wooo/awoooi
1
1
Fork 0
Code Issues 2 Pull Requests 1 Actions 2 Packages Projects Releases Wiki Activity
Files
fb5c6fbaddfeb17a0a9ad0263ca59d912676d259
awoooi/apps/api/src/services/schema_validator.py
Your Name 8629ac709b
Some checks failed
run-migration / migrate (push) Failing after 59s
Details
Code Review / ai-code-review (push) Successful in 1m8s
Details
Type Sync Check / check-type-sync (push) Successful in 2m27s
Details
feat(awooop): Phase 1-8 完整實作 — AwoooP Agent Platform 六平面架構 
## Phase 1-3: Control Plane + Contract System
- awooop_phase1_control_plane_2026-05-04.sql: 12 張核心表 + RLS
- awooop_phase1_batch1_rls_2026-05-04.sql: 全部 FORCE RLS + GRANT
- packages/awooop-contracts/: 六合約 JSON Schema + golden fixtures
- src/models/awooop_contracts.py: Pydantic v2 contract models(extra=forbid)
- src/repositories/contract_repository.py: contract lifecycle(draft→published→active)
- src/services/contract_service.py: HMAC publish sig + Redis multi-sig activate
- src/services/schema_validator.py: LLM output validator(retry×3, E-SCHEMA-001)

## Phase 2: Tenant Isolation
- awooop_phase2_budget_ledger_2026-05-04.sql: budget_ledger + RLS
- src/services/budget_service.py: Token Budget Hard Kill 三層防線
- src/core/context.py: PROJECT_ID ContextVar(31 background loop 自動繼承)
- src/db/base.py + models.py: project_id 欄位 + RLS set_config 注入
- src/hermes/nl_gateway.py: project_id Redis key 前綴(Phase A 雙寫)
- src/services/anomaly_counter.py: per-project 改造(Phase A fallback)

## Phase 4: Platform Shell in Shadow Mode
- awooop_phase4_run_state_2026-05-04.sql: run_state + step_journal + idempotency
- src/services/run_state_machine.py: 8-state FSM + SKIP LOCKED + stale reaper
- src/services/platform_runtime.py: UUID v7 + W3C trace_id + shadow_execute
- src/services/audit_sink.py: PII/secret redaction 9 patterns
- src/api/v1/platform/runs.py: POST/GET /v1/platform/runs(Router→Service 架構)
- src/workers/platform_worker.py: SKIP LOCKED worker + heartbeat + reaper loop
- src/main.py: platform router + lifespan worker start/stop

## Phase 5: MCP Gateway 五閘門
- awooop_phase5_mcp_gateway_2026-05-04.sql: 4 表 + RLS
- src/plugins/mcp/gateway.py: McpGateway(Gate 1~5, E-MCP-GATE-001~009)
- src/plugins/mcp/redaction_middleware.py: 雙層 redaction + 16K 截斷
- src/plugins/mcp/registry.py: __provider name mangling(ADR-116)
- src/plugins/mcp/credential_resolver.py: k8s secret ref 解析
- tests/test_mcp_credential_isolation.py: 10 個迴歸測試(secret leak 防再現)

## Phase 6-8: EwoooC + Channel Hub + Approval Token
- awooop_phase6_ewoooc_onboarding_2026-05-04.sql: ewoooc tenant + 4 read-only MCP tools
- awooop_phase7_channel_hub_2026-05-04.sql: conversation_event + outbound_message
- src/services/provider_proxy.py: ProviderProxy + PlatformEnvelope(ADR-115)
- src/services/channel_hub.py: Telegram inbound mirror + Progressive Feedback(30s)
- src/services/awooop_approval_token.py: HS256 + jti NX replay 防護 + suggest mode

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-04 19:31:53 +08:00

263 lines
10 KiB
Python
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
"""
LLM Output Schema Validator
=============================
AwoooP Phase 3.3: LLM 輸出 → schema 驗證 → retry 機制ADR-112
2026-05-04 ogt + Claude Sonnet 4.6
設計原則:
- LLM 輸出必須通過 Pydantic schema 驗證才能到達 channel adapter
- 驗證失敗 → 自動 retry最多 3 次,含 retry prompt
- 3 次全部失敗 → 拋出 SchemaValidationErrorE-SCHEMA-001
- 支援六合約家族 + 自訂 Pydantic model
位置:介於 LLM response 和 channel adapter 之間
呼叫方:任何需要結構化 LLM 輸出的 serviceplaybook_generator, decision_manager 等)
"""
from __future__ import annotations
import json
import re
from typing import Any, TypeVar
import structlog
from pydantic import BaseModel, ValidationError
logger = structlog.get_logger(__name__)
T = TypeVar("T", bound=BaseModel)
_MAX_RETRIES = 3
_JSON_EXTRACT_RE = re.compile(r"```(?:json)?\s*(\{[\s\S]*?\})\s*```|(\{[\s\S]*\})", re.DOTALL)
# ─────────────────────────────────────────────────────────────────────────────
# 錯誤定義
# ─────────────────────────────────────────────────────────────────────────────
class SchemaValidationError(Exception):
"""LLM 輸出連續 3 次 schema 驗證失敗"""
error_code: str = "E-SCHEMA-001"
def __init__(self, model_name: str, attempts: int, last_error: str) -> None:
self.model_name = model_name
self.attempts = attempts
self.last_error = last_error
super().__init__(
f"[E-SCHEMA-001] LLM 輸出 {attempts} 次驗證失敗 "
f"(model={model_name}): {last_error}"
)
# ─────────────────────────────────────────────────────────────────────────────
# JSON 萃取(容錯解析)
# ─────────────────────────────────────────────────────────────────────────────
def extract_json_from_llm_output(raw: str) -> dict[str, Any] | None:
"""
從 LLM 原始輸出中萃取 JSON。
策略:
1. 直接 json.loads最常見LLM 直接回傳 JSON
2. 從 ```json ... ``` 程式碼區塊萃取
3. 找第一個 { ... } 區塊嘗試解析
"""
raw = raw.strip()
# 策略 1直接解析
try:
obj = json.loads(raw)
if isinstance(obj, dict):
return obj
except json.JSONDecodeError:
pass
# 策略 2 + 3正則萃取
for match in _JSON_EXTRACT_RE.finditer(raw):
candidate = match.group(1) or match.group(2)
if candidate:
try:
obj = json.loads(candidate)
if isinstance(obj, dict):
return obj
except json.JSONDecodeError:
continue
return None
# ─────────────────────────────────────────────────────────────────────────────
# Retry prompt builder
# ─────────────────────────────────────────────────────────────────────────────
def build_retry_prompt(
original_prompt: str,
failed_output: str,
validation_error: str,
model_name: str,
attempt: int,
) -> str:
"""
建立包含錯誤回饋的 retry prompt。
讓 LLM 知道上次輸出哪裡出錯,引導修正。
"""
return (
f"{original_prompt}\n\n"
f"---\n"
f"[SCHEMA VALIDATION RETRY {attempt}/{_MAX_RETRIES}]\n"
f"上次回應未通過結構驗證({model_name}),請修正以下問題後重新回應:\n\n"
f"驗證錯誤:\n{validation_error}\n\n"
f"上次回應(供參考):\n{failed_output[:500]}...\n"
f"---\n\n"
f"請只回傳符合格式的 JSON 物件,不要包含任何額外說明。"
)
# ─────────────────────────────────────────────────────────────────────────────
# Core validator
# ─────────────────────────────────────────────────────────────────────────────
async def validate_llm_output(
*,
raw_output: str,
model_cls: type[T],
llm_caller: Any, # Callable[[str], Awaitable[str]] — 供 retry 使用
original_prompt: str,
context: dict[str, Any] | None = None,
) -> T:
"""
驗證 LLM 輸出是否符合 Pydantic model。
Args:
raw_output: LLM 第一次回傳的原始字串
model_cls: 目標 Pydantic model class
llm_caller: async callable(prompt: str) -> str用於 retry
original_prompt: 原始 promptretry 時附加錯誤回饋)
context: 額外 logging context
Returns:
驗證成功的 model instance
Raises:
SchemaValidationError: 連續 3 次失敗後拋出
"""
model_name = model_cls.__name__
ctx = context or {}
current_output = raw_output
last_error = ""
for attempt in range(1, _MAX_RETRIES + 1):
# 1. 萃取 JSON
parsed = extract_json_from_llm_output(current_output)
if parsed is None:
last_error = "無法從 LLM 輸出中萃取 JSON 物件"
logger.warning(
"schema_validator_no_json",
model_name=model_name,
attempt=attempt,
output_preview=current_output[:200],
**ctx,
)
else:
# 2. Pydantic 驗證
try:
instance = model_cls.model_validate(parsed)
logger.info(
"schema_validator_passed",
model_name=model_name,
attempt=attempt,
**ctx,
)
return instance
except ValidationError as exc:
last_error = exc.json(indent=None)
logger.warning(
"schema_validator_failed",
model_name=model_name,
attempt=attempt,
error=last_error[:500],
**ctx,
)
# 3. Retry如果不是最後一次
if attempt < _MAX_RETRIES:
retry_prompt = build_retry_prompt(
original_prompt=original_prompt,
failed_output=current_output,
validation_error=last_error,
model_name=model_name,
attempt=attempt,
)
try:
current_output = await llm_caller(retry_prompt)
except Exception as exc:
logger.warning(
"schema_validator_llm_retry_failed",
model_name=model_name,
attempt=attempt,
error=str(exc),
**ctx,
)
# LLM 呼叫本身失敗,保留上次 output繼續嘗試或直接結束
break
# 3 次全失敗
logger.error(
"schema_validator_exhausted",
model_name=model_name,
total_attempts=_MAX_RETRIES,
last_error=last_error[:500],
**ctx,
)
raise SchemaValidationError(model_name, _MAX_RETRIES, last_error)
# ─────────────────────────────────────────────────────────────────────────────
# 便利方法:從 contract family 名稱驗證(不需知道具體 model class
# ─────────────────────────────────────────────────────────────────────────────
async def validate_llm_output_by_family(
*,
raw_output: str,
contract_family: str,
llm_caller: Any,
original_prompt: str,
context: dict[str, Any] | None = None,
) -> BaseModel:
"""
依 contract_family 自動選擇 model class 並驗證。
適合 generic pipeline 呼叫(不知道具體 model
"""
from src.models.awooop_contracts import CONTRACT_FAMILY_MODELS, VALID_CONTRACT_FAMILIES
model_cls = CONTRACT_FAMILY_MODELS.get(contract_family)
if model_cls is None:
raise ValueError(
f"未知 contract_family: {contract_family!r}"
f"合法值:{sorted(VALID_CONTRACT_FAMILIES)}"
)
return await validate_llm_output(
raw_output=raw_output,
model_cls=model_cls,
llm_caller=llm_caller,
original_prompt=original_prompt,
context=context,
)
# ─────────────────────────────────────────────────────────────────────────────
# 同步版本(非 LLM retry只做一次驗證— 供測試和非 LLM 路徑使用
# ─────────────────────────────────────────────────────────────────────────────
def validate_once(raw: str | dict[str, Any], model_cls: type[T]) -> T:
"""
單次驗證,不做 retry。
適合:已知格式正確的內部資料、測試 fixture 驗證。
"""
if isinstance(raw, str):
parsed = extract_json_from_llm_output(raw)
if parsed is None:
raise SchemaValidationError(model_cls.__name__, 1, "無法萃取 JSON")
return model_cls.model_validate(parsed)
return model_cls.model_validate(raw)
Reference in New Issue View Git Blame Copy Permalink