UNPKG

aiwg

Version:

Deployment tool and support utility for AI context. Copies agents, skills, commands, rules, and behaviors into the paths each AI platform reads (Claude Code, Codex, Copilot, Cursor, Warp, OpenClaw, and 6 more) so one source of truth works across 10 platfo

aiwg.io

jmagly/aiwg

164 lines (118 loc) 5.35 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
# Eval Loop: Isolation Protocol The eval loop is `nlp-prod`'s production quality gate. The most important property is **strict isolation between the generator and the evaluator**. --- ## Why Isolation Matters If the evaluator has access to the generator's reasoning, system prompt, or chain-of-thought, it is not an independent evaluator it is a rubber stamp. Contaminated evaluation produces inflated scores, misses real failures, and gives false confidence. The eval loop is modelled on the principle that a good reviewer is one who knows nothing about how the answer was produced only whether the answer is correct. --- ## Isolation Invariants These invariants are enforced and checked before every eval run: | Invariant | Enforcement | |-----------|------------| | Evaluator prompt is a separate file | `prompts/evaluator.prompt.md` never merged with generator | | Evaluator receives only `{{input}}` and `{{output}}` | No `{{steps}}`, `{{chain_of_thought}}`, `{{context}}` | | Evaluator does not know generator model | Model selection is outside evaluator scope | | Evaluator uses a different (cheaper) model | `eval_model: haiku` separate from generator model | | Evaluator has no Write/Bash tools | `eval-reviewer` agent: Read-only tools only | --- ## Isolation Violations (Anti-Patterns) ### Violation 1: Merged files ```markdown # WRONG — generator.prompt.md ## System You are an extractor... ## Evaluator Score the above output... ``` The evaluator section must be its own file. No exceptions. ### Violation 2: Generator context in evaluator template ```markdown # WRONG — evaluator.prompt.md Generator's system prompt: {{system_prompt}} Generator used steps: {{intermediate_steps}} Score the output: {{output}} ``` Only `{{input}}` and `{{output}}`. The evaluator scores what the user would see. ### Violation 3: Chain-of-thought leakage ```markdown # WRONG — passing full generator response to evaluator output = generator_response.content[0].text # includes COT evaluate(input, output) # evaluator sees COT ``` If the generator produces chain-of-thought before the final answer, extract ONLY the final answer before passing to evaluator. --- ## Correct Eval Loop Implementation ```python # Correct isolation def generate(client, input_text): system, user = load_prompt("generator.prompt.md", {"input": input_text}) raw = client.messages.create(model=GENERATOR_MODEL, ...) output = extract_final_answer(raw.content[0].text) # strip COT if present return output def evaluate(client, input_text, output): # ONLY input and output — no generator context system, user = load_prompt("evaluator.prompt.md", { "input": input_text, "output": output, # final answer only }) raw = client.messages.create(model=EVALUATOR_MODEL, ...) # separate model return json.loads(raw.content[0].text) ``` --- ## Refinement Loop When the evaluator returns `pass: false`, the feedback is fed back to the generator for refinement: ``` Attempt 1: generate(input) output eval fail (score 0.4) Attempt 2: generate(input + "Previous feedback: " + feedback) output eval fail (score 0.7) Attempt 3: generate(input + "Previous feedback: " + feedback) output eval pass (score 0.91) ``` Key: the feedback sent to the generator is the evaluator's `feedback` string not a copy of the evaluator prompt. The generator does not learn the evaluator's rubric. --- ## Scoring Schema Every evaluation returns: ```json { "score": 0.0, "pass": false, "feedback": "specific, actionable description", "rubric_scores": { "criterion": 0.0 }, "failure_category": "format|content|hallucination|missing_field|other", "suggested_fix": "one-sentence prompt revision recommendation" } ``` - `score` is the weighted average of rubric scores - `pass` is `score >= pass_threshold` - `feedback` is addressed to the generator (actionable for refinement) - `suggested_fix` is addressed to the prompt engineer (for prompt revision) --- ## Eval vs Ralph Loop | Dimension | Ralph Loop | nlp-prod Eval Loop | |-----------|-----------|-------------------| | Purpose | Iterative development | Production quality gate | | Isolation | Shared session | Strict evaluator has no generator context | | Output | Working implementation | Pass/fail + structured feedback | | Persistence | `.aiwg/ralph/` | `eval/results.jsonl` (append-only) | | Cost tracking | Session tokens | Per-call cost in results schema | | Termination | Completion criteria | pass_threshold OR max_attempts | | Human loop | Issue thread comments | Optional via `--interactive` | Use Ralph for development iteration. Use the eval loop as a production quality gate. --- ## Contamination Detection The `eval-reviewer` agent and eval loop runner both check for contamination before scoring: ```python CONTAMINATION_SIGNALS = [ "{{steps}}", "{{chain_of_thought}}", "{{intermediate}}", "generator_context", "system_prompt", ] def check_contamination(evaluator_prompt: str) -> bool: return any(signal in evaluator_prompt for signal in CONTAMINATION_SIGNALS) ``` If contamination is detected: - Run stops - Error message explains the violation - `contamination_warning: true` set in results if eval ran before detection