fix(guardrails): address review follow-ups

SantiagoDePolonia · SantiagoDePolonia · commit 25ebca3ec91b · 2026-04-05T17:58:52.000+02:00
diff --git a/internal/admin/dashboard/static/css/dashboard.css b/internal/admin/dashboard/static/css/dashboard.css
@@ -1115,6 +1115,22 @@ td.col-price {
     color: var(--text-muted);
 }
 
+.alias-form-field-fieldset {
+    border: 0;
+    margin: 0;
+    min-inline-size: 0;
+    padding: 0;
+}
+
+.alias-form-field-legend {
+    color: var(--text-muted);
+    font-size: 12px;
+    font-weight: 600;
+    letter-spacing: 0.5px;
+    padding: 0;
+    text-transform: uppercase;
+}
+
 .alias-form-textarea {
     width: 100%;
     min-height: 110px;
diff --git a/internal/admin/dashboard/static/js/modules/timezone-layout.test.js b/internal/admin/dashboard/static/js/modules/timezone-layout.test.js
@@ -103,6 +103,7 @@ test('dashboard templates expose a settings page and timezone context in activit
 
 test('guardrails authoring moved to a top-level page while settings keeps the general switch', () => {
     const template = readHelperDisclosureTemplateSource();
+    const css = readFixture('../../css/dashboard.css');
 
     assert.match(template, /<div class="settings-subnav">[\s\S]*class="settings-subnav-btn active"[\s\S]*>General<\/button>/);
     assert.match(template, /<div x-show="page==='guardrails'">[\s\S]*<h2>Guardrails<\/h2>/);
@@ -111,5 +112,16 @@ test('guardrails authoring moved to a top-level page while settings keeps the ge
     assert.match(template, /x-model="guardrailForm\.type"/);
     assert.match(template, /x-effect="guardrailTypes\.length; guardrailForm\.type; \$nextTick\(\(\) => syncGuardrailTypeSelectValue\(\)\)"/);
     assert.match(template, /x-model="guardrailForm\.user_path"[^>]*aria-label="Guardrail user path"/);
-    assert.match(template, /Optional base user path for internal auxiliary rewrite requests\. When empty, the caller user path is reused\./);
+    assert.match(template, /Only used for auxiliary rewrite \(llm_based_altering\) guardrails; ignored for other guardrail types\./);
+    assert.match(template, /<fieldset class="alias-form-field alias-form-field-wide alias-form-field-fieldset"[^>]*:aria-describedby="field\.help \? 'guardrail-field-help-' \+ field\.key : null"/);
+    assert.match(template, /<legend class="alias-form-field-legend" x-text="field\.label"><\/legend>/);
+    assert.match(template, /<small class="alias-form-hint" :id="'guardrail-field-help-' \+ field\.key" x-show="field\.help" x-text="field\.help"><\/small>/);
+
+    const fieldsetRule = readCSSRule(css, '.alias-form-field-fieldset');
+    assert.match(fieldsetRule, /border:\s*0/);
+    assert.match(fieldsetRule, /padding:\s*0/);
+
+    const legendRule = readCSSRule(css, '.alias-form-field-legend');
+    assert.match(legendRule, /text-transform:\s*uppercase/);
+    assert.match(legendRule, /letter-spacing:\s*0\.5px/);
 });
diff --git a/internal/admin/dashboard/templates/index.html b/internal/admin/dashboard/templates/index.html
@@ -384,7 +384,7 @@ <h3 x-text="guardrailFormMode === 'edit' ? 'Edit Guardrail' : 'Create Guardrail'
                 <label class="alias-form-field">
                     <span>User Path</span>
                     <input type="text" class="filter-input" placeholder="/team/alpha" x-model="guardrailForm.user_path" aria-label="Guardrail user path">
-                    <small class="alias-form-hint">Optional base user path for internal auxiliary rewrite requests. When empty, the caller user path is reused.</small>
+                    <small class="alias-form-hint">Only used for auxiliary rewrite (llm_based_altering) guardrails; ignored for other guardrail types.</small>
                 </label>
 
                 <template x-for="field in guardrailTypeFields(guardrailForm.type)" :key="field.key">
@@ -409,8 +409,8 @@ <h3 x-text="guardrailFormMode === 'edit' ? 'Edit Guardrail' : 'Create Guardrail'
                             </label>
                         </template>
                         <template x-if="field.input === 'checkboxes'">
-                            <div class="alias-form-field alias-form-field-wide">
-                                <span x-text="field.label"></span>
+                            <fieldset class="alias-form-field alias-form-field-wide alias-form-field-fieldset" :aria-describedby="field.help ? 'guardrail-field-help-' + field.key : null">
+                                <legend class="alias-form-field-legend" x-text="field.label"></legend>
                                 <div class="execution-plan-feature-toggles">
                                     <template x-for="option in field.options" :key="field.key + '-' + option.value">
                                         <label class="execution-plan-feature-toggle">
@@ -419,8 +419,8 @@ <h3 x-text="guardrailFormMode === 'edit' ? 'Edit Guardrail' : 'Create Guardrail'
                                         </label>
                                     </template>
                                 </div>
-                                <small class="alias-form-hint" x-show="field.help" x-text="field.help"></small>
-                            </div>
+                                <small class="alias-form-hint" :id="'guardrail-field-help-' + field.key" x-show="field.help" x-text="field.help"></small>
+                            </fieldset>
                         </template>
                     </div>
                 </template>
diff --git a/internal/admin/handler_guardrails_test.go b/internal/admin/handler_guardrails_test.go
@@ -11,6 +11,7 @@ import (
 
 	"github.com/labstack/echo/v5"
 
+	"gomodel/internal/core"
 	"gomodel/internal/executionplans"
 	"gomodel/internal/guardrails"
 )
@@ -313,6 +314,20 @@ func TestUpsertGuardrailRejectsSlashInName(t *testing.T) {
 	if rec.Code != http.StatusBadRequest {
 		t.Fatalf("status = %d, want 400", rec.Code)
 	}
+
+	envelope := decodeExecutionPlanErrorEnvelope(t, rec.Body.Bytes())
+	if envelope.Error.Type != string(core.ErrorTypeInvalidRequest) {
+		t.Fatalf("error type = %q, want %q", envelope.Error.Type, core.ErrorTypeInvalidRequest)
+	}
+	if envelope.Error.Message != "guardrail name cannot contain '/'" {
+		t.Fatalf("error message = %q, want guardrail name validation failure", envelope.Error.Message)
+	}
+	if envelope.Error.Param != nil {
+		t.Fatalf("error param = %v, want nil", *envelope.Error.Param)
+	}
+	if envelope.Error.Code != nil {
+		t.Fatalf("error code = %v, want nil", *envelope.Error.Code)
+	}
 }
 
 func TestDeleteGuardrailRejectsActiveWorkflowReference(t *testing.T) {
diff --git a/internal/auditlog/entry_capture.go b/internal/auditlog/entry_capture.go
@@ -201,10 +201,10 @@ func internalJSONAuditHeaders(ctx context.Context, requestID string) http.Header
 }
 
 func boundedAuditBody(body []byte, truncate bool) ([]byte, bool) {
+	if body == nil {
+		return []byte{}, false
+	}
 	if len(body) <= MaxBodyCapture {
-		if body == nil {
-			return []byte{}, false
-		}
 		cloned := make([]byte, len(body))
 		copy(cloned, body)
 		return cloned, false
diff --git a/internal/guardrails/factory.go b/internal/guardrails/factory.go
@@ -61,6 +61,9 @@ func New(ctx context.Context, cfg *config.Config, refreshInterval time.Duration,
 	if cfg == nil {
 		return nil, fmt.Errorf("config is required")
 	}
+	if err := validateExecutorCount(executors); err != nil {
+		return nil, err
+	}
 	storeConn, err := storage.New(ctx, cfg.Storage.BackendConfig())
 	if err != nil {
 		return nil, fmt.Errorf("failed to create storage: %w", err)
@@ -79,10 +82,16 @@ func NewWithSharedStorage(ctx context.Context, shared storage.Storage, refreshIn
 	if shared == nil {
 		return nil, fmt.Errorf("shared storage is required")
 	}
+	if err := validateExecutorCount(executors); err != nil {
+		return nil, err
+	}
 	return newResult(ctx, shared, refreshInterval, executors...)
 }
 
 func newResult(ctx context.Context, storeConn storage.Storage, refreshInterval time.Duration, executors ...ChatCompletionExecutor) (*Result, error) {
+	if err := validateExecutorCount(executors); err != nil {
+		return nil, err
+	}
 	store, err := createStore(ctx, storeConn)
 	if err != nil {
 		return nil, err
@@ -156,3 +165,10 @@ func startGuardrailRefreshLoop(parent context.Context, service *Service, interva
 		})
 	}, errs
 }
+
+func validateExecutorCount(executors []ChatCompletionExecutor) error {
+	if len(executors) > 1 {
+		return fmt.Errorf("only one ChatCompletionExecutor is supported")
+	}
+	return nil
+}
diff --git a/internal/guardrails/llm_based_altering_test.go b/internal/guardrails/llm_based_altering_test.go
@@ -2,6 +2,7 @@ package guardrails
 
 import (
 	"context"
+	"errors"
 	"fmt"
 	"sync/atomic"
 	"testing"
@@ -216,6 +217,41 @@ func TestLLMBasedAltering_Process_PropagatesContextCancellation(t *testing.T) {
 	}
 }
 
+func TestLLMBasedAltering_Process_PropagatesMidFlightCancellation(t *testing.T) {
+	ctx, cancel := context.WithCancel(context.Background())
+	started := make(chan struct{})
+
+	g, err := NewLLMBasedAlteringGuardrail("privacy", LLMBasedAlteringConfig{
+		Model: "gpt-4o-mini",
+	}, mockChatCompletionExecutor{
+		chatFn: func(ctx context.Context, _ *core.ChatRequest) (*core.ChatResponse, error) {
+			close(started)
+			<-ctx.Done()
+			return nil, ctx.Err()
+		},
+	})
+	if err != nil {
+		t.Fatalf("NewLLMBasedAlteringGuardrail() error = %v", err)
+	}
+
+	resultCh := make(chan error, 1)
+	go func() {
+		_, err := g.Process(ctx, []Message{{Role: "user", Content: "John says hello"}})
+		resultCh <- err
+	}()
+
+	<-started
+	cancel()
+
+	err = <-resultCh
+	if err == nil {
+		t.Fatal("expected context cancellation error")
+	}
+	if !errors.Is(err, context.Canceled) {
+		t.Fatalf("error = %v, want context.Canceled", err)
+	}
+}
+
 func TestLLMBasedAltering_Process_FailsOpenOnToolCallCompletion(t *testing.T) {
 	g, err := NewLLMBasedAlteringGuardrail("privacy", LLMBasedAlteringConfig{
 		Model: "gpt-4o-mini",
diff --git a/internal/guardrails/provider.go b/internal/guardrails/provider.go
@@ -1420,6 +1420,9 @@ func cloneResponsesInterfacePart(part any) any {
 	return cloneStringAnyMap(partMap)
 }
 
+// cloneStringAnyMap performs a shallow copy of the map. Nested maps/slices are
+// intentionally shared; callers are expected to either preserve them as-is or
+// replace whole top-level values instead of mutating nested structures in place.
 func cloneStringAnyMap(src map[string]any) map[string]any {
 	if src == nil {
 		return nil
diff --git a/internal/guardrails/service.go b/internal/guardrails/service.go
@@ -32,6 +32,9 @@ func NewService(store Store, executors ...ChatCompletionExecutor) (*Service, err
 	if store == nil {
 		return nil, fmt.Errorf("store is required")
 	}
+	if len(executors) > 1 {
+		return nil, fmt.Errorf("only one ChatCompletionExecutor is supported")
+	}
 	var executor ChatCompletionExecutor
 	if len(executors) > 0 {
 		executor = executors[0]
diff --git a/internal/guardrails/service_test.go b/internal/guardrails/service_test.go
@@ -129,6 +129,18 @@ func TestServiceRefreshBuildsPipelineFromDefinitions(t *testing.T) {
 	}
 }
 
+func TestNewServiceRejectsMultipleExecutors(t *testing.T) {
+	store := newTestStore()
+
+	_, err := NewService(store, mockChatCompletionExecutor{}, mockChatCompletionExecutor{})
+	if err == nil {
+		t.Fatal("NewService() error = nil, want multiple executor validation error")
+	}
+	if err.Error() != "only one ChatCompletionExecutor is supported" {
+		t.Fatalf("NewService() error = %q, want multiple executor validation error", err)
+	}
+}
+
 func TestServiceRefreshBuildsLLMBasedAlteringPipelineFromDefinitions(t *testing.T) {
 	store := newTestStore(
 		Definition{
diff --git a/internal/responsecache/handle_request_test.go b/internal/responsecache/handle_request_test.go
@@ -2,6 +2,7 @@ package responsecache
 
 import (
 	"bytes"
+	"context"
 	"encoding/json"
 	"net/http"
 	"net/http/httptest"
@@ -91,6 +92,26 @@ func TestHandleRequest_SemanticMissPopulatesExactCache(t *testing.T) {
 	}
 }
 
+func TestHandleInternalRequest_RejectsNilContext(t *testing.T) {
+	m := NewResponseCacheMiddlewareWithStore(cache.NewMapStore(), time.Hour)
+	var nilCtx context.Context
+
+	_, err := m.HandleInternalRequest(nilCtx, http.MethodPost, "/v1/chat/completions", []byte(`{}`), func(c *echo.Context) error {
+		return c.JSON(http.StatusOK, map[string]string{"ok": "1"})
+	})
+	if err == nil {
+		t.Fatal("HandleInternalRequest() error = nil, want invalid request error")
+	}
+
+	gatewayErr, ok := err.(*core.GatewayError)
+	if !ok {
+		t.Fatalf("HandleInternalRequest() error = %T, want *core.GatewayError", err)
+	}
+	if gatewayErr.Type != core.ErrorTypeInvalidRequest {
+		t.Fatalf("error type = %q, want %q", gatewayErr.Type, core.ErrorTypeInvalidRequest)
+	}
+}
+
 func TestHandleRequest_FallbackUsedSkipsCacheWrites(t *testing.T) {
 	store := cache.NewMapStore()
 	defer store.Close()
diff --git a/internal/responsecache/responsecache.go b/internal/responsecache/responsecache.go
@@ -24,6 +24,7 @@ const responseCachePrefix = "gomodel:response:"
 type ResponseCacheMiddleware struct {
 	simple   *simpleCacheMiddleware
 	semantic *semanticCacheMiddleware
+	echo     *echo.Echo
 }
 
 // InternalHandleResult is the buffered result of running the cache middleware
@@ -46,6 +47,7 @@ func NewResponseCacheMiddleware(
 	pricingResolver usage.PricingResolver,
 ) (*ResponseCacheMiddleware, error) {
 	m := &ResponseCacheMiddleware{}
+	m.echo = echo.New()
 	hitRecorder := newUsageHitRecorder(usageLogger, pricingResolver)
 
 	switch {
@@ -166,15 +168,22 @@ func (m *ResponseCacheMiddleware) HandleInternalRequest(
 	next func(*echo.Context) error,
 ) (*InternalHandleResult, error) {
 	if ctx == nil {
-		ctx = context.Background()
+		return nil, core.NewInvalidRequestError("context is required", nil)
 	}
 
 	req := httptest.NewRequest(method, path, bytes.NewReader(body))
 	req.Header = internalRequestHeaders(ctx)
 	req = req.WithContext(ctx)
 
 	rec := httptest.NewRecorder()
-	c := echo.New().NewContext(req, rec)
+	var e *echo.Echo
+	if m != nil {
+		e = m.echo
+	}
+	if e == nil {
+		e = echo.New()
+	}
+	c := e.NewContext(req, rec)
 
 	var err error
 	if m == nil {
@@ -246,5 +255,6 @@ func internalCacheType(headerValue string) string {
 func NewResponseCacheMiddlewareWithStore(store cache.Store, ttl time.Duration) *ResponseCacheMiddleware {
 	return &ResponseCacheMiddleware{
 		simple: newSimpleCacheMiddleware(store, ttl, nil),
+		echo:   echo.New(),
 	}
 }
diff --git a/internal/server/translated_inference_service.go b/internal/server/translated_inference_service.go
@@ -162,9 +162,7 @@ func handleWithCache[R any](
 	dispatch func(*echo.Context, R, *core.ExecutionPlan) error,
 ) error {
 	ctx := s.withCacheRequestContext(c.Request().Context(), plan)
-	if ctx != c.Request().Context() {
-		c.SetRequest(c.Request().WithContext(ctx))
-	}
+	c.SetRequest(c.Request().WithContext(ctx))
 
 	if s.responseCache != nil && (plan == nil || plan.CacheEnabled()) {
 		body, marshalErr := marshalRequestBody(req)
@@ -187,13 +185,11 @@ func (s *translatedInferenceService) withCacheRequestContext(ctx context.Context
 	if plan != nil {
 		ctx = core.WithExecutionPlan(ctx, plan)
 	}
-
-	guardrailsHash := s.guardrailsHash
 	if plan != nil && plan.Policy != nil {
-		guardrailsHash = plan.GuardrailsHash()
+		return core.WithGuardrailsHash(ctx, plan.GuardrailsHash())
 	}
-	if guardrailsHash != "" {
-		ctx = core.WithGuardrailsHash(ctx, guardrailsHash)
+	if s.guardrailsHash != "" {
+		return core.WithGuardrailsHash(ctx, s.guardrailsHash)
 	}
 	return ctx
 }
diff --git a/internal/server/translated_inference_service_test.go b/internal/server/translated_inference_service_test.go
@@ -81,3 +81,28 @@ func TestTranslatedInferenceService_LogUsageAssignsUserPathFromContext(t *testin
 		t.Fatalf("UserPath = %q, want /team/alpha", got)
 	}
 }
+
+func TestTranslatedInferenceService_WithCacheRequestContextClearsInheritedGuardrailsHash(t *testing.T) {
+	service := &translatedInferenceService{
+		guardrailsHash: "service-default",
+	}
+	ctx := core.WithGuardrailsHash(context.Background(), "caller-hash")
+	plan := &core.ExecutionPlan{
+		Policy: &core.ResolvedExecutionPolicy{
+			VersionID:      "plan-1",
+			GuardrailsHash: "",
+			Features: core.ExecutionFeatures{
+				Cache:      true,
+				Audit:      true,
+				Usage:      true,
+				Guardrails: false,
+				Fallback:   true,
+			},
+		},
+	}
+
+	got := service.withCacheRequestContext(ctx, plan)
+	if hash := core.GetGuardrailsHash(got); hash != "" {
+		t.Fatalf("guardrails hash = %q, want cleared hash", hash)
+	}
+}

Original file line number	Diff line number	Diff line change
`@@ -1420,6 +1420,9 @@ func cloneResponsesInterfacePart(part any) any {`
`1420`	`1420`	`return cloneStringAnyMap(partMap)`
`1421`	`1421`	`}`
`1422`	`1422`
	`1423`	`+// cloneStringAnyMap performs a shallow copy of the map. Nested maps/slices are`
	`1424`	`+// intentionally shared; callers are expected to either preserve them as-is or`
	`1425`	`+// replace whole top-level values instead of mutating nested structures in place.`
`1423`	`1426`	`func cloneStringAnyMap(src map[string]any) map[string]any {`
`1424`	`1427`	`if src == nil {`
`1425`	`1428`	`return nil`