codegate-open/src/codegate/pipeline/codegate_context_retriever/codegate.py at 7bca26ab62df214b26a9f5e540411d136fd176e5 · jhrozek/codegate-open · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
import itertools
import json
import re

import structlog

from codegate.clients.clients import ClientType
from codegate.db.models import AlertSeverity
from codegate.extract_snippets.factory import MessageCodeExtractorFactory
from codegate.pipeline.base import (
    PipelineContext,
    PipelineResult,
    PipelineStep,
)
from codegate.storage.storage_engine import StorageEngine
from codegate.types.common import ChatCompletionRequest
from codegate.utils.package_extractor import PackageExtractor
from codegate.utils.utils import generate_vector_string

logger = structlog.get_logger("codegate")


class CodegateContextRetriever(PipelineStep):
    """
    Pipeline step that adds a context message to the completion request when it detects
    the word "codegate" in the user message.
    """

    @property
    def name(self) -> str:
        """
        Returns the name of this pipeline step.
        """
        return "codegate-context-retriever"

    def generate_context_str(self, objects: list[object], context: PipelineContext) -> str:
        context_str = ""
        matched_packages = []
        for obj in objects:
            # The object is already a dictionary with 'properties'
            package_obj = obj["properties"]  # type: ignore
            matched_packages.append(f"{package_obj['name']} ({package_obj['type']})")
            # Add one alert for each package found
            context.add_alert(
                self.name,
                trigger_string=json.dumps(package_obj),
                severity_category=AlertSeverity.CRITICAL,
            )
            package_str = generate_vector_string(package_obj)
            context_str += package_str + "\n"

        if matched_packages:
            logger.debug(
                "Found matching packages in sqlite-vec database", matched_packages=matched_packages
            )
        return context_str

    async def process(  # noqa: C901
        self, request: ChatCompletionRequest, context: PipelineContext
    ) -> PipelineResult:
        """
        Use RAG DB to add context to the user request
        """
        # Get the latest user message
        last_message = self.get_last_user_message_block(request)
        if not last_message:
            return PipelineResult(request=request)
        user_message, last_user_idx = last_message

        # Create storage engine object
        storage_engine = StorageEngine()

        # Extract any code snippets
        extractor = MessageCodeExtractorFactory.create_snippet_extractor(context.client)
        snippets = extractor.extract_snippets(user_message)

        bad_snippet_packages = []
        if len(snippets) > 0:
            snippet_language = snippets[0].language
            # Collect all packages referenced in the snippets
            snippet_packages = []
            for snippet in snippets:
                snippet_packages.extend(
                    PackageExtractor.extract_packages(snippet.code, snippet.language)  # type: ignore
                )

            logger.info(
                f"Found {len(snippet_packages)} packages "
                f"for language {snippet_language} in code snippets."
            )
            # Find bad packages in the snippets
            bad_snippet_packages = await storage_engine.search(
                language=snippet_language, packages=snippet_packages
            )  # type: ignore
            logger.info(f"Found {len(bad_snippet_packages)} bad packages in code snippets.")

        # Remove code snippets and file listing from the user messages and search for bad packages
        # in the rest of the user query/messsages
        user_messages = re.sub(r"```.*?```", "", user_message, flags=re.DOTALL)
        user_messages = re.sub(r"⋮...*?⋮...\n\n", "", user_messages, flags=re.DOTALL)
        user_messages = re.sub(
            r"<environment_details>.*?</environment_details>", "", user_messages, flags=re.DOTALL
        )

        # split messages into double newlines, to avoid passing so many content in the search
        split_messages = re.split(r"</?task>|\n|\\n", user_messages)
        collected_bad_packages = []
        for item_message in filter(None, map(str.strip, split_messages)):
            # Vector search to find bad packages
            bad_packages = await storage_engine.search(query=item_message, distance=0.5, limit=100)
            if bad_packages and len(bad_packages) > 0:
                collected_bad_packages.extend(bad_packages)

        # All bad packages
        all_bad_packages = bad_snippet_packages + collected_bad_packages

        logger.info(f"Adding {len(all_bad_packages)} bad packages to the context.")

        # Generate context string using the searched objects
        context_str = "CodeGate did not find any malicious or archived packages."

        # Nothing to do if no bad packages are found
        if len(all_bad_packages) == 0:
            return PipelineResult(request=request, context=context)
        else:
            # Add context for bad packages
            context_str = self.generate_context_str(all_bad_packages, context)
            context.bad_packages_found = True

            # perform replacement in all the messages starting from this index
            messages = request.get_messages()
            filtered = itertools.dropwhile(lambda x: x[0] < last_user_idx, enumerate(messages))
            if context.client != ClientType.OPEN_INTERPRETER:
                for i, message in filtered:
                    message_str = "".join([
                        txt
                        for content in message.get_content()
                        for txt in content.get_text()
                    ])
                    context_msg = message_str
                    # Add the context to the last user message
                    if context.client in [ClientType.CLINE, ClientType.KODU]:
                        match = re.search(r"<task>\s*(.*?)\s*</task>(.*)", message_str, re.DOTALL)
                        if match:
                            task_content = match.group(1)  # Content within <task>...</task>
                            rest_of_message = match.group(
                                2
                            ).strip()  # Content after </task>, if any

                            # Embed the context into the task block
                            updated_task_content = (
                                f"<task>Context: {context_str}"
                                + f"Query: {task_content.strip()}</task>"
                            )

                            # Combine updated task content with the rest of the message
                            context_msg = updated_task_content + rest_of_message
                    else:
                        context_msg = f"Context: {context_str} \n\n Query: {message_str}"
                    content = next(message.get_content())
                    content.set_text(context_msg)
                    logger.debug("Final context message", context_message=context_msg)
            else:
                #  just add a message in the end
                new_request["messages"].append(
                    {
                        "content": context_str,
                        "role": "assistant",
                    }
                )
            return PipelineResult(request=request, context=context)