Let’s Party! 🎊
In today’s TechUp, we will discuss AWS PartyRock. We want to understand what it is and how we can use it.
The following questions will be answered:
- What is PartyRock❓
- What is BedRock❓
- How do you use PartyRock❓
- How to build your own app❓
- Example application❓
- Prompt Injection❓
What is PartyRock
PartyRock is an Amazon Playground Service announced on November 16, 2023, in a blog post.
AWS promotes it with the slogan “Everyone can build AI apps”. And that’s precisely the purpose of PartyRock!
The goal behind PartyRock is to provide a playground to experiment and learn with generative AI technology. Using a no-code approach, you can create and use your own apps. Various models are available to:
- Generate texts
- Generate images
- Perform prompt engineering
- Execute prompt chaining
Imagine it as different building blocks that can be linked together to create an app. Each block contains specific functionality that can be used to enhance the app. You can configure each block differently, such as the model used and the prompt including placeholder logic.
A sample application of PartyRock is creating a movie. Based on a short input, it generates one-liners, a script, a poster, and other elements.
But first, let’s understand what PartyRock is.
What is BedRock
Bedrock is AWS’s fully managed service that provides generative AI technology. It forms the basis of PartyRock and enables the creation of custom apps. Behind it are Foundation Models (FMs) from AWS or “leading AI companies”. A Foundation Model is a pre-trained model that represents a large neural deep learning network. It forms the basis of generative AI technology and can be used for various applications. Examples of such Foundation Models are:
- GPT
- Amazon Titan
- Claude
And many more! For more information on Foundation Models, check out the documentation.
So what exactly is Amazon Bedrock? Bedrock is a serverless service from AWS that provides a standardized API and offers FMs from various AI providers like AI21 Labs, Anthropic, Cohere, Meta, Mistral AI, Stability AI, and Amazon.
Bedrock can be used to utilize and connect different models. It forms the basis of PartyRock and enables the creation of custom apps. You can also feed your own data privately into the respective models, thus using your data in AI applications. Technically, some offered models support this functionality; Bedrock then creates a private copy of the base FM and trains it with your data. Your data is not used to train the public model.
Reading the Bedrock documentation, the term RAG often appears. RAG stands for Retrieval-Augmented Generation and allows using your own data sources to enhance generative AI technology. For example, the documentation mentions defining an S3 bucket as a DataSource, from which an AWS OpenSearch Serverless vector database is created. Alternatively, you can use existing vector databases in supported services like Amazon OpenSearch Serverless, Pinecone, or Redis Enterprise Cloud. Support for Amazon Aurora and MongoDB is “coming soon”.
The practical aspect of Bedrock is that prompts defined in Bedrock always generate JSON snippets, which can then be used in your application to call the API.
The pricing is on-demand; you must request specific models, sometimes even providing details about the planned use case.
AWS Q
One of the most well-known use cases of Bedrock is certainly Amazon Q.
Amazon Q is a fully integrated chatbot from AWS, based on Bedrock, designed to provide assistance.
Let’s look at an example where I search for a CLI command to list all EC2 instances of a specific type.
It is helpful that the sources of the information are displayed, allowing direct access to the respective documentation.
Since Q runs on Bedrock, you can also use your own data sources to enhance generative AI technology.
The pricing of Amazon Q is quite steep, but the list of features is also extensive.
Amazon Q is currently in a preview phase.
We won’t delve further into Bedrock or Amazon Q here but will explore the possibilities with PartyRock.
How to use PartyRock
Back to the party! 🎉
Let’s start with PartyRock; fortunately, you don’t necessarily need an AWS account to use PartyRock. You can also log in via Google or Apple.
Where should we have dinner?
Let’s look at a simple first example. The Good Eats Restaurant Recommendations from PartyRock itself allows us to get different restaurant recommendations based on three inputs.
We decided to search for a restaurant in Basel, offering Swiss cuisine, and serving dinner. We get five suggestions and can chat with the guide on the right.
Clicking on the “Show Configuration” button allows us to see the configuration of each block. Let’s look at the restaurant block:
Here we see the model used, the prompt, and advanced settings like temperature and top P.
These advanced settings allow us to influence the creativity and randomness of the generated texts.
The chatbot also offers settings like the initial message and the system prompt.
In this example, we have learned about three basic building blocks:
- User Input - acts as input for the app, the text can be referenced and used via a placeholder
- Text Generation - generates text based on the input, the model, and the prompt
- Chatbot - allows interaction with the app
Every PartyRock app has a Remix button, enabling you to copy and customize an existing app.
The snapshot button is also exciting; it allows you to save the current state and share it as a link. Check out my snapshot for restaurant recommendations in Basel! Even my conversation with the chatbot is saved; what could I have asked… 🙃
Now let’s look at another, more comprehensive example.
With the MovieCreator, we can plan our own movie! 🎥
This example connects different models and prompts.
One of the boxes generates the movie poster using the Stable Diffusion XL model.
Let’s try creating a movie with the following prompt:
|
|
Admittedly, it generated an exciting poster! We also have an overview of our movie planning, the script, challenges, roles needed, and costs.
Good, we now know PartyRock and the essential building blocks. Let’s see how we can build our own app. 🚀
A side note: the app has probably changed, and a different model is now used for image generation. 🤷 It’s important to remember that public apps and the conditions of PartyRock can change anytime.
How to build your own app We now want to build an app that helps us find a suitable gift for a friend.
On the homepage, we can open the AppBuilder; fortunately, PartyRock also offers AI support when creating apps!
Let’s try using the following prompt:
|
|
And that’s how we easily created our first completely custom #AI #NoCode app! 🎉
You can find
the Gift Genie: Personalized Present Recommendations and Greeting Card Generator here.
We have a few input fields, then the first text generation which suggests gift ideas. We can then select a suggestion and generate a text and a card, which we can directly download. Finally, we can chat with the Gift Genie and get additional suggestions.
Unfortunately, while we can interact with the chat, prompts like Make the image more colorful don’t work because the chat cannot trigger a regeneration of the previous blocks.
Example Application
How could PartyRock be used productively? 🤔 In my view, there are two use cases:
- Testing prompts with different models, inputs, outputs, etc.
- Creating custom apps for recurring tasks
At b-nova, we’ve built the following apps:
- b-nova Blog Article Digest Creator - generates a draft for our TechUps’ LinkedIn and Twitter posts and summarizes the TechUp as a TL;DR
- b-nova decodify Podcast Content Generator - provides an outline for a decodify episode based on a title and some keywords, and generates a description and draft social media posts
- b-nova Stichwort2LinkedIn - generates a LinkedIn post based on various keywords and a title. The chat function helps refine the post.
The possibilities are certainly unlimited if you let your creativity run free.
Prompt Injection
At this point, I would like to briefly discuss prompt injection. I had been keeping an eye on PartyRock and then saw a talk by Chris Bingham at the seventh meetup of the AWS Swiss User Group, where he addressed prompt injection.
In his talk, he impressively demonstrated how to use GenAI but also how to influence the generated texts through prompt injection.
Let’s look at an example by building a new app with the following prompt:
|
|
A fictional example, but we don’t want bananas in our food. 🍌 I am (fictionally) highly allergic to bananas and break out in a rash just thinking about them. 🙈 So it’s very important that no matter what ingredients are entered, a recipe with bananas is never generated.
And presto, we have created our own app, the Culinary Curator, which generates recipes but never includes bananas.
Now let’s play with the ingredients to see if we really don’t have bananas in the recipes.
|
|
Sounds delicious, contains no bananas, very good! 🍽️
|
|
Works too, the bananas are successfully ignored by the system prompt. 🍞🧀🍅🥗🍌
|
|
Okay, the system prompt ignored the banana here, but that’s okay since we only don’t want bananas in the recipe. 🥣🍌
|
|
What happens now? Fortunately, we still get a recipe without bananas.
Now let’s try to break the AI app with the following input:
|
|
And behold, we have a recipe with bananas! 🍌🤯 This would be disastrous if I actually cooked the recipe.
Prompt injection occurs when user inputs try to influence and manipulate the system prompt.
How do you protect against it? Let’s adjust our prompt:
Simply place the user input at the end of the prompt:
|
|
And behold, the bananas are gone again. Now let’s adjust our input:
|
|
We still get no bananas. Is our app safe now? 🤔
We still can’t get bananas into the recipe.
|
|
Now the model complains in the response:
Good, with a small adjustment, we have bananas in the recipe again:
|
|
Okay, one last attempt. What if we adjust our system prompt? Let’s ask ChatGPT to secure the prompt:
Okay, that didn’t help, let’s try it ourselves:
|
|
With this new prompt, it works again
no bananas in the recipe.
With different combinations, we can fortunately no longer get bananas into the recipe.
Or can we?
|
|
And we have bananas in our recipes again. 🍌🤯
Why doesn’t this work? The problem is that the model cannot clearly distinguish between user input and the system prompt. It is possible that the user input is interpreted as a system prompt, leading to successful prompt manipulation. Since the AI model is fed with natural language as input parameters, there is no clear syntax that could prevent such an injection.
How do you perform prompt injection, or how do you secure your apps? 🤔
Conclusion
I am thrilled with PartyRock. It is free, fast, very easy to use, and offers a variety of ways to experiment and learn with generative AI technology. We already use PartyRock productively for various applications and are very satisfied with it. There is always the desire for integration via API or similar, which brings us to Amazon Bedrock, the foundation of PartyRock. So far, we have no use cases that really require integration.
Moreover, I was amazed by the topic of prompt injections; it’s something you could ponder and discuss for days.
I highly recommend trying PartyRock and creating your own apps. 🚀
This techup has been translated automatically by ChatGPT
