codeql/python/ql/lib/semmle/python/frameworks/OpenAI.qll at 4c88fc552eee3cd64a5dd8af40111896cf69d2bb · github/codeql · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
/**
 * Provides classes modeling security-relevant aspects of the `openAI` Agents SDK package.
 * See https://github.com/openai/openai-agents-python.
 * As well as the regular openai python interface.
 * See https://github.com/openai/openai-python.
 */

private import python
private import semmle.python.ApiGraphs

/**
 * Provides models for agents SDK (instances of the `agents.Runner` class etc).
 *
 * See https://github.com/openai/openai-agents-python.
 */
module AgentSDK {
  /** Gets a reference to the `agents.Runner` class. */
  API::Node classRef() { result = API::moduleImport("agents").getMember("Runner") }

  /** Gets a reference to the `run` members. */
  API::Node runMembers() { result = classRef().getMember(["run", "run_sync", "run_streamed"]) }

  /** Gets a reference to a potential property of `agents.Runner` called input which can refer to a system prompt depending on the role specified. */
  API::Node getContentNode() {
    result = runMembers().getKeywordParameter("input").getASubscript().getSubscript("content")
    or
    result = runMembers().getParameter(_).getASubscript().getSubscript("content")
  }
}

/**
 * Provides models for Agent (instances of the `openai.OpenAI` class).
 *
 * See https://github.com/openai/openai-python.
 */
module OpenAI {
  /** Gets a reference to the `openai.OpenAI` class. */
  API::Node classRef() {
    result =
      API::moduleImport("openai").getMember(["OpenAI", "AsyncOpenAI", "AzureOpenAI"]).getReturn()
  }

  /** Gets a reference to a potential property of `openai.OpenAI` called instructions which refers to the system prompt. */
  API::Node getContentNode() {
    exists(API::Node content |
      content =
        classRef()
            .getMember("responses")
            .getMember("create")
            .getKeywordParameter(["input", "instructions"])
      or
      content =
        classRef()
            .getMember("responses")
            .getMember("create")
            .getKeywordParameter(["input", "instructions"])
            .getASubscript()
            .getSubscript("content")
      or
      content =
        classRef()
            .getMember("realtime")
            .getMember("connect")
            .getReturn()
            .getMember("conversation")
            .getMember("item")
            .getMember("create")
            .getKeywordParameter("item")
            .getSubscript("content")
      or
      content =
        classRef()
            .getMember("chat")
            .getMember("completions")
            .getMember("create")
            .getKeywordParameter("messages")
            .getASubscript()
            .getSubscript("content")
    |
      // content
      if not exists(content.getASubscript())
      then result = content
      else
        // content.text
        result = content.getASubscript().getSubscript("text")
    )
  }
}