Live Application: https://dataagent.thomaspercival.dev/
Frontend Architecture Repository: https://github.com/tpercival01/DataAgent-UI
DataAgent Core is a fully autonomous, fault tolerant Python execution engine.
It takes plain English business questions, translates them into executable Python data science code (using pandas and matplotlib), securely executes that code in an isolated ephemeral cloud container, and streams the standard output and base64 encoded charts back to the client.
The backend handles multi-turn conversational memory, secure file mounting, and autonomous error recovery without requiring human intervention.
[Client UI]
| (JSON: Query + Chat History + Session ID)
v
[FastAPI Router] ---> [Security Interceptor: Blocks malicious prompt injections]
|
+---> [Groq API / Llama 3.3 70B] ---> Generates Pandas/Matplotlib Python Code
|
v
[E2B Cloud Sandbox] ---> Mounts Dataset & Executes Untrusted Code
|
+---> On Success: Bash POSIX pipe extracts binary PNGs and Stdout.
|
+---> On Failure: Triggers Self-Healing Loop (Feeds traceback to LLM to self-correct).
|
+---> On Timeout: Triggers Silent Resurrection (Spins up new container, remounts data).
|
v
[Client UI] (Returns JSON Payload: Text, Code, Base64 Images)
1. The Self-Healing Execution Loop LLMs hallucinate. When Llama 3 generates invalid Python code (e.g., referencing a missing dataframe column), the system does not crash. The backend catches the container runtime error, appends the traceback to the conversational context, and autonomously prompts the LLM to write a fix. It loops up to three times before gracefully failing.
2. Silent Sandbox Resurrection Cloud execution containers are ephemeral and will time out. If a user leaves the application and returns later, the backend intercepts the dead connection, provisions a fresh E2B sandbox, reads the raw dataset from local persistent storage, remounts it to the new remote container, and executes the query seamlessly. The user never sees a timeout error.
3. POSIX-Level Binary Extraction
Relying on high-level Python SDKs to intercept graphical outputs is fragile. Instead, the backend forces the LLM to write absolute file paths, and then utilizes native Linux bash commands (base64 piped through tr) inside the sandbox to convert graphical chart data into clean string payloads for a single-trip frontend response.
4. Prompt Injection Guardrails The system is locked down to strictly data analysis. Context-injected system prompts paired with a FastApi router interceptor immediately neutralize malicious requests (e.g., web scraping, system wiping, network pinging) before they ever reach the code execution environment.
- Framework: Python 3, FastAPI
- Data Validation: Pydantic V2
- LLM Inference: Groq API (Llama-3.3-70b-versatile)
- Secure Compute: E2B Code Interpreter SDK
- Data Science: Pandas, Matplotlib
- Clone the repository and navigate into the directory.
- Create a virtual environment and activate it:
python3 -m venv venv
source venv/bin/activate- Install dependencies:
pip install -r requirements.txt- Create a
.envfile in the root directory and add your API keys:
GROQ_API_KEY=your_groq_api_key_here
E2B_API_KEY=your_e2b_api_key_here
- Start the FastAPI server:
uvicorn main:app --reload --port 8000This backend is currently deployed on the free tier of Render.com. Reviewers should be aware of the following infrastructural limitations:
1. Cold Start Latency Render spins down free-tier servers after 15 minutes of inactivity. If you are the first person to use the application in a while, the initial file upload or query may take up to 60 seconds to process while the container wakes up. Subsequent requests will process in milliseconds.
2. Ephemeral Filesystems & Silent Resurrection
The "Silent Sandbox Resurrection" feature relies on saving a localized backup of the uploaded CSV to a /Data directory on the server. Because Render utilizes an ephemeral file system, this local backup is destroyed every time the server spins down or redeploys.
Result: If a user uploads a file, leaves the app idle for 15 minutes (causing Render to sleep and the E2B sandbox to timeout), and then returns to ask a question, the resurrection will fail because the local backup no longer exists.
Production Fix: In a true enterprise environment, the api/v1/upload endpoint would route the raw binary file directly to an AWS S3 bucket, and the resurrection block would pull the file from S3 rather than local storage.