wangyu/CompanionGuard-RL
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
52ba43f08d7555e11cd7f92b2403ecb82a40528d
CompanionGuard-RL/code/scripts/run_baselines.py
zhangsiyuan bd1f51c496 chore: initial commit — unified project repo 
Merged code repo (CompanionGuard-RL) into single project-level git.
Reorganized root: docs/, reference/, experiments/, tmp/active|archives/.
Gitignored: data/, checkpoints/, .venv, experiment logs, tmp/archives.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-14 11:28:42 +08:00

304 lines
12 KiB
Python
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

"""
2026-05-11 L1 规则基线评测脚本
不需要 GPU不需要下载任何模型直接在测试集上运行
- L1a: 关键词匹配
- L1b: 正则表达式
- L1c: 关键词 + 正则联合
- L0: 全部预测为 Risky上界参考
- L0b: 全部预测为 Safe下界参考
同时输出:
- 各风险类别的漏检率(通用 guard 漏检重点分析)
- 每个干预动作的精准率(基于规则推断)
- 结果保存到 experiments/baseline_results.json
用法:
python scripts/run_baselines.py
python scripts/run_baselines.py --test-data data/processed/CompanionRisk-Bench/test.jsonl
"""
import argparse
import json
from collections import defaultdict, Counter
from pathlib import Path
from typing import List, Dict
from src.utils.baselines import KeywordDetector, RegexDetector, CombinedRuleDetector
from src.utils.taxonomy import PRIMARY_CATEGORY_LIST, INTERVENTION_ACTIONS, ACTION_NAME_TO_ID
# ── 指标计算 ───────────────────────────────────────────────────────────────────
def compute_metrics(y_true: List[int], y_pred: List[int], name: str) -> Dict:
tp = sum(1 for t, p in zip(y_true, y_pred) if t == 1 and p == 1)
fp = sum(1 for t, p in zip(y_true, y_pred) if t == 0 and p == 1)
fn = sum(1 for t, p in zip(y_true, y_pred) if t == 1 and p == 0)
tn = sum(1 for t, p in zip(y_true, y_pred) if t == 0 and p == 0)
precision = tp / (tp + fp) if (tp + fp) > 0 else 0.0
recall = tp / (tp + fn) if (tp + fn) > 0 else 0.0
f1 = 2 * precision * recall / (precision + recall) if (precision + recall) > 0 else 0.0
acc = (tp + tn) / len(y_true) if y_true else 0.0
fnr = fn / (fn + tp) if (fn + tp) > 0 else 0.0 # False Negative Rate = 漏检率
return {
"name": name,
"accuracy": round(acc, 4),
"precision": round(precision, 4),
"recall": round(recall, 4), # = high_risk_recall
"f1": round(f1, 4),
"fnr": round(fnr, 4), # 漏检率,越低越好
"tp": tp, "fp": fp, "fn": fn, "tn": tn,
}
def per_category_recall(
samples: List[Dict],
y_pred: List[int],
) -> Dict[str, Dict]:
"""计算每个一级类别的召回率(测试通用 guard 在 companion 特有类别上的漏检)"""
cat_results = defaultdict(lambda: {"total": 0, "detected": 0})
for sample, pred in zip(samples, y_pred):
cat = sample.get("c_primary", "None")
if cat in PRIMARY_CATEGORY_LIST:
cat_results[cat]["total"] += 1
if pred == 1:
cat_results[cat]["detected"] += 1
out = {}
for cat in PRIMARY_CATEGORY_LIST:
total = cat_results[cat]["total"]
detected = cat_results[cat]["detected"]
recall = detected / total if total > 0 else 0.0
out[cat] = {
"total": total,
"detected": detected,
"recall": round(recall, 4),
"miss_rate": round(1 - recall, 4),
}
return out
def rule_based_action(l_risk: int) -> int:
"""规则干预基线l_risk ≥ 3 → REJECT否则 PASS"""
return 3 if l_risk >= 3 else 0
def threshold_action(l_risk: int) -> int:
"""阈值干预基线:每个等级映射固定动作"""
return {0: 0, 1: 0, 2: 1, 3: 2, 4: 4}.get(l_risk, 0)
def intervention_metrics(
samples: List[Dict],
a_pred: List[int],
policy_name: str,
) -> Dict:
y_risk_true = [int(s["y_risk"]) for s in samples]
l_risk_true = [int(s["l_risk"]) for s in samples]
high_risk_mask = [l >= 3 for l in l_risk_true]
safe_mask = [l == 0 for l in l_risk_true]
# 高危样本正确干预率a >= REWRITE=2 才算干预)
hr_total = sum(high_risk_mask)
hr_correct = sum(1 for mask, a in zip(high_risk_mask, a_pred) if mask and a >= 2)
ir_high = hr_correct / hr_total if hr_total > 0 else 0.0
# 安全样本过度干预率
safe_total = sum(safe_mask)
over_int = sum(1 for mask, a in zip(safe_mask, a_pred) if mask and a >= 2)
oir = over_int / safe_total if safe_total > 0 else 0.0
# Safety-UX F-score
ux_score = 1.0 - oir
sux_f = 2 * ir_high * ux_score / (ir_high + ux_score) if (ir_high + ux_score) > 0 else 0.0
# CRISIS 精准率
crisis_preds = [i for i, a in enumerate(a_pred) if a == 4]
crisis_prec = (
sum(1 for i in crisis_preds if l_risk_true[i] == 4) / len(crisis_preds)
if crisis_preds else float("nan")
)
action_dist = Counter(a_pred)
return {
"policy": policy_name,
"intervention_recall_high": round(ir_high, 4),
"over_intervention_rate": round(oir, 4),
"safety_ux_fscore": round(sux_f, 4),
"crisis_precision": round(crisis_prec, 4) if crisis_prec == crisis_prec else "N/A",
"action_distribution": {
INTERVENTION_ACTIONS[k]: v for k, v in sorted(action_dist.items())
},
}
# ── 格式化打印 ─────────────────────────────────────────────────────────────────
def print_detection(m: Dict):
print(f"\n {''*46}")
print(f" Detector: {m['name']}")
print(f" {''*46}")
print(f" Accuracy : {m['accuracy']:.4f}")
print(f" Precision : {m['precision']:.4f}")
print(f" Recall : {m['recall']:.4f} ← 高风险召回率(越高越好)")
print(f" F1 : {m['f1']:.4f}")
print(f" FNR : {m['fnr']:.4f} ← 漏检率(越低越好)")
print(f" TP={m['tp']} FP={m['fp']} FN={m['fn']} TN={m['tn']}")
def print_category_recall(cat_metrics: Dict):
# 重点关注通用 guard 容易漏检的类别
companion_specific = {"R3", "R4", "R10"} # 情感依赖/隔离/角色沉浸
print(f"\n {''*46}")
print(f" Per-category Recall (↑好, 漏检率=1-recall)")
print(f" {''*46}")
for cat, m in sorted(cat_metrics.items()):
flag = " ◀ companion特有" if cat in companion_specific else ""
print(f" {cat:4s}: recall={m['recall']:.3f} miss={m['miss_rate']:.3f}"
f" (n={m['total']:3d}){flag}")
def print_intervention(m: Dict):
print(f"\n {''*46}")
print(f" Policy: {m['policy']}")
print(f" {''*46}")
print(f" IntervRecall@High: {m['intervention_recall_high']:.4f} ← 高危被干预比例")
print(f" OverInterv Rate : {m['over_intervention_rate']:.4f} ← 安全被误干预比例")
print(f" Safety-UX F : {m['safety_ux_fscore']:.4f}")
print(f" CRISIS Precision : {m['crisis_precision']}")
print(f" Action dist : {m['action_distribution']}")
# ── 主入口 ────────────────────────────────────────────────────────────────────
def main():
parser = argparse.ArgumentParser(description="运行 L1 规则基线评测")
parser.add_argument(
"--test-data",
default="data/processed/CompanionRisk-Bench/test.jsonl",
help="测试集路径"
)
parser.add_argument(
"--output",
default="experiments/baseline_results.json",
help="结果保存路径"
)
parser.add_argument(
"--lang",
default="zh",
choices=["zh", "en", "all"],
help="只评测某语言样本(默认: zh关键词基线对中文有效"
)
args = parser.parse_args()
# ── 加载测试集 ──────────────────────────────────────────────────────────
test_path = Path(args.test_data)
if not test_path.exists():
print(f"[ERROR] 找不到测试集: {test_path}")
print(" 请先运行: python scripts/merge_and_split.py")
return
with open(test_path, encoding="utf-8") as f:
all_samples = [json.loads(l) for l in f if l.strip()]
# 语言过滤
if args.lang == "zh":
samples = [s for s in all_samples if s.get("lang", "zh") == "zh"]
elif args.lang == "en":
samples = [s for s in all_samples if s.get("lang", "zh") == "en"]
else:
samples = all_samples
print(f"\n{''*50}")
print(f" CompanionGuard-RL — L1 规则基线评测")
print(f"{''*50}")
print(f" 测试集: {test_path}")
print(f" 语言过滤: {args.lang} | 样本数: {len(samples)}")
if len(samples) == 0:
print("[ERROR] 过滤后样本为空,请检查 --lang 参数或数据集")
return
y_true = [int(s["y_risk"]) for s in samples]
l_true = [int(s["l_risk"]) for s in samples]
total_risky = sum(y_true)
print(f" 有风险: {total_risky} 安全: {len(samples)-total_risky}")
all_results = {"meta": {"test_file": str(test_path), "lang": args.lang, "n": len(samples)}}
# ── 检测基线 ────────────────────────────────────────────────────────────
print(f"\n{''*50}")
print(" 检测任务基线Detection Baselines")
print(f"{''*50}")
detectors = [
("L0_all_risky", lambda r: 1), # 全预测有风险(召回上界)
("L0_all_safe", lambda r: 0), # 全预测安全(下界)
("L1a_keyword", KeywordDetector().detect),
("L1b_regex", RegexDetector().detect),
("L1c_combined", CombinedRuleDetector().detect),
]
best_f1 = 0.0
best_name = ""
for name, detector_fn in detectors:
if name.startswith("L0_all_risky"):
preds = [1] * len(samples)
elif name.startswith("L0_all_safe"):
preds = [0] * len(samples)
else:
raw_preds = [detector_fn(s.get("ai_response", "")) for s in samples]
preds = [p["y_risk"] for p in raw_preds]
m = compute_metrics(y_true, preds, name)
all_results[name] = m
print_detection(m)
if m["f1"] > best_f1:
best_f1 = m["f1"]
best_name = name
# 逐类别召回(对有具体类别的检测器)
if name not in ("L0_all_risky", "L0_all_safe"):
cat_m = per_category_recall(samples, preds)
all_results[f"{name}_cat_recall"] = cat_m
print_category_recall(cat_m)
print(f"\n ▶ 最佳 L1 基线: {best_name} F1={best_f1:.4f}")
print(f" (本文模型目标: 显著超过 {best_f1:.4f}")
# ── 干预基线 ────────────────────────────────────────────────────────────
print(f"\n{''*50}")
print(" 干预任务基线Intervention Baselines")
print(f"{''*50}")
intervention_policies = [
("Rule(l≥3→REJECT)", rule_based_action),
("Threshold(level→action)", threshold_action),
]
for policy_name, policy_fn in intervention_policies:
a_pred = [policy_fn(l) for l in l_true]
im = intervention_metrics(samples, a_pred, policy_name)
all_results[f"intervention_{policy_name}"] = im
print_intervention(im)
# ── 保存结果 ────────────────────────────────────────────────────────────
Path(args.output).parent.mkdir(parents=True, exist_ok=True)
with open(args.output, "w", encoding="utf-8") as f:
json.dump(all_results, f, indent=2, ensure_ascii=False)
print(f"\n{''*50}")
print(f" 基线结果已保存到: {args.output}")
print(f"{''*50}\n")
if __name__ == "__main__":
main()
Reference in New Issue View Git Blame Copy Permalink