Skip to main content

Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

    •  
      request #45973 Adjust AI TQL Assistant with the secure coding guidelines
    Infos
    #45973
    Thomas Gerbet (tgerbet)
    2025-12-30 09:34
    2025-12-03 17:15
    47699
    Details
    Adjust AI TQL Assistant with the secure coding guidelines

    The AI TQL Assistant plugin was added while the first draft of the secure coding guidelines related to AI usages were written.

    Some adjustments are needed to respect them:

    • basic guardrailing should be in place
    • features must only be available to authenticated users
    • metrics must be collected to make possible to identify users abusing the features
    • logs must be collected
    • inputs should have a limited length to limit the input token cost
    • attempt at limiting the output length should be made to limit the output token cost
    Cross tracker search
    Empty
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2025-12-26
    Attachments
    Empty
    References
    Referencing request #45973

    Git commit

    tuleap/tuleap/stable

    fix: Ensure TQL assistant endpoint is only accessible to authenticated users fa1ff84550
    User avatar Thomas Gerbet (tgerbet) , 2025-12-04 08:48
    feat: Enforce basic guardrailing to be in place when doing completions with Mistral 51aa2bf60b
    User avatar Thomas Gerbet (tgerbet) , 2025-12-03 18:22
    fix: Users should not have the ability to set system prompts 2003b7b0dc
    User avatar Thomas Gerbet (tgerbet) , 2025-12-03 18:28
    feat: Collect metrics on the usage of LLMs 975c3faf6d
    User avatar Thomas Gerbet (tgerbet) , 2025-12-08 14:22
    chore: introduce missing tests on AI CrossTracker 62e9f42611
    User avatar Manuel Vacelet (vaceletm) , 2025-12-10 16:14
    chore: Switch the model used by the TQL AI assistant to Devstral 2 08671888fe
    User avatar Thomas Gerbet (tgerbet) , 2025-12-10 18:00
    refactor: Force the LLM to return a structured output 3cc14bfd95
    User avatar Thomas Gerbet (tgerbet) , 2025-12-11 11:16
    refactor: extract message passing logic a65628035c
    User avatar Manuel Vacelet (vaceletm) , 2025-12-11 16:51
    refacto: Move XTS AI assistant chat into a Vue component c71725284f
    User avatar Thomas Gerbet (tgerbet) , 2025-12-15 11:27
    feat: store and load message exchange in DB f689a3de0a
    User avatar Manuel Vacelet (vaceletm) , 2025-12-17 09:57
    feat: Set an input limit on user requests on TQL AI assistant 677f438282
    User avatar Thomas Gerbet (tgerbet) , 2025-12-17 11:14
    fix: Adjust XTS AI frontend to handle the changes introduced to the REST endpoint 25ae88f64b
    User avatar Thomas Gerbet (tgerbet) , 2025-12-17 11:09
    feat: store token comsumption 5e507f6497
    User avatar Manuel Vacelet (vaceletm) , 2025-12-17 17:15
    refactor: extract as much logic as possible from Resource eb054bef2f
    User avatar Manuel Vacelet (vaceletm) , 2025-12-19 12:20
    refacto: Interpret CommonMark content from the LLM on the backend 959091080a
    User avatar Thomas Gerbet (tgerbet) , 2025-12-23 14:06
    Display settings

    Follow-ups