[Feature]Add Online Explainability notebooks for SageMaker Clarify #3613
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,57 @@ | ||
| from io import StringIO | ||
| import numpy as np | ||
| import os | ||
| import pandas as pd | ||
| import json | ||
| from transformers import AutoTokenizer, AutoModelForSequenceClassification | ||
| import torch | ||
| from typing import Any, Dict, List | ||
|
|
||
|
|
||
| def model_fn(model_dir: str) -> Dict[str, Any]: | ||
| """ | ||
| Load the model for inference | ||
| """ | ||
| model_path = os.path.join(model_dir, "model") | ||
|
|
||
| # Load HuggingFace tokenizer. | ||
| tokenizer = AutoTokenizer.from_pretrained("distilbert-base-uncased") | ||
|
|
||
| # Load HuggingFace model from disk. | ||
| model = AutoModelForSequenceClassification.from_pretrained(model_path, local_files_only=True) | ||
| device = torch.device("cuda" if torch.cuda.is_available() else "cpu") | ||
| model.to(device) | ||
| model.eval() | ||
| model_dict = {"model": model, "tokenizer": tokenizer} | ||
| return model_dict | ||
|
|
||
|
|
||
| def predict_fn(input_data: List, model: Dict) -> np.ndarray: | ||
| """ | ||
| Apply model to the incoming request | ||
| """ | ||
| device = torch.device("cuda" if torch.cuda.is_available() else "cpu") | ||
| tokenizer = model["tokenizer"] | ||
| huggingface_model = model["model"] | ||
|
|
||
| encoded_input = tokenizer(input_data, truncation=True, padding=True, max_length=128, return_tensors="pt") | ||
| encoded_input = {k: v.to(device) for k, v in encoded_input.items()} | ||
| with torch.no_grad(): | ||
| output = huggingface_model(input_ids=encoded_input["input_ids"], attention_mask=encoded_input["attention_mask"]) | ||
| res = torch.nn.Softmax(dim=1)(output.logits).detach().cpu().numpy()[:, 1] | ||
| return res | ||
|
|
||
|
|
||
| def input_fn(request_body: str, request_content_type: str) -> List[str]: | ||
| """ | ||
| Deserialize and prepare the prediction input | ||
| """ | ||
| if request_content_type == "application/json": | ||
| sentences = [json.loads(request_body)] | ||
|
|
||
| elif request_content_type == "text/csv": | ||
| # We have a single column with the text. | ||
| sentences = list(pd.read_csv(StringIO(request_body), header=None).values[:, 0].astype(str)) | ||
| else: | ||
| sentences = request_body | ||
| return sentences | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,3 @@ | ||
| transformers==4.2.1 | ||
|
There was a problem hiding this comment. Is this file being used? There was a problem hiding this comment. yes, all files in code directory are being packaged in model container. There was a problem hiding this comment. it looks like its saying pip install sagemaker captum --upgrade and then it doesn't know what captum is, I believe the fix here is to get rid of sagemaker and just make it !pip install captum --upgrade? There was a problem hiding this comment. It could be, though when manually running the notebook it's not causing an issue. I can try that once. There was a problem hiding this comment. @aaronmarkham @rdamazon Tried this, bot execution is still failing with the same exception. I was able to execute the notebook in manual run successfully. There was a problem hiding this comment. We're currently testing this on our end |
||
| torch==1.7.1 | ||
| pandas | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Recommendation generated by Amazon CodeGuru Reviewer. Leave feedback on this recommendation by replying to the comment or by reacting to the comment using emoji.
Problem:
This line of code lacks validation when processing input data through the following parameter: 'request_body' (index: 0 | type: str). The parameter is exposed to external callers, because its enclosing class and method are publicly accessible. This means that upstream validation, if it exists, can be bypassed. Other validated parameters: 'request_content_type'. The same parameter type is validated here for example: amazon-sagemaker-examples/sagemaker-clarify/online_explainability/natural_language_processing/code/inference.py:15. Malicious, malformed, or unbounded inputs can cause unexpected runtime behavior or crashes, and can slow performance.
Fix:
Add checks to ensure the validity of the parameter's value, such as testing it for nullness, emptiness, or equality. Or to prevent direct calls to it, reduce the method's visibility using single or double underscore.
Learn more about potential threats and guidance from the Common Weakness Enumeration website and the OWASP Cheat Sheet series.