PyPI - openlayer-guardrails - Versions diffs - 0.1.0__py3-none-any.whl - Mend

openlayer-guardrails 0.1.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

openlayer_guardrails/__init__.py +22 -0
openlayer_guardrails/pii.py +317 -0
openlayer_guardrails-0.1.0.dist-info/METADATA +63 -0
openlayer_guardrails-0.1.0.dist-info/RECORD +5 -0
openlayer_guardrails-0.1.0.dist-info/WHEEL +4 -0

openlayer_guardrails/__init__.py ADDED Viewed

@@ -0,0 +1,22 @@
+"""OpenLayer Guardrails - Open source guardrail implementations."""
+from openlayer.lib.guardrails import (
+    BaseGuardrail,
+    GuardrailAction,
+    GuardrailResult,
+    BlockStrategy,
+    GuardrailBlockedException,
+)
+from .pii import PIIGuardrail
+__version__ = "0.1.0"
+__all__ = [
+    "BaseGuardrail",
+    "GuardrailAction",
+    "GuardrailResult",
+    "BlockStrategy",
+    "GuardrailBlockedException",
+    "PIIGuardrail",
+]

openlayer_guardrails/pii.py ADDED Viewed

@@ -0,0 +1,317 @@
+"""PII (Personally Identifiable Information) guardrail using Presidio."""
+import logging
+from typing import Any, Dict, List, Optional, Set, TYPE_CHECKING
+from openlayer.lib.guardrails import (
+    BaseGuardrail,
+    GuardrailAction,
+    GuardrailResult,
+    BlockStrategy,
+)
+if TYPE_CHECKING:
+    try:
+        from presidio_analyzer import AnalyzerEngine, RecognizerResult
+        from presidio_anonymizer import AnonymizerEngine
+        from presidio_anonymizer.entities import OperatorConfig
+    except ImportError:
+        # When presidio isn't available, we'll use string literals for type annotations
+        pass
+try:
+    from presidio_analyzer import AnalyzerEngine, RecognizerResult
+    from presidio_anonymizer import AnonymizerEngine
+    from presidio_anonymizer.entities import OperatorConfig
+    HAVE_PRESIDIO = True
+except ImportError:
+    HAVE_PRESIDIO = False
+    AnalyzerEngine = None
+    AnonymizerEngine = None
+    RecognizerResult = None
+    OperatorConfig = None
+logger = logging.getLogger(__name__)
+class PIIGuardrail(BaseGuardrail):
+    """PII detection and protection guardrail using Microsoft Presidio."""
+    # Default entity types that trigger blocking (high-risk PII)
+    DEFAULT_BLOCK_ENTITIES = {
+        "CREDIT_CARD",
+        "CRYPTO",
+        "IBAN_CODE",
+        "IP_ADDRESS",
+        "US_SSN",
+        "US_BANK_NUMBER",
+        "US_DRIVER_LICENSE",
+        "US_PASSPORT",
+    }
+    # Default entity types that get redacted/modified (medium-risk PII)
+    DEFAULT_REDACT_ENTITIES = {
+        "PHONE_NUMBER",
+        "EMAIL_ADDRESS",
+        "PERSON",
+        "LOCATION",
+        "DATE_TIME",
+        "NRP",
+        "MEDICAL_LICENSE",
+        "URL",
+    }
+    def __init__(
+        self,
+        name: str = "PII Guardrail",
+        enabled: bool = True,
+        block_entities: Optional[Set[str]] = None,
+        redact_entities: Optional[Set[str]] = None,
+        confidence_threshold: float = 0.7,
+        language: str = "en",
+        block_strategy: BlockStrategy = BlockStrategy.RETURN_ERROR_MESSAGE,
+        block_message: str = "Request blocked due to sensitive information",
+        **config,
+    ):
+        """Initialize PII guardrail.
+        Args:
+            name: Human-readable name for this guardrail
+            enabled: Whether this guardrail is active
+            block_entities: Set of entity types that should block execution
+            redact_entities: Set of entity types that should be redacted
+            confidence_threshold: Minimum confidence score to trigger action (0.0-1.0)
+            language: Language code for analysis (default: "en")
+            block_strategy: How to handle blocked requests (graceful vs exception)
+            block_message: Custom message for blocked requests
+            **config: Additional configuration
+        """
+        if not HAVE_PRESIDIO:
+            raise ImportError(
+                "Presidio is required for PII guardrail. "
+                "Install with: pip install openlayer-guardrails[pii]"
+            )
+        super().__init__(name=name, enabled=enabled, **config)
+        self.block_entities = block_entities or self.DEFAULT_BLOCK_ENTITIES.copy()
+        self.redact_entities = redact_entities or self.DEFAULT_REDACT_ENTITIES.copy()
+        self.confidence_threshold = confidence_threshold
+        self.language = language
+        self.block_strategy = block_strategy
+        self.block_message = block_message
+        # Initialize Presidio engines
+        self.analyzer = AnalyzerEngine()
+        self.anonymizer = AnonymizerEngine()
+        logger.debug(
+            f"Initialized PII guardrail with block_entities={self.block_entities}, "
+            f"redact_entities={self.redact_entities}, threshold={confidence_threshold}"
+        )
+    def check_input(self, inputs: Dict[str, Any]) -> GuardrailResult:
+        """Check function inputs for PII."""
+        return self._check_data(inputs, data_type="input")
+    def check_output(self, output: Any, inputs: Dict[str, Any]) -> GuardrailResult:
+        """Check function output for PII."""
+        return self._check_data(output, data_type="output")
+    def _check_data(self, data: Any, data_type: str) -> GuardrailResult:
+        """Check arbitrary data for PII."""
+        if not self.enabled:
+            return GuardrailResult(
+                action=GuardrailAction.ALLOW,
+                metadata={
+                    "guardrail": self.name,
+                    "action": "allow",
+                    "reason": "disabled",
+                },
+            )
+        # Extract text content from data
+        text_content = self._extract_text(data)
+        if not text_content:
+            return GuardrailResult(
+                action=GuardrailAction.ALLOW,
+                metadata={
+                    "guardrail": self.name,
+                    "action": "allow",
+                    "reason": "no_text_content",
+                },
+            )
+        # Analyze for PII and map results to their source text
+        detected_entities = set()
+        self._text_to_results = {}  # Store mapping for redaction phase
+        for text in text_content:
+            results = self.analyzer.analyze(
+                text=text,
+                language=self.language,
+                entities=list(self.block_entities | self.redact_entities),
+            )
+            # Filter by confidence threshold
+            filtered_results = [
+                result
+                for result in results
+                if result.score >= self.confidence_threshold
+            ]
+            detected_entities.update(result.entity_type for result in filtered_results)
+            self._text_to_results[text] = (
+                filtered_results  # Map text to its specific results
+            )
+        # Determine action based on detected entities
+        blocked_entities = detected_entities & self.block_entities
+        redacted_entities = detected_entities & self.redact_entities
+        metadata = {
+            "guardrail": self.name,
+            "detected_entities": list(detected_entities),
+            "blocked_entities": list(blocked_entities),
+            "redacted_entities": list(redacted_entities),
+            "confidence_threshold": self.confidence_threshold,
+            "data_type": data_type,
+        }
+        if blocked_entities:
+            return GuardrailResult(
+                action=GuardrailAction.BLOCK,
+                metadata={**metadata, "action": "blocked"},
+                reason=f"Detected high-risk PII entities: {', '.join(blocked_entities)}",
+                block_strategy=self.block_strategy,
+                error_message=self.block_message,
+            )
+        elif redacted_entities:
+            # Redact the sensitive information using our stored mapping
+            modified_data = self._redact_data(
+                data, None
+            )  # analysis_results not needed anymore
+            return GuardrailResult(
+                action=GuardrailAction.MODIFY,
+                modified_data=modified_data,
+                metadata={**metadata, "action": "redacted"},
+                reason=f"Redacted PII entities: {', '.join(redacted_entities)}",
+            )
+        else:
+            return GuardrailResult(
+                action=GuardrailAction.ALLOW,
+                metadata={**metadata, "action": "allow", "reason": "no_pii_detected"},
+            )
+    def _extract_text(self, data: Any) -> List[str]:
+        """Extract text content from various data types.
+        Args:
+            data: Data to extract text from
+        Returns:
+            List of text strings found in the data
+        """
+        texts = []
+        if isinstance(data, str):
+            texts.append(data)
+        elif isinstance(data, dict):
+            for value in data.values():
+                texts.extend(self._extract_text(value))
+        elif isinstance(data, (list, tuple)):
+            for item in data:
+                texts.extend(self._extract_text(item))
+        elif hasattr(data, "__str__") and not isinstance(data, (int, float, bool)):
+            # Convert other types to string, but skip basic numeric/boolean types
+            text_repr = str(data)
+            if text_repr and text_repr not in ("True", "False", "None"):
+                texts.append(text_repr)
+        return [text for text in texts if text and len(text.strip()) > 0]
+    def _redact_data(
+        self, data: Any, analysis_results: List["RecognizerResult"] = None
+    ) -> Any:
+        """Redact PII from data using pre-computed text-to-results mapping."""
+        if isinstance(data, str):
+            return self._redact_text_with_mapping(data)
+        elif isinstance(data, dict):
+            return {
+                key: self._redact_data(value, analysis_results)
+                for key, value in data.items()
+            }
+        elif isinstance(data, list):
+            return [self._redact_data(item, analysis_results) for item in data]
+        elif isinstance(data, tuple):
+            return tuple(self._redact_data(item, analysis_results) for item in data)
+        else:
+            # For other types, convert to string, redact, and return as string
+            if hasattr(data, "__str__"):
+                text_repr = str(data)
+                if text_repr and text_repr not in ("True", "False", "None"):
+                    return self._redact_text_with_mapping(text_repr)
+            return data
+    def _redact_text_with_mapping(self, text: str) -> str:
+        """Redact PII from text using pre-computed analysis results."""
+        if not text or not hasattr(self, "_text_to_results"):
+            return text
+        # Get the analysis results specific to this text
+        relevant_results = self._text_to_results.get(text, [])
+        # Filter to only redaction entities (not blocking entities)
+        redact_results = [
+            result
+            for result in relevant_results
+            if result.entity_type in self.redact_entities
+            and result.score >= self.confidence_threshold
+        ]
+        if not redact_results:
+            return text
+        # Use Presidio anonymizer to redact
+        try:
+            anonymized_result = self.anonymizer.anonymize(
+                text=text,
+                analyzer_results=redact_results,
+                operators={
+                    "DEFAULT": OperatorConfig("replace", {"new_value": "[REDACTED]"}),
+                    "PHONE_NUMBER": OperatorConfig(
+                        "replace", {"new_value": "[PHONE-REDACTED]"}
+                    ),
+                    "EMAIL_ADDRESS": OperatorConfig(
+                        "replace", {"new_value": "[EMAIL-REDACTED]"}
+                    ),
+                    "PERSON": OperatorConfig(
+                        "replace", {"new_value": "[NAME-REDACTED]"}
+                    ),
+                    "LOCATION": OperatorConfig(
+                        "replace", {"new_value": "[LOCATION-REDACTED]"}
+                    ),
+                },
+            )
+            return anonymized_result.text
+        except Exception as e:
+            logger.warning(f"Failed to anonymize text '{text[:50]}...': {e}")
+            # Fallback to simple replacement
+            return "[REDACTED]"
+    def get_metadata(self) -> Dict[str, Any]:
+        """Get metadata about this guardrail for trace logging."""
+        base_metadata = super().get_metadata()
+        base_metadata.update(
+            {
+                "block_entities": list(self.block_entities),
+                "redact_entities": list(self.redact_entities),
+                "confidence_threshold": self.confidence_threshold,
+                "language": self.language,
+                "presidio_available": HAVE_PRESIDIO,
+            }
+        )
+        return base_metadata

openlayer_guardrails-0.1.0.dist-info/METADATA ADDED Viewed

@@ -0,0 +1,63 @@
+Metadata-Version: 2.4
+Name: openlayer-guardrails
+Version: 0.1.0
+Summary: Guardrails that can be used to check inputs and outputs of functions and works well with Openlayer tracing.
+Requires-Python: >=3.10
+Requires-Dist: openlayer>=0.2.0a89
+Provides-Extra: pii
+Requires-Dist: presidio-analyzer>=2.2.0; extra == 'pii'
+Requires-Dist: presidio-anonymizer>=2.2.0; extra == 'pii'
+Description-Content-Type: text/markdown
+# Openlayer Guardrails
+Open source guardrail implementations that work with Openlayer tracing.
+## Installation
+```bash
+pip install openlayer-guardrails[pii]
+```
+## Usage
+### Standalone Usage
+```python
+from openlayer_guardrails import PIIGuardrail
+# Create guardrail
+pii_guard = PIIGuardrail(
+    block_entities={"CREDIT_CARD", "US_SSN"},
+    redact_entities={"EMAIL_ADDRESS", "PHONE_NUMBER"}
+)
+# Check inputs manually
+data = {"message": "My email is john@example.com and SSN is 123-45-6789"}
+result = pii_guard.check_input(data)
+if result.action.value == "block":
+    print(f"Blocked: {result.reason}")
+elif result.action.value == "modify":
+    print(f"Modified data: {result.modified_data}")
+```
+### With Openlayer Tracing
+```python
+from openlayer_guardrails import PIIGuardrail
+from openlayer.lib.tracing import trace
+# Create guardrail
+pii_guard = PIIGuardrail()
+# Apply to traced functions
+@trace(guardrails=[pii_guard])
+def process_user_data(user_input: str):
+    return f"Processed: {user_input}"
+# PII is automatically detected and handled
+result = process_user_data("My email is john@example.com")
+# Output: "Processed: My email is [EMAIL-REDACTED]"
+```

openlayer_guardrails-0.1.0.dist-info/RECORD ADDED Viewed

@@ -0,0 +1,5 @@
+openlayer_guardrails/__init__.py,sha256=s30XRwaczzs1TNuZfspn7EkP7cJYvhQWGM_tT4mwh3E,431
+openlayer_guardrails/pii.py,sha256=av5VqNyR-fuEUdlQBbJ9C4j4t9ra0fu0Pag1hsHqf1w,11794
+openlayer_guardrails-0.1.0.dist-info/METADATA,sha256=8IASuuVgRWq-fEuIqdH-zPIGHG6oD3ObSfQxTHYxm0s,1592
+openlayer_guardrails-0.1.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+openlayer_guardrails-0.1.0.dist-info/RECORD,,

openlayer_guardrails-0.1.0.dist-info/WHEEL ADDED Viewed

@@ -0,0 +1,4 @@
+Wheel-Version: 1.0
+Generator: hatchling 1.27.0
+Root-Is-Purelib: true
+Tag: py3-none-any