Cloud Development Content Security Detection

Many business scenarios of WeChat's small programs require a UGC (user-generated content) approach, such as nicknames/flower names, profile signatures/logs/chats/comments, avatars/emoticons/photos, live streams, etc., in a format that includes, but is not limited to, short text, long content, pictures or videos to achieve a better user experience or richer content features and service scenarios. H owever, if the use of such features does not do a good job of security review of user-published content, may result in politically harmful and other illegal content. O nce used for dissemination, it can be detrimental to the user of the small program, and the small program developer may also be liable for the platform or the law and punishment. Therefore, small programs that contain UGC functionality require content security detection.

First, the text content is safe

Use the developer tool to create a new cloud function, such as msgsec, and then add permissions called by the security.msgSecCheck cloud inconfig.json, and upload and deploy all files (and update the permissions at this point) after installing the dependency using npm install.

{
  "permissions": {
    "openapi": [
      "security.imgSecCheck",
      "security.msgSecCheck"
    ]
  }
}

Then enter the following code .js the index code,

const cloud = require('wx-server-sdk')
cloud.init({
    env: cloud.DYNAMIC_CURRENT_ENV
  })
exports.main = async (event, context) => {
    try {
        const result = await cloud.openapi.security.msgSecCheck({
            content:`特3456书yuuo莞6543李zxcz蒜7782法fgnv级
            完2347全dfji试3726测asad感3847知qwez到`
        })
        return result
    } catch (error) {
        return error
    }
}

Calling the cloud function, interface errcode returns 87014 (content contains illegal content):

errMsg: "cloud.callFunction:ok", 
result: {
    errCode: 87014
    errMsg: "openapi.security.msgSecCheck:fail risky content hint: [bgh98a06644711]"}

If the returned result.errCode has a value of 0, the content is correct.

errMsg: "cloud.callFunction:ok"
result: {
    errMsg: "openapi.security.msgSecCheck:ok",
    errCode: 0}

Second, the picture is yellow

The biggest difference between image content security detection and text content security detection is that we need to consider the time-consuming image transmission and the detection of pictures can not be greater than 1M such a limit, when the picture size is relatively large, we need to compress the picture. A lso, the image files to be detected are PNG, JPEG, JPG, GIF, and the picture size does not exceed 750px x 1334px. Usually when we use the small program endchooseImage to upload images, we try to require the use of compressed compression diagrams, album compression charts generally do not exceed 1M.

• If the picture is relatively small (about 200k or less), we can store the picture directly in the cloud storage, and then download the picture in the cloud function for image security detection;

• If the picture is relatively large (e.g. greater than 100k, less than 1M), we can store the picture to the cloud storage, download the picture at the cloud function side, use the Sharp module mentioned earlier, compress the picture, and then carry out the picture security detection.

• If the picture is larger than 1M, then the compression of the picture is not recommended in the cloud function processing, to use Canvas for compression in the small terminal, and then transferred to the cloud function for security detection.

const cloud = require('wx-server-sdk')
cloud.init({
    env: cloud.DYNAMIC_CURRENT_ENV
  })
exports.main = async (event, context) => {
  const fileID = 'cloud://xly-xrlur.786c-xly-xrlur-1300446086/1572315793628-366.png'
  const res = await cloud.downloadFile({
    fileID: fileID,
  })
  const Buffer = res.fileContent
  try {
    const result = await cloud.openapi.security.imgSecCheck({
      media: {
        contentType: 'image/png',
        value: Buffer
      }
    })
    return result
   } catch (error) {
    return error
  }
}

Third, image content security expansion capabilities

Cloud call in the image content security processing, there are some shortcomings in the function (such as no subdivision of yellow-related, political-related, tyrannic and advertising guidance class), there is a little strict restrictions (the size of the picture has strict requirements), it is recommended that we install cloud development image security audit expansion capabilities.

Its installation method is described in the Cloud Call and Expansion Capabilities section, while the expansion capabilities of image processing in the previous section of the usage method are in line with each other and have the same usage methods, because image content security is part of image processing. So to use the image content security expansion capabilities suggest reading the previous content first, here only give the actual code.

1, in the small terminal use of image security audit

First we refer to the last section to build npm of image processing, and then we introduce packages in the .js and write an event handler in the Page function. Image security audit can only be post-verified, that is, content security audit can only be performed on images that have been uploaded to cloud storage, as follows:

const extCi = require("./../../miniprogram_npm/@cloudbase/extension-ci-wxmp");
Page({
  async imgSec(){
    extCi.invoke({
      action: "DetectType",
      cloudPath: "tcbdemo.jpg", 
      operations: {
        type: 'porn,ads,terrorist,politics'
      }
    }).then(res => {
        console.log(res.data);
    }).catch(err => {
        console.log(err);
    })
  }
})

Here the type of type of content review, porn (yellow-related identification), terrorist (trump-related terrorism identification), politics (politics-related identification), ads (advertising identification), we can write like the above four together, or we can only write a few of them, with , separated can be.

Print res.data, which contains the Object of RecognitionResult, which displays the results of the review of the image content, with commercials as shown below:

• Code, error code, 0 is correct, other errors can be viewed Data Encity content audit error code description

• HitFlag, indicating whether to hit: 0 (missed), 1 (hit), 2 (suspected);

• Score, audit score: 0 - 60 (normal), 60 - 90 (suspected sensitive), 90 - 100 (determined sensitive)

• Label, for the identified label

RecognitionResult{
  PornInfo: {Code: 0, Msg: "OK", HitFlag: 0, Score: 14, Label: ""}
  TerroristInfo: {Code: 0, Msg: "OK", HitFlag: 0, Score: 0, Label: ""}
  PoliticsInfo: {Code: 0, Msg: "OK", HitFlag: 0, Score: 26, Label: ""}
  AdsInfo: {Code: 0, Msg: "OK", HitFlag: 1, Score: 98, Label: "淘宝"}
}

In the small terminal audit image, we can first upload the picture to the cloud storage, and then get the picture in the cloud storage cloudPath (not fileID, is the absolute path of relative cloud storage), and then the picture audit, audit success to be displayed, audit failure to delete the picture, let the user re-upload.

2, in the cloud function using image security audit

Use the developer tool to create a new imgSec cloud function, then add @cloudbase/extension-ci the cloud function directory to select the input command npm install installation dependency to open in the terminal:

"dependencies": {
  "wx-server-sdk": "latest",
  "@cloudbase/extension-ci": "latest"
}

Then enter the following code .js in the index code, the specific meaning of the code can be explained by reference to the contents of the small terminal:

const cloud = require('wx-server-sdk')
cloud.init({
    env: cloud.DYNAMIC_CURRENT_ENV
  })
const extCi = require('@cloudbase/extension-ci')
cloud.registerExtension(extCi)
async function imgSec() {
  try {
    const res = await app.invokeExtension('CloudInfinite', {
      action: 'DetectType',
      cloudPath: 'tcbdemo.png', 
      operations: {
        type: 'porn,ads,terrorist,politics'
      }
    })
    console.log(res)
    return res
  } catch (err) {
    console.log(err)
  }
}