Add robust input validation for ENABLE_SLACK environment variable

strickvl · claude · strickvl · commit 8148b437d1a9 · 2025-06-18T15:01:00.000+02:00
- Add strict validation to only accept "true" or "false" values for ENABLE_SLACK - In Modal app creation: raise ValueError and abort deployment for invalid values - In incident reporting: log error but gracefully continue with disabled Slack - Prevents silent failures from typos like "True", "1", "yes", or "tru" - Provides clear error messages showing expected vs actual values This improves user experience by catching configuration errors early rather than silently defaulting to disabled Slack notifications. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
diff --git a/credit-scorer/modal_app/modal_deployment.py b/credit-scorer/modal_app/modal_deployment.py
@@ -84,7 +84,16 @@ def create_modal_app(python_version: str = "3.12.9"):
     }
 
     # Only add secrets if Slack notifications are explicitly enabled
-    enable_slack = os.getenv("ENABLE_SLACK", "false").lower() == "true"
+    enable_slack_raw = os.getenv("ENABLE_SLACK", "false").lower()
+    if enable_slack_raw not in {"true", "false"}:
+        logger.error(
+            f"Invalid value for ENABLE_SLACK: '{enable_slack_raw}'. Expected 'true' or 'false'. Deployment aborted."
+        )
+        raise ValueError(
+            f"Invalid ENABLE_SLACK value: '{enable_slack_raw}'. Deployment aborted."
+        )
+
+    enable_slack = enable_slack_raw == "true"
     if enable_slack:
         try:
             app_config["secrets"] = [modal.Secret.from_name(SECRET_NAME)]
@@ -182,7 +191,16 @@ def _report_incident(incident_data: dict, model_checksum: str) -> dict:
             logger.warning(f"Could not write to local incident log: {e}")
 
         # 2. Direct Slack notification for high/critical severity (not using ZenML)
-        enable_slack = os.getenv("ENABLE_SLACK", "false").lower() == "true"
+        enable_slack_raw = os.getenv("ENABLE_SLACK", "false").lower()
+        if enable_slack_raw not in {"true", "false"}:
+            logger.error(
+                f"Invalid value for ENABLE_SLACK: '{enable_slack_raw}'. Expected 'true' or 'false'."
+            )
+            # Don't abort incident reporting, just skip Slack notification
+            enable_slack = False
+        else:
+            enable_slack = enable_slack_raw == "true"
+
         if incident["severity"] in ("high", "critical") and enable_slack:
             try:
                 slack_token = os.getenv("SLACK_BOT_TOKEN")
diff --git a/credit-scorer/src/steps/deployment/generate_sbom.py b/credit-scorer/src/steps/deployment/generate_sbom.py
@@ -162,15 +162,15 @@ def generate_sbom_html(sbom_data: Dict[str, Any], timestamp: str) -> str:
         <div class="content">
             <div class="card sbom-header">
                 <h2>SBOM Information</h2>
-                <p><strong>Format:</strong> {sbom_data.get('bomFormat', 'CycloneDX')}</p>
-                <p><strong>Spec Version:</strong> {sbom_data.get('specVersion', 'N/A')}</p>
-                <p><strong>Serial Number:</strong> <span class="monospace checksum">{sbom_data.get('serialNumber', 'N/A')}</span></p>
+                <p><strong>Format:</strong> {sbom_data.get("bomFormat", "CycloneDX")}</p>
+                <p><strong>Spec Version:</strong> {sbom_data.get("specVersion", "N/A")}</p>
+                <p><strong>Serial Number:</strong> <span class="monospace checksum">{sbom_data.get("serialNumber", "N/A")}</span></p>
                 <p><strong>Generated:</strong> {timestamp}</p>
             </div>
             
             <div class="card sbom-metadata">
                 <h2>Metadata</h2>
-                <p><strong>Timestamp:</strong> {metadata.get('timestamp', 'N/A')}</p>
+                <p><strong>Timestamp:</strong> {metadata.get("timestamp", "N/A")}</p>
                 <p><strong>Total Components:</strong> {len(components)}</p>
             </div>
             
diff --git a/credit-scorer/src/steps/deployment/post_run_annex.py b/credit-scorer/src/steps/deployment/post_run_annex.py
@@ -253,7 +253,7 @@ def generate_enhanced_annex_iv_html(
                         </tr>
                     </table>
                     
-                    {generate_previous_versions_table(metadata.get('pipeline_runs', []))}
+                    {generate_previous_versions_table(metadata.get("pipeline_runs", []))}
                     
                     <p><strong>Intended Purpose:</strong> To evaluate credit risk for loan applicants by providing an objective, fair, and transparent score based on financial history and demographic data.</p>
                 </div>
@@ -262,22 +262,22 @@ def generate_enhanced_annex_iv_html(
                     <h3>1(b) System Interactions</h3>
                     <div class="info-grid">
                         <div class="info-label">Stack Name:</div>
-                        <div class="info-value">{stack_info.get('name', 'Unknown')}</div>
+                        <div class="info-value">{stack_info.get("name", "Unknown")}</div>
                         <div class="info-label">Stack ID:</div>
-                        <div class="info-value">{stack_info.get('id', 'Unknown')}</div>
+                        <div class="info-value">{stack_info.get("id", "Unknown")}</div>
                         <div class="info-label">Created:</div>
-                        <div class="info-value">{stack_info.get('created', 'Unknown')}</div>
+                        <div class="info-value">{stack_info.get("created", "Unknown")}</div>
                     </div>
-                    {generate_stack_components_table(metadata.get('stack_components', {}))}
+                    {generate_stack_components_table(metadata.get("stack_components", {}))}
                 </div>
                 
                 <div class="subsection">
                     <h3>1(c) Software Versions</h3>
                     <div class="info-grid">
                         <div class="info-label">Pipeline Commit:</div>
-                        <div class="info-value">{git_info.get('commit', 'Unknown')}</div>
+                        <div class="info-value">{git_info.get("commit", "Unknown")}</div>
                         <div class="info-label">Repository:</div>
-                        <div class="info-value">{git_info.get('repository', 'Unknown')}</div>
+                        <div class="info-value">{git_info.get("repository", "Unknown")}</div>
                     </div>
                     {generate_framework_versions_table(frameworks)}
                 </div>
@@ -288,7 +288,7 @@ def generate_enhanced_annex_iv_html(
                         <div class="info-label">Type:</div>
                         <div class="info-value">Modal + FastAPI (Serverless API deployment with auto-scaling)</div>
                         <div class="info-label">Environment:</div>
-                        <div class="info-value">{deployment_info.get('environment', 'Production') if deployment_info else 'Production'}</div>
+                        <div class="info-value">{deployment_info.get("environment", "Production") if deployment_info else "Production"}</div>
                         <div class="info-label">Scaling:</div>
                         <div class="info-value">Automatic</div>
                     </div>
@@ -308,12 +308,12 @@ def generate_enhanced_annex_iv_html(
                 <div class="subsection">
                     <h3>2(a) Development Methods and Third-party Tools</h3>
                     
-                    {generate_pipeline_execution_history(metadata.get('pipeline_execution_history', []))}
+                    {generate_pipeline_execution_history(metadata.get("pipeline_execution_history", []))}
                     
                     <h4 style="margin-top: 2rem;">Development Environment</h4>
                     <div class="info-grid">
                         <div class="info-label">Source Repository:</div>
-                        <div class="info-value">{git_info.get('repository', 'git@github.com:zenml-io/zenml-projects.git')}</div>
+                        <div class="info-value">{git_info.get("repository", "git@github.com:zenml-io/zenml-projects.git")}</div>
                         <div class="info-label">Version Control:</div>
                         <div class="info-value">Git</div>
                         <div class="info-label">CI/CD Platform:</div>
@@ -348,19 +348,19 @@ def generate_enhanced_annex_iv_html(
                             <div class="metric-label">Accuracy</div>
                         </div>
                         <div class="metric-card">
-                            <div class="metric-value text-success">{model_metrics.get('f1_score', 0):.3f}</div>
+                            <div class="metric-value text-success">{model_metrics.get("f1_score", 0):.3f}</div>
                             <div class="metric-label">F1 Score</div>
                         </div>
                         <div class="metric-card">
-                            <div class="metric-value">{model_metrics.get('auc_roc', 0):.3f}</div>
+                            <div class="metric-value">{model_metrics.get("auc_roc", 0):.3f}</div>
                             <div class="metric-label">AUC-ROC</div>
                         </div>
                         <div class="metric-card">
-                            <div class="metric-value text-warning">{model_metrics.get('precision', 0):.3f}</div>
+                            <div class="metric-value text-warning">{model_metrics.get("precision", 0):.3f}</div>
                             <div class="metric-label">Precision</div>
                         </div>
                         <div class="metric-card">
-                            <div class="metric-value text-danger">{model_metrics.get('recall', 0):.3f}</div>
+                            <div class="metric-value text-danger">{model_metrics.get("recall", 0):.3f}</div>
                             <div class="metric-label">Recall</div>
                         </div>
                     </div>
@@ -393,7 +393,7 @@ def generate_enhanced_annex_iv_html(
                 <div class="card-header">
                     <h2 class="card-title">4. Appropriateness of Performance Metrics</h2>
                 </div>
-                <p>The selected metrics provide a balanced assessment: Accuracy ({accuracy:.1%}) measures overall predictive capability, AUC ({model_metrics.get('auc_roc', 0):.3f}) assesses discrimination ability, and fairness metrics ensure consistent performance across demographic groups.</p>
+                <p>The selected metrics provide a balanced assessment: Accuracy ({accuracy:.1%}) measures overall predictive capability, AUC ({model_metrics.get("auc_roc", 0):.3f}) assesses discrimination ability, and fairness metrics ensure consistent performance across demographic groups.</p>
             </div>
             
             <!-- 5. Risk Management -->
@@ -403,19 +403,19 @@ def generate_enhanced_annex_iv_html(
                 </div>
                 <div class="metrics-container">
                     <div class="metric-card">
-                        <div class="metric-value text-danger">{risk_data.get('overall', 0):.3f}</div>
+                        <div class="metric-value text-danger">{risk_data.get("overall", 0):.3f}</div>
                         <div class="metric-label">Overall Risk</div>
                     </div>
                     <div class="metric-card">
-                        <div class="metric-value text-warning">{risk_data.get('technical', 0):.3f}</div>
+                        <div class="metric-value text-warning">{risk_data.get("technical", 0):.3f}</div>
                         <div class="metric-label">Technical Risk</div>
                     </div>
                     <div class="metric-card">
-                        <div class="metric-value">{risk_data.get('operational', 0):.3f}</div>
+                        <div class="metric-value">{risk_data.get("operational", 0):.3f}</div>
                         <div class="metric-label">Operational Risk</div>
                     </div>
                     <div class="metric-card">
-                        <div class="metric-value text-success">{risk_data.get('compliance', 0):.3f}</div>
+                        <div class="metric-value text-success">{risk_data.get("compliance", 0):.3f}</div>
                         <div class="metric-label">Compliance Risk</div>
                     </div>
                 </div>
@@ -561,10 +561,10 @@ def generate_previous_versions_table(pipeline_runs: list) -> str:
         )
         html += f"""
             <tr>
-                <td>{run.get('name', 'Unknown')}</td>
-                <td><span class="monospace">{run.get('id', 'Unknown')[:8]}</span></td>
-                <td>{run.get('created', 'Unknown')}</td>
-                <td><span class="status-indicator {status_class}"></span> {run.get('status', 'Unknown')}</td>
+                <td>{run.get("name", "Unknown")}</td>
+                <td><span class="monospace">{run.get("id", "Unknown")[:8]}</span></td>
+                <td>{run.get("created", "Unknown")}</td>
+                <td><span class="status-indicator {status_class}"></span> {run.get("status", "Unknown")}</td>
             </tr>
         """
 
@@ -780,10 +780,10 @@ def generate_stack_components_table(stack_components: Dict[str, Any]) -> str:
             for component in components:
                 html += f"""
                     <tr>
-                        <td>{component_type.replace('_', ' ').title()}</td>
-                        <td>{component.get('name', 'Unknown')}</td>
-                        <td>{component.get('flavor', 'Unknown')}</td>
-                        <td>{component.get('integration', 'Built-in')}</td>
+                        <td>{component_type.replace("_", " ").title()}</td>
+                        <td>{component.get("name", "Unknown")}</td>
+                        <td>{component.get("flavor", "Unknown")}</td>
+                        <td>{component.get("integration", "Built-in")}</td>
                     </tr>
                 """
 
@@ -877,11 +877,11 @@ def generate_deployment_info_section(deployment_info: Dict[str, Any]) -> str:
             <div class="info-label">Deployment Status:</div>
             <div class="info-value">{status_indicator}</div>
             <div class="info-label">Environment:</div>
-            <div class="info-value">{deployment_info.get('environment', 'Unknown')}</div>
+            <div class="info-value">{deployment_info.get("environment", "Unknown")}</div>
             <div class="info-label">API Endpoint:</div>
-            <div class="info-value">{deployment_info.get('api_url', 'Not Available')}</div>
+            <div class="info-value">{deployment_info.get("api_url", "Not Available")}</div>
             <div class="info-label">Deployment Time:</div>
-            <div class="info-value">{deployment_info.get('deployment_time', 'Unknown')}</div>
+            <div class="info-value">{deployment_info.get("deployment_time", "Unknown")}</div>
         </div>
     </div>
     """
@@ -914,7 +914,7 @@ def generate_fairness_table(fairness_metrics: Dict[str, Any]) -> str:
 
         html += f"""
             <tr>
-                <td>{attr.replace('_', ' ').title()}</td>
+                <td>{attr.replace("_", " ").title()}</td>
                 <td>{di_ratio:.3f}</td>
                 <td>{status_indicator}</td>
             </tr>
diff --git a/credit-scorer/src/steps/training/risk_assessment.py b/credit-scorer/src/steps/training/risk_assessment.py
@@ -190,7 +190,7 @@ def generate_risk_visualization(risk_scores: Dict, run_id: str) -> HTMLString:
             </div>
 
             <div class="timestamp">
-                Generated on {datetime.now().strftime('%Y-%m-%d %H:%M:%S UTC')}
+                Generated on {datetime.now().strftime("%Y-%m-%d %H:%M:%S UTC")}
             </div>
         </div>
     """
@@ -210,13 +210,13 @@ def generate_hazards_html(hazards: List[Dict]) -> str:
 
         html += f"""
         <div class="hazard-item {hazard_class}">
-            <div class="hazard-id">{hazard.get('id', 'UNKNOWN')}</div>
+            <div class="hazard-id">{hazard.get("id", "UNKNOWN")}</div>
             <div class="badge {badge_class}">
                 {severity.upper()}
             </div>
-            <div class="hazard-description">{hazard.get('description', 'No description available')}</div>
+            <div class="hazard-description">{hazard.get("description", "No description available")}</div>
             <div class="hazard-mitigation">
-                <strong>Mitigation:</strong> {hazard.get('mitigation', 'No mitigation specified')}
+                <strong>Mitigation:</strong> {hazard.get("mitigation", "No mitigation specified")}
             </div>
         </div>
         """
