piotr/innercontext
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
innercontext/backend/innercontext/validators/routine_validator.py
Piotr Oleszczyk 2a9391ad32 feat(api): add LLM response validation and input sanitization 
Implement Phase 1: Safety & Validation for all LLM-based suggestion engines.

- Add input sanitization module to prevent prompt injection attacks
- Implement 5 comprehensive validators (routine, batch, shopping, product parse, photo)
- Add 10+ critical safety checks (retinoid+acid conflicts, barrier compatibility, etc.)
- Integrate validation into all 5 API endpoints (routines, products, skincare)
- Add validation fields to ai_call_logs table (validation_errors, validation_warnings, auto_fixed)
- Create database migration for validation fields
- Add comprehensive test suite (9/9 tests passing, 88% coverage on validators)

Safety improvements:
- Blocks retinoid + acid conflicts in same routine/day
- Rejects unknown product IDs
- Enforces min_interval_hours rules
- Protects compromised skin barriers
- Prevents prohibited fields (dose, amount) in responses
- Validates all enum values and score ranges

All validation failures are logged and responses are rejected with HTTP 502.
2026-03-06 10:16:47 +01:00

312 lines
11 KiB
Python
Raw Blame History

"""Validator for routine suggestions (single day AM/PM)."""
from dataclasses import dataclass
from datetime import date
from typing import Any
from uuid import UUID
from innercontext.validators.base import BaseValidator, ValidationResult
@dataclass
class RoutineValidationContext:
"""Context needed to validate a routine suggestion."""
valid_product_ids: set[UUID]
"""Set of product IDs that exist in the database."""
routine_date: date
"""The date this routine is for."""
part_of_day: str
"""'am' or 'pm'"""
leaving_home: bool | None
"""Whether user is leaving home (for SPF check)."""
barrier_state: str | None
"""Current barrier state: 'intact', 'mildly_compromised', 'compromised'"""
products_by_id: dict[UUID, Any]
"""Map of product_id -> Product object for detailed checks."""
last_used_dates: dict[UUID, date]
"""Map of product_id -> last used date."""
just_shaved: bool = False
"""Whether user just shaved (affects context_rules check)."""
class RoutineSuggestionValidator(BaseValidator):
"""Validates routine suggestions for safety and correctness."""
PROHIBITED_FIELDS = {"dose", "amount", "quantity", "pumps", "drops"}
def validate(
self, response: Any, context: RoutineValidationContext
) -> ValidationResult:
"""
Validate a routine suggestion.
Checks:
1. All product_ids exist in database
2. No retinoid + acid in same routine
3. Respect min_interval_hours
4. Check max_frequency_per_week (if history available)
5. Verify context_rules (safe_after_shaving, safe_with_compromised_barrier)
6. AM routines must have SPF when leaving home
7. No high barrier_disruption_risk with compromised barrier
8. No prohibited fields (dose, etc.) in response
9. Each step has either product_id or action_type (not both, not neither)
Args:
response: Parsed routine suggestion with steps
context: Validation context with products and rules
Returns:
ValidationResult with any errors/warnings
"""
result = ValidationResult()
if not hasattr(response, "steps"):
result.add_error("Response missing 'steps' field")
return result
steps = response.steps
has_retinoid = False
has_acid = False
has_spf = False
product_steps = []
for i, step in enumerate(steps):
step_num = i + 1
# Check prohibited fields
self._check_prohibited_fields(step, step_num, result)
# Check step has either product_id or action_type
has_product = hasattr(step, "product_id") and step.product_id is not None
has_action = hasattr(step, "action_type") and step.action_type is not None
if not has_product and not has_action:
result.add_error(
f"Step {step_num}: must have either product_id or action_type"
)
continue
if has_product and has_action:
result.add_error(
f"Step {step_num}: cannot have both product_id and action_type"
)
continue
# Skip action-only steps for product validation
if not has_product:
continue
product_id = step.product_id
# Convert string UUID to UUID object if needed
if isinstance(product_id, str):
try:
product_id = UUID(product_id)
except ValueError:
result.add_error(
f"Step {step_num}: invalid UUID format: {product_id}"
)
continue
# Check product exists
if product_id not in context.valid_product_ids:
result.add_error(f"Step {step_num}: unknown product_id {product_id}")
continue
product = context.products_by_id.get(product_id)
if not product:
continue # Can't do detailed checks without product data
product_steps.append((step_num, product_id, product))
# Check for retinoids and acids
if self._has_retinoid(product):
has_retinoid = True
if self._has_acid(product):
has_acid = True
# Check for SPF
if product.category == "spf":
has_spf = True
# Check interval rules
self._check_interval_rules(step_num, product_id, product, context, result)
# Check context rules
self._check_context_rules(step_num, product, context, result)
# Check barrier compatibility
self._check_barrier_compatibility(step_num, product, context, result)
# Check retinoid + acid conflict
if has_retinoid and has_acid:
result.add_error(
"SAFETY: Cannot combine retinoid and acid (AHA/BHA/PHA) in same routine"
)
# Check SPF requirement for AM
if context.part_of_day == "am":
if context.leaving_home and not has_spf:
result.add_warning(
"AM routine without SPF while leaving home - UV protection recommended"
)
elif not context.leaving_home and not has_spf:
# Still warn but less severe
result.add_warning(
"AM routine without SPF - consider adding sun protection"
)
return result
def _check_prohibited_fields(
self, step: Any, step_num: int, result: ValidationResult
) -> None:
"""Check for prohibited fields like 'dose' in step."""
for field in self.PROHIBITED_FIELDS:
if hasattr(step, field):
result.add_error(
f"Step {step_num}: prohibited field '{field}' in response - "
"doses/amounts should not be specified"
)
def _has_retinoid(self, product: Any) -> bool:
"""Check if product contains retinoid."""
if not hasattr(product, "actives") or not product.actives:
return False
for active in product.actives:
if not hasattr(active, "functions"):
continue
if "retinoid" in (active.functions or []):
return True
# Also check effect_profile
if hasattr(product, "effect_profile") and product.effect_profile:
if hasattr(product.effect_profile, "retinoid_strength"):
if (product.effect_profile.retinoid_strength or 0) > 0:
return True
return False
def _has_acid(self, product: Any) -> bool:
"""Check if product contains AHA/BHA/PHA."""
if not hasattr(product, "actives") or not product.actives:
return False
acid_functions = {"exfoliant_aha", "exfoliant_bha", "exfoliant_pha"}
for active in product.actives:
if not hasattr(active, "functions"):
continue
if any(f in (active.functions or []) for f in acid_functions):
return True
# Also check effect_profile
if hasattr(product, "effect_profile") and product.effect_profile:
if hasattr(product.effect_profile, "exfoliation_strength"):
if (product.effect_profile.exfoliation_strength or 0) > 0:
return True
return False
def _check_interval_rules(
self,
step_num: int,
product_id: UUID,
product: Any,
context: RoutineValidationContext,
result: ValidationResult,
) -> None:
"""Check min_interval_hours is respected."""
if not hasattr(product, "min_interval_hours") or not product.min_interval_hours:
return
last_used = context.last_used_dates.get(product_id)
if not last_used:
return # Never used, no violation
hours_since_use = (context.routine_date - last_used).days * 24
# For same-day check, we need more granular time
# For now, just check if used same day
if last_used == context.routine_date:
result.add_error(
f"Step {step_num}: product {product.name} already used today, "
f"min_interval_hours={product.min_interval_hours}"
)
elif hours_since_use < product.min_interval_hours:
result.add_error(
f"Step {step_num}: product {product.name} used too recently "
f"(last used {last_used}, requires {product.min_interval_hours}h interval)"
)
def _check_context_rules(
self,
step_num: int,
product: Any,
context: RoutineValidationContext,
result: ValidationResult,
) -> None:
"""Check product context_rules are satisfied."""
if not hasattr(product, "context_rules") or not product.context_rules:
return
rules = product.context_rules
# Check post-shaving safety
if context.just_shaved and hasattr(rules, "safe_after_shaving"):
if not rules.safe_after_shaving:
result.add_warning(
f"Step {step_num}: {product.name} may irritate freshly shaved skin"
)
# Check barrier compatibility
if context.barrier_state in ("mildly_compromised", "compromised"):
if hasattr(rules, "safe_with_compromised_barrier"):
if not rules.safe_with_compromised_barrier:
result.add_error(
f"Step {step_num}: SAFETY - {product.name} not safe with "
f"{context.barrier_state} barrier"
)
def _check_barrier_compatibility(
self,
step_num: int,
product: Any,
context: RoutineValidationContext,
result: ValidationResult,
) -> None:
"""Check product is safe for current barrier state."""
if context.barrier_state != "compromised":
return # Only strict check for compromised barrier
if not hasattr(product, "effect_profile") or not product.effect_profile:
return
profile = product.effect_profile
# Check barrier disruption risk
if hasattr(profile, "barrier_disruption_risk"):
risk = profile.barrier_disruption_risk or 0
if risk >= 4: # High risk (4-5)
result.add_error(
f"Step {step_num}: SAFETY - {product.name} has high barrier "
f"disruption risk ({risk}/5) - not safe with compromised barrier"
)
# Check irritation risk
if hasattr(profile, "irritation_risk"):
risk = profile.irritation_risk or 0
if risk >= 4: # High risk
result.add_warning(
f"Step {step_num}: {product.name} has high irritation risk ({risk}/5) "
"- caution recommended with compromised barrier"
)
Reference in a new issue View git blame Copy permalink