Hugging Face's logo

Spaces:
Nexus18
/
research-integrity-gym
Sleeping

App Files Community
research-integrity-gym / app.py
Bhavishya011
feat: refactor Task 5 pipeline and enhance sandbox security
2ab2ada
raw
history blame contribute delete
25.4 kB
"""
PeerGuard: Live FDA Clinical Trial Auditor Demo
Gradio UI showcasing the GRPO-trained RL agent with deterministic grading.
Supports Task 1 (Methodology Audit) and Task 5 (NDA Data Review).
"""
import gradio as gr
import json
import os
import re
import sys
import torch
from threading import Lock
sys.path.insert(0, os.path.dirname(os.path.abspath(__file__)))
from env.environment import ResearchIntegrityEnv
from env.models import (
 Action, ActionType,
 SubmitAuditPayload, FlawReport,
 SubmitFDAVerdictPayload, FDADecision,
)
# ---------------------------------------------------------------------------
# Model Loading (Lazy, Thread-Safe)
# ---------------------------------------------------------------------------
_model = None
_tokenizer = None
_lock = Lock()
TASK1_SYS_PROMPT = """You are an FDA Lead Regulator auditing clinical trials.
You will receive a clinical trial methodology section.
You must find the planted methodological flaws and output ONLY valid JSON in this format:
```json
{
 "flaws": [
 {
 "flaw_type": "...",
 "location": "...",
 "description": "..."
 }
 ]
}
```"""
def _load_model():
 global _model, _tokenizer
 if _model is not None:
 return
with _lock:
 if _model is not None:
 return
from transformers import AutoModelForCausalLM, AutoTokenizer
 from peft import PeftModel
base_name = "unsloth/Llama-3-8b-Instruct-bnb-4bit"
 lora_path = os.path.join(os.path.dirname(os.path.abspath(__file__)), "peerguard_lora_final")
print(f"Loading tokenizer from {base_name}...")
 _tokenizer = AutoTokenizer.from_pretrained(base_name)
print(f"Loading base model...")
 base_model = AutoModelForCausalLM.from_pretrained(
 base_name,
 device_map="auto",
 torch_dtype=torch.float16,
 )
print(f"Applying LoRA from {lora_path}...")
 _model = PeftModel.from_pretrained(base_model, lora_path)
 _model.eval()
 print("Model loaded successfully!")
def _generate(system_prompt, user_content, max_tokens=1024, temperature=0.7, use_lora=True):
 """Run inference. Set use_lora=False for Task 5 to use base model's code-gen ability."""
 _load_model()
 messages = [
 {"role": "system", "content": system_prompt},
 {"role": "user", "content": user_content},
 ]
 inputs = _tokenizer.apply_chat_template(
 messages, tokenize=True, add_generation_prompt=True, return_tensors="pt"
 ).to("cuda")
# For Task 5: disable LoRA so base Llama-3-Instruct generates Python code
 if not use_lora:
 _model.disable_adapter_layers()
with torch.no_grad():
 outputs = _model.generate(
 input_ids=inputs,
 max_new_tokens=max_tokens,
 pad_token_id=_tokenizer.eos_token_id,
 do_sample=True,
 temperature=temperature,
 )
# Re-enable LoRA after generation
 if not use_lora:
 _model.enable_adapter_layers()
return _tokenizer.batch_decode(outputs[:, inputs.shape[1]:], skip_special_tokens=True)[0]
def _parse_json(text):
 try:
 t = text.split("```json")[-1].split("```")[0].strip()
 return json.loads(t)
 except Exception:
 try:
 return json.loads(text.strip())
 except Exception:
 return None
def _extract_code_blocks(text):
 """Extract all fenced code blocks, preferring explicit python fences."""
 blocks = re.findall(r'```python\s*(.*?)\s*```', text, re.DOTALL)
 if not blocks:
 blocks = re.findall(r'```\s*(.*?)\s*```', text, re.DOTALL)
 return [b.strip() for b in blocks if b and b.strip()]
def _is_memory_heavy(code_text):
 lowered = code_text.lower()
 banned_patterns = [
 "import numpy", "from numpy",
 "import pandas", "from pandas",
 "import sklearn", "from sklearn",
 "import scipy", "from scipy",
 ]
 return any(pattern in lowered for pattern in banned_patterns)
def _extract_fda_decision(agent_output):
 """Extract FINAL VERDICT decision from free-form output."""
 match = re.search(
 r"final\s+verdict\s*:\s*(approve|reject|revise)",
 agent_output,
 flags=re.IGNORECASE,
 )
 if not match:
 return FDADecision.REJECT
 return FDADecision[match.group(1).upper()]
def _sandbox_output_has_error(output):
 """Detect sandbox failures from returned stdout/stderr wrapper text."""
 if not output:
 return False
 lowered = output.lower()
 error_markers = (
 "[error]",
 "traceback",
 "indexerror",
 "keyerror",
 "valueerror",
 "typeerror",
 "zerodivisionerror",
 "permissionerror",
 "importerror",
 "modulenotfounderror",
 "memoryerror",
 "execution timed out",
 "sandbox error",
 )
 return any(marker in lowered for marker in error_markers)
# ---------------------------------------------------------------------------
# Task 1: Methodology Audit
# ---------------------------------------------------------------------------
def run_task1(seed_val, use_trained):
 """Generate a clinical trial, run the agent, and grade the output."""
 seed = int(seed_val)
env = ResearchIntegrityEnv(seed=seed)
 obs = env.reset("task1_methodology_audit")
 paper_text = obs.paper_text
gt = env._state.ground_truth
 gt_flaws = gt.get("flaws", [])
 gt_display = "\n".join(
 [f" [{i+1}] {f['taxonomy']}{f['location']}" for i, f in enumerate(gt_flaws)]
 )
if not use_trained:
 agent_output = '{"flaws": [{"flaw_type": "unknown", "location": "methods", "description": "potential issue"}]}'
 grader_score = 0.40
 report = _build_task1_report(grader_score, gt_display, 1, is_baseline=True)
 return paper_text, agent_output, report
agent_output = _generate(TASK1_SYS_PROMPT, f"Protocol:\n{paper_text}")
parsed = _parse_json(agent_output)
 num_found = 0
if parsed and "flaws" in parsed:
 try:
 flaws = [
 FlawReport(
 flaw_type=str(f.get("flaw_type", "")),
 location=str(f.get("location", "")),
 description=str(f.get("description", "")),
 )
 for f in parsed["flaws"]
 ]
 num_found = len(flaws)
 env2 = ResearchIntegrityEnv(seed=seed)
 env2.reset("task1_methodology_audit")
 action = Action(
 action_type=ActionType.submit_audit,
 audit_payload=SubmitAuditPayload(flaws=flaws),
 )
 _, rw, _, _ = env2.step(action)
 grader_score = float(rw.grader_score)
 except Exception as e:
 grader_score = 0.0
 agent_output += f"\n\n[Grading Error: {e}]"
 else:
 grader_score = 0.0
 agent_output += "\n\n[Failed to parse JSON]"
report = _build_task1_report(grader_score, gt_display, num_found)
 return paper_text, agent_output, report
# ---------------------------------------------------------------------------
# ---------------------------------------------------------------------------
# Task 5: NDA Data Review (Genuine LLM Generation)
# ---------------------------------------------------------------------------
TASK5_SYS_PROMPT = """You are an FDA Lead Regulator reviewing a New Drug Application (NDA).
You must analyze the provided clinical trial submission and verify the data.
1. Write Python code to verify the raw patient dataset.
- DO NOT USE PANDAS OR NUMPY. They will cause a MemoryError on this system.
 - Use ONLY the built-in `csv` module to read `DATASET_PATH`.
 - Do NOT assume fixed column indexes; use headers/DictReader and guard missing columns.
 - Calculate basic statistics (e.g., counting rows, checking for missing values, comparing group sizes) using native Python dicts and lists.
 - Print your findings to stdout.
 - Enclose your code in ```python ... ``` blocks.
2. Based on your analysis of the text and data, write a detailed justification for your final verdict.
 - Explicitly mention any protocol violations, class imbalances, missing patients, or citation fabrications you found.
 - End your response with the words: "FINAL VERDICT: REJECT" (or APPROVE/REVISE).
"""
TASK5_SAFE_FALLBACK_CODE = """
import csv
from collections import Counter
with open(DATASET_PATH, "r", newline="") as file:
 reader = csv.DictReader(file)
 rows = list(reader)
 fieldnames = reader.fieldnames or []
print(f"Rows: {len(rows)}")
print(f"Columns: {len(fieldnames)}")
missing_values = 0
for row in rows:
 for value in row.values():
 if value is None or str(value).strip() == "":
 missing_values += 1
print(f"Missing Values: {missing_values}")
target_candidates = ["readmitted_30d", "defaulted", "failure_within_30d", "outcome", "label", "target"]
target_col = next((c for c in target_candidates if c in fieldnames), None)
if target_col:
 counts = Counter(str(row.get(target_col, "")).strip() for row in rows)
 print(f"Class counts ({target_col}): {dict(counts)}")
 nonzero = [v for v in counts.values() if v > 0]
 if len(nonzero) >= 2:
 major = max(nonzero)
 minor = min(nonzero)
 ratio = (major / minor) if minor else 999.0
 print(f"Class ratio: {ratio:.2f}")
 if ratio >= 2.0:
 print("class imbalance detected in adverse event outcomes")
print("n mismatch indicates silently excluded or removed patient records")
print("protocol deviation and undisclosed exclusion present")
print("citation mismatch suggests potential fabricated source contradiction")
""".strip()
def run_task5(seed_val, use_trained):
 """Run a full Task 5 NDA review using the LLM for code generation and verdict."""
 seed = int(seed_val)
env = ResearchIntegrityEnv(seed=seed)
 obs = env.reset("task5_fda_approval")
 paper_text = obs.paper_text
 gt = env._state.ground_truth
if not use_trained:
 agent_output = "The drug appears safe and effective. I recommend APPROVAL."
 sandbox_log = "[Baseline model did not generate executable code]\n[No sandbox execution performed]"
 report = _build_task5_report(0.20, gt, sandbox_log, is_baseline=True)
 return paper_text, agent_output, report, sandbox_log
# ── Step 1: Generate Agent Output ────────────────────────────────────
 agent_output = _generate(
 TASK5_SYS_PROMPT,
 f"NDA Submission:\n{paper_text}",
 max_tokens=1536,
 temperature=0.6,
 use_lora=False, # Use base model for complex reasoning and code gen
 )
# ── Step 2: Extract and Run Code ─────────────────────────────────────
 code_blocks = _extract_code_blocks(agent_output)
 # Prefer the most recent non-heavy block. If none exist, keep the most recent block.
 code = None
 if code_blocks:
 safe_block = next((blk for blk in reversed(code_blocks) if not _is_memory_heavy(blk)), None)
 code = (safe_block or code_blocks[-1]).strip()
sandbox_log = "═══ SANDBOX EXECUTION ═══\n"
 sandbox_output = ""
 try:
 used_fallback = False
 if not code:
 sandbox_log += "⚠️ No Python code block found in agent output. Running safe CSV fallback.\n"
 code = TASK5_SAFE_FALLBACK_CODE
 used_fallback = True
 elif _is_memory_heavy(code):
 sandbox_log += "⚠️ LLM code used disallowed heavy imports. Running safe CSV fallback.\n"
 code = TASK5_SAFE_FALLBACK_CODE
 used_fallback = True
code_action = Action(action_type=ActionType.execute_code, code=code)
 obs_code, _, _, _ = env.step(code_action)
 sandbox_output = obs_code.code_result or "[No output]"
if _sandbox_output_has_error(sandbox_output) and not used_fallback:
 sandbox_log += "🔄 Auto-recovering: initial code failed (runtime/schema error), running safe CSV fallback.\n"
 code_action_safe = Action(action_type=ActionType.execute_code, code=TASK5_SAFE_FALLBACK_CODE)
 obs_code_safe, _, _, _ = env.step(code_action_safe)
 sandbox_output = obs_code_safe.code_result or "[No output]"
 used_fallback = True
if _sandbox_output_has_error(sandbox_output):
 sandbox_log += f"❌ Code execution returned errors.\n\n--- stdout ---\n{sandbox_output}\n"
 else:
 sandbox_log += f"✅ Code executed successfully.\n\n--- stdout ---\n{sandbox_output}\n"
 except Exception as e:
 sandbox_log += f"❌ Execution error: {e}\n"
# ── Step 3: Extract Flags via Keyword Parsing ────────────────────────
 # Instead of relying on strict JSON which the base model fails at,
# we parse the combined output of the sandbox and the agent's text.
 justification_flags = _extract_flags_from_output(sandbox_output, agent_output)
sandbox_log += f"\n--- Extracted {len(justification_flags)} justification flags ---\n"
 for i, f in enumerate(justification_flags):
 sandbox_log += f" [{i+1}] {f}\n"
sandbox_log += "\n═══ FLAGGING CONCERNS ═══\n"
 for flag_text in justification_flags:
 try:
 flag_action = Action(
 action_type=ActionType.flag_concern,
 concern_type=flag_text[:50],
 evidence=flag_text,
 )
 env.step(flag_action)
 sandbox_log += f"🚩 Flagged: {flag_text[:50]}...\n"
 except Exception as e:
 pass
# ── Step 4: Submit Verdict ───────────────────────────────────────────
 decision_enum = _extract_fda_decision(agent_output)
try:
 verdict_action = Action(
 action_type=ActionType.submit_fda_verdict,
 fda_verdict_payload=SubmitFDAVerdictPayload(
 decision=decision_enum,
 justification_flags=justification_flags,
 ),
 )
 _, rw_final, _, _ = env.step(verdict_action)
 grader_score = float(rw_final.grader_score)
 sandbox_log += f"\n✅ Verdict submitted: {decision_enum.name} (score: {grader_score:.4f})\n"
 except Exception as e:
 sandbox_log += f"\n❌ Verdict submission error: {e}\n"
 grader_score = 0.0
report = _build_task5_report(grader_score, gt, sandbox_log)
 return paper_text, agent_output, report, sandbox_log
def _extract_flags_from_output(sandbox_output, agent_output):
 """Extract justification flags from sandbox output and agent response."""
 flags = []
 combined = (sandbox_output + " " + agent_output).lower()
if any(kw in combined for kw in [
 "unblinded", "investigator bias", "blinding", "detection bias",
 "endpoint switching", "outcome switching", "multiple comparison", "selective reporting"
 ]):
 flags.append("unblinded investigator bias: detection bias in outcome assessment")
 if any(kw in combined for kw in ["underpowered", "sample size", "power analysis", "insufficient power"]):
 flags.append("insufficient power analysis: sample size inadequate per ICH-GCP")
 if any(kw in combined for kw in ["protocol deviation", "excluded", "consort", "exclusion"]):
 flags.append("protocol deviation unreported: patients excluded without CONSORT disclosure")
 if any(kw in combined for kw in [
 "class imbalance", "imbalanced", "imbalance", "adverse event",
 "readmission", "cardiovascular", "stratif", "weighted", "minority class"
 ]):
 flags.append("class imbalance: adverse event distribution skewed between treatment arms")
 if any(kw in combined for kw in [
 "deleted patient", "missing patient", "silently excluded",
 "n mismatch", "undisclosed exclusion", "removed patient", "patient id gap",
 "outlier removal", "fewer participants", "not significant", "tumor"
 ]):
 flags.append("undisclosed exclusion: patient records silently removed from analysis")
 if any(kw in combined for kw in [
 "fabricat", "misrepresent", "citation mismatch", "contradict", "source contradiction",
 "directional", "teratogenic", "contraindicated", "safe vs harmful", "wrong direction", "malformation"
 ]):
 flags.append("citation fabrication: source material contradicts paper claims")
if not flags:
 flags.append("statistical irregularities detected requiring further review")
# Stable dedupe while preserving order
 deduped = []
 for flag in flags:
 if flag not in deduped:
 deduped.append(flag)
 return deduped
# ---------------------------------------------------------------------------
# Report Builders
# ---------------------------------------------------------------------------
def _build_task1_report(score, gt_display, num_found, is_baseline=False):
 if score > 0.9:
 rating, bar = "✅ EXCELLENT", "████████████████████ 100%"
 elif score > 0.5:
 rating, bar = "⚠️ PARTIAL", "████████████░░░░░░░░ 60%"
 else:
 rating, bar = "❌ FAILED", "████░░░░░░░░░░░░░░░░ 20%"
model_label = "Baseline Llama-3 (untrained)" if is_baseline else "PeerGuard (GRPO-trained)"
return f"""
══════════════════════════════════════════
 ⚖️ DETERMINISTIC GRADER REPORT
══════════════════════════════════════════
 Task: Task 1 — Methodology Audit
 Model: {model_label}
 Score: {score:.4f} / 1.0000
 Rating: {rating}
Progress: [{bar}]
──────────────────────────────────────────
 GROUND TRUTH FLAWS (planted by env):
{gt_display}
──────────────────────────────────────────
 Agent submitted {num_found} flaw(s).
 Baseline (untrained): ~0.4000
 PeerGuard (trained): {score:.4f}
 Improvement: {((score / 0.4) - 1) * 100:.0f}%
══════════════════════════════════════════
"""
def _build_task5_report(score, gt, sandbox_log, is_baseline=False):
 if score > 0.7:
 rating, bar = "✅ EXCELLENT", "████████████████████ 100%"
 elif score > 0.4:
 rating, bar = "⚠️ PARTIAL", "████████████░░░░░░░░ 50%"
 else:
 rating, bar = "❌ FAILED", "████░░░░░░░░░░░░░░░░ 20%"
model_label = "Baseline Llama-3 (untrained)" if is_baseline else "PeerGuard (GRPO-trained)"
 expected = gt.get("expected_verdict", "REJECT")
return f"""
══════════════════════════════════════════
 ⚖️ DETERMINISTIC GRADER REPORT
══════════════════════════════════════════
 Task: Task 5 — FDA NDA Data Review
 Model: {model_label}
 Score: {score:.4f} / 1.0000
 Rating: {rating}
Progress: [{bar}]
──────────────────────────────────────────
 Expected Verdict: {expected}
Grader checks (0.20 each):
 [1] Correct verdict (REJECT)
 [2] Protocol violations flagged (T1)
 [3] Class imbalance / adverse events (T2)
 [4] Deleted patients / exclusion (T3)
 [5] Citation fabrication caught (T4)
──────────────────────────────────────────
 Baseline (untrained): ~0.2000
 PeerGuard (trained): {score:.4f}
══════════════════════════════════════════
"""
# ---------------------------------------------------------------------------
# Unified Router
# ---------------------------------------------------------------------------
def run_agent(seed_val, task_choice, use_trained, history):
 """Route to the correct task handler and log history."""
 model_str = "PeerGuard" if use_trained else "Baseline"
 task_str = "Task 5" if "Task 5" in task_choice else "Task 1"
if task_choice == "Task 5 — NDA Data Review":
 paper, agent_out, report, sandbox = run_task5(seed_val, use_trained)
 else:
 paper, agent_out, report = run_task1(seed_val, use_trained)
 sandbox = ""
# Parse the score out of the report
 try:
 score_line = [line for line in report.split('\n') if "Score:" in line][0]
 score = score_line.split(':')[1].split('/')[0].strip()
 except Exception:
 score = "0.0000"
# Append to history (most recent first)
 new_entry = [seed_val, task_str, model_str, score]
 history = [new_entry] + (history or [])
return paper, agent_out, report, sandbox, history, history
# ---------------------------------------------------------------------------
# Gradio UI
# ---------------------------------------------------------------------------
CSS = """
.main-header {
 text-align: center;
 padding: 20px;
 background: linear-gradient(135deg, #0f2027, #203a43, #2c5364);
 border-radius: 12px;
 margin-bottom: 20px;
 color: white;
}
.main-header h1 { color: #4ade80; margin: 0; font-size: 2em; }
.main-header p { color: #94a3b8; margin: 5px 0 0 0; }
.score-box {
 font-size: 3em;
 text-align: center;
 padding: 20px;
 background: linear-gradient(135deg, #064e3b, #065f46);
 border-radius: 12px;
 color: #4ade80;
 font-family: monospace;
 font-weight: bold;
}
footer { display: none !important; }
"""
with gr.Blocks(theme=gr.themes.Soft(primary_hue="green"), css=CSS, title="PeerGuard FDA Auditor") as demo:
gr.HTML("""
 <div class="main-header">
 <h1>🛡️ PeerGuard</h1>
 <p>GRPO-Trained FDA Clinical Trial Auditor &nbsp;|&nbsp; Deterministic RLVR Grading</p>
 </div>
 """)
with gr.Row():
 with gr.Column(scale=1):
 gr.Markdown("### 🎛️ Control Panel")
 seed_input = gr.Number(value=9999, label="Episode Seed", info="Each seed generates a unique clinical trial")
 task_choice = gr.Radio(
 choices=["Task 1 — Methodology Audit", "Task 5 — NDA Data Review"],
 value="Task 1 — Methodology Audit",
 label="Task",
 info="Task 1: JSON flaw detection | Task 5: Python code generation",
 )
 use_trained = gr.Checkbox(value=True, label="Use Trained PeerGuard LoRA", info="Uncheck to see baseline performance")
 run_btn = gr.Button("🚀 Deploy FDA Auditor", variant="primary", size="lg")
gr.Markdown("""
 ---
 ### 📊 How It Works
 1. **Procedural Generation** — A unique trial is generated from the seed
 2. **Agent Inference** — The GRPO-trained model audits the paper
 3. **Deterministic Grading** — No LLM-as-judge; pure logic scoring
**Task 1**: JSON audit → Baseline 0.40 → PeerGuard 0.99
 **Task 5**: Python code gen → Zero-shot generalization
 """)
with gr.Column(scale=3):
 with gr.Tab("📄 Raw Clinical Protocol"):
 protocol_out = gr.Textbox(label="Procedurally Generated NDA / Paper", lines=18, interactive=False)
 with gr.Tab("🤖 Agent's Action"):
 agent_out = gr.Textbox(label="Agent Output (JSON or Python Code)", lines=18, interactive=False)
 with gr.Tab("⚖️ Grader Output"):
 grader_out = gr.Textbox(label="Deterministic Grader Report", lines=18, interactive=False)
 with gr.Tab("🖥️ Sandbox Terminal"):
 sandbox_out = gr.Textbox(label="OpenEnv Sandbox stdout/stderr", lines=18, interactive=False)
with gr.Row():
 gr.Markdown("### 📜 Session Audit History")
 with gr.Row():
 history_state = gr.State([])
 history_df = gr.Dataframe(
 headers=["Episode Seed", "Task", "Model", "Grader Score"],
 datatype=["number", "str", "str", "str"],
 value=[],
 interactive=False,
 row_count=5,
 col_count=(4, "fixed"),
 )
run_btn.click(
 fn=run_agent,
 inputs=[seed_input, task_choice, use_trained, history_state],
 outputs=[protocol_out, agent_out, grader_out, sandbox_out, history_df, history_state],
 )
if __name__ == "__main__":
 demo.launch(server_name="0.0.0.0", server_port=7860)