π Bifrostο
Danger
Constructing Bifrosts manually is an advanced topic. Most of the time, you want to
use Bifrost.validation_only.
The Bifrost is the key technology that enables the translation of untrusted human input into trusted machine-readable input. It is composed of 4 parts:
π© The LLM prompt envelope
π§ The LLM integration
π The grammar
β The constraint validators
These components are assembled together to form a Bifrost instance, which can then operate as a function on untrusted input.
Note
The Bifrost is a general concept, and is not tied specifically to the SQL Bifrost, though the SQL Bifrost is the first implementation of a Bifrost in HeimdaLLM.
π© The prompt envelopeο
The prompt envelope is responsible for adding additional context to the untrusted input.
Concretely, this typically involves including specific instructions to the LLM abut the
original prompt. In the SQLPromptEnvelope, for example, we add:
A copy of the database schema on which the LLM should operate
That the LLM should use fully-qualified column names
How to delimit the resulting SQL query so that we can easily extract it
Along with the prompt envelopeβs job to wrap the untrusted input in this additional
context, itβs job is also to unwrap
the structured data from an LLMβs output. This typically involves finding and parsing
out the structured data from the delimiters that you instructed the LLM to use.
π§ The LLM Integrationο
The LLM itself is the brains of the Bifrost. We view it as a black box with a well-defined interface. Because of this, HeimdaLLM aims to make it easy to swap out LLMs in your Bifrost, so that as LLM capabilities and prices change, your system can adapt to use them with minimal effort.
Current LLM integrations:
π The grammarο
After the prompt envelope has unwrapped the structured data from the LLMβs output, itβs the grammarβs responsibility to enforce the syntax through an attempt at parsing the data.
No formal validation happens at this stage, though parts of the grammar can be viewed as
validation. For example, if the grammar does not define the syntax for an DELETE SQL
statement, then the parsing of the LLMβs output will not allow DELETE statements.
The grammar works very closely with the constraint validators, as the grammar can define tokens and rules that make it easier for the validator to do its job.
β The constraint validatorsο
The real meat of the Bifrost are the constraint validators. A constraint validator is responsible for taking the tree produced by the grammar and validating it against rules that you define.
A Bifrost can take multiple constraint validators, and only one validator is required to succeed in order to pass the validation step.