("meta-llama/Llama-2-7b", "main", token="hf_test_token")
+    assert sha == "c" * 40
+
+    # Verify token was passed to HfApi
+    mock_hf_api.assert_called_once_with(token="hf_test_token")
diff --git a/truss/util/hf_revision_resolver.py b/truss/util/hf_revision_resolver.py
@@ -0,0 +1,88 @@
+"""Resolve HuggingFace revisions to commit SHAs."""
+
+import logging
+import re
+from typing import Optional
+
+from huggingface_hub import HfApi
+from huggingface_hub.utils import HfHubHTTPError
+
+logger = logging.getLogger(__name__)
+
+
+def resolve_hf_revision(
+    repo_id: str, revision: Optional[str] = None, token: Optional[str] = None
+) -> str:
+    """Resolve HF revision to commit SHA (mirrors Rust truss-transfer logic).
+
+    This does the same thing as the Rust code in truss-transfer/src/create/hf_metadata.rs:
+    - Calls api_repo.info().await
+    - Extracts repo_info.sha
+
+    Args:
+        repo_id: HuggingFace repo ID (e.g., "meta-llama/Llama-2-7b")
+        revision: Branch, tag, or SHA (None = default branch "main")
+        token: Optional HF token for private repos
+
+    Returns:
+        Resolved commit SHA (40-char hex string)
+
+    Raises:
+        HfHubHTTPError: If repo doesn't exist or revision is invalid
+    """
+    try:
+        api = HfApi(token=token)
+        repo_info = api.repo_info(repo_id=repo_id, revision=revision, repo_type="model")
+        return repo_info.sha
+    except HfHubHTTPError as e:
+        logger.error(f"Failed to resolve HF revision for {repo_id}@{revision}: {e}")
+        raise
+
+
+def is_commit_sha(revision: Optional[str]) -> bool:
+    """Check if revision is already a 40-character commit SHA."""
+    if not revision:
+        return False
+    return bool(re.match(r"^[0-9a-f]{40}$", revision))
+
+
+def parse_hf_source(source: str) -> tuple[str, Optional[str]]:
+    """Parse HuggingFace source URI into repo_id and revision.
+
+    Args:
+        source: URI like "hf://owner/repo@revision" or "hf://owner/repo"
+
+    Returns:
+        Tuple of (repo_id, revision or None)
+
+    Examples:
+        >>> parse_hf_source("hf://meta-llama/Llama-2-7b@main")
+        ("meta-llama/Llama-2-7b", "main")
+        >>> parse_hf_source("hf://meta-llama/Llama-2-7b")
+        ("meta-llama/Llama-2-7b", None)
+    """
+    if not source.startswith("hf://"):
+        raise ValueError(f"Not a HuggingFace source: {source}")
+
+    # Remove "hf://" prefix
+    path = source[5:]
+
+    # Split on @ to get repo_id and revision
+    if "@" in path:
+        repo_id, revision = path.rsplit("@", 1)
+        return repo_id, revision
+
+    return path, None
+
+
+def build_hf_source(repo_id: str, revision: str) -> str:
+    """Build HuggingFace source URI from repo_id and revision.
+
+    Args:
+        repo_id: HuggingFace repo ID
+        revision: Commit SHA or branch/tag name
+
+    Returns:
+        URI like "hf://owner/repo@revision"
+    """
+    return f"hf://{repo_id}@{revision}"
