Skip to content

feat(catalog): add loader for security-evaluations.ndjson#2779

Open
pboyd wants to merge 2 commits into
kubeflow:mainfrom
pboyd:security-metrics-loader
Open

feat(catalog): add loader for security-evaluations.ndjson#2779
pboyd wants to merge 2 commits into
kubeflow:mainfrom
pboyd:security-metrics-loader

Conversation

@pboyd

@pboyd pboyd commented Jun 3, 2026
edited
Loading

Copy link
Copy Markdown
Member

Description

Load security-evaluations.ndjson into a security-metrics metrics arifact when the performance metrics are loaded.

How Has This Been Tested?

I added some examples to the demo performance data. It can be queried, if you're running the demo overlay for tilt:

$ curl -s "http://localhost:8082/api/model_catalog/v1alpha1/sources/validated_ai_models/models/certified/analytics-forecaster-5b/artifacts?filterQuery=metricsType.string_value=%22security-metrics%22" | jq '.
items[]'
{
  "artifactType": "metrics-artifact",
  "createTimeSinceEpoch": "1780576659176",
  "customProperties": {
    "benchmark": {
      "metadataType": "MetadataStringValue",
      "string_value": "intents"
    },
    "category": {
      "metadataType": "MetadataStringValue",
      "string_value": "security"
    },
    "description": {
      "metadataType": "MetadataStringValue",
      "string_value": "Risk assessment with a context-aware custom intent typology and probes of increasing complexity. Runs as an AI Pipeline and requires a Data Science Pipelines setup."
    },
    "evaluation": {
      "metadataType": "MetadataStringValue",
      "string_value": "Context-aware vulnerability scan (Pipeline)"
    },
    "id": {
      "metadataType": "MetadataStringValue",
      "string_value": "b1c2d3e4-3001-4000-a000-000000000005"
    },
    "lower_is_better": {
      "bool_value": true,
      "metadataType": "MetadataBoolValue"
    },
    "model_id": {
      "metadataType": "MetadataStringValue",
      "string_value": "certified/analytics-forecaster-5b"
    },
    "pass": {
      "bool_value": false,
      "metadataType": "MetadataBoolValue"
    },
    "provider_id": {
      "metadataType": "MetadataStringValue",
      "string_value": "garak-kfp"
    },
    "result": {
      "double_value": 0.65,
      "metadataType": "MetadataDoubleValue"
    },
    "result_metric": {
      "metadataType": "MetadataStringValue",
      "string_value": "attack_success_rate"
    },
    "threshold": {
      "double_value": 0.3,
      "metadataType": "MetadataDoubleValue"
    }
  },
  "externalId": "b1c2d3e4-3001-4000-a000-000000000005",
  "id": "259215",
  "lastUpdateTimeSinceEpoch": "1780576659176",
  "metricsType": "security-metrics",
  "name": "security-b1c2d3e4-3001-4000-a000-000000000005"
}

Merge criteria:

  • All the commits have been signed-off (To pass the DCO check)
  • The commits have meaningful messages
  • Automated tests are provided as part of the PR for major new functionalities; testing instructions have been added in the PR body (for PRs involving changes that are not immediately obvious).
  • The developer has manually tested the changes and verified that the changes work.
  • Code changes follow the kubeflow contribution guidelines.

@google-oss-prow

google-oss-prow Bot commented Jun 3, 2026

Copy link
Copy Markdown
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please ask for approval from pboyd. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@google-oss-prow google-oss-prow Bot requested review from Tomcli and fege June 3, 2026 17:57
@pboyd pboyd force-pushed the security-metrics-loader branch from 4492752 to 7fef426 Compare June 4, 2026 12:38
@pboyd
feat(catalog): add security-evaluations.ndjson to demo perf data tarball
3615014 
Add sample security evaluation data for three of the four certified demo
models, to be consumed by the upcoming security-metrics loader.

- certified/production-llm-8b: 2 records (pipeline + standalone scans, both passing)
- certified/compliance-assistant-3b: 2 records (pipeline + domain-specific scans, both passing)
- certified/analytics-forecaster-5b: 1 record (pipeline scan, failing — attack_success_rate: 0.65)
- certified/secure-embeddings-v2: no file (embeddings models are not garak targets)

The intentional absence for secure-embeddings-v2 exercises the loader's
"skip silently when security-evaluations.ndjson is absent" behavior.

Assisted-by: Claude Opus 4.6
Signed-off-by: Paul Boyd <paul@pboyd.io>
@pboyd pboyd force-pushed the security-metrics-loader branch from 7fef426 to 7a1130c Compare June 11, 2026 13:59
@pboyd
feat(catalog): add loader for security-evaluations.ndjson
470e8d7 
Extends processModelArtifactsBatch() to parse security-evaluations.ndjson
files from the existing performance metrics directories, creating artifacts
with metricsType: security-metrics. No new config flags or dependencies required.

Assisted-by: Claude Sonnet 4.6
Signed-off-by: Paul Boyd <paul@pboyd.io>
@pboyd pboyd force-pushed the security-metrics-loader branch from 7a1130c to 470e8d7 Compare June 11, 2026 14:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fege fege Awaiting requested review from fege

@Tomcli Tomcli Awaiting requested review from Tomcli

Assignees

No one assigned

Labels

Area/Manifests Area/Model Catalog size/XL

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@pboyd