fix: colang 2 issues in community integrations (#1140)

Pouyanpi · web-flow · commit 36d625e3f3e2 · 2025-05-14T12:20:49.000+02:00
* fix(prompt_security): correct flow actions and syntax

* fix(privateai): update PII detection and masking configurations

Set `is_system_action` to `False` for `detect_pii` and `mask_pii`
actions to align with updated requirements. Remove `@active`
decorators from flows in `flows.co` to streamline flow activation
logic.

* feat(prompt_security): add rails exceptions to colang 2

* feat(prompt_security): add rails exceptions to colang 1
diff --git a/nemoguardrails/library/privateai/actions.py b/nemoguardrails/library/privateai/actions.py
@@ -37,7 +37,7 @@ def detect_pii_mapping(result: bool) -> bool:
     return result
 
 
-@action(is_system_action=True, output_mapping=detect_pii_mapping)
+@action(is_system_action=False, output_mapping=detect_pii_mapping)
 async def detect_pii(
     source: str,
     text: str,
@@ -89,7 +89,7 @@ async def detect_pii(
     return entity_detected
 
 
-@action(is_system_action=True)
+@action(is_system_action=False)
 async def mask_pii(source: str, text: str, config: RailsConfig):
     """Masks any detected PII in the provided text.
 
diff --git a/nemoguardrails/library/privateai/flows.co b/nemoguardrails/library/privateai/flows.co
@@ -2,7 +2,6 @@
 
 # INPUT RAILS
 
-@active
 flow detect pii on input
   """Check if the user input has PII."""
   $has_pii = await DetectPiiAction(source="input", text=$user_message)
@@ -14,7 +13,6 @@ flow detect pii on input
 
 # INPUT RAILS
 
-@active
 flow detect pii on output
   """Check if the bot output has PII."""
   $has_pii = await DetectPiiAction(source="output", text=$bot_message)
@@ -26,7 +24,6 @@ flow detect pii on output
 
 # RETRIVAL RAILS
 
-@active
 flow detect pii on retrieval
   """Check if the relevant chunks from the knowledge base have any PII."""
   $has_pii = await DetectPiiAction(source="retrieval", text=$relevant_chunks)
@@ -43,7 +40,6 @@ flow detect pii on retrieval
 
 # INPUT RAILS
 
-@active
 flow mask pii on input
   """Mask any detected PII in the user input."""
   $masked_input = await MaskPiiAction(source="input", text=$user_message)
@@ -54,15 +50,13 @@ flow mask pii on input
 
 # OUTPUT RAILS
 
-@active
 flow mask pii on output
   """Mask any detected PII in the bot output."""
   $bot_message = await MaskPiiAction(source="output", text=$bot_message)
 
 
 # RETRIVAL RAILS
 
-@active
 flow mask pii on retrieval
   """Mask any detected PII in the relevant chunks from the knowledge base."""
   $relevant_chunks = await MaskPiiAction(source="retrieval", text=$relevant_chunks)
diff --git a/nemoguardrails/library/prompt_security/flows.co b/nemoguardrails/library/prompt_security/flows.co
@@ -1,24 +1,28 @@
 # INPUT RAILS
 
-@active
 flow protect prompt
   """Check if the prompt is valid according to Prompt Security."""
-  $result = await protect_text(user_prompt=$user_message)
+  $result = await ProtectTextAction(user_prompt=$user_message)
   if $result["is_blocked"]
-    bot inform answer unknown
-    stop
+    if $system.config.enable_rails_exceptions
+      send PromptSecurityRailException(message="Prompt not allowed. The prompt was blocked by the 'protect prompt' flow.")
+    else
+      bot inform answer unknown
+    abort
   else if $result["is_modified"]
     $user_message = $result["modified_text"]
 
 
 # OUTPUT RAILS
 
-@active
 flow protect response
   """Check if the response is valid according to Prompt Security."""
-  $result = await protect_text(bot_response=$bot_message)
+  $result = await ProtectTextAction(bot_response=$bot_message)
   if $result["is_blocked"]
-    bot inform answer unknown
-    stop
+    if $system.config.enable_rails_exceptions
+      send PromptSecurityRailException(message="Response not allowed. The response was blocked by the 'protect response' flow.")
+    else
+      bot inform answer unknown
+    abort
   else if $result["is_modified"]
     $bot_message = $result["modified_text"]
diff --git a/nemoguardrails/library/prompt_security/flows.v1.co b/nemoguardrails/library/prompt_security/flows.v1.co
@@ -4,7 +4,10 @@ define subflow protect prompt
   """Check if the prompt is valid according to Prompt Security."""
   $result = execute protect_text(user_prompt=$user_message)
   if $result["is_blocked"]
-    bot inform answer unknown
+    if $config.enable_rails_exceptions
+      create event PromptSecurityRailRailException(message="Prompt not allowed. The prompt was blocked by the 'protect prompt' flow.")
+    else
+      bot inform answer unknown
     stop
   else if $result["is_modified"]
     $user_message = $result["modified_text"]
@@ -16,7 +19,10 @@ define subflow protect response
   """Check if the response is valid according to Prompt Security."""
   $result = execute protect_text(bot_response=$bot_message)
   if $result["is_blocked"]
-    bot inform answer unknown
+    if $config.enable_rails_exceptions
+      create event PromptSecurityRailException(message="Response not allowed. The response was blocked by the 'protect response' flow.")
+    else
+      bot inform answer unknown
     stop
   else if $result["is_modified"]
     $bot_message = $result["modified_text"]
