adk-guardrail 0.7.0

Guardrails framework for ADK agents - input/output validation, content filtering, PII redaction
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155

use crate::{Guardrail, GuardrailError, GuardrailResult, Severity};
use adk_core::{Content, Part};
use async_trait::async_trait;
use jsonschema::Validator;
use serde_json::Value;

/// JSON Schema validator guardrail for enforcing output structure
pub struct SchemaValidator {
    name: String,
    validator: Validator,
    severity: Severity,
}

impl SchemaValidator {
    /// Create a new schema validator from a JSON Schema value
    pub fn new(schema: &Value) -> Result<Self, GuardrailError> {
        let validator = Validator::new(schema)
            .map_err(|e| GuardrailError::Schema(format!("Invalid schema: {}", e)))?;

        Ok(Self { name: "schema_validator".to_string(), validator, severity: Severity::High })
    }

    /// Create with a custom name
    pub fn with_name(mut self, name: impl Into<String>) -> Self {
        self.name = name.into();
        self
    }

    /// Set severity level
    pub fn with_severity(mut self, severity: Severity) -> Self {
        self.severity = severity;
        self
    }

    fn extract_json(&self, content: &Content) -> Option<Value> {
        for part in &content.parts {
            if let Part::Text { text } = part {
                // Try to parse as JSON directly
                if let Ok(json) = serde_json::from_str(text) {
                    return Some(json);
                }
                // Try to extract JSON from markdown code block
                if let Some(json_str) = Self::extract_json_from_markdown(text) {
                    if let Ok(json) = serde_json::from_str(&json_str) {
                        return Some(json);
                    }
                }
            }
        }
        None
    }

    fn extract_json_from_markdown(text: &str) -> Option<String> {
        // Look for ```json ... ``` blocks
        let start_markers = ["```json\n", "```json\r\n", "```\n", "```\r\n"];
        let end_marker = "```";

        for start in start_markers {
            if let Some(start_idx) = text.find(start) {
                let content_start = start_idx + start.len();
                if let Some(end_idx) = text[content_start..].find(end_marker) {
                    return Some(text[content_start..content_start + end_idx].trim().to_string());
                }
            }
        }
        None
    }
}

#[async_trait]
impl Guardrail for SchemaValidator {
    fn name(&self) -> &str {
        &self.name
    }

    async fn validate(&self, content: &Content) -> GuardrailResult {
        let json = match self.extract_json(content) {
            Some(j) => j,
            None => {
                return GuardrailResult::Fail {
                    reason: "Content does not contain valid JSON".to_string(),
                    severity: self.severity,
                };
            }
        };

        let result = self.validator.validate(&json);
        if let Err(error) = result {
            return GuardrailResult::Fail {
                reason: format!("Schema validation failed: {}", error),
                severity: self.severity,
            };
        }

        GuardrailResult::Pass
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use serde_json::json;

    fn test_schema() -> Value {
        json!({
            "type": "object",
            "properties": {
                "name": { "type": "string" },
                "age": { "type": "integer", "minimum": 0 }
            },
            "required": ["name"]
        })
    }

    #[tokio::test]
    async fn test_valid_json() {
        let validator = SchemaValidator::new(&test_schema()).unwrap();
        let content = Content::new("model").with_text(r#"{"name": "Alice", "age": 30}"#);
        let result = validator.validate(&content).await;
        assert!(result.is_pass());
    }

    #[tokio::test]
    async fn test_invalid_json_missing_required() {
        let validator = SchemaValidator::new(&test_schema()).unwrap();
        let content = Content::new("model").with_text(r#"{"age": 30}"#);
        let result = validator.validate(&content).await;
        assert!(result.is_fail());
    }

    #[tokio::test]
    async fn test_invalid_json_wrong_type() {
        let validator = SchemaValidator::new(&test_schema()).unwrap();
        let content = Content::new("model").with_text(r#"{"name": "Alice", "age": "thirty"}"#);
        let result = validator.validate(&content).await;
        assert!(result.is_fail());
    }

    #[tokio::test]
    async fn test_json_in_markdown() {
        let validator = SchemaValidator::new(&test_schema()).unwrap();
        let content = Content::new("model")
            .with_text("Here is the result:\n```json\n{\"name\": \"Bob\"}\n```");
        let result = validator.validate(&content).await;
        assert!(result.is_pass());
    }

    #[tokio::test]
    async fn test_no_json() {
        let validator = SchemaValidator::new(&test_schema()).unwrap();
        let content = Content::new("model").with_text("This is just plain text");
        let result = validator.validate(&content).await;
        assert!(result.is_fail());
    }
}