perf: add redis caching and reduce embedding API calls

[Rajat-Ahuja1997]

• Redis caching for collection + session peer configs
• Session soft-delete cache invalidation fix
• Embedding deduplication (prefetch, search_memory fallback)
• Batch embedding in create_observations and extract_preferences

Summary by CodeRabbit

• New Features

  • Public APIs to manage collection internal metadata and session peer configurations, exposed at package level.
  • Search and memory APIs now accept pre-computed embeddings; batch embedding for observations with per-item fallback.

• Performance

  • Caching added for collections and per-session peer configs with cache invalidation on updates.
  • Embedding batching and reuse to reduce redundant embedding calls.

• Tests

  • New tests covering batch-embedding fallback and partial-success/error handling.

[coderabbitai]

Walkthrough

Adds caching and cache-key helpers for collections and session peer configurations, exposes two new CRUD helpers, introduces batch embedding with per-item fallback and embedding propagation, updates call sites to use the new CRUD helpers, and adds tests covering embedding fallback behavior.

Changes

Cohort / File(s)	Summary
CRUD Exports src/crud/__init__.py	Exported new helpers update_collection_internal_metadata and fetch_session_peer_configs.
Collection CRUD src/crud/collection.py	Added collection caching, lock keys, _fetch_collection cached helper, collection_cache_key, and update_collection_internal_metadata that merges JSONB updates and invalidates cache; updated get/get-or-create flows to use cache and session merging.
Session CRUD src/crud/session.py	Added session peer-config cache keys and fetch_session_peer_configs (cached, locked, TTL), session_peer_config_cache_key, PEER_CONFIG_TTL_SECONDS, and widened cache invalidation across session/peer operations; adjusted peer-related signatures to accept dicts of SessionPeerConfig.
Message Search src/crud/message.py	search_messages signature extended with optional `embedding: list[float]
Deriver / Enqueue src/deriver/enqueue.py	Replaced direct DB queries/updates with fetch_session_peer_configs and update_collection_internal_metadata calls; removed manual SQL update path.
Dialectic Embedding src/dialectic/core.py	Pre-computes a single embedding for query and passes it into memory search calls to reuse embedding across explicit/derived searches.
Session Router src/routers/sessions.py	After session deletion, added invalidation of both session cache and session peer-config cache.
Agent Tools / Embeddings src/utils/agent_tools.py	Implemented batch embedding with fallback to per-item/per-query embedding; added `embedding: list[float]
Tests tests/utils/test_agent_tools.py	Added tests for batch embedding fallback, embedding reuse, and partial-success behavior in create_observations and preference extraction paths.
Manifest requirements.txt	Updated dependencies (manifest change).

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~50 minutes

Possibly related PRs

• fix: resolve get_effective_observe me race condition, default peer config #176: Similar changes to session peer-configuration retrieval and handling (includes is_active and revised retrieval shape) that align with fetch_session_peer_configs.
• fix conditional cache invalidation #280: Related cache invalidation changes in session/peer config paths overlapping this PR’s invalidation additions.
• add MessageEmbedding table #144: Related modifications to collection CRUD paths and caching behavior that intersect with get_collection / get_or_create_collection changes.

Suggested reviewers

• VVoruganti
• dr-frmr

Poem

🐇
I hopped through caches, keys in paw,
Batched embeddings, then one by one I saw,
Metadata tucked in JSON nests,
Peers cached snug — I took a rest.
Hooray — a hare’s small dev delight!

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 75.61% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main changes: Redis caching for collections/sessions and batch/deduplicated embedding calls to reduce API usage.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch rajat/redis-embedding-perf

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Fix all issues with AI agents

In `@src/crud/session.py`:
- Around line 1024-1027: The pre-commit cache invalidation in
_get_or_add_peers_to_session creates a stale-cache race when called from
get_or_create_session; after the DB commit in get_or_create_session (after the
block that updates the session and calls db.commit()), add a post-commit
invalidation that calls
cache.delete(session_peer_config_cache_key(workspace_name, session.name)) when
peers were actually added (e.g., check session.peer_names or a boolean from
_get_or_add_peers_to_session) so peer configs are reloaded after the commit and
avoid caching stale data.

In `@src/routers/sessions.py`:
- Around line 269-270: After db.commit() succeeds in the session delete flow,
make cache invalidation best-effort by wrapping the two cache.delete calls
(session_cache_key(...) and session_peer_config_cache_key(...)) in a try/except
that catches broad cache/connection errors (e.g., Exception or specific Redis
errors) so they don’t propagate and turn a successful delete into a 500; on
exception, log a warning with context (workspace_id, session_id, function/method
name) and continue without re-raising. Ensure the try/except surrounds both
cache.delete calls and does not change the existing ValueError handling around
the DB operations.

🧹 Nitpick comments (4)

tests/utils/test_agent_tools.py (1)

821-885: Test name doesn't match the verified behavior.

The test name test_falls_back_to_per_query_embedding_when_batch_fails suggests per-query embedding is invoked as a fallback, but the test actually verifies the opposite: that embedding_client.embed is not called (it would raise AssertionError) and None is passed as the embedding to search_messages. Consider renaming to something like test_proceeds_with_none_embedding_when_batch_fails.

src/utils/agent_tools.py (1)

1179-1195: ValidationException will be caught as an "unexpected" error, causing ERROR-level logging and an unnecessary rollback on a read path.

_handle_search_memory raises ValidationException (line 1183), which isn't a ValueError or KeyError. In execute_tool, it falls into the generic except Exception handler (line 1813) which logs at ERROR with a full traceback and rolls back the transaction — both inappropriate for a simple token-limit validation failure on a read-only path.

Consider returning an error string directly, matching the pattern used by other tool handlers:

♻️ Proposed fix: return error string directly

     query = tool_input["query"]
     try:
         query_embedding = await embedding_client.embed(query)
     except ValueError as e:
-        raise ValidationException(
-            f"Query exceeds maximum token limit of {settings.MAX_EMBEDDING_TOKENS}."
-        ) from e
+        return f"ERROR: Query exceeds maximum token limit of {settings.MAX_EMBEDDING_TOKENS}. Please use a shorter query."
 
     documents = await crud.query_documents(

src/crud/session.py (2)

828-851: Return type dict[str, list[Any]] loses positional semantics.

The list holds [peer_configuration, session_peer_configuration, is_active], but consumers must rely on index positions. A TypedDict or NamedTuple would make this contract explicit and prevent index-based errors at call sites. With cashews serialization, a TypedDict should work fine.

---

42-47: SESSION_PEER_CONFIG_LOCK_PREFIX reuses the same value as SESSION_LOCK_PREFIX — works but may confuse readers.

Both resolve to f"{get_cache_namespace()}:lock". This is functionally correct since the actual lock keys differ (different key templates), but sharing the identical value may mislead future maintainers into thinking they share a lock. Consider giving it a distinct suffix (e.g., :peer_config_lock) or adding a brief comment explaining why the shared prefix is safe.

[claude]

Code Review - Issues Found

I've reviewed this PR and found 3 issues that need attention:

Issue 1: Silent data loss in error handling (CLAUDE.md violation)

File: src/utils/agent_tools.py, lines 655-659

Issue: When individual observation embedding fails, the code logs a warning and uses continue to skip the observation entirely. This results in silent data loss where:

• Observations are skipped without explicit error reporting
• The tool returns success with an incorrect count
• The LLM has no visibility that some observations failed

CLAUDE.md Rule: "Explicit error handling with appropriate exception types"

Why this matters: This pattern is inconsistent with the rest of the codebase. Lines 1180-1185 in the same file show the correct pattern: catch ValueError and raise ValidationException. Silent data loss with incorrect reporting violates the explicit error handling requirement.

Suggested fix: Instead of continue, either:

1. Raise a ValidationException to signal the failure explicitly, or
2. Collect failed observations and include them in the error message returned to the LLM

Link:

honcho/src/utils/agent_tools.py

Lines 654 to 660 in 14fa071

	embedding = await embedding_client.embed(content)
	except Exception as e:
	logger.warning(
	f"Error embedding observation content for level '{level}': {e}"
	)
	continue

CLAUDE.md:

honcho/CLAUDE.md

Line 115 in 14fa071

- Docstrings: Use Google style docstrings

---

Issue 2: Cache invalidation race condition in get_or_create_session

File: src/crud/session.py, line 247

Issue: The function _get_or_add_peers_to_session (called at line 240) invalidates the peer config cache before the transaction is committed. When get_or_create_session commits at line 247, there's no post-commit cache invalidation for peer configs. This creates a race condition:

1. _get_or_add_peers_to_session deletes the cache (line 1026 in that function)
2. A concurrent request can re-fetch OLD data from the database (not yet committed)
3. The cache is re-populated with stale data
4. get_or_create_session commits at line 247, but the cache now contains stale data for 60 seconds

Comparison: The other caller set_peers_for_session correctly performs a post-commit cache invalidation at line 925.

Suggested fix: Add peer config cache invalidation after the commit at line 247:

await db.commit()
await db.refresh(honcho_session)

# Invalidate peer config cache after commit
await cache.delete(session_peer_config_cache_key(workspace_name, session.name))

Link:

honcho/src/crud/session.py

Lines 246 to 250 in 14fa071

	await db.commit()
	await db.refresh(honcho_session)
	# Only update cache if session data changed or was newly created

---

Issue 3: Cache invalidation race condition in update_collection_internal_metadata

File: src/crud/collection.py, line 152

Issue: The function invalidates the cache immediately after executing the SQL UPDATE (line 151), but does NOT commit the transaction. The caller (enqueue_dream in src/deriver/enqueue.py, line 524) commits afterward. Between the cache deletion and the commit, a concurrent request can:

1. Find no cache entry (just deleted)
2. Query the database and read the OLD data (not yet committed)
3. Re-populate the cache with stale data
4. The commit happens, but cache now contains stale data

Suggested fix: Either:

1. Move cache invalidation to after the commit in the caller, or
2. Have update_collection_internal_metadata commit the transaction before invalidating the cache

Link: https://github.com/plastic-labs/honcho/blob/14fa07112b0af1f42798696c58e9689c392da6db/src/crud/collection.py#L150-L153

---

Summary

• 1 CLAUDE.md compliance issue (error handling)
• 2 cache invalidation timing bugs that can cause stale data to persist in cache

All issues are high-confidence and should be addressed before merging.

[Rajat-Ahuja1997]

Code Review - Issues Found

I've reviewed this PR and found 3 issues that need attention:

Issue 1: Silent data loss in error handling (CLAUDE.md violation)

File: src/utils/agent_tools.py, lines 655-659

Issue: When individual observation embedding fails, the code logs a warning and uses continue to skip the observation entirely. This results in silent data loss where:

• Observations are skipped without explicit error reporting
• The tool returns success with an incorrect count
• The LLM has no visibility that some observations failed

CLAUDE.md Rule: "Explicit error handling with appropriate exception types"

Why this matters: This pattern is inconsistent with the rest of the codebase. Lines 1180-1185 in the same file show the correct pattern: catch ValueError and raise ValidationException. Silent data loss with incorrect reporting violates the explicit error handling requirement.

Suggested fix: Instead of continue, either:

1. Raise a ValidationException to signal the failure explicitly, or
2. Collect failed observations and include them in the error message returned to the LLM

Link:

honcho/src/utils/agent_tools.py

Lines 654 to 660 in 14fa071

	embedding = await embedding_client.embed(content)
	except Exception as e:
	logger.warning(
	f"Error embedding observation content for level '{level}': {e}"
	)
	continue

CLAUDE.md:

honcho/CLAUDE.md

Line 115 in 14fa071

- Docstrings: Use Google style docstrings

Issue 2: Cache invalidation race condition in get_or_create_session

File: src/crud/session.py, line 247

Issue: The function _get_or_add_peers_to_session (called at line 240) invalidates the peer config cache before the transaction is committed. When get_or_create_session commits at line 247, there's no post-commit cache invalidation for peer configs. This creates a race condition:

1. _get_or_add_peers_to_session deletes the cache (line 1026 in that function)
2. A concurrent request can re-fetch OLD data from the database (not yet committed)
3. The cache is re-populated with stale data
4. get_or_create_session commits at line 247, but the cache now contains stale data for 60 seconds

Comparison: The other caller set_peers_for_session correctly performs a post-commit cache invalidation at line 925.

Suggested fix: Add peer config cache invalidation after the commit at line 247:

await db.commit()
await db.refresh(honcho_session)

# Invalidate peer config cache after commit
await cache.delete(session_peer_config_cache_key(workspace_name, session.name))

Link:

honcho/src/crud/session.py

Lines 246 to 250 in 14fa071

	await db.commit()
	await db.refresh(honcho_session)
	# Only update cache if session data changed or was newly created

Issue 3: Cache invalidation race condition in update_collection_internal_metadata

File: src/crud/collection.py, line 152

Issue: The function invalidates the cache immediately after executing the SQL UPDATE (line 151), but does NOT commit the transaction. The caller (enqueue_dream in src/deriver/enqueue.py, line 524) commits afterward. Between the cache deletion and the commit, a concurrent request can:

1. Find no cache entry (just deleted)
2. Query the database and read the OLD data (not yet committed)
3. Re-populate the cache with stale data
4. The commit happens, but cache now contains stale data

Suggested fix: Either:

1. Move cache invalidation to after the commit in the caller, or
2. Have update_collection_internal_metadata commit the transaction before invalidating the cache

Link: https://github.com/plastic-labs/honcho/blob/14fa07112b0af1f42798696c58e9689c392da6db/src/crud/collection.py#L150-L153

Summary

• 1 CLAUDE.md compliance issue (error handling)
• 2 cache invalidation timing bugs that can cause stale data to persist in cache

All issues are high-confidence and should be addressed before merging.

good callouts will fix

[coderabbitai]

Actionable comments posted: 3

🤖 Fix all issues with AI agents

In `@src/crud/collection.py`:
- Around line 132-153: The call to cache.delete in
update_collection_internal_metadata can raise (e.g., Redis down) and should be
best-effort so a successful DB update isn't turned into an error; after await
db.commit() wrap the await cache.delete(collection_cache_key(...)) in a
try/except Exception block (catch broad exceptions), log or ignore the error
(e.g., with logger.warning or process_logger.warning) and do not re-raise so the
function returns normally even if cache eviction fails; update the function name
update_collection_internal_metadata to include this error-handling around
cache.delete.
- Around line 112-119: The cache.set call that writes honcho_collection using
collection_cache_key and settings.CACHE.DEFAULT_TTL_SECONDS must be made
best-effort: wrap the await cache.set(...) in a try/except (catch Exception) so
Redis/connection errors do not bubble up after the commit; on exception, log the
error (using the module logger or existing logging pattern) and continue without
re-raising. Follow the same pattern used in src/routers/sessions.py (lines
handling cache in a try/except) to keep semantics consistent.

In `@src/crud/session.py`:
- Around line 586-589: The cache deletion calls
(cache.delete(session_cache_key(...) and
cache.delete(session_peer_config_cache_key(...)) currently live inside the
try/except that surrounds the DB transaction and will cause a caught exception
to incorrectly trigger rollback/re-raise; move these two cache.invalidate calls
out of the try block so they run after a successful db.commit() and treat them
as best-effort (catch/log but don’t re-raise) similar to the pattern used in
routers/sessions.py; update the function around db.commit() in
crud.delete_session to perform cache.delete calls only after commit and wrap
those deletes in a non-fatal exception handler so Redis failures don’t surface
to callers.

🧹 Nitpick comments (2)

src/crud/session.py (1)

821-855: Returning positional lists reduces type safety for consumers.

The return value maps peer_name → [peer_configuration, session_peer_configuration, is_active], requiring consumers to use magic indices. A TypedDict or NamedTuple would make access self-documenting and prevent index mix-up bugs.

That said, this is an internal caching helper and the plain dict/list structure serializes cleanly with cashews — so this is fine to defer.

src/routers/sessions.py (1)

269-273: Consider logging the swallowed exception for observability.

The best-effort try/except is correct — a cache failure shouldn't turn a successful deletion into a 500. However, the bare pass means Redis connectivity issues are completely invisible. A logger.warning would aid debugging without changing behavior, and aligns with the coding guideline to use proper logging and the Ruff S110 hint.

🔧 Optional improvement

         try:
             await cache.delete(session_cache_key(workspace_id, session_id))
             await cache.delete(session_peer_config_cache_key(workspace_id, session_id))
-        except Exception:  # nosec B110 — best-effort; TTL will clean up
-            pass
+        except Exception:
+            logger.warning(
+                "Failed to invalidate cache for session %s, entries will expire via TTL",
+                session_id,
+            )

As per coding guidelines, "Use proper logging with context instead of print statements" and "Use explicit error handling with appropriate exception types."

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Unguarded cache.set can surface a 500 after a successful commit.

If Redis is unavailable, the cache.set call on line 114 raises and propagates to the caller, even though the collection was already persisted at line 111. Other mutation paths in src/routers/sessions.py (lines 269-273) already wrap cache operations in try/except for best-effort semantics; this path should be consistent.

🛡️ Proposed fix

             await db.commit()

-            key = collection_cache_key(workspace_name, observer, observed)
-            await cache.set(
-                key,
-                honcho_collection,
-                expire=settings.CACHE.DEFAULT_TTL_SECONDS,
-            )
+            try:
+                key = collection_cache_key(workspace_name, observer, observed)
+                await cache.set(
+                    key,
+                    honcho_collection,
+                    expire=settings.CACHE.DEFAULT_TTL_SECONDS,
+                )
+            except Exception:
+                logger.warning(
+                    "Failed to cache collection %s/%s, will be populated on next read",
+                    observer,
+                    observed,
+                )

             return honcho_collection

🤖 Prompt for AI Agents

In `@src/crud/collection.py` around lines 112 - 119, The cache.set call that
writes honcho_collection using collection_cache_key and
settings.CACHE.DEFAULT_TTL_SECONDS must be made best-effort: wrap the await
cache.set(...) in a try/except (catch Exception) so Redis/connection errors do
not bubble up after the commit; on exception, log the error (using the module
logger or existing logging pattern) and continue without re-raising. Follow the
same pattern used in src/routers/sessions.py (lines handling cache in a
try/except) to keep semantics consistent.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Same resilience gap on cache.delete after commit.

Line 153's cache.delete can raise if Redis is down, turning a successful DB update into a caller-visible error. Wrap it in best-effort handling for consistency with the router-layer pattern.

🛡️ Proposed fix

     await db.execute(stmt)
     await db.commit()
-    await cache.delete(collection_cache_key(workspace_name, observer, observed))
+    try:
+        await cache.delete(collection_cache_key(workspace_name, observer, observed))
+    except Exception:
+        logger.warning(
+            "Failed to invalidate collection cache for %s/%s, entry will expire via TTL",
+            observer,
+            observed,
+        )

🤖 Prompt for AI Agents

In `@src/crud/collection.py` around lines 132 - 153, The call to cache.delete in
update_collection_internal_metadata can raise (e.g., Redis down) and should be
best-effort so a successful DB update isn't turned into an error; after await
db.commit() wrap the await cache.delete(collection_cache_key(...)) in a
try/except Exception block (catch broad exceptions), log or ignore the error
(e.g., with logger.warning or process_logger.warning) and do not re-raise so the
function returns normally even if cache eviction fails; update the function name
update_collection_internal_metadata to include this error-handling around
cache.delete.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Cache failures inside the try block will trigger a spurious rollback and re-raise.

cache.delete at lines 588–589 runs inside the try that catches Exception (line 592). If Redis is unreachable after a successful db.commit() at line 585, the handler rolls back (no-op since already committed) and re-raises — surfacing an error to the caller even though deletion succeeded. Since crud.delete_session is invoked from the background deletion task, this would cause unnecessary retries.

Move cache invalidation outside the try block with best-effort handling, consistent with the router-layer pattern in src/routers/sessions.py (lines 269-273).

🛡️ Proposed fix

         # Finally, delete the session itself
         await db.delete(honcho_session)
         await db.commit()
-
-        # Invalidate caches
-        await cache.delete(session_cache_key(workspace_name, session_name))
-        await cache.delete(session_peer_config_cache_key(workspace_name, session_name))
-
         logger.debug("Session %s and all associated data deleted", session_name)
     except Exception as e:
         logger.error("Failed to delete session %s: %s", session_name, e)
         await db.rollback()
         raise e

+    # Best-effort cache invalidation (DB is already committed)
+    try:
+        await cache.delete(session_cache_key(workspace_name, session_name))
+        await cache.delete(session_peer_config_cache_key(workspace_name, session_name))
+    except Exception:
+        logger.warning(
+            "Failed to invalidate caches for session %s, entries will expire via TTL",
+            session_name,
+        )
+
     return SessionDeletionResult(

🤖 Prompt for AI Agents

In `@src/crud/session.py` around lines 586 - 589, The cache deletion calls
(cache.delete(session_cache_key(...) and
cache.delete(session_peer_config_cache_key(...)) currently live inside the
try/except that surrounds the DB transaction and will cause a caught exception
to incorrectly trigger rollback/re-raise; move these two cache.invalidate calls
out of the try block so they run after a successful db.commit() and treat them
as best-effort (catch/log but don’t re-raise) similar to the pattern used in
routers/sessions.py; update the function around db.commit() in
crud.delete_session to perform cache.delete calls only after commit and wrap
those deletes in a non-fatal exception handler so Redis failures don’t surface
to callers.

[VVoruganti]

nitpick but I think validation should be done with pydantic if possible

[VVoruganti]

should add a return type to this of ObservationsCreatedResult or something like that that reports if all of the observations were created or not so that we report any silent failures if any of the list of requested observations was malformed in some way