# Input Sanitization

The project demonstrates input validation by sanitizing user input before sending it to a generative AI model. 

In [1]:
import importlib.util

def check_install(package_name):
    if importlib.util.find_spec(package_name) is None:
        !pip install {package_name}
    else:
        print(f"'{package_name}' is already installed.")

In [2]:
check_install('together') 

'together' is already installed.


In [8]:
from together import Together
import os
import re
from dotenv import load_dotenv, find_dotenv

In [4]:
def get_key(key_name):
    _ = load_dotenv(find_dotenv())
    openai_api_key = os.getenv(key_name)
    return openai_api_key

api_key = get_key('TOGETHER_API_KEY')

In [5]:
client = Together(api_key = api_key)

In [6]:
# Input sanitization function
def sanitize_input(user_input):
    # Remove special characters or restrict to alphanumeric
    sanitized = re.sub(r"[^a-zA-Z0-9\s]", "", user_input)
    return sanitized

In [9]:
user_input = "What is the <script>alert('hack');</script>?"
clean_input = sanitize_input(user_input)

answer = client.chat.completions.create(
  model="deepseek-ai/DeepSeek-R1",
  messages=[{"role": "user", 
             "content": clean_input}],
)

print(answer.choices[0].message.content)

<think>
Okay, the user is asking about "scriptalerthackscript". Let me start by breaking down the term. "Script Alert Hack Script" – sounds like it's related to hacking, maybe a specific tool or method.

First, I should consider if this is a known term in cybersecurity. I don't recall hearing about a tool by that exact name. Maybe it's a combination of words. "Script" could refer to a scripting language like Python or JavaScript. "Alert" might relate to notifications or triggering alerts in systems. "Hack" obviously points to unauthorized access or exploitation.

Perhaps the user is referring to a script that generates alerts when a hack is detected? Or maybe a script used to bypass alerts in a system? Alternatively, it could be a malicious script designed to hack into systems and trigger fake alerts as a distraction.

I should check if there are any known scripts or tools with that name. A quick search in my internal data doesn't show any exact matches. Maybe it's a term from a specif