Skip to main content
Validation using machine learning models is a highly effective way of detecting LLM hallucinations that are not easily or possibly detected using traditional coding techniques. We’ve selected and tuned some ML models to run different validations. These models are wrapped within model validators. This makes the access pattern straightforward — you can use model-based validators the same as any other validator.
Learn more about the need for remote validators in our concepts doc.
The default access pattern is to use these validators locally for development, but this causes a few issues in production. These models have a large memory footprint, and if they’re run in on-process environments without the correct infrastructure (GPUs, memory, etc.), they can run slowly and suboptimally, adding a huge amount of latency to your application. In this guide, we will walk through hosting a Guardrails validation model with FastAPI.

Step 1: Pick a validator

First, choose a validator that you want to use. You can browse a list of all the Guardrails validators on Guardrails Hub.
We suggest picking the “ML” filter on the left side of the page in the “Infrastructure Requirements” section to find validators that use models.
For the purpose of this guide, let’s use the ToxicLanguage validator.

Step 2: Find and download the validator model

The validator model is referenced in the validator implementation, as well as in the README. As we can see, the ToxicLanguage validator currently uses the Detoxify model. In order to use this, we need to install the necessary libraries: 
# Install FastAPI server dependencies
pip install fastapi uvicorn

# Install required validator dependencies (General approach - Requires Guardrails)
guardrails hub install hub://guardrails/toxic_language --install-local-models

Step 3: Wrap the model with FastAPI and run the server

Before implementing the API, we first need to define what the API expects as input and what it will return as output so that the API and server can effectively communicate with each other.

The Guardrails standard inference endpoint schema

Guardrails AI recommends using a similar schema for inputs and outputs across all APIs fronting machine learning models. This approach standardizes the implementation for extracting model inference results out of different models in validators. For the input, let’s make the model take in: 
{
  "inputs": [
    {
      "name": "text",
      "shape": [1],
      "data": ["Text we want to check for toxic language"],
      "datatype": "BYTES"
    },
    {
      "name": "threshold",
      "shape": [1],
      "data": [0.5],
      "datatype": "FP32"
    }
  ]
}
Here, "text" contains the text we want to check for toxic language and "threshold" contains the confidence threshold for determining toxicity. If the model predicts a toxic level higher than the threshold, then the text is considered toxic. For the output, let’s make it look like: 
{
  "model_name": "model_name",
  "model_version": "1",
  "outputs": [
    {
      "name": "result",
      "datatype": "BYTES",
      "shape": [2],
      "data": ["toxicity", "threat"]
    }
  ]
}

Implementing the model

Now it’s time to write our app.py to set up the FastAPI server. You can find the FastAPI setup for ToxicLanguage here. In general, our code for the server is pretty simple. The server setup is quite similar for any validator we choose to use. We first load in the Detoxify model and create a validate endpoint where we do two main things:
  1. Extract the text that we want to validate as well as the threshold that we need to figure out the toxicity of our text
  2. Call the detoxify model on the text and return the output in the format described above
To run our FastAPI server, we just run uvicorn app:app --reload and now our server is running on https://127.0.0.1:8000: 
curl https://raw.githubusercontent.com/guardrails-ai/toxic_language/main/app.py -o app.py

uvicorn app:app --reload

Step 4: Configure our Guard

Now that we have our server up and running, we have to write a guard that calls the ToxicLanguage validator using our new API. With Guardrails, this is really simple: 
import guardrails as gd
from guardrails.hub import ToxicLanguage


# Create a Guard class
guard = gd.Guard().use(
    ToxicLanguage(
      use_local=False,
      on_fail="exception",
      validation_endpoint="http://127.0.0.1:8000/validate"
    ),
)
try:
    guard.validate("Stop being such a dumb piece of shit. Why can't you comprehend this?")
except Exception as e:
    print(f"Exception: {e}")
We simply initialize a new Guard and pass in the ToxicLanguage validator with the following parameters:
  • use_local=False: This tells Guardrails to use remote inference instead of running the ML model locally.
  • on_fail="exception": If toxic language is detected, the guard will throw a ValidationError explaining which parts of the text are toxic.
  • validation_endpoint="http://127.0.0.1:8000/validate": This passes in our FastAPI URL as the validation endpoint to the validator, which then makes a request to this URL to run the Detoxify model on the given text.
When we run the above code and invoke the guard, we see that our guard successfully detected toxic language in our text: 
Exception: Validation failed for field with errors: The following sentences in your response were found to be toxic:

- Stop being such a dumb piece of shit.
We can follow these same steps, no matter which validator we are using. If the validator you are trying to use does not have an app.py in the repository, you can simply write the FastAPI or Flask code using one of the given app.py’s as reference.

Conclusion

You’ve learned how to host the ToxicLanguage model using FastAPI and integrate it directly with Guardrails. This setup can be used for various types of validators and ML models.

Production considerations

  • Make sure to wrap the application in a WSGI or ASGI server (like uvicorn or Gunicorn).
  • Deploy on GPUs to accelerate model inference and increase performance.