Skip to content

APPENG-3801-B - Agent performance fixes - all agent stages #134

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 49 commits into
base: rh-aiq-main
Choose a base branch
from
Open

APPENG-3801-B - Agent performance fixes - all agent stages #134

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
49 commits
Select commit Hold shift + click to select a range
a1834bd
bugfix in the testing env
etsien Oct 2, 2025
1d79035
update tool descriptions for clarity
etsien Oct 19, 2025
6864fa7
refactor tool names to be class constants instead of disparate strings
etsien Oct 19, 2025
e05ea7a
add initial unit tests
etsien Oct 19, 2025
8893f5c
rename tool names to be more consistent and distinct
etsien Oct 19, 2025
dd18463
update unit tests with tool names and tool constants
etsien Oct 19, 2025
4efffcd
cleanup startup guide notebook
etsien Oct 20, 2025
8f3182e
rework intel source score section
etsien Oct 20, 2025
dd215cf
update agent execution stage prompts and make tool descriptions dynamic
etsien Oct 20, 2025
35ee318
add tests for dynamic tool descriptions
etsien Oct 20, 2025
0af8e7a
revamp the tool description list, as well as the checklist prompt for…
etsien Oct 20, 2025
a882f88
revamp checklist prompt implementation, as well as add in dynamic too…
etsien Oct 20, 2025
26f0d74
update tests for tool descriptions
etsien Oct 20, 2025
186350d
add more detailed agent examples with more useful MRKL-formatted steps
etsien Oct 20, 2025
f71e9f8
update for summary prompt
etsien Oct 20, 2025
9707671
update justification prompt with more logic and explanations on how t…
etsien Oct 20, 2025
faeb811
update CVSS prompts and cleanup examples and guidance
etsien Oct 20, 2025
dcf836f
bugfix on intel source
etsien Oct 20, 2025
efa84ad
bug patch for vdb generation
etsien Oct 21, 2025
be0b27d
bugfix by Tamar
etsien Oct 22, 2025
538257d
update register_function() and transitive_search() descriptions
etsien Oct 28, 2025
36bb6d3
bugfix in the testing env
etsien Oct 2, 2025
7b7695d
update tool descriptions for clarity
etsien Oct 19, 2025
d105a38
refactor tool names to be class constants instead of disparate strings
etsien Oct 19, 2025
09fb531
add initial unit tests
etsien Oct 19, 2025
f475fb2
rename tool names to be more consistent and distinct
etsien Oct 19, 2025
a4ed889
update unit tests with tool names and tool constants
etsien Oct 19, 2025
3a13650
cleanup startup guide notebook
etsien Oct 20, 2025
3b477b0
rework intel source score section
etsien Oct 20, 2025
dcdb5cf
update agent execution stage prompts and make tool descriptions dynamic
etsien Oct 20, 2025
9d81f60
add tests for dynamic tool descriptions
etsien Oct 20, 2025
0df74b9
revamp the tool description list, as well as the checklist prompt for…
etsien Oct 20, 2025
333c1eb
revamp checklist prompt implementation, as well as add in dynamic too…
etsien Oct 20, 2025
29306b3
update tests for tool descriptions
etsien Oct 20, 2025
a5368b6
add more detailed agent examples with more useful MRKL-formatted steps
etsien Oct 20, 2025
dbab156
update for summary prompt
etsien Oct 20, 2025
f585abb
update justification prompt with more logic and explanations on how t…
etsien Oct 20, 2025
b3b53e1
update CVSS prompts and cleanup examples and guidance
etsien Oct 20, 2025
c26936e
bugfix on intel source
etsien Oct 20, 2025
ee0c6af
bug patch for vdb generation
etsien Oct 21, 2025
309a554
bugfix by Tamar
etsien Oct 22, 2025
40de82e
update register_function() and transitive_search() descriptions
etsien Oct 28, 2025
7e0bddb
add function locator descriptions
etsien Nov 5, 2025
eb09d06
add names to configs
etsien Nov 5, 2025
8754762
add local output for local testing
etsien Nov 5, 2025
3449499
Merge branch 'APPENG-3801-B-Agent-performance-fixes-checklist-and-exe…
etsien Nov 5, 2025
554ac47
bugfix
etsien Nov 6, 2025
45fc146
Update tool_names.py
etsien Nov 6, 2025
a2a7f94
Merge branch 'rh-aiq-main' into APPENG-3801-B-Agent-performance-fixes…
etsien Nov 10, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 19 additions & 19 deletions kustomize/base/exploit-iq-config.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,45 +54,45 @@ functions:
cve_checklist:
_type: cve_checklist
llm_name: checklist_llm
Transitive code search tool:
Call Chain Analyzer:
_type: transitive_code_search
enable_transitive_search: true
Calling Function Name Extractor:
Function Caller Finder:
_type: calling_function_name_extractor
enable_functions_usage_search: true
Package and Function Locator:
Function Locator:
_type: package_and_function_locator
Container Image Code QA System:
Code Semantic Search:
_type: local_vdb_retriever
embedder_name: nim_embedder
llm_name: code_vdb_retriever_llm
vdb_type: code
return_source_documents: false
Container Image Developer Guide QA System:
Docs Semantic Search:
_type: local_vdb_retriever
embedder_name: nim_embedder
llm_name: doc_vdb_retriever_llm
vdb_type: doc
return_source_documents: false
Lexical Search Container Image Code QA System:
Code Keyword Search:
_type: lexical_code_search
top_k: 5
Internet Search:
CVE Web Search:
_type: serp_wrapper
max_retries: 5
Container Image Analysis Data:
Container Analysis Data:
_type: container_image_analysis_data
cve_agent_executor:
_type: cve_agent_executor
llm_name: cve_agent_executor_llm
tool_names:
- Container Image Code QA System
- Container Image Developer Guide QA System
- Lexical Search Container Image Code QA System # Uncomment to enable lexical search
- Internet Search
- Transitive code search tool
- Calling Function Name Extractor
- Package and Function Locator
- Code Semantic Search
- Docs Semantic Search
- Code Keyword Search
- CVE Web Search
- Call Chain Analyzer
- Function Caller Finder
- Function Locator
max_concurrency: null
max_iterations: 10
prompt_examples: false
Expand All @@ -106,10 +106,10 @@ functions:
skip: false
llm_name: generate_cvss_llm
tool_names:
- Container Image Code QA System
- Container Image Developer Guide QA System
- Lexical Search Container Image Code QA System # Uncomment to enable lexical search
- Container Image Analysis Data
- Code Semantic Search
- Docs Semantic Search
- Code Keyword Search
- Container Analysis Data
max_concurrency: null
max_iterations: 10
prompt_examples: true
Expand Down
66 changes: 38 additions & 28 deletions kustomize/config-http-openai-local.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -55,45 +55,45 @@ functions:
cve_checklist:
_type: cve_checklist
llm_name: checklist_llm
Transitive code search tool:
Call Chain Analyzer:
_type: transitive_code_search
enable_transitive_search: true
Calling Function Name Extractor:
Function Caller Finder:
_type: calling_function_name_extractor
enable_functions_usage_search: true
Package and Function Locator:
Function Locator:
_type: package_and_function_locator
Container Image Code QA System:
Code Semantic Search:
_type: local_vdb_retriever
embedder_name: nim_embedder
llm_name: code_vdb_retriever_llm
vdb_type: code
return_source_documents: false
Container Image Developer Guide QA System:
Docs Semantic Search:
_type: local_vdb_retriever
embedder_name: nim_embedder
llm_name: doc_vdb_retriever_llm
vdb_type: doc
return_source_documents: false
Lexical Search Container Image Code QA System:
Code Keyword Search:
_type: lexical_code_search
top_k: 5
Internet Search:
CVE Web Search:
_type: serp_wrapper
max_retries: 5
Container Image Analysis Data:
Container Analysis Data:
_type: container_image_analysis_data
cve_agent_executor:
_type: cve_agent_executor
llm_name: cve_agent_executor_llm
tool_names:
- Container Image Code QA System
- Container Image Developer Guide QA System
- Lexical Search Container Image Code QA System # Uncomment to enable lexical search
- Internet Search
- Transitive code search tool
- Calling Function Name Extractor
- Package and Function Locator
- Code Semantic Search
- Docs Semantic Search
- Code Keyword Search
- CVE Web Search
- Call Chain Analyzer
- Function Caller Finder
- Function Locator
max_concurrency: null
max_iterations: 10
prompt_examples: false
Expand All @@ -107,10 +107,10 @@ functions:
skip: false
llm_name: generate_cvss_llm
tool_names:
- Container Image Code QA System
- Container Image Developer Guide QA System
- Lexical Search Container Image Code QA System # Uncomment to enable lexical search
- Container Image Analysis Data
- Code Semantic Search
- Docs Semantic Search
- Code Keyword Search
- Container Analysis Data
max_concurrency: null
max_iterations: 10
prompt_examples: true
Expand All @@ -124,10 +124,20 @@ functions:
cve_justify:
_type: cve_justify
llm_name: justify_llm
# cve_file_output:
# _type: cve_file_output
# file_path: .tmp/output.json
# markdown_dir: .tmp/vulnerability_markdown_reports
# overwrite: true
cve_http_output:
_type: cve_http_output
url: http://localhost:8080
endpoint: /reports
cve_file_output:
_type: cve_file_output
file_path: .tmp/output.json
markdown_dir: .tmp/vulnerability_markdown_reports
overwrite: true
cve_calculate_intel_score:
_type: cve_calculate_intel_score
llm_name: intel_source_score_llm
Expand All @@ -138,55 +148,55 @@ functions:
llms:
checklist_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${CHECKLIST_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
max_tokens: 2000
top_p: 0.01
code_vdb_retriever_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${CODE_VDB_RETRIEVER_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
max_tokens: 2000
top_p: 0.01
doc_vdb_retriever_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${DOC_VDB_RETRIEVER_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
max_tokens: 2000
top_p: 0.01
cve_agent_executor_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${CVE_AGENT_EXECUTOR_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
max_tokens: 2000
top_p: 0.01
generate_cvss_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${GENERATE_CVSS_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
max_tokens: 1024
top_p: 0.01
summarize_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${SUMMARIZE_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
max_tokens: 1024
top_p: 0.01
justify_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${JUSTIFY_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
Expand All @@ -195,7 +205,7 @@ llms:

intel_source_score_llm:
_type: openai
api_key: "EMPTY"
api_key: ${OPENAI_API_KEY:-EMPTY}
base_url: ${NVIDIA_API_BASE:-https://integrate.api.nvidia.com/v1}
model_name: ${JUSTIFY_MODEL_NAME:-meta/llama-3.1-70b-instruct}
temperature: 0.0
Expand All @@ -222,7 +232,7 @@ workflow:
cve_generate_cvss_name: cve_generate_cvss
cve_summarize_name: cve_summarize
cve_justify_name: cve_justify
cve_output_config_name: cve_http_output
cve_output_config_name: cve_file_output

eval:
general:
Expand Down
Loading