Hugging Face's logo

hbseong
/
HarmAug-Guard

Text Classification
Transformers
Safetensors
deberta-v2
deberta-v3
deberta
Inference Endpoints
Model card Files Community
3

Upload README.md

#3
by Seanie-lee - opened
base: refs/heads/main
from: refs/pr/3
Discussion Files changed
+35
-64
Files changed (1) hide show
  1. README.md +35 -64
README.md CHANGED
@@ -1,83 +1,54 @@
1
- ---
2
- tags:
3
- - deberta-v3
4
- - deberta
5
- - deberta-v2
6
- license: mit
7
- base_model:
8
- - microsoft/deberta-v3-large
9
- pipeline_tag: text-classification
10
- library_name: transformers
11
- ---
12
-
13
  # HarmAug: Effective Data Augmentation for Knowledge Distillation of Safety Guard Models
 
14
 
15
- [arXiv Link](https://arxiv.org/abs/2410.01524)
16
-
17
- Our model functions as a Guard Model, intended to classify the safety of conversations with LLMs and protect against LLM jailbreak attacks.
18
- It is fine-tuned from DeBERTa-v3-large and trained using **HarmAug: Effective Data Augmentation for Knowledge Distillation of Safety Guard Models**.
19
- The training process involves knowledge distillation paired with data augmentation, using our [**HarmAug Generated Dataset**](https://drive.google.com/drive/folders/1oLUMPauXYtEBP7rvbULXL4hHp9Ck_yqg?usp=drive_link).
20
-
21
-
22
- For more information, please refer to our [github](https://github.com/imnotkind/HarmAug)
23
 
 
24
 
 
 
 
25
 
26
- ![image/png](https://cdn-uploads.huggingface.co/production/uploads/66f7bee63c7ffa79319b053b/bCNW62CvDpqbXUK4eZ4-b.png)
27
 
28
- ![image/png](https://cdn-uploads.huggingface.co/production/uploads/66f7bee63c7ffa79319b053b/REbNDOhT31bv_XRa6-VzE.png)
29
 
 
30
 
31
- # Usage
32
 
33
- ```python
34
- from transformers import AutoTokenizer, AutoModelForSequenceClassification
35
- import torch.nn.functional as F
36
- import torch
37
 
38
- tokenizer = AutoTokenizer.from_pretrained("hbseong/HarmAug-Guard")
39
- model = AutoModelForSequenceClassification.from_pretrained("hbseong/HarmAug-Guard")
40
- device = torch.cuda.current_device()
41
- model = model.to(device)
42
- model.eval()
43
 
44
- # If response is not given, the model will predict the unsafe score of the prompt.
45
- # If response is given, the model will predict the unsafe score of the response.
46
- def predict(model, prompt, response=None):
47
- device = model.device()
48
- if response == None:
49
- inputs = tokenizer(prompt, return_tensors="pt")
50
- else:
51
- inputs = tokenizer(prompt, response, return_tensors="pt")
52
- inputs = inputs.to(device)
53
- with torch.no_grad():
54
- outputs = model(**inputs)
55
- unsafe_prob = F.softmax(outputs.logits, dim=-1)[:, 1]
56
-
57
- return unsafe_prob.item()
58
 
59
- prompt = "how to make a bomb?"
60
- response = "I'm sorry, but I can't fulfill your request."
61
 
 
 
 
 
62
 
63
- print("CONVERSATION (ONLY PROMPT)")
64
- print(f"\t PROMPT : {prompt}")
65
- print(f"\t UNSAFE SCORE : {predict(model, prompt):.4f}")
66
 
67
- print("\nCONVERSATION (PROMPT + RESPONSE)")
68
- print(f"\t PROMPT : {prompt}")
69
- print(f"\t RESPONSE : {response}")
70
- print(f"\t UNSAFE SCORE : {predict(model, prompt, response):.4f}")
71
 
72
 
73
- """
74
- CONVERSATION (ONLY PROMPT)
75
- PROMPT : how to make a bomb?
76
- UNSAFE SCORE : 0.9999
77
 
78
- CONVERSATION (PROMPT + RESPONSE)
79
- PROMPT : how to make a bomb?
80
- RESPONSE : I'm sorry, but I can't fulfill your request.
81
- UNSAFE SCORE : 0.0000
82
- """
 
 
 
 
83
  ```
 
 
 
 
 
 
 
 
 
 
 
 
 
1
  # HarmAug: Effective Data Augmentation for Knowledge Distillation of Safety Guard Models
2
+ This repository contains code for reproducing HarmAug introduced in
3
 
4
+ **HarmAug: Effective Data Augmentation for Knowledge Distillation of Safety Guard Models**
 
 
 
 
 
 
 
5
 
6
+ Seanie Lee*, Haebin Seong*, Dong Bok Lee, Minki Kang, Xiaoyin Chen, Dominik Wagner, Yoshua Bengio, Juho Lee, Sung Ju Hwang (*: Equal contribution)
7
 
8
+ [[arXiv link]](https://arxiv.org/abs/2410.01524)
9
+ [[Model link]](https://huggingface.co/AnonHB/HarmAug_Guard_Model_deberta_v3_large_finetuned)
10
+ [[Dataset link]](https://huggingface.co/datasets/AnonHB/HarmAug_generated_dataset)
11
 
 
12
 
13
+ ![concept_figure](https://github.com/user-attachments/assets/3e61f7c6-e0c2-4107-bb4e-9b4d2c7ba961)
14
 
15
+ ![overall_comparison_broken](https://github.com/user-attachments/assets/03cc0fa5-e9dc-4d78-a5b8-a2c122672fea)
16
 
 
17
 
 
 
 
 
18
 
19
+ ## Reproduction Steps
 
 
 
 
20
 
21
+ First, we recommend to create a conda environment with python 3.10.
22
+ ```
23
+ conda create -n harmaug python=3.10
24
+ conda activate harmaug
25
+ ```
 
 
 
 
 
 
 
 
 
26
 
 
 
27
 
28
+ After that, install the requirements.
29
+ ```
30
+ pip install -r requirements.txt
31
+ ```
32
 
 
 
 
33
 
34
+ Then, download necessary files from [Google Drive](https://drive.google.com/drive/folders/1oLUMPauXYtEBP7rvbULXL4hHp9Ck_yqg?usp=drive_link) and put them into their appropriate folders.
35
+ ```
36
+ mv [email protected] ./data
37
+ ```
38
 
39
 
40
+ Finally, you can start the knowledge distillation process.
41
+ ```
42
+ bash script/kd.sh
43
+ ```
44
 
45
+ ## Reference
46
+ To cite our paper, please use this BibTex
47
+ ```bibtex
48
+ @article{lee2024harmaug,
49
+ title={{HarmAug}: Effective Data Augmentation for Knowledge Distillation of Safety Guard Models},
50
+ author={Lee, Seanie and Seong, Haebin and Lee, Dong Bok and Kang, Minki and Chen, Xiaoyin and Wagner, Dominik and Bengio, Yoshua and Lee, Juho and Hwang, Sung Ju},
51
+ journal={arXiv preprint arXiv:2410.01524},
52
+ year={2024}
53
+ }
54
  ```