llm-shield-api 0.1.0

Production-grade REST API for LLM Shield
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157

//! Common test utilities

use axum::body::Body;
use axum::http::{Request, StatusCode};
use axum::Router;
use llm_shield_api::config::AppConfig;
use llm_shield_api::state::{AppState, AppStateBuilder};
use llm_shield_core::{async_trait, Result, ScanResult, Scanner, ScannerType, Vault};
use std::sync::Arc;
use tower::ServiceExt;

/// Mock scanner for testing
pub struct MockScanner {
    pub name: String,
    pub is_valid: bool,
    pub risk_score: f32,
}

impl MockScanner {
    pub fn new(name: &str, is_valid: bool, risk_score: f32) -> Self {
        Self {
            name: name.to_string(),
            is_valid,
            risk_score,
        }
    }

    pub fn passing(name: &str) -> Self {
        Self::new(name, true, 0.0)
    }

    pub fn failing(name: &str, risk_score: f32) -> Self {
        Self::new(name, false, risk_score)
    }
}

#[async_trait]
impl Scanner for MockScanner {
    fn name(&self) -> &str {
        &self.name
    }

    async fn scan(&self, input: &str, _vault: &Vault) -> Result<ScanResult> {
        Ok(ScanResult::new(
            input.to_string(),
            self.is_valid,
            self.risk_score,
        ))
    }

    fn scanner_type(&self) -> ScannerType {
        ScannerType::Input
    }

    fn version(&self) -> &str {
        "1.0.0"
    }

    fn description(&self) -> &str {
        "Mock scanner for testing"
    }
}

/// Create test app state with mock scanners
pub fn create_test_state() -> AppState {
    let config = AppConfig::default();

    AppStateBuilder::new(config)
        .register_scanner(Arc::new(MockScanner::passing("test_scanner_1")))
        .register_scanner(Arc::new(MockScanner::passing("test_scanner_2")))
        .register_scanner(Arc::new(MockScanner::failing("test_failing_scanner", 0.8)))
        .build()
}

/// Send GET request to a route
pub async fn get_request(app: Router, uri: &str) -> (StatusCode, String) {
    let response = app
        .oneshot(Request::builder().uri(uri).body(Body::empty()).unwrap())
        .await
        .unwrap();

    let status = response.status();
    let body_bytes = axum::body::to_bytes(response.into_body(), usize::MAX)
        .await
        .unwrap();
    let body = String::from_utf8(body_bytes.to_vec()).unwrap();

    (status, body)
}

/// Send POST request to a route
pub async fn post_request(app: Router, uri: &str, body: serde_json::Value) -> (StatusCode, String) {
    let response = app
        .oneshot(
            Request::builder()
                .method("POST")
                .uri(uri)
                .header("content-type", "application/json")
                .body(Body::from(serde_json::to_vec(&body).unwrap()))
                .unwrap(),
        )
        .await
        .unwrap();

    let status = response.status();
    let body_bytes = axum::body::to_bytes(response.into_body(), usize::MAX)
        .await
        .unwrap();
    let body = String::from_utf8(body_bytes.to_vec()).unwrap();

    (status, body)
}

/// Parse JSON response
pub fn parse_json<T>(body: &str) -> T
where
    T: serde::de::DeserializeOwned,
{
    serde_json::from_str(body).expect("Failed to parse JSON response")
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_mock_scanner_passing() {
        let scanner = MockScanner::passing("test");
        assert_eq!(scanner.name(), "test");
        assert_eq!(scanner.version(), "1.0.0");
    }

    #[test]
    fn test_mock_scanner_failing() {
        let scanner = MockScanner::failing("test", 0.9);
        assert_eq!(scanner.name(), "test");
    }

    #[tokio::test]
    async fn test_mock_scanner_scan() {
        let scanner = MockScanner::passing("test");
        let vault = Vault::new();
        let result = scanner.scan("test input", &vault).await.unwrap();

        assert!(result.is_valid);
        assert_eq!(result.risk_score, 0.0);
    }

    #[test]
    fn test_create_test_state() {
        let state = create_test_state();
        assert_eq!(state.scanner_count(), 3);
        assert!(state.get_scanner("test_scanner_1").is_some());
        assert!(state.get_scanner("test_scanner_2").is_some());
        assert!(state.get_scanner("test_failing_scanner").is_some());
    }
}