eliott/worldmonitor
1
0
Fork 0
mirror of https://github.com/koala73/worldmonitor.git synced 2026-04-25 17:14:57 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
2f19d9635736d54e8fcc50e4ed23acb2b2dcc385
worldmonitor/api/internal/brief-why-matters.ts
Elie Habib 2f19d96357 feat(brief): route whyMatters through internal analyst-context endpoint (#3248) 
* feat(brief): route whyMatters through internal analyst-context endpoint

The brief's "why this is important" callout currently calls Gemini on
only {headline, source, threatLevel, category, country} with no live
state. The LLM can't know whether a ceasefire is on day 2 or day 50,
that IMF flagged >90% gas dependency in UAE/Qatar/Bahrain, or what
today's forecasts look like. Output is generic prose instead of the
situational analysis WMAnalyst produces when given live context.

This PR adds an internal Vercel edge endpoint that reuses a trimmed
variant of the analyst context (country-brief, risk scores, top-3
forecasts, macro signals, market data — no GDELT, no digest-search)
and ships it through a one-sentence LLM call with the existing
WHY_MATTERS_SYSTEM prompt. The endpoint owns its own Upstash cache
(v3 prefix, 6h TTL), supports a shadow mode that runs both paths in
parallel for offline diffing, and is auth'd via RELAY_SHARED_SECRET.

Three-layer graceful degradation (endpoint → legacy Gemini-direct →
stub) keeps the brief shipping on any failure.

Env knobs:
- BRIEF_WHY_MATTERS_PRIMARY=analyst|gemini (default: analyst; typo → gemini)
- BRIEF_WHY_MATTERS_SHADOW=0|1 (default: 1; only '0' disables)
- BRIEF_WHY_MATTERS_SHADOW_SAMPLE_PCT=0..100 (default: 100)
- BRIEF_WHY_MATTERS_ENDPOINT_URL (Railway, optional override)

Cache keys:
- brief:llm:whymatters:v3:{hash16} — envelope {whyMatters, producedBy,
  at}, 6h TTL. Endpoint-owned.
- brief:llm:whymatters:shadow:v1:{hash16} — {analyst, gemini, chosen,
  at}, 7d TTL. Fire-and-forget.
- brief:llm:whymatters:v2:{hash16} — legacy. Cron's fallback path
  still reads/writes during the rollout window; expires in ≤24h.

Tests: 6022 pass (existing 5915 + 12 core + 36 endpoint + misc).
typecheck + typecheck:api + biome on changed files clean.

Plan (Codex-approved after 4 rounds):
docs/plans/2026-04-21-001-feat-brief-why-matters-analyst-endpoint-plan.md

* fix(brief): address /ce:review round 1 findings on PR #3248

Fixes 5 findings from multi-agent review, 2 of them P1:

- #241 P1: `.gitignore !api/internal/**` was too broad — it re-included
  `.env`, `.env.local`, and any future secret file dropped into that
  directory. Narrowed to explicit source extensions (`*.ts`, `*.js`,
  `*.mjs`) so parent `.env` / secrets rules stay in effect inside
  api/internal/.

- #242 P1: `Dockerfile.digest-notifications` did not COPY
  `shared/brief-llm-core.js` + `.d.ts`. Cron would have crashed at
  container start with ERR_MODULE_NOT_FOUND. Added alongside
  brief-envelope + brief-filter COPY lines.

- #243 P2: Cron dropped the endpoint's source/producedBy ground-truth
  signal, violating PR #3247's own round-3 memory
  (feedback_gate_on_ground_truth_not_configured_state.md). Added
  structured log at the call site: `[brief-llm] whyMatters source=<src>
  producedBy=<pb> hash=<h>`. Endpoint response now includes `hash` so
  log + shadow-record pairs can be cross-referenced.

- #244 P2: Defense-in-depth prompt-injection hardening. Story fields
  flowed verbatim into both LLM prompts, bypassing the repo's
  sanitizeForPrompt convention. Added sanitizeStoryFields helper and
  applied in both analyst and gemini paths.

- #245 P2: Removed redundant `validate` option from callLlmReasoning.
  With only openrouter configured in prod, a parse-reject walked the
  provider chain, then fell through to the other path (same provider),
  then the cron's own fallback (same model) — 3x billing on one reject.
  Post-call parseWhyMatters check already handles rejection cleanly.

Deferred to P3 follow-ups (todos 246-248): singleflight, v2 sunset,
misc polish (country-normalize LOC, JSDoc pruning, shadow waitUntil,
auto-sync mirror, context-assembly caching).

Tests: 6022 pass. typecheck + typecheck:api clean.

* fix(brief-why-matters): ctx.waitUntil for shadow write + sanitize legacy fallback

Two P2 findings on PR #3248:

1. Shadow record was fire-and-forget without ctx.waitUntil on an Edge
   function. Vercel can terminate the isolate after response return,
   so the background redisPipeline write completes unreliably — i.e.
   the rollout-validation signal the shadow keys were supposed to
   provide was flaky in production.

   Fix: accept an optional EdgeContext 2nd arg. Build the shadow
   promise up front (so it starts executing immediately) then register
   it with ctx.waitUntil when present. Falls back to plain unawaited
   execution when ctx is absent (local harness / tests).

2. scripts/lib/brief-llm.mjs legacy fallback path called
   buildWhyMattersPrompt(story) on raw fields with no sanitization.
   The analyst endpoint sanitizes before its own prompt build, but
   the fallback is exactly what runs when the endpoint misses /
   errors — so hostile headlines / sources reached the LLM verbatim
   on that path.

   Fix: local sanitizeStoryForPrompt wrapper imports sanitizeForPrompt
   from server/_shared/llm-sanitize.js (existing pattern — see
   scripts/seed-digest-notifications.mjs:41). Wraps story fields
   before buildWhyMattersPrompt. Cache key unchanged (hash is over raw
   story), so cache parity with the analyst endpoint's v3 entries is
   preserved.

Regression guard: new test asserts the fallback prompt strips
"ignore previous instructions", "### Assistant:" line prefixes, and
`<|im_start|>` tokens when injection-crafted fields arrive.

Typecheck + typecheck:api clean. 6023 / 6023 data tests pass.

* fix(digest-cron): COPY server/_shared/llm-sanitize into digest-notifications image

Reviewer P1 on PR #3248: my previous commit (4eee22083) added
`import sanitizeForPrompt from server/_shared/llm-sanitize.js` to
scripts/lib/brief-llm.mjs, but Dockerfile.digest-notifications cherry-
picks server/_shared/* files and doesn't copy llm-sanitize. Import is
top-level/static — the container would crash at module load with
ERR_MODULE_NOT_FOUND the moment seed-digest-notifications.mjs pulls in
scripts/lib/brief-llm.mjs. Not just on fallback — every startup.

Fix: add `COPY server/_shared/llm-sanitize.js server/_shared/llm-sanitize.d.ts`
next to the existing brief-render COPY line. Module is pure string
manipulation with zero transitive imports — nothing else needs to land.

Cites feedback_validation_docker_ship_full_scripts_dir.md in the comment
next to the COPY; the cherry-pick convention keeps biting when new
cross-dir imports land in scripts/lib/ or scripts/shared/.

Can't regression-test at build time from this branch without a
docker-build CI job, but the symptom is deterministic — local runs
remain green (they resolve against the live filesystem); only the
container crashes. Post-merge, Railway redeploy of seed-digest-
notifications should show a clean `Starting Container` log line
instead of the MODULE_NOT_FOUND crash my prior commit would have caused.
2026-04-21 14:03:27 +04:00

454 lines
16 KiB
TypeScript
Raw Blame History

/**
* Internal endpoint — enriches a brief story's `whyMatters` field with
* live analyst context + LLM.
*
* POST /api/internal/brief-why-matters
*
* Internal-only. Auth via `Authorization: Bearer $RELAY_SHARED_SECRET`
* (same secret Railway crons already use). Not Pro-gated, no CORS.
*
* Body:
* {
* story: {
* headline: string, 1..400
* source: string, 1..120
* threatLevel: 'critical' | 'high' | 'medium' | 'low'
* category: string, 1..80 (free-form)
* country: string, 0..80 (full name, ISO2, 'Global', or empty)
* }
* }
*
* Response (200):
* {
* whyMatters: string | null
* source: 'cache' | 'analyst' | 'gemini'
* producedBy: 'analyst' | 'gemini' | null
* shadow?: { analyst: string | null, gemini: string | null }
* }
*
* 400 on invalid body, 401 on bad auth, 500 on unexpected.
*
* Architecture note: this endpoint calls an LLM from Vercel edge, which
* is consistent with /api/chat-analyst (both are analyst flows). The
* "Vercel reads only" convention from memory is for data-seeder flows
* and does not apply here.
*/
export const config = { runtime: 'edge' };
import { authenticateInternalRequest } from '../../server/_shared/internal-auth';
import { normalizeCountryToIso2 } from '../../server/_shared/country-normalize';
import { assembleBriefStoryContext } from '../../server/worldmonitor/intelligence/v1/brief-story-context';
import {
buildAnalystWhyMattersPrompt,
sanitizeStoryFields,
} from '../../server/worldmonitor/intelligence/v1/brief-why-matters-prompt';
import { callLlmReasoning } from '../../server/_shared/llm';
// @ts-expect-error — JS module, no declaration file
import { readRawJsonFromUpstash, setCachedData, redisPipeline } from '../_upstash-json.js';
import {
buildWhyMattersUserPrompt,
hashBriefStory,
parseWhyMatters,
} from '../../shared/brief-llm-core.js';
// ── Env knobs (read at request entry so Railway/Vercel flips take effect
// on the next invocation without a redeploy) ───────────────────────────
function readConfig(env: Record<string, string | undefined> = process.env as Record<string, string | undefined>): {
primary: 'analyst' | 'gemini';
invalidPrimaryRaw: string | null;
shadowEnabled: boolean;
sampleHardRoll: (hash16: string) => boolean;
invalidSamplePctRaw: string | null;
} {
// PRIMARY: default 'analyst'. Unknown value → 'gemini' (stable path) + warn.
const rawPrimary = (env.BRIEF_WHY_MATTERS_PRIMARY ?? '').trim().toLowerCase();
let primary: 'analyst' | 'gemini';
let invalidPrimaryRaw: string | null = null;
if (rawPrimary === '' || rawPrimary === 'analyst') {
primary = 'analyst';
} else if (rawPrimary === 'gemini') {
primary = 'gemini';
} else {
primary = 'gemini';
invalidPrimaryRaw = rawPrimary;
}
// SHADOW: default-on kill switch. Only exactly '0' disables.
const shadowEnabled = env.BRIEF_WHY_MATTERS_SHADOW !== '0';
// SAMPLE_PCT: default 100. Invalid/out-of-range → 100 + warn.
const rawSample = env.BRIEF_WHY_MATTERS_SHADOW_SAMPLE_PCT;
let samplePct = 100;
let invalidSamplePctRaw: string | null = null;
if (rawSample !== undefined && rawSample !== '') {
const parsed = Number.parseInt(rawSample, 10);
if (Number.isInteger(parsed) && parsed >= 0 && parsed <= 100 && String(parsed) === rawSample.trim()) {
samplePct = parsed;
} else {
invalidSamplePctRaw = rawSample;
}
}
// Deterministic per-hash sampling so the same story takes the same
// decision across retries inside a rollout window.
const sampleHardRoll = (hash16: string): boolean => {
if (samplePct >= 100) return true;
if (samplePct <= 0) return false;
const bucket = Number.parseInt(hash16.slice(0, 8), 16) % 100;
return bucket < samplePct;
};
return { primary, invalidPrimaryRaw, shadowEnabled, sampleHardRoll, invalidSamplePctRaw };
}
// ── TTLs ──────────────────────────────────────────────────────────────
const WHY_MATTERS_TTL_SEC = 6 * 60 * 60; // 6h
const SHADOW_TTL_SEC = 7 * 24 * 60 * 60; // 7d
// ── Validation ────────────────────────────────────────────────────────
const VALID_THREAT_LEVELS = new Set(['critical', 'high', 'medium', 'low']);
const MAX_BODY_BYTES = 4096;
const CAPS = {
headline: 400,
source: 120,
category: 80,
country: 80,
};
interface StoryPayload {
headline: string;
source: string;
threatLevel: string;
category: string;
country: string;
}
type ValidationOk = { ok: true; story: StoryPayload };
type ValidationErr = { ok: false; status: number; error: string };
function json(body: unknown, status: number): Response {
return new Response(JSON.stringify(body), {
status,
headers: { 'Content-Type': 'application/json' },
});
}
function validateStoryBody(raw: unknown): ValidationOk | ValidationErr {
if (!raw || typeof raw !== 'object') {
return { ok: false, status: 400, error: 'body must be an object' };
}
const storyRaw = (raw as { story?: unknown }).story;
if (!storyRaw || typeof storyRaw !== 'object') {
return { ok: false, status: 400, error: 'body.story must be an object' };
}
const s = storyRaw as Record<string, unknown>;
// Required non-empty strings with length caps.
for (const field of ['headline', 'source', 'category'] as const) {
const v = s[field];
if (typeof v !== 'string' || v.length === 0) {
return { ok: false, status: 400, error: `story.${field} must be a non-empty string` };
}
if (v.length > CAPS[field]) {
return { ok: false, status: 400, error: `story.${field} exceeds ${CAPS[field]} chars` };
}
}
// threatLevel — strict enum matching brief-render.js:286 VALID_THREAT_LEVELS.
if (typeof s.threatLevel !== 'string' || !VALID_THREAT_LEVELS.has(s.threatLevel)) {
return {
ok: false,
status: 400,
error: `story.threatLevel must be one of critical|high|medium|low`,
};
}
// country — optional; string with cap when provided.
let country = '';
if (s.country !== undefined && s.country !== null) {
if (typeof s.country !== 'string') {
return { ok: false, status: 400, error: 'story.country must be a string' };
}
if (s.country.length > CAPS.country) {
return { ok: false, status: 400, error: `story.country exceeds ${CAPS.country} chars` };
}
country = s.country;
}
return {
ok: true,
story: {
headline: s.headline as string,
source: s.source as string,
threatLevel: s.threatLevel,
category: s.category as string,
country,
},
};
}
// ── LLM paths ─────────────────────────────────────────────────────────
async function runAnalystPath(story: StoryPayload, iso2: string | null): Promise<string | null> {
try {
const context = await assembleBriefStoryContext({ iso2, category: story.category });
const { system, user } = buildAnalystWhyMattersPrompt(story, context);
const result = await callLlmReasoning({
messages: [
{ role: 'system', content: system },
{ role: 'user', content: user },
],
maxTokens: 180,
temperature: 0.4,
timeoutMs: 15_000,
// Provider is pinned via LLM_REASONING_PROVIDER env var (already
// set to 'openrouter' in prod). `callLlmReasoning` routes through
// the resolveProviderChain based on that env.
// Note: no `validate` option. The post-call parseWhyMatters check
// below handles rejection by returning null. Using validate inside
// callLlmReasoning would walk the provider chain on parse-reject,
// causing duplicate openrouter billings when only one provider is
// configured in prod. See todo 245.
});
if (!result) return null;
return parseWhyMatters(result.content);
} catch (err) {
console.warn(`[brief-why-matters] analyst path failed: ${err instanceof Error ? err.message : String(err)}`);
return null;
}
}
async function runGeminiPath(story: StoryPayload): Promise<string | null> {
try {
// Sanitize before the edge-safe prompt builder sees any field —
// defense-in-depth against prompt injection even under a valid
// RELAY_SHARED_SECRET caller (consistent with the analyst path).
const { system, user } = buildWhyMattersUserPrompt(sanitizeStoryFields(story));
const result = await callLlmReasoning({
messages: [
{ role: 'system', content: system },
{ role: 'user', content: user },
],
maxTokens: 120,
temperature: 0.4,
timeoutMs: 10_000,
// Note: no `validate` option. The post-call parseWhyMatters check
// below handles rejection by returning null. Using validate inside
// callLlmReasoning would walk the provider chain on parse-reject,
// causing duplicate openrouter billings when only one provider is
// configured in prod. See todo 245.
});
if (!result) return null;
return parseWhyMatters(result.content);
} catch (err) {
console.warn(`[brief-why-matters] gemini path failed: ${err instanceof Error ? err.message : String(err)}`);
return null;
}
}
// ── Cache envelope ────────────────────────────────────────────────────
interface WhyMattersEnvelope {
whyMatters: string;
producedBy: 'analyst' | 'gemini';
at: string; // ISO8601
}
function isEnvelope(v: unknown): v is WhyMattersEnvelope {
if (!v || typeof v !== 'object') return false;
const e = v as Record<string, unknown>;
return (
typeof e.whyMatters === 'string' &&
(e.producedBy === 'analyst' || e.producedBy === 'gemini') &&
typeof e.at === 'string'
);
}
// ── Handler ───────────────────────────────────────────────────────────
// Vercel Edge passes an execution context as the 2nd argument with
// `waitUntil(promise)` to keep background work alive past the response
// return. Fire-and-forget without it is unreliable on Edge — the isolate
// can be frozen mid-write. Optional to stay compatible with local/test
// harnesses that don't pass a ctx.
interface EdgeContext {
waitUntil?: (promise: Promise<unknown>) => void;
}
export default async function handler(req: Request, ctx?: EdgeContext): Promise<Response> {
if (req.method !== 'POST') {
return json({ error: 'Method not allowed' }, 405);
}
// Auth.
const unauthorized = await authenticateInternalRequest(req, 'RELAY_SHARED_SECRET');
if (unauthorized) return unauthorized;
// Body size cap — two layers: Content-Length pre-read, byte-length post-read.
const contentLengthRaw = req.headers.get('content-length');
if (contentLengthRaw) {
const cl = Number.parseInt(contentLengthRaw, 10);
if (Number.isFinite(cl) && cl > MAX_BODY_BYTES) {
return json({ error: `body exceeds ${MAX_BODY_BYTES} bytes` }, 400);
}
}
// Read body as text so we can enforce the post-read cap before JSON.parse.
let bodyText: string;
try {
bodyText = await req.text();
} catch {
return json({ error: 'failed to read body' }, 400);
}
if (new TextEncoder().encode(bodyText).byteLength > MAX_BODY_BYTES) {
return json({ error: `body exceeds ${MAX_BODY_BYTES} bytes` }, 400);
}
let bodyParsed: unknown;
try {
bodyParsed = JSON.parse(bodyText);
} catch {
return json({ error: 'invalid JSON' }, 400);
}
const validation = validateStoryBody(bodyParsed);
if (!validation.ok) {
console.warn(`[brief-why-matters] validation_reject error=${validation.error}`);
return json({ error: validation.error }, validation.status);
}
const story = validation.story;
// Normalize country to ISO2 for context lookup; unknown/Global → null
// (analyst path will skip country-specific fields).
const iso2 = normalizeCountryToIso2(story.country);
// Resolve config + runtime flags.
const cfg = readConfig();
if (cfg.invalidPrimaryRaw !== null) {
console.warn(
`[brief-why-matters] unrecognised BRIEF_WHY_MATTERS_PRIMARY=${cfg.invalidPrimaryRaw} — falling back to gemini (safe path). Valid values: analyst | gemini.`,
);
}
if (cfg.invalidSamplePctRaw !== null) {
console.warn(
`[brief-why-matters] unrecognised BRIEF_WHY_MATTERS_SHADOW_SAMPLE_PCT=${cfg.invalidSamplePctRaw} — defaulting to 100. Must be integer 0-100.`,
);
}
// Cache identity.
const hash = await hashBriefStory(story);
const cacheKey = `brief:llm:whymatters:v3:${hash}`;
const shadowKey = `brief:llm:whymatters:shadow:v1:${hash}`;
// Cache read. Any infrastructure failure → treat as miss (logged).
let cached: WhyMattersEnvelope | null = null;
try {
const raw = await readRawJsonFromUpstash(cacheKey);
if (raw !== null && isEnvelope(raw)) {
cached = raw;
}
} catch (err) {
console.warn(`[brief-why-matters] cache read degraded: ${err instanceof Error ? err.message : String(err)}`);
}
if (cached) {
return json({
whyMatters: cached.whyMatters,
source: 'cache',
producedBy: cached.producedBy,
hash,
}, 200);
}
// Cache miss — run paths.
const runShadow = cfg.shadowEnabled && cfg.sampleHardRoll(hash);
let analystResult: string | null = null;
let geminiResult: string | null = null;
let chosenProducer: 'analyst' | 'gemini';
let chosenValue: string | null;
if (runShadow) {
const [a, g] = await Promise.allSettled([
runAnalystPath(story, iso2),
runGeminiPath(story),
]);
analystResult = a.status === 'fulfilled' ? a.value : null;
geminiResult = g.status === 'fulfilled' ? g.value : null;
if (cfg.primary === 'analyst') {
// Fall back to gemini if analyst failed.
chosenProducer = analystResult !== null ? 'analyst' : 'gemini';
chosenValue = analystResult ?? geminiResult;
} else {
chosenProducer = geminiResult !== null ? 'gemini' : 'analyst';
chosenValue = geminiResult ?? analystResult;
}
} else if (cfg.primary === 'analyst') {
analystResult = await runAnalystPath(story, iso2);
chosenProducer = 'analyst';
chosenValue = analystResult;
} else {
geminiResult = await runGeminiPath(story);
chosenProducer = 'gemini';
chosenValue = geminiResult;
}
// Cache write — only when we actually have a value, so cache-miss
// retries on the next tick can try again.
const now = new Date().toISOString();
if (chosenValue !== null) {
const envelope: WhyMattersEnvelope = {
whyMatters: chosenValue,
producedBy: chosenProducer,
at: now,
};
try {
await setCachedData(cacheKey, envelope, WHY_MATTERS_TTL_SEC);
} catch (err) {
console.warn(`[brief-why-matters] cache write degraded: ${err instanceof Error ? err.message : String(err)}`);
}
}
// Shadow record so offline diff has pairs to sample. Background work on
// Edge runtimes MUST be registered with `ctx.waitUntil` — plain unawaited
// promises can be frozen when the isolate terminates after the response.
// Falls back to fire-and-forget when ctx is absent (local runs / tests).
if (runShadow) {
const record = {
analyst: analystResult,
gemini: geminiResult,
chosen: chosenProducer,
at: now,
};
const shadowWrite = redisPipeline([
['SET', shadowKey, JSON.stringify(record), 'EX', String(SHADOW_TTL_SEC)],
]).then(() => undefined).catch(() => {
// Silent — shadow is observability, not critical.
});
if (typeof ctx?.waitUntil === 'function') {
ctx.waitUntil(shadowWrite);
}
// When ctx is missing (local harness), the promise is still chained above
// so it runs to completion before the caller's await completes.
}
const response: {
whyMatters: string | null;
source: 'analyst' | 'gemini';
producedBy: 'analyst' | 'gemini' | null;
hash: string;
shadow?: { analyst: string | null; gemini: string | null };
} = {
whyMatters: chosenValue,
source: chosenProducer,
producedBy: chosenValue !== null ? chosenProducer : null,
hash,
};
if (runShadow) {
response.shadow = { analyst: analystResult, gemini: geminiResult };
}
return json(response, 200);
}
Reference in New Issue View Git Blame Copy Permalink