Merge branch 'trustyai-explainability:main' into generation-detection

Author: saichandrapandraju

.github/workflows/build-and-push.yaml

@@ -54,27 +54,27 @@ jobs:
           echo "SHA: ${{ github.event.pull_request.head.sha }}"
           echo "MAIN IMAGE AT: ${{ vars.QUAY_RELEASE_REPO }}:latest"
           echo "CI IMAGE AT: quay.io/trustyai/guardrails-detector-huggingface-runtime-ci:${{ github.event.pull_request.head.sha }}"
-          echo "Built-In Detector CI IMAGE AT: quay.io/trustyai/builtin-detector-ci:${{ github.event.pull_request.head.sha }}"
+          echo "Built-In Detector CI IMAGE AT: quay.io/trustyai/guardrails-detector-built-in-ci:${{ github.event.pull_request.head.sha }}"
 
       # Set environments depending on context
       - name: Set CI environment
         if:  env.BUILD_CONTEXT == 'ci'
         run: |
           echo "TAG=${{ github.event.pull_request.head.sha }}" >> $GITHUB_ENV
           echo "IMAGE_NAME=quay.io/trustyai/guardrails-detector-huggingface-runtime-ci" >> $GITHUB_ENV
-          echo "BUILTIN_IMAGE_NAME=quay.io/trustyai/builtin-detector-ci" >> $GITHUB_ENV
+          echo "BUILTIN_IMAGE_NAME=quay.io/trustyai/guardrails-detector-built-in-ci" >> $GITHUB_ENV
       - name: Set main-branch environment
         if:  env.BUILD_CONTEXT == 'main'
         run: |
           echo "TAG=latest" >> $GITHUB_ENV
           echo "IMAGE_NAME=${{ vars.QUAY_RELEASE_REPO }}" >> $GITHUB_ENV
-          echo "BUILTIN_IMAGE_NAME=quay.io/trustyai/builtin-detector" >> $GITHUB_ENV
+          echo "BUILTIN_IMAGE_NAME=quay.io/trustyai/guardrails-detector-built-in" >> $GITHUB_ENV
       - name: Set tag environment
         if: env.BUILD_CONTEXT == 'tag'
         run: |
           echo "TAG=${{ github.ref_name }}" >> $GITHUB_ENV
           echo "IMAGE_NAME=${{ vars.QUAY_RELEASE_REPO }}" >> $GITHUB_ENV
-          echo "BUILTIN_IMAGE_NAME=quay.io/trustyai/builtin-detector" >> $GITHUB_ENV
+          echo "BUILTIN_IMAGE_NAME=quay.io/trustyai/guardrails-detector-built-in" >> $GITHUB_ENV
       #
       # Run docker commands
       - name: Put expiry date on CI-tagged image
@@ -113,7 +113,7 @@ jobs:
             PR image build completed successfully!
             
             📦 [PR image](https://quay.io/repository/trustyai/guardrails-detector-huggingface-runtime-ci?tab=tags): `quay.io/trustyai/guardrails-detector-huggingface-runtime-ci:${{ github.event.pull_request.head.sha }}`
-            📦 [PR image](https://quay.io/trustyai/builtin-detector-ci?tab=tags): `quay.io/trustyai/builtin-detector-ci:${{ github.event.pull_request.head.sha }}`
+            📦 [PR image](https://quay.io/trustyai/guardrails-detector-built-in-ci?tab=tags): `quay.io/trustyai/guardrails-detector-built-in-ci:${{ github.event.pull_request.head.sha }}`
       - name: Trivy scan
         uses: aquasecurity/[email protected]
         with:
@@ -136,11 +136,13 @@ jobs:
           exit-code: '0'
           ignore-unfixed: false
           vuln-type: 'os,library'
-      - name: Update Security tab
+      - name: Update Security tab - Huggingface
         uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
-      - name: Update Security tab
+          category: huggingface
+      - name: Update Security tab - Built-in
         uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results-built-in.sarif'
+          category: built-in

README.md

@@ -17,123 +17,37 @@ At the moment, the following detectors are supported:
 
 ## Building
 
-* `huggingface`: podman build -f detectors/Dockerfile.hf detectors
-* `llm_judge`: podman build -f detectors/Dockerfile.llm_judge detectors
-* `builtIn`: podman build -f detectors/Dockerfile.builtIn detectors
+To build the detector images, use the following commands:
+
+| Detector | Build Command |
+|----------|---------------|
+| `huggingface` | `podman build -t $TAG -f detectors/Dockerfile.hf detectors` |
+| `llm_judge` | `podman build -t $TAG -f detectors/Dockerfile.judge detectors` |
+| `builtIn` | `podman build -t $TAG -f detectors/Dockerfile.builtIn detectors` |
+
+Replace `$TAG` with your desired image tag (e.g., `my-detector:latest`).
+
 
 ## Running locally
-* `builtIn`: podman run -p 8080:8080 $BUILT_IN_IMAGE
-
-### File Type Validation Example
-```bash
-curl -X POST http://localhost:8080/api/v1/text/contents \
-  -H "Content-Type: application/json" \
-  -d '{
-    "contents": [
-      "{\"hello\": \"message\"}",
-      "not valid json"
-    ],
-    "detector_params": {
-      "file_type": [
-        "json"
-      ]
-    }
-  }'
-```
-Response:
-```json
-[
-  [],
-  [
-    {
-      "start": 0,
-      "end": 14,
-      "text": "not valid json",
-      "detection": "invalid_json",
-      "detection_type": "file_type",
-      "score": 1.0,
-      "evidences": null
-    }
-  ]
-]
-```
-
-### PII Validation Example
-```bash
-curl -X POST http://localhost:8080/api/v1/text/contents \
-  -H "Content-Type: application/json" \
-  -d '{
-    "contents": [
-      "Hi my email is [email protected]",
-      "There is a party@my house and you can reach me at 123-456-7890"
-    ],
-    "detector_params": {
-      "regex": [
-        "email", "us-phone-number"
-      ]
-    }
-  }' | jq
-```
-Response:
-```json
-[
-  [
-    {
-      "start": 15,
-      "end": 26,
-      "text": "[email protected]",
-      "detection": "email_address",
-      "detection_type": "pii",
-      "score": 1.0,
-      "evidences": null
-    }
-  ],
-  [
-    {
-      "start": 50,
-      "end": 62,
-      "text": "123-456-7890",
-      "detection": "us-phone-number",
-      "detection_type": "pii",
-      "score": 1.0,
-      "evidences": null
-    }
-  ]
-]
-```
-
-### Get list of built-in detection algorithms:
-```bash
-curl http://localhost:8080/registry | jq
-```
-Response:
-```json
-{
-  "regex": {
-    "credit-card": "Detect credit cards in the text contents (Visa, MasterCard, Amex, Discover, Diners Club, JCB) with Luhn check",
-    "email": "Detect email addresses in the text contents",
-    "ipv4": "Detect IPv4 addresses in the text contents",
-    "ipv6": "Detect IPv6 addresses in the text contents",
-    "us-phone-number": "Detect US phone numbers in the text contents",
-    "us-social-security-number": "Detect social security numbers in the text contents",
-    "uk-post-code": "Detect UK post codes in the text contents",
-    "$CUSTOM_REGEX": "Replace $CUSTOM_REGEX with a custom regex to define your own regex detector"
-  },
-  "file_type": {
-    "json": "Detect if the text contents is not valid JSON",
-    "xml": "Detect if the text contents is not valid XML",
-    "yaml": "Detect if the text contents is not valid YAML",
-    "json-with-schema:$SCHEMA": "Detect if the text contents does not satisfy a provided JSON schema. To specify a schema, replace $SCHEMA with a JSON schema.",
-    "xml-with-schema:$SCHEMA": "Detect if the text contents does not satisfy a provided XML schema. To specify a schema, replace $SCHEMA with an XML Schema Definition (XSD)",
-    "yaml-with-schema:$SCHEMA": "Detect if the text contents does not satisfy a provided schema. To specify a schema, replace $SCHEMA with a JSON schema. That's not a typo, you validate YAML with a JSON schema!"
-  }
-}
-
-```
+
+### Quick Start Commands
+
+| Detector | Run Command | Notes |
+|----------|-------------|-------|
+| `builtIn` | `podman run -p 8080:8080 $BUILT_IN_IMAGE` | Ready to use |
+| `huggingface` | `podman run -p 8000:8000 -e MODEL_DIR=/mnt/models/$MODEL_NAME -v $MODEL_PATH:/mnt/models/$MODEL_NAME:Z $HF_IMAGE` | Requires model download |
+| `llm_judge` | `podman run -p 8000:8000 -e VLLM_BASE_URL=$LLM_SERVER_URL $LLM_JUDGE_IMAGE` | Requires OpenAI-compatible LLM server |
+
+
+### Detailed Setup Instructions & Examples
+
+- **Built-in detector**: No additional setup required. Check out [built-in detector examples](docs/builtin_examples.md) to see how to use the built-in detectors for file type validation and personally identifiable information (PII) detection
+- **Hugging Face detector**: Check out [Hugging Face detector examples](docs/hf_examples.md) for a complete setup and examples on how to use the Hugging Face detectors for detecting toxic content and prompt injection
+- **LLM Judge detector**: Check out [LLM Judge detector examples](docs/llm_judge_examples.md) for a complete setup and examples on how to use any OpenAI API compatible LLM for content assessment with built-in metrics and custom natural-language criteria
 
 ## API
 See [IBM Detector API](https://foundation-model-stack.github.io/fms-guardrails-orchestrator/?urls.primaryName=Detector+API)
 
 ## License
 
-This project is licensed under the Apache License Version 2.0 - see the [LICENSE](./LICENSE) file for details.
+This project is licensed under the Apache License Version 2.0 - see the [LICENSE](./LICENSE) file for details.

detectors/Dockerfile.builtIn

@@ -23,4 +23,10 @@ COPY ./common /app/detectors/common
 COPY ./built_in/* /app
 
 EXPOSE 8080
-CMD ["uvicorn", "app:app", "--workers", "4", "--host", "0.0.0.0", "--port", "8080", "--log-config", "/app/detectors/common/log_conf.yaml"]
+
+# for backwards compatibility with existing k8s deployment configs
+RUN mkdir /app/bin &&\
+     echo '#!/bin/bash' > /app/bin/regex-detector &&\
+    echo "uvicorn app:app --workers 4 --host 0.0.0.0 --port 8080 --log-config /app/detectors/common/log_conf.yaml" >> /app/bin/regex-detector &&\
+    chmod +x /app/bin/regex-detector
+CMD ["/app/bin/regex-detector"]

detectors/Dockerfile.hf

@@ -23,7 +23,6 @@ RUN echo "$CACHEBUST"
 COPY ./common /common
 COPY ./huggingface/app.py /app
 COPY ./huggingface/detector.py /app
-COPY ./huggingface/scheme.py /app
 
 EXPOSE 8000
 CMD ["uvicorn", "app:app", "--workers", "4", "--host", "0.0.0.0", "--port", "8000", "--log-config", "/common/log_conf.yaml"]

detectors/huggingface/app.py

@@ -9,7 +9,7 @@
 
 from common.app import DetectorBaseAPI as FastAPI
 from detector import Detector
-from scheme import (
+from common.scheme import (
     ContentAnalysisHttpRequest,
     ContentsAnalysisResponse,
     Error,