Skip to content

feat(spam): capture moderated comments as training samples (axis-2 L2)#4846

Merged
mashbean merged 8 commits into
developfrom
feat/spam-training-sample-capture
Jun 15, 2026
Merged

feat(spam): capture moderated comments as training samples (axis-2 L2)#4846
mashbean merged 8 commits into
developfrom
feat/spam-training-sample-capture

Conversation

@mashbean

@mashbean mashbean commented Jun 13, 2026

Copy link
Copy Markdown
Contributor

What

L2 of the spam-data-retention roadmap. Emits de-identified labeled samples to SQS at the moderation boundary, so the spam-model training signal survives content deletion that L1's passive DB extraction can't recover:

  • clearCommunityWatchOriginalContent nulls the snapshot,
  • account archival/ban can purge content.

A separate Lambda worker (in spam-detection-scaffold/workers/spam_sample_worker.py) consumes the queue and appends to the S3 training bucket.

How

  • common/notifications/spamSample.tsenqueueSpamSample, mirrors enqueueReportAlert: best-effort SQS, never throws, no-op when the queue/salt is unconfigured. Comment/author ids are HMAC-SHA256(salt) at emit, so no raw ids ever enter the queue; only the text the model trains on is carried verbatim.
  • Wired:
    • communityWatchRemoveComment → confirmed spam at removal time.
    • clearCommunityWatchOriginalContent → capture before the snapshot is nulled; a reversed action ⇒ hard-negative ham.
  • env: MATTERS_AWS_SPAM_SAMPLE_QUEUE_URL, MATTERS_SPAM_SAMPLE_HASH_SALT.

Privacy / governance

De-identified at source (HMAC ids, no contactable PII); only model-relevant text retained. Legal cleared the retention direction (2026-06-13); concrete retention period TBD. The training corpus lives in a separate S3 bucket decoupled from the operational DB so account deletion still fully removes user-facing content.

Off by default

No-op until ops provisions the SQS queue + MATTERS_SPAM_SAMPLE_HASH_SALT and deploys the worker. Zero behavior change otherwise.

Test plan

  • With queue+salt set: removing a comment / clearing original content enqueues exactly one de-identified message; ids are hashes, not raw.
  • Queue outage / unset → mutation still succeeds (best-effort).
  • reversed action via clear path → label=0 (ham).

🤖 Generated with Claude Code

@claude
feat(spam): capture moderated comments as training samples (axis-2 L2)
af4081c 
L2 of the spam-data-retention roadmap: emit de-identified labeled samples to
SQS at the moderation boundary so the spam-model training signal survives later
content deletion that L1's passive DB extraction can't recover —
clearCommunityWatchOriginalContent nulls the snapshot, and account purge erases
content.

- common/notifications/spamSample.ts: enqueueSpamSample, mirrors
  enqueueReportAlert (best-effort SQS, never throws, no-op when unconfigured).
  Ids are HMAC-SHA256(salt) at emit so no raw user/content ids enter the queue;
  only the text the model trains on is carried verbatim.
- wired: communityWatchRemoveComment (confirmed spam at removal),
  clearCommunityWatchOriginalContent (capture before the snapshot is nulled;
  reversed action -> hard-negative ham).
- env: MATTERS_AWS_SPAM_SAMPLE_QUEUE_URL, MATTERS_SPAM_SAMPLE_HASH_SALT.

A separate Lambda worker consumes the queue and appends de-identified rows to
the S3 training bucket (see spam-detection-scaffold). Off until ops provisions
the queue + salt.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
@mashbean mashbean requested a review from a team as a code owner June 13, 2026 13:25
mashbean added 2 commits June 14, 2026 14:52
style: fix import/order in spamSample (eslint required check)
347ac3f 
CI lint failed: #-subpath/external/node: imports are one alphabetized group
with no blank lines. Reorder spamSample.ts imports accordingly.
test: mock findCommunityWatchActionByUUID for clear mutation (L2 snap…
5ece166 
…shot)

The clear mutation now snapshots the action before nulling (axis-2 L2), so its
test context must provide findCommunityWatchActionByUUID. enqueueSpamSample
no-ops without queue/salt env, so nothing is sent in tests.
@codecov

codecov Bot commented Jun 14, 2026
edited
Loading

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.59%. Comparing base (3200027) to head (9870c0a).
⚠️ Report is 19 commits behind head on develop.

Additional details and impacted files 
@@             Coverage Diff             @@
##           develop    #4846      +/-   ##
===========================================
- Coverage    73.04%   72.59%   -0.46%     
===========================================
  Files         1066     1067       +1     
  Lines        21659    21178     -481     
  Branches      4816     4623     -193     
===========================================
- Hits         15821    15374     -447     
+ Misses        5357     5326      -31     
+ Partials       481      478       -3

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

mashbean added 5 commits June 14, 2026 22:03
test(spam): cover enqueueSpamSample (codecov)
3a8bb63 
Mirror reportAlert.test.ts: payload shape, HMAC de-identification (ids hashed,
never raw + deterministic), null score for ham, and no-op guards (queue unset /
salt unset / blank text) + AWS-error swallowing. Brings spamSample.ts diff
coverage to green.
test(spam): cover enqueueSpamSample via the mutation path (codecov)
086cd37 
CI test scripts only run build/{connectors,common/utils,routes,types}; the
common/notifications dir has no script, so the standalone spamSample.test.ts
never ran and spamSample.ts stayed at 38%. Remove that dead test and instead
exercise enqueueSpamSample's full body from communityWatchRemoveComment.test
(common/utils, which IS run): set the queue URL + hash salt, stub
aws.sqsSendMessage, and assert a de-identified sample (hashed ids) is enqueued
on removal.
Merge remote-tracking branch 'origin/develop' into feat/spam-training…
2611f38 
…-sample-capture

# Conflicts:
#	.env.example
test(spam): cover enqueueSpamSample catch + blank-text guard (codecov…
6fec178 
… project)

spamSample.ts was at 76.9% (lines 66, 84-85 uncovered). Add two removal cases:
aws throws -> removal still succeeds (covers the swallow/catch); removed comment
has blank content -> sample skipped (covers the blank-text guard). Brings the
file to ~full coverage so codecov/project no longer dips.
ci: codecov project threshold 1% (patch stays strict)
9870c0a 
Total repo coverage fluctuates run-to-run (sharded integration suites) and
codecov compares against the nearest ancestor with a coverage upload (develop
merge commits publish none), so PRs show spurious project drops even when their
own diff is 100% covered (e.g. #4846 at -0.46%). Add a 1% project threshold to
absorb that noise; patch stays strict so new code must still be tested.
@mashbean mashbean merged commit 571c047 into develop Jun 15, 2026
5 checks passed
This was referenced Jun 15, 2026
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mashbean