Skip to content

feat: Security System for LLM #61

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

feat: Security System for LLM #61

wants to merge 1 commit into from

Conversation

thekishandev
Copy link

@thekishandev thekishandev commented Apr 20, 2025
edited
Loading

Issue(s)

Closes #53 - [Feat] : Security system for LLM

Acceptance Criteria fulfillment

  • Implement security validation for AI requests with multiple security levels (STRICT, MODERATE, RELAXED)
  • Add content filtering and pattern matching for inappropriate/harmful content
  • Integrate security wrapper with existing AI providers (OpenAI, Gemini, Self-hosted)
  • Add user preference configuration for security levels
  • Implement response validation and filtering
  • Add comprehensive logging for security events
  • Add localized error messages for security violations

Proposed changes (including videos or screenshots)

Added

  • New AISecurity class with three security levels
  • Content validation patterns for illegal, inappropriate, and sensitive content
  • Security level configuration in user preferences
  • Response validation and filtering system
  • Enhanced error handling and logging

Modified

  • Updated AIHandler to use security wrapper
  • Enhanced UserPreferenceModal with security level selection
  • Updated translation files with security-related messages
  • Improved API request formatting for all providers

Security Improvements

  • Input validation before API requests
  • Content filtering for harmful/inappropriate content
  • Sensitive data detection (PII, credentials)
  • Response validation and sanitization
  • Security level-based restrictions
  • Comprehensive security logging

Further comments

The security wrapper implementation provides three levels of security:

  1. STRICT: Blocks most potentially harmful content and sensitive topics
  2. MODERATE: Allows discussion of sensitive topics with appropriate context
  3. RELAXED: Allows more open discussion while still blocking illegal content

The implementation includes:

  • Pattern-based content validation
  • Security level-specific restrictions
  • Response filtering and sanitization
  • Enhanced error handling with localized messages
  • Comprehensive logging for security events

Testing can be performed using:

  1. Configure security level using /quick config
  2. Set AI Configuration and provider
  3. Test with various inputs using /quick ai

Example test cases:

  • Harmful content (should be blocked)
  • Sensitive topics (handled based on security level)
  • Normal queries (should pass through)

Screenshot

image

Demo Video

2025-04-21.00-50-40.mp4

@thekishandev
Copy link
Author

thekishandev commented Apr 20, 2025
edited
Loading

@VipinDevelops Can please review the PR implementing #53 Security systems for LLM

@thekishandev thekishandev mentioned this pull request Apr 27, 2025
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Feat] : Security system for LLM

1 participant

@thekishandev