Merge pull request #6 from togethercomputer/fede/test-fix

simple test fix

Author: vinid

README.md

@@ -72,43 +72,15 @@ The ReAct agent supports two execution modes for running Python code:
 
 **Docker Mode**: All code execution and file processing happens locally in your Docker container.
 
-## ⚠️ Docker Mode Session Isolation Limitations
+## ⚠️ Docker Mode Limitations
 
-**Important**: While Docker mode provides basic session isolation for variables, it has significant limitations:
+**Important**: Docker mode has session isolation limitations and security considerations for local development.
 
-### ✅ What IS Isolated:
-- **User variables**: `x = 1` in one session won't affect another session
-- **Session state**: Each session maintains its own execution context
+- **Session isolation**: While user variables are isolated between sessions, module modifications and global state changes affect all sessions
+- **Host directory access**: The container has read-write access to specific host directories
+- **Best for**: Single-user local development and data analysis workflows
 
-### ❌ What is NOT Isolated:
-- **Module modifications**: Changes to imported libraries affect ALL sessions
-- **Global state changes**: Modifications to `sys.path`, `os.environ`, etc. are shared
-- **Library monkey-patching**: Modifying `json.dumps`, `numpy` settings, etc. corrupts other sessions
-
-### Examples of Problematic Code:
-```python
-# These operations will affect ALL sessions:
-import json
-json.dumps = custom_function  # ❌ Breaks all sessions
-
-import sys
-sys.path.append('/custom/path')  # ❌ Affects all sessions
-
-import os
-os.environ['KEY'] = 'value'  # ❌ Global environment change
-```
-
-### Docker Mode is OK For:
-- **Data analysis workflows**: Reading CSV/JSON files, pandas operations, statistical analysis
-- **Machine learning**: Training models, feature engineering, model evaluation
-- **Visualization**: Creating plots with matplotlib, seaborn, plotly
-- **Standard data science**: EDA, data cleaning, hypothesis testing
-- **Single-user development** and **testing environments**
-
-### When to Use TCI Mode Instead:
-- **Multi-user environments** where sessions must be completely isolated
-- **Production applications** with concurrent users
-- **Workflows that modify global state** (if unavoidable)
+📖 **For detailed technical information, security warnings, and setup instructions, see the [Interpreter README](interpreter/README.md)**
 
 ## 🛠️ Usage
 

interpreter/README.md

@@ -0,0 +1,123 @@
+# 🐳 Python Code Interpreter Service
+
+A containerized Python code execution service that provides an API for running Python code in isolated sessions. This service is designed for local development and experimentation.
+
+## ⚠️ Local Development Tool
+
+**This is intended for local development only** - not for production deployment. The service allows arbitrary code execution and is designed to run in a disposable Docker container.
+
+## 🚀 Quick Start
+
+1. **Start the service:**
+   ```bash
+   cd interpreter
+   docker-compose up --build -d
+   ```
+
+2. **Verify it's running:**
+   ```bash
+   curl http://localhost:8000/health
+   ```
+
+3. **Stop the service:**
+   ```bash
+   docker-compose down
+   ```
+
+## 🔒 Security Model
+
+### ✅ Container Isolation
+- All code runs inside a Docker container
+- Container is **disposable** - can be rebuilt if corrupted
+- No access to host system beyond mounted directories
+
+### 🚨 Host Directory Access Warning
+
+The Docker container has **read-write access** to specific host directories:
+
+```yaml
+volumes:
+  - ../eval/kaggle_data/spooky:/app/spooky:rw
+  - ../eval/kaggle_data/jigsaw:/app/jigsaw:rw
+```
+
+**⚠️ This means executed code can:**
+- **Modify or delete** files in `../eval/kaggle_data/spooky`
+- **Modify or delete** files in `../eval/kaggle_data/jigsaw`
+- **Create new files** in these directories
+
+**✅ Code CANNOT access:**
+- Your home directory
+- Other projects
+- System files
+- Any directories outside the mounted volumes
+
+### 🔧 Recommended: Read-Only Mounts
+
+For safer operation, consider changing to read-only mounts in `docker-compose.yml`:
+
+```yaml
+volumes:
+  - ../eval/kaggle_data/spooky:/app/spooky:ro  # read-only
+  - ../eval/kaggle_data/jigsaw:/app/jigsaw:ro  # read-only
+```
+
+## ⚠️ Session Isolation Limitations
+
+While the service provides basic session isolation, it has important limitations:
+
+### ✅ What IS Isolated:
+- **User variables**: `x = 1` in one session won't affect another session
+- **Session state**: Each session maintains its own execution context
+
+### ❌ What is NOT Isolated:
+- **Module modifications**: Changes to imported libraries affect ALL sessions
+- **Global state changes**: Modifications to `sys.path`, `os.environ`, etc. are shared
+- **Library monkey-patching**: Modifying `json.dumps`, `numpy` settings, etc. corrupts other sessions
+
+### Examples of Problematic Code:
+```python
+# These operations will affect ALL sessions:
+import json
+json.dumps = custom_function  # ❌ Breaks all sessions
+
+import sys
+sys.path.append('/custom/path')  # ❌ Affects all sessions
+
+import os
+os.environ['KEY'] = 'value'  # ❌ Global environment change
+```
+
+### Safe for Single-User Local Development:
+- **Data analysis workflows**: Reading CSV/JSON files, pandas operations
+- **Machine learning**: Training models, feature engineering
+- **Visualization**: Creating plots with matplotlib, seaborn
+- **Standard data science**: EDA, data cleaning, hypothesis testing
+
+## 📁 File Structure
+
+- `main.py` - FastAPI application with endpoints
+- `code_executor.py` - Core code execution logic
+- `session_manager.py` - Session handling and isolation
+- `download_data.py` - Data download from HuggingFace
+- `Dockerfile` - Container configuration
+- `docker-compose.yml` - Service orchestration
+- `requirements.txt` - Python dependencies
+
+## 🧹 Cleanup
+
+To completely remove the service and data:
+
+```bash
+# Stop and remove containers
+docker-compose down
+
+# Remove downloaded data
+rm -rf downloaded_data/
+
+# Remove custom uploaded data
+rm -rf custom_data/
+
+# Remove Docker images (optional)
+docker image prune -f
+``` 

tests/test_functional.py

@@ -4,6 +4,7 @@
 import tempfile
 import requests
 import asyncio
+import pytest
 from open_data_scientist.codeagent import ReActDataScienceAgent
 from concurrent.futures import ThreadPoolExecutor, as_completed
 
@@ -295,6 +296,7 @@ def test_end_to_end_agent_analysis():
             os.unlink(temp_file_path)
 
 
+@pytest.mark.asyncio
 async def test_concurrent_sessions_isolation():
     """Test that 50 concurrent math operations across different sessions work correctly."""