Overall process
1. Create github repository > .gitignore
2. Cloned the repo
3. Updated README.md
4. Create initial folder structure
5. Create virtual environment
6. Install Dependencies
7. Design overall workflow (in experimentations)
    - setup and config
    - create a client
    - create prompt template
    - handle input (msgs -scam or not)
    - hadnle output (parsing)
8. Covert it into project files


In [6]:
# 1. Setup and configuration for the application
from google import genai
from google.genai import types

import os
# It prints the absolute path to the Python interpreter that is currently executing your code. This can be useful for debugging purposes, especially when you have multiple Python environments or versions installed on your system.
# (need to select the right python interpreter in vscode here, scamgauard VE installed python 3.12.6)
# import sys
# print(sys.executable)
from dotenv import load_dotenv
load_dotenv()



# 2. Create a Client
GEMINI_API_KEY = os.getenv("GEMINI_API_KEY")
GEMINI_MODEL = os.getenv("GEMINI_MODEL")
client = genai.Client(api_key=GEMINI_API_KEY)
print(f"GEMINI_API_KEY: {GEMINI_API_KEY}")
print(f"GEMINI_MODEL: {GEMINI_MODEL}")

GEMINI_API_KEY: AIzaSyBOY7xSENd6E_i-KF7W5oizt9jjn7RyOTo
GEMINI_MODEL: gemini-2.5-flash-lite


In [7]:
# 3. Create prompt template = ReAcT (Reasoning + Action) framework
PROMPT_TEMPLATE = """
You are a highly reliable and safety-focused AI system trained to identify potentially scammy messages.

Follow this exact structured reasoning format:
1. **Thought**: Analyze the tone, urgency, and patterns.
2. **Action**: Classify if this is likely a scam.
3. **Final Answer**: Output a structured JSON.

Return response only in this JSON format:
```
    {{
    "label": "Scam | Not Scam | Uncertain",
    "reasoning": "Your step-by-step analysis",
    "intent": "Sender's intent behind the message",
    "risk_factors": ["List of red flags like urgency, bad links, etc."]
    }}
```
User Message:
{}
"""

In [8]:
# 4. handle input
# user_input = input("Enter the text message to analyze: ")
user_input = "Your package delivery failed. Please update your address at [www.bestwebsite.com] to avoid return to sender."
# print(user_input)

In [9]:
full_prompt = PROMPT_TEMPLATE.format(user_input)
# print(full_prompt)

In [11]:
# 5. generate response with llm
response = client.models.generate_content(
    model=GEMINI_MODEL,
    contents=full_prompt
)
# print(response.text)

1. **Thought**: The message creates a sense of urgency ("delivery failed", "avoid return to sender"). It provides a link that looks like a generic website address. The sender is claiming a common scenario (package delivery failure) to prompt immediate action. The URL itself, `www.bestwebsite.com`, is highly generic and not specific to any known delivery company, which is a significant red flag. The urgency combined with a suspicious link points towards a phishing attempt.

2. **Action**: This message exhibits multiple characteristics of a scam, specifically a phishing scam designed to trick the recipient into visiting a malicious website and potentially revealing personal information or downloading malware.

3. **Final Answer**:
```json
{
  "label": "Scam",
  "reasoning": "The message creates a false sense of urgency by stating a package delivery failure and the risk of return to sender. It provides a generic and untrustworthy URL (www.bestwebsite.com) which is a common tactic for phis

In [None]:
# 6. handle output
def extract_json(text):
    """
    Finds the first '{' and the last '}' in a string 
    and parses it as JSON.
    """
    try:
        # Regex to find the JSON block inside the text
        match = re.search(r"\{.*\}", text, re.DOTALL)
        if match:
            return json.loads(match.group())
    except Exception as e:
        print(f"JSON Parsing Error: {e}")
    
    # Fallback if parsing fails
    return {
        "label": "Uncertain", 
        "reasoning": "Could not parse AI response",
        "intent": "Unknown",
        "risk_factors": ["Parsing Error"]
    }

parsed_output = extract_json(response.text)
print("="*40)
print(parsed_output)
print(type(parsed_output))
print("="*40)