Latest Threat Research:SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains.Details
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

network-ai

Package Overview
Dependencies
Maintainers
1
Versions
56
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

network-ai - npm Package Compare versions

Comparing version
4.0.12
 to
4.0.13
+3
-3
bin/mcp-server.ts

@@ -32,3 +32,3 @@ #!/usr/bin/env node

* @module bin/mcp-server
* @version 4.0.12
* @version 4.0.13
*/

@@ -110,3 +110,3 @@

console.log(`
network-ai-server — Network-AI MCP Server v4.0.12
network-ai-server — Network-AI MCP Server v4.0.13

@@ -149,3 +149,3 @@ Usage: npx ts-node bin/mcp-server.ts [options]

console.log(`\n[network-ai-server] Starting MCP Server v4.0.12`);
console.log(`\n[network-ai-server] Starting MCP Server v4.0.13`);
console.log(`[network-ai-server] Board: ${args.board} | Port: ${args.port}`);

@@ -152,0 +152,0 @@ 

+1
-1
dist/bin/mcp-server.d.ts

@@ -32,5 +32,5 @@ #!/usr/bin/env node

* @module bin/mcp-server
* @version 4.0.12
* @version 4.0.13
*/
export {};
//# sourceMappingURL=mcp-server.d.ts.map
+3
-3
dist/bin/mcp-server.js

@@ -33,3 +33,3 @@ #!/usr/bin/env node

* @module bin/mcp-server
* @version 4.0.12
* @version 4.0.13
*/

@@ -110,3 +110,3 @@ Object.defineProperty(exports, "__esModule", { value: true });

console.log(`
network-ai-server — Network-AI MCP Server v4.0.12
network-ai-server — Network-AI MCP Server v4.0.13

@@ -145,3 +145,3 @@ Usage: npx ts-node bin/mcp-server.ts [options]

}
console.log(`\n[network-ai-server] Starting MCP Server v4.0.12`);
console.log(`\n[network-ai-server] Starting MCP Server v4.0.13`);
console.log(`[network-ai-server] Board: ${args.board} | Port: ${args.port}`);

@@ -148,0 +148,0 @@ // --------------------------------------------------------------------------

+1
-1
dist/index.d.ts

@@ -10,3 +10,3 @@ /**

* @module SwarmOrchestrator
* @version 4.0.12
* @version 4.0.13
* @license MIT

@@ -13,0 +13,0 @@ */

+1
-1
dist/lib/mcp-transport-sse.js

@@ -128,3 +128,3 @@ "use strict";

capabilities: { tools: {} },
serverInfo: { name: this.name ?? 'network-ai', version: '4.0.12' },
serverInfo: { name: this.name ?? 'network-ai', version: '4.0.13' },
});

@@ -131,0 +131,0 @@ // Client signals it's ready — notification (no response needed, but

+1
-1
package.json
{
"name": "network-ai",
"version": "4.0.12",
"version": "4.0.13",
"description": "AI agent orchestration framework for TypeScript/Node.js - plug-and-play multi-agent coordination with 12 frameworks (LangChain, AutoGen, CrewAI, OpenAI Assistants, LlamaIndex, Semantic Kernel, Haystack, DSPy, Agno, MCP, OpenClaw). Built-in security, swarm intelligence, and agentic workflow patterns.",

@@ -5,0 +5,0 @@ "homepage": "https://github.com/jovanSAPFIONEER/Network-AI#readme",

+170
-0
QUICKSTART.md

@@ -261,1 +261,171 @@ # Network-AI Quick Start Guide

**Questions?** Open an issue at [github.com/jovanSAPFIONEER/Network-AI](https://github.com/jovanSAPFIONEER/Network-AI)
---
## PowerShell (Windows)
All commands work in PowerShell. The only difference from bash is environment variable syntax.
```powershell
# Set your API key for the current session
$env:OPENAI_API_KEY = "sk-..."
# Or copy the template and fill it in
Copy-Item .env.example .env
# Run examples (no API key needed)
npx ts-node examples/01-hello-swarm.ts
npx ts-node examples/02-fsm-pipeline.ts
npx ts-node examples/03-parallel-agents.ts
# Interactive example launcher
npx ts-node run.ts
# Run tests
npm test
npm run test:all
```
To persist `OPENAI_API_KEY` across sessions, add it to your PowerShell profile or set it via *System Properties → Environment Variables*.
---
## Python Scripts CLI
The Python scripts in `scripts/` implement the local governance layer. All run locally — no network calls.
### Budget (always initialise first)
```bash
python scripts/swarm_guard.py budget-init --task-id "task_001" --budget 10000
python scripts/swarm_guard.py budget-check --task-id "task_001"
python scripts/swarm_guard.py budget-report --task-id "task_001"
```
### Budget-Aware Handoffs
```bash
python scripts/swarm_guard.py intercept-handoff \
--task-id "task_001" \
--from orchestrator \
--to data_analyst \
--message "Analyze Q4 revenue data"
```
### Blackboard
```bash
# Write
python scripts/blackboard.py write "task:analysis" '{"status": "running"}'
# Read
python scripts/blackboard.py read "task:analysis"
# Atomic commit workflow
python scripts/blackboard.py propose "chg_001" "key" '{"value": 1}'
python scripts/blackboard.py validate "chg_001"
python scripts/blackboard.py commit "chg_001"
# List all keys
python scripts/blackboard.py list
```
### Permissions
```bash
# Request permission
python scripts/check_permission.py \
--agent data_analyst \
--resource DATABASE \
--justification "Need customer order history for Q4 report"
# View active grants
python scripts/check_permission.py --active-grants
python scripts/check_permission.py --active-grants --agent data_analyst --json
# Audit summary
python scripts/check_permission.py --audit-summary
python scripts/check_permission.py --audit-summary --last 50 --json
```
### Token Management
```bash
python scripts/revoke_token.py --list-expired
python scripts/revoke_token.py --cleanup
python scripts/validate_token.py --token "grant_85364b44..."
```
---
## Fan-Out / Fan-In Pattern
```typescript
import { LockedBlackboard } from 'network-ai';
const board = new LockedBlackboard('.', logger, { conflictResolution: 'first-commit-wins' });
const pillars = ['reliability', 'security', 'cost', 'operations', 'performance'];
// Fan-out: each agent writes to its own section independently
for (const pillar of pillars) {
const id = board.propose(`eval:${pillar}`, { score: Math.random(), findings: [] }, pillar);
board.validate(id, 'orchestrator');
board.commit(id);
}
// Fan-in: orchestrator reads all results and synthesises
const results = pillars.map(p => ({ pillar: p, ...board.read(`eval:${p}`) }));
const id = board.propose('eval:summary', {
overall: results.reduce((s, r) => s + r.score, 0) / results.length,
pillars: results,
}, 'orchestrator');
board.validate(id, 'orchestrator');
board.commit(id);
```
---
## Configuration
### Modify Trust Levels
Edit `scripts/check_permission.py`:
```python
DEFAULT_TRUST_LEVELS = {
"orchestrator": 0.9,
"my_new_agent": 0.75, # add your agent
}
GRANT_TOKEN_TTL_MINUTES = 5
```
---
## Module Exports
```typescript
// Core classes
import SwarmOrchestrator, {
SharedBlackboard, AuthGuardian, TaskDecomposer,
BlackboardValidator, QualityGateAgent,
} from 'network-ai';
// Factory
import { createSwarmOrchestrator } from 'network-ai';
// All 12 adapters
import {
AdapterRegistry, BaseAdapter,
OpenClawAdapter, LangChainAdapter, AutoGenAdapter,
CrewAIAdapter, MCPAdapter, CustomAdapter,
LlamaIndexAdapter, SemanticKernelAdapter, OpenAIAssistantsAdapter,
HaystackAdapter, DSPyAdapter, AgnoAdapter,
} from 'network-ai';
// Types
import type {
IAgentAdapter, AgentPayload, AgentContext, AgentResult, AgentInfo,
AdapterConfig, TaskPayload, HandoffMessage, PermissionGrant, SwarmState,
ParallelTask, ParallelExecutionResult, SynthesisStrategy,
} from 'network-ai';
```
+119
-1030
README.md

@@ -1,2 +0,2 @@

# Network-AI
# Network-AI

@@ -7,5 +7,5 @@ **TypeScript/Node.js multi-agent orchestrator — shared state, guardrails, budgets, and cross-framework coordination**

[![CodeQL](https://github.com/jovanSAPFIONEER/Network-AI/actions/workflows/codeql.yml/badge.svg)](https://github.com/jovanSAPFIONEER/Network-AI/actions/workflows/codeql.yml)
[![Release](https://img.shields.io/badge/release-v4.0.12-blue.svg)](https://github.com/jovanSAPFIONEER/Network-AI/releases)
[![Release](https://img.shields.io/badge/release-v4.0.13-blue.svg)](https://github.com/jovanSAPFIONEER/Network-AI/releases)
[![npm](https://img.shields.io/npm/dw/network-ai.svg?label=npm%20downloads)](https://www.npmjs.com/package/network-ai)
[![Tests](https://img.shields.io/badge/tests-1216%20passing-brightgreen.svg)](#testing)
[![Tests](https://img.shields.io/badge/tests-1184%20passing-brightgreen.svg)](#testing)
[![Adapters](https://img.shields.io/badge/frameworks-12%20supported-blueviolet.svg)](#adapter-system)

@@ -19,10 +19,15 @@ [![License](https://img.shields.io/badge/license-MIT-brightgreen.svg)](LICENSE)

Network-AI is a TypeScript/Node.js multi-agent orchestrator for teams that need shared state, guardrails, budgets, and cross-framework coordination.
Network-AI is a TypeScript/Node.js multi-agent orchestrator that adds coordination, guardrails, and governance to any AI agent stack.
- **Shared blackboard with locking** — atomic commits prevent race conditions and split-brain failures across parallel agents
- **Shared blackboard with locking** — atomic `propose → validate → commit` prevents race conditions and split-brain failures across parallel agents
- **Guardrails and budgets** — FSM governance, per-agent token ceilings, HMAC audit trails, and permission gating
- **12 framework adapters** — LangChain, AutoGen, CrewAI, OpenAI Assistants, LlamaIndex, Semantic Kernel, and more in one orchestrator — no glue code, no lock-in
If network-ai saves you time, a ⭐ helps others find it.  |  [**60-second quickstart →**](#hello-world----get-running-in-60-seconds)  |  [**Architecture →**](#architecture)  |  [**All adapters →**](#adapter-system)
**Use Network-AI as:**
- A **TypeScript/Node.js library** — `import { createSwarmOrchestrator } from 'network-ai'`
- An **MCP server** — `npx network-ai-server --port 3001`
- An **OpenClaw skill** — `clawhub install network-ai`
[**5-minute quickstart →**](QUICKSTART.md)  |  [**Architecture →**](ARCHITECTURE.md)  |  [**All adapters →**](#adapter-system)  |  [**Benchmarks →**](BENCHMARKS.md)
---

@@ -40,4 +45,2 @@

> Validated by **1,216 passing tests** across 9 test suites — [see testing section](#testing)
---

@@ -73,1089 +76,175 @@

## Hello World -- Get Running in 60 Seconds
→ [Full architecture, FSM journey, and handoff protocol](ARCHITECTURE.md)
```typescript
import { createSwarmOrchestrator, CustomAdapter } from 'network-ai';
// 1. Create an adapter and register your agent
const adapter = new CustomAdapter();
adapter.registerHandler('greeter', async (payload) => {
return { result: `Hello, ${payload.params.name}! Your task: ${payload.action}` };
});
// 2. Create the orchestrator
const orchestrator = createSwarmOrchestrator({
adapters: [{ adapter }],
});
// 3. Use the blackboard to coordinate
orchestrator.blackboard.write('status', { ready: true }, 'greeter');
// 4. Execute your agent through the adapter
const result = await adapter.executeAgent('greeter', {
action: 'welcome',
params: { name: 'World' },
}, { agentId: 'greeter' });
console.log(result.data); // "Hello, World! Your task: welcome"
```
That's it. No config files, no setup wizards. Add more agents, swap frameworks, layer on security -- all optional.
## Demos
### One command to run everything
```bash
npm run demo
```
Interactive menu or use flags directly:
```bash
npm run demo -- --07 # Full AI showcase (OPENAI_API_KEY required)
npm run demo -- --08 # Control-plane stress demo (no API key)
npm run demo -- --both # Both sequentially
npm run demo -- --both --silent-summary # Both, highlights only
```
---
### Demo 07 — Full AI Showcase *(requires `OPENAI_API_KEY`)*
## Install
8-agent pipeline that builds a Payment Processing Service from scratch with full governance:
- **FSM state machine** — each agent phase is gated by `JourneyFSM` state transitions
- **AuthGuardian tokens** — scoped HMAC-signed tokens required at every gate
- **FederatedBudget** — per-agent token ceilings, hard cut-off on overspend
- **QualityGateAgent** — AI-assisted security scan + content safety on generated code
- **Fixer + debugger agents** — two-pass automated remediation loop
- **Deterministic 10/10 scoring** — 8 objective gates, no LLM score parsing
- **Cryptographic audit trail** — every write signed to `data/audit_log.jsonl`
```bash
npm run demo -- --07
npm install network-ai
```
---
No native dependencies, no build step. Adapters are dependency-free (BYOC — bring your own client).
### Demo 08 — Control-Plane Stress Demo *(no API key)*
No LLM calls. Runs in ~2 seconds. Shows the synchronization and governance primitives under load:
- **`LockedBlackboard`** — atomic `propose → validate → commit` workflow with file-system mutex
- **Priority preemption** — high-priority (3) write overwrites low-priority (0) write on same key
- **FSM timeout** — state times out after 700 ms, FSM hard-stops
- **Live compliance violations** — TOOL_ABUSE (6 rapid writes), TURN_TAKING (5 consecutive actions), RESPONSE_TIMEOUT (1.2 s sleep), JOURNEY_TIMEOUT — all captured by `ComplianceMonitor`
- **`FederatedBudget`** — per-agent ceilings tracked without any AI backend
```bash
npm run demo -- --08
```
---
### Demo 05 — Code Review Swarm *(requires `OPENAI_API_KEY`)*
## Two agents, one shared state — without race conditions
[![Code Review Swarm Demo](https://img.youtube.com/vi/UyMsNhaw9lU/0.jpg)](https://youtu.be/UyMsNhaw9lU)
The real differentiator is coordination. Here is what no single-framework solution handles: two agents writing to the same resource concurrently, atomically, without corrupting each other.
*5-agent code review swarm — parallel specialist agents coordinated through a shared blackboard*
> The demo shows a code review swarm, but Network-AI is not a code review tool. The same orchestration pattern works for research pipelines, data processing, content moderation, customer support routing, document analysis, financial workflows — any task where multiple agents need to coordinate without stepping on each other.
```bash
npm run demo -- --07 # or run directly:
npx ts-node examples/05-code-review-swarm.ts
```
Supports 4 modes: built-in code review, paste your own code, system design document, or custom role for any content type. Examples `01`–`03` run without any API key. `04-live-swarm.ts` runs a 10-agent live AI research swarm (3 parallel analyst waves + synthesizer).
## Why This Exists -- The Multi-Agent Race Condition Problem
Most agent frameworks let you run multiple AI agents in parallel. None of them protect you when those agents write to the same resource at the same time.
**The "Bank Run" scenario:**
```
Agent A reads balance: $10,000
Agent B reads balance: $10,000 (same moment)
Agent A writes balance: $10,000 - $7,000 = $3,000
Agent B writes balance: $10,000 - $6,000 = $4,000 <-- Agent A's write is gone
```
Both agents thought they had $10,000. Both spent from it. You just lost $3,000 to a race condition. This isn't theoretical -- it happens any time two LLM agents hit a shared database, file, or API concurrently.
**This is a split-brain problem.** Without concurrency control, your agents will:
- **Corrupt shared state** -- Two agents overwrite each other's blackboard entries
- **Double-spend budgets** -- Token costs exceed limits because agents don't see each other's spending
- **Produce contradictory outputs** -- Agent A says "approved", Agent B says "denied", both write to the same key
**How Network-AI prevents this:**
```typescript
// Atomic commit -- no other agent can read or write "account:balance" during this operation
const blackboard = new LockedBlackboard('.');
const changeId = blackboard.proposeChange('account:balance', { amount: 7000, type: 'debit' }, 'agent-a');
blackboard.validateChange(changeId); // Checks for conflicts
blackboard.commitChange(changeId); // Atomic write with file-system mutex
import { LockedBlackboard, CustomAdapter, createSwarmOrchestrator } from 'network-ai';
// Budget tracking -- hard ceiling on token spend
// Even if 5 agents run in parallel, total spend cannot exceed the budget
python scripts/swarm_guard.py budget-init --task-id "task_001" --budget 10000
```
const board = new LockedBlackboard('.');
const adapter = new CustomAdapter();
Network-AI wraps your agent swarm with **file-system mutexes**, **atomic commits**, and **token budget ceilings** so race conditions, double-spends, and split-brain writes are prevented — validated by [1,216 passing tests](#testing) across 9 test suites. This works with any framework — LangChain, CrewAI, AutoGen, or anything else connected through the adapter system.
### Why not just use LangGraph / CrewAI / AutoGen alone?
| Problem | LangGraph | CrewAI | AutoGen | Network-AI |
|---|---|---|---|---|
| Two agents write the same key simultaneously | ❌ Last write wins silently | ❌ Last write wins silently | ❌ Last write wins silently | ✅ Atomic mutex + conflict resolution |
| Budget overrun across parallel agents | ⚠️ Callbacks only | ❌ None | ❌ None | ✅ Hard ceiling per agent + task |
| Cross-framework agents in one swarm | ❌ LangChain only | ❌ CrewAI only | ❌ AutoGen only | ✅ 12 frameworks via adapters |
| Tamper-evident audit trail | ❌ None | ❌ None | ❌ None | ✅ HMAC-signed log |
| Permission gating per API | ❌ None | ❌ None | ❌ None | ✅ AuthGuardian |
> **Use Network-AI as the coordination layer on top of your existing framework** — keep your LangChain chains, CrewAI crews, and AutoGen agents, and add shared state + governance around them.
## Features
### Core Orchestration (Multi-Agent Coordination)
- **Agent-to-Agent Handoffs** -- Delegate tasks between sessions using OpenClaw's `sessions_send`
- **Permission Wall (AuthGuardian)** -- Gate access to sensitive APIs with justification-based approval
- **Shared Blackboard** -- Markdown-based coordination state for agent communication
- **Parallel Execution Patterns** -- Merge, vote, chain, and first-success synthesis strategies
- **Task Decomposition** -- Automatic breaking of complex tasks into parallel subtasks
### Plug-and-Play Adapter System (v3.0) -- 12 AI Agent Frameworks
- **AdapterRegistry** -- Route agents to the right framework automatically
- **OpenClaw Adapter** -- Native OpenClaw skill execution via `callSkill`
- **LangChain Adapter** -- Supports Runnables (`.invoke()`) and plain functions
- **AutoGen Adapter** -- Supports `.run()` and `.generateReply()` agents
- **CrewAI Adapter** -- Individual agents and full crew orchestration
- **MCP Adapter** -- Model Context Protocol tool handlers
- **LlamaIndex Adapter** -- Query engines, chat engines, and agent runners
- **Semantic Kernel Adapter** -- Microsoft SK kernels, functions, and planners
- **OpenAI Assistants Adapter** -- Assistants API with thread management
- **Haystack Adapter** -- Pipelines, agents, and components
- **DSPy Adapter** -- Modules, programs, and predictors
- **Agno Adapter** -- Agents, teams, and functions (formerly Phidata)
- **Custom Adapter** -- Register any function or HTTP endpoint as an agent
- **BaseAdapter** -- Extend to write your own adapter in minutes
### Content Quality Gate (AI Safety)
- **BlackboardValidator (Layer 1)** -- Rule-based validation (see benchmarks below)
- **QualityGateAgent (Layer 2)** -- AI-assisted review with quarantine system
- **Hallucination Detection** -- Catches vague, unsupported, or fabricated content
- **Dangerous Code Detection** -- Blocks `eval()`, `exec()`, `rm -rf`, and other risky patterns
- **Placeholder Rejection** -- Rejects TODO/FIXME/stub content from entering the blackboard
**BlackboardValidator throughput** (measured on Node.js 20, Apple M2, single-thread):
| Input size | Ops/sec | Latency |
|---|---|---|
| Small entry (~100 chars) | ~1,000,000 | < 1 µs |
| Medium entry (~1 KB) | ~500,000 | ~2 µs |
| Large entry (~10 KB) | ~159,000 | ~6 µs |
Layer 2 (QualityGateAgent) adds LLM latency and is async — intended for high-value writes, not every write.
### Security Module (Defense-in-Depth)
- **HMAC-Signed Tokens** -- Cryptographic token generation with expiration
- **Input Sanitization** -- XSS, injection, path traversal, and prototype pollution prevention
- **Blackboard Path Safety** -- Change ID sanitization prevents directory traversal in atomic commits
- **Rate Limiting** -- Per-agent request throttling with lockout on failed auth
- **AES-256-GCM Encryption** -- Encrypt sensitive blackboard entries at rest
- **Privilege Escalation Prevention** -- Trust-ceiling enforcement
- **Cryptographic Audit Logs** -- Tamper-evident signed audit trail with chain continuation
- **Secure Gateway** -- Integrated security layer wrapping all operations
### Operational Safety & Governance
- **Swarm Guard** -- Prevents "Handoff Tax" (wasted tokens) and detects silent agent failures
- **Atomic Commits** -- File-system mutexes prevent split-brain in concurrent writes
- **Priority-Based Preemption** -- Higher-priority agents preempt lower-priority writes on same-key conflicts (`priority-wins` strategy)
- **Cost Awareness** -- Token budget tracking with automatic SafetyShutdown
- **Budget-Aware Handoffs** -- `intercept-handoff` command wraps `sessions_send` with budget checks
- **`--active-grants` Observability** -- Real-time view of which agents hold access to which APIs, with TTL countdown
- **`--audit-summary` Observability** -- Per-agent and per-resource breakdown of permission requests, grants, and denials
- **Justification Hardening** -- 16-pattern prompt-injection detector, keyword-stuffing defense, structural coherence scoring
## Project Structure
```
Network-AI/
|-- index.ts # Core orchestrator (SwarmOrchestrator, SharedBlackboard, AuthGuardian, TaskDecomposer)
|-- security.ts # Security module (tokens, encryption, rate limiting, audit)
|-- setup.ts # Developer setup & installation checker
|-- package.json # NPM manifest & scripts
|-- tsconfig.json # TypeScript configuration
|-- skill.json # OpenClaw skill metadata
|-- SKILL.md # OpenClaw skill definition (frontmatter + instructions)
|-- QUICKSTART.md # 5-minute getting-started guide
|-- requirements.txt # Python dependencies
|-- swarm-blackboard.md # Runtime blackboard state (auto-generated)
|-- adapters/ # Plug-and-play agent framework adapters (12 frameworks)
| |-- index.ts # Barrel exports for all adapters
| |-- base-adapter.ts # Abstract base class for adapters
| |-- adapter-registry.ts # Multi-adapter routing & discovery
| |-- openclaw-adapter.ts # OpenClaw skill adapter
| |-- langchain-adapter.ts # LangChain adapter (Runnables & functions)
| |-- autogen-adapter.ts # AutoGen adapter (.run() & .generateReply())
| |-- crewai-adapter.ts # CrewAI adapter (agents & crews)
| |-- mcp-adapter.ts # MCP tool handler adapter
| |-- custom-adapter.ts # Custom function/HTTP agent adapter
| |-- llamaindex-adapter.ts # LlamaIndex adapter (query/chat engines, agent runners)
| |-- semantic-kernel-adapter.ts # Microsoft Semantic Kernel adapter
| |-- openai-assistants-adapter.ts # OpenAI Assistants API adapter
| |-- haystack-adapter.ts # deepset Haystack adapter (pipelines, agents)
| |-- dspy-adapter.ts # Stanford DSPy adapter (modules, programs)
| |-- agno-adapter.ts # Agno adapter (agents, teams -- formerly Phidata)
|-- types/ # TypeScript type definitions
| |-- agent-adapter.d.ts # Universal adapter interfaces (IAgentAdapter, AgentPayload, etc.)
| |-- openclaw-core.d.ts # OpenClaw-specific type stubs
|-- lib/ # TypeScript utilities
| |-- swarm-utils.ts # Node.js helper functions
| |-- locked-blackboard.ts # Atomic commits with file-system mutexes
| |-- blackboard-validator.ts # Content quality gate (BlackboardValidator + QualityGateAgent)
|-- scripts/ # Python helper scripts
| |-- check_permission.py # AuthGuardian permission checker
| |-- validate_token.py # Token validation
| |-- revoke_token.py # Token revocation
| |-- blackboard.py # Shared state management (with atomic commits)
| |-- swarm_guard.py # Handoff tax, failure prevention, & budget tracking
|-- references/ # Detailed documentation
| |-- adapter-system.md # Adapter architecture & writing custom adapters
| |-- auth-guardian.md # Permission system details
| |-- blackboard-schema.md # Data structures
| |-- trust-levels.md # Agent trust configuration
| |-- mcp-roadmap.md # MCP networking implementation plan
|-- test-standalone.ts # Core orchestrator tests (79 tests)
|-- test-security.ts # Security module tests (33 tests)
|-- test-adapters.ts # Adapter system tests (139 tests)
|-- test-priority.ts # Priority & preemption tests (64 tests)
|-- test-phase4.ts # Phase 4 FSM/compliance/adapter tests (147 tests)
|-- test-phase5.ts # Phase 5 Named Multi-Blackboard tests (35 tests)
|-- test-phase5b.ts # Phase 5 Part 2 Pluggable Backend tests (55 tests)
|-- test-ai-quality.ts # AI quality gate demo
|-- test.ts # Full integration test suite
```
## Quick Start
See [QUICKSTART.md](QUICKSTART.md) for a 5-minute getting-started guide.
## Installation
### As a Dependency (recommended)
```bash
npm install network-ai
```
That's it. No native dependencies, no build step.
> **One package, two entry points:**
> - `import { createSwarmOrchestrator } from 'network-ai'` — TypeScript/Node.js orchestration API
> - `npx network-ai-server --port 3001` — MCP server binary (bundled in the same package)
### For Development (contributing / running tests)
```bash
git clone https://github.com/jovanSAPFIONEER/Network-AI
cd Network-AI
npm install # TypeScript dev dependencies
pip install -r requirements.txt # Optional: mypy, pytest, filelock for Python script development
```
### Verify Development Setup
```bash
npm run setup:check # Check all files and dependencies
npm run setup -- --list # List all 12 available adapters
npm run setup:example # Generate a starter example.ts
```
### Running in PowerShell (Windows)
All commands work in PowerShell. The only difference from bash is how you set environment variables.
**Set your API key for the current session:**
```powershell
$env:OPENAI_API_KEY = "sk-..."
```
**Or load it from `.env` automatically** — copy the template first:
```powershell
Copy-Item .env.example .env # then open .env and fill in your key
```
**Run the examples (no API key needed):**
```powershell
npx ts-node examples/01-hello-swarm.ts
npx ts-node examples/02-fsm-pipeline.ts
npx ts-node examples/03-parallel-agents.ts
```
**Run the interactive launcher** (picks which example to run):
```powershell
npx ts-node run.ts
```
**Run the AI code review swarm demo** (requires `OPENAI_API_KEY`):
```powershell
$env:OPENAI_API_KEY = "sk-..."
npx ts-node examples/05-code-review-swarm.ts
```
**Run the tests:**
```powershell
npm test # Core orchestrator (79 tests)
npm run test:security # Security module (33 tests)
npm run test:adapters # Adapter system (139 tests)
npm run test:priority # Priority & preemption (64 tests)
npm run test:phase4 # Phase 4 FSM/compliance/adapter (147 tests)
npm run test:phase5 # Phase 5 Named Multi-Blackboard (35 tests)
npm run test:phase5b # Phase 5 Part 2 Pluggable Backend (55 tests)
npm run test:all # All suites in sequence
```
> **Tip:** To persist `OPENAI_API_KEY` across sessions, add it to your PowerShell profile or set it as a user environment variable via *System Properties → Environment Variables*.
### For OpenClaw Users
Copy this skill into your OpenClaw workspace:
```bash
cp -r Network-AI ~/.openclaw/workspace/skills/swarm-orchestrator
```
Or install via ClawHub:
```bash
clawhub install network-ai
```
## Usage
### TypeScript / Node.js API
#### Basic Setup
```typescript
import {
SwarmOrchestrator,
SharedBlackboard,
AuthGuardian,
createSwarmOrchestrator,
} from 'network-ai';
// Quick start with defaults
const orchestrator = createSwarmOrchestrator();
```
#### Using Adapters (Plug-and-Play)
```typescript
import {
createSwarmOrchestrator,
AdapterRegistry,
CustomAdapter,
LangChainAdapter,
} from 'network-ai';
// Create adapters
const custom = new CustomAdapter();
custom.registerHandler('my-agent', async (payload) => {
return { result: 'done' };
// Agent 1: writes its analysis result atomically
adapter.registerHandler('analyst', async () => {
const id = board.propose('report:status', { phase: 'analysis', complete: true }, 'analyst');
board.validate(id, 'analyst');
board.commit(id); // file-system mutex — no race condition possible
return { result: 'analysis written' };
});
const langchain = new LangChainAdapter();
langchain.registerRunnable('researcher', myLangChainRunnable);
// Create orchestrator with adapters
const orchestrator = createSwarmOrchestrator({
adapters: [
{ adapter: custom },
{ adapter: langchain },
],
// Agent 2: runs concurrently, writes to its own key safely
adapter.registerHandler('reviewer', async () => {
const id = board.propose('report:review', { approved: true }, 'reviewer');
board.validate(id, 'reviewer');
board.commit(id);
const analysis = board.read('report:status');
return { result: `reviewed phase=${analysis?.phase}` };
});
```
#### Blackboard & Permissions
createSwarmOrchestrator({ adapters: [{ adapter }] });
```typescript
const blackboard = new SharedBlackboard('.');
blackboard.write('task:analysis', { status: 'running' }, 'orchestrator');
const data = blackboard.read('task:analysis');
// Both fire concurrently — mutex guarantees no write is ever lost
const [, ] = await Promise.all([
adapter.executeAgent('analyst', { action: 'run', params: {} }, { agentId: 'analyst' }),
adapter.executeAgent('reviewer', { action: 'run', params: {} }, { agentId: 'reviewer' }),
]);
const auth = new AuthGuardian();
const grant = auth.requestPermission('data_analyst', 'DATABASE', 'read',
'Need customer order history for sales report');
console.log(board.read('report:status')); // { phase: 'analysis', complete: true }
console.log(board.read('report:review')); // { approved: true }
```
### Python Scripts
Add budgets, permissions, and cross-framework agents with the same pattern. → [QUICKSTART.md](QUICKSTART.md)
#### 1. Initialize Budget (First!)
---
```bash
python scripts/swarm_guard.py budget-init --task-id "task_001" --budget 10000
```
## Demo — Control-Plane Stress Test *(no API key)*
#### 2. Budget-Aware Handoffs
Runs in ~2 seconds. Proves the coordination primitives without any LLM calls.
```bash
python scripts/swarm_guard.py intercept-handoff \
--task-id "task_001" \
--from orchestrator \
--to data_analyst \
--message "Analyze Q4 revenue data"
npm run demo -- --08
```
Output (if allowed):
```
HANDOFF ALLOWED: orchestrator -> data_analyst
Tokens spent: 156
Budget remaining: 9,844
Handoff #1 (remaining: 2)
-> Proceed with sessions_send
```
What it shows: atomic blackboard locking, priority preemption (priority-3 wins over priority-0 on same key), FSM hard-stop at 700 ms, live compliance violation capture (TOOL_ABUSE, TURN_TAKING, RESPONSE_TIMEOUT, JOURNEY_TIMEOUT), and `FederatedBudget` tracking — all without a single API call.
#### 3. Check Permissions
**8-agent AI pipeline** (requires `OPENAI_API_KEY` — builds a Payment Processing Service end-to-end):
```bash
python scripts/check_permission.py \
--agent data_analyst \
--resource DATABASE \
--justification "Need customer order history for sales report"
npm run demo -- --07
```
Output:
```
GRANTED
Token: grant_85364b44d987...
Expires: 2026-02-04T15:30:00Z
Restrictions: read_only, max_records:100
```
[![Code Review Swarm Demo](https://img.youtube.com/vi/UyMsNhaw9lU/0.jpg)](https://youtu.be/UyMsNhaw9lU)
#### 3a. View Active Grants
---
See which agents currently hold access to which APIs:
```bash
# Human-readable
python scripts/check_permission.py --active-grants
# Filter by agent
python scripts/check_permission.py --active-grants --agent data_analyst
# Machine-readable JSON
python scripts/check_permission.py --active-grants --json
```
Output:
```
Active Grants:
======================================================================
Agent: data_analyst
Resource: DATABASE
Scope: read:orders
Token: grant_c1ea828897...
Remaining: 4.4 min
Restrictions: read_only, max_records:100
------------------------------------------------------------------
Total: 1 active, 0 expired
```
#### 3b. Audit Summary
Summarize permission activity across all agents:
```bash
# Human-readable
python scripts/check_permission.py --audit-summary
# Last 50 entries, JSON output
python scripts/check_permission.py --audit-summary --last 50 --json
```
Output:
```
Audit Summary
======================================================================
Requests: 12
Grants: 9
Denials: 3
Grant Rate: 75%
By Agent:
--------------------------------------------------
Agent Requests Grants Denials
data_analyst 4 3 1
orchestrator 5 4 1
strategy_advisor 3 2 1
```
#### 4. Use the Blackboard
```bash
# Write
python scripts/blackboard.py write "task:analysis" '{"status": "running"}'
# Read
python scripts/blackboard.py read "task:analysis"
# Atomic commit workflow (for multi-agent safety)
python scripts/blackboard.py propose "chg_001" "key" '{"value": 1}'
python scripts/blackboard.py validate "chg_001"
python scripts/blackboard.py commit "chg_001"
# List all keys
python scripts/blackboard.py list
```
#### 5. Fan-Out / Fan-In with Shared Blackboard
Coordinate multiple specialized agents working on independent subtasks, then merge results:
```typescript
import { LockedBlackboard } from 'network-ai';
import { Logger } from 'network-ai';
const logger = Logger.create('fan-out');
const board = new LockedBlackboard('.', logger, { conflictResolution: 'first-commit-wins' });
// Fan-out: each agent writes to its own section
const agents = ['reliability', 'security', 'cost', 'operations', 'performance'];
for (const pillar of agents) {
// Each agent evaluates independently, writes to its own key
const id = board.propose(`eval:${pillar}`, { score: Math.random(), findings: [] }, pillar);
board.validate(id, 'orchestrator');
board.commit(id);
}
// Fan-in: orchestrator reads all results and merges
const results = agents.map(pillar => ({
pillar,
...board.read(`eval:${pillar}`)
}));
const summary = board.propose('eval:summary', {
overall: results.reduce((sum, r) => sum + r.score, 0) / results.length,
pillars: results
}, 'orchestrator');
board.validate(summary, 'orchestrator');
board.commit(summary);
```
This pattern works with any framework adapter -- LangChain agents, AutoGen agents, CrewAI crews, or any mix. The blackboard ensures no agent overwrites another's results.
#### 6. Priority-Based Conflict Resolution (Phase 3)
```typescript
import { LockedBlackboard } from 'network-ai';
// Enable priority-wins strategy
const board = new LockedBlackboard('.', { conflictResolution: 'priority-wins' });
// Low-priority worker proposes a change
const lowId = board.propose('shared:config', { mode: 'draft' }, 'worker', undefined, 1);
// High-priority supervisor proposes to same key
const highId = board.propose('shared:config', { mode: 'final' }, 'supervisor', undefined, 3);
// Worker commits first
board.validate(lowId, 'orchestrator');
board.commit(lowId);
// Supervisor validates -- higher priority wins despite stale hash
board.validate(highId, 'orchestrator'); // true (preempts worker's value)
board.commit(highId); // success
board.read('shared:config'); // { mode: 'final' } -- supervisor wins
```
#### 7. Check Budget Status
```bash
python scripts/swarm_guard.py budget-check --task-id "task_001"
python scripts/swarm_guard.py budget-report --task-id "task_001"
```
## Adapter System
The adapter system lets you plug any agent framework into the orchestrator. Each adapter implements the `IAgentAdapter` interface.
12 frameworks, zero adapter dependencies. You bring your own SDK objects.
| Adapter | Framework | Agent Registration | Dependencies |
|---------|-----------|-------------------|-------------|
| `OpenClawAdapter` | OpenClaw | `registerSkill(name, skillRef)` | openclaw-core |
| `LangChainAdapter` | LangChain | `registerRunnable(name, runnable)` or `registerFunction(name, fn)` | None (BYOC) |
| `AutoGenAdapter` | AutoGen | `registerAgent(name, agent)` -- supports `.run()` and `.generateReply()` | None (BYOC) |
| `CrewAIAdapter` | CrewAI | `registerAgent(name, agent)` or `registerCrew(name, crew)` | None (BYOC) |
| `MCPAdapter` | MCP | `registerTool(name, handler)` | None (BYOC) |
| `LlamaIndexAdapter` | LlamaIndex | `registerQueryEngine()`, `registerChatEngine()`, `registerAgentRunner()` | None (BYOC) |
| `SemanticKernelAdapter` | Semantic Kernel | `registerKernel()`, `registerFunction()` | None (BYOC) |
| `OpenAIAssistantsAdapter` | OpenAI Assistants | `registerAssistant(name, config)` | None (BYOC) |
| `HaystackAdapter` | Haystack | `registerPipeline()`, `registerAgent()`, `registerComponent()` | None (BYOC) |
| `DSPyAdapter` | DSPy | `registerModule()`, `registerProgram()`, `registerPredictor()` | None (BYOC) |
| `AgnoAdapter` | Agno | `registerAgent()`, `registerTeam()`, `registerFunction()` | None (BYOC) |
| `CustomAdapter` | Any | `registerHandler(name, fn)` or `registerHttpAgent(name, config)` | None |
| Adapter | Framework | Register method |
|---|---|---|
| `CustomAdapter` | Any function or HTTP endpoint | `registerHandler(name, fn)` |
| `LangChainAdapter` | LangChain | `registerRunnable(name, runnable)` |
| `AutoGenAdapter` | AutoGen / AG2 | `registerAgent(name, agent)` |
| `CrewAIAdapter` | CrewAI | `registerAgent` or `registerCrew` |
| `MCPAdapter` | Model Context Protocol | `registerTool(name, handler)` |
| `LlamaIndexAdapter` | LlamaIndex | `registerQueryEngine()`, `registerChatEngine()` |
| `SemanticKernelAdapter` | Microsoft Semantic Kernel | `registerKernel()`, `registerFunction()` |
| `OpenAIAssistantsAdapter` | OpenAI Assistants | `registerAssistant(name, config)` |
| `HaystackAdapter` | deepset Haystack | `registerPipeline()`, `registerAgent()` |
| `DSPyAdapter` | Stanford DSPy | `registerModule()`, `registerProgram()` |
| `AgnoAdapter` | Agno (formerly Phidata) | `registerAgent()`, `registerTeam()` |
| `OpenClawAdapter` | OpenClaw | `registerSkill(name, skillRef)` |
> **BYOC** = Bring Your Own Client. All adapters (except OpenClaw) are self-contained with zero npm dependencies. You provide your framework's SDK objects and the adapter wraps them.
Extend `BaseAdapter` to add your own in minutes. See [references/adapter-system.md](references/adapter-system.md).
### Writing a Custom Adapter
---
Extend `BaseAdapter`:
## Works with LangGraph, CrewAI, and AutoGen
```typescript
import { BaseAdapter } from 'network-ai';
import type { AgentPayload, AgentResult } from 'network-ai';
> Network-AI is the coordination layer you add **on top of** your existing stack. Keep your LangChain chains, CrewAI crews, and AutoGen agents — and add shared state, governance, and budgets around them.
class MyAdapter extends BaseAdapter {
readonly name = 'my-framework';
| Capability | Network-AI | LangGraph | CrewAI | AutoGen |
|---|---|---|---|---|
| Cross-framework agents in one swarm | ✅ 12 adapters | ❌ LangChain only | ❌ CrewAI only | ❌ AutoGen only |
| Atomic shared state (conflict-safe) | ✅ `propose → validate → commit` | ⚠️ Last-write-wins | ⚠️ Last-write-wins | ⚠️ Last-write-wins |
| Hard budget ceiling per agent | ✅ `FederatedBudget` | ⚠️ Callbacks only | ❌ | ❌ |
| Permission gating before sensitive ops | ✅ `AuthGuardian` | ❌ | ❌ | ❌ |
| Tamper-evident audit trail | ✅ HMAC-signed | ❌ | ❌ | ❌ |
| Encryption at rest | ✅ AES-256-GCM | ❌ | ❌ | ❌ |
| Language | TypeScript / Node.js | Python | Python | Python |
async executeAgent(agentId: string, payload: AgentPayload): Promise<AgentResult> {
// Your framework-specific logic here
return { success: true, output: 'result', metadata: { adapter: this.name } };
}
---
async listAgents() { return []; }
async isAgentAvailable(id: string) { return true; }
}
```
See [references/adapter-system.md](references/adapter-system.md) for the full adapter architecture guide.
## API Architecture & Performance
**Your swarm is only as fast as the backend it calls into.**
Network-AI is backend-agnostic — every agent in a swarm can call a cloud API, a different cloud API, or a local GPU model. That choice has a direct and significant impact on speed, parallelism, and reliability.
### Why It Matters
When you run a 5-agent swarm, Network-AI can dispatch all 5 calls simultaneously. Whether those calls actually execute in parallel depends entirely on what's behind each agent:
| Backend | Parallelism | Typical 5-agent swarm | Notes |
|---|---|---|---|
| **Single cloud API key** (OpenAI, Anthropic, etc.) | Rate-limited | 40–70s sequential | RPM limits force sequential dispatch + retry waits |
| **Multiple API keys / providers** | True parallel | 8–15s | Each agent hits a different key or provider |
| **Local GPU** (Ollama, llama.cpp, vLLM) | True parallel | 5–20s depending on hardware | No RPM limit — all 5 agents fire simultaneously |
| **Mixed** (some cloud, some local) | Partial | Varies | Local agents never block; cloud agents rate-paced |
### The Single-Key Rate Limit Problem
Cloud APIs enforce **Requests Per Minute (RPM)** limits per API key. When you run 5 agents sharing one key and hit the ceiling, the API silently returns empty responses — not a 429 error, just blank content. Network-AI's swarm demos handle this automatically with **sequential dispatch** (one agent at a time) and **adaptive header-based pacing** that reads the `x-ratelimit-reset-requests` header to wait exactly as long as needed before the next call.
```
Single key (gpt-5.2, 6 RPM limit):
Agent 1 ──call──▶ response (7s)
wait 1s
Agent 2 ──call──▶ response (7s)
wait 1s
... (sequential)
Total: ~60s for 5 agents + coordinator
```
### Multiple Keys or Providers = True Parallel
Register each reviewer agent against a different API key or provider and dispatch fires all 5 simultaneously:
```typescript
import { CustomAdapter, AdapterRegistry } from 'network-ai';
// Each agent points to a different OpenAI key
const registry = new AdapterRegistry();
for (const reviewer of REVIEWERS) {
const adapter = new CustomAdapter();
const client = new OpenAI({ apiKey: process.env[`OPENAI_KEY_${reviewer.id.toUpperCase()}`] });
adapter.registerHandler(reviewer.id, async (payload) => {
const resp = await client.chat.completions.create({ ... });
return { findings: extractContent(resp) };
});
registry.register(reviewer.id, adapter);
}
// Now all 5 dispatch in parallel via Promise.all
// Total: ~8-12s instead of ~60s
```
### Local GPU = Zero Rate Limits
Run Ollama or any OpenAI-compatible local server and drop it in as a backend. No RPM ceiling means every agent fires the moment the previous one starts — true parallel for free:
```typescript
// Point any agent at a local Ollama or vLLM server
const localClient = new OpenAI({
apiKey : 'not-needed',
baseURL : 'http://localhost:11434/v1',
});
adapter.registerHandler('sec_review', async (payload) => {
const resp = await localClient.chat.completions.create({
model : 'llama3.2', // or mistral, deepseek-r1, codellama, etc.
messages: [...],
});
return { findings: extractContent(resp) };
});
```
### Mixing Cloud and Local
The adapter system makes it trivial to give some agents a cloud backend and others a local one:
```typescript
// Fast local model for lightweight reviewers
registry.register('test_review', localAdapter);
registry.register('arch_review', localAdapter);
// Cloud model for high-stakes reviewers
registry.register('sec_review', cloudAdapter); // GPT-4o / Claude
```
Network-AI's orchestrator, blackboard, and trust model stay identical regardless of what's behind each adapter. The only thing that changes is speed.
### Summary
| You have | What to expect |
|---|---|
| One cloud API key | Sequential dispatch, 40–70s per 5-agent swarm — fully handled automatically |
| Multiple cloud keys | Near-parallel, 10–15s — use one key per adapter instance |
| Local GPU (Ollama, vLLM) | True parallel, 5–20s depending on hardware |
| Home GPU + cloud mix | Local agents never block — cloud agents rate-paced independently |
The framework doesn't get in the way of any of these setups. Connect whatever backend you have and the orchestration layer handles the rest.
### Cloud Provider Performance
Not all cloud APIs perform the same. Model size, inference infrastructure, and tier all affect how fast each agent gets a response — and that directly multiplies across every agent in your swarm.
| Provider / Model | Avg response (5-agent swarm) | RPM limit (free/tier-1) | Notes |
|---|---|---|---|
| **OpenAI gpt-5.2** | 6–10s per call | 3–6 RPM | Flagship model, high latency, strict RPM |
| **OpenAI gpt-4o-mini** | 2–4s per call | 500 RPM | Fast, cheap, good for reviewer agents |
| **OpenAI gpt-4o** | 4–7s per call | 60–500 RPM | Balanced quality/speed |
| **Anthropic Claude 3.5 Haiku** | 2–3s per call | 50 RPM | Fastest Claude, great for parallel agents |
| **Anthropic Claude 3.7 Sonnet** | 4–8s per call | 50 RPM | Stronger reasoning, higher latency |
| **Google Gemini 2.0 Flash** | 1–3s per call | 15 RPM (free) | Very fast inference, low RPM on free tier |
| **Groq (Llama 3.3 70B)** | 0.5–2s per call | 30 RPM | Fastest cloud inference available |
| **Together AI / Fireworks** | 1–3s per call | Varies by plan | Good for parallel workloads, competitive RPM |
**Key insight:** A 5-agent swarm using `gpt-4o-mini` at 500 RPM can fire all 5 agents truly in parallel and finish in ~4s total. The same swarm on `gpt-5.2` at 6 RPM must go sequential and takes 60s. **The model tier matters more than the orchestration framework.**
#### Choosing a Model for Swarm Agents
- **Speed over depth** (many agents, real-time feedback) → `gpt-4o-mini`, `gpt-5-mini`, `claude-3.5-haiku`, `gemini-2.0-flash`, `groq/llama-3.3-70b`
- **Depth over speed** (fewer agents, high-stakes output) → `gpt-4o`, `claude-3.7-sonnet`, `gpt-5.2`
- **Free / no-cost testing** → Groq free tier, Gemini free tier, or Ollama locally
- **Production swarms with budget** → Multiple keys across providers, route different agents to different models
All of these plug into Network-AI through the `CustomAdapter` by swapping the client's `baseURL` and `model` string — no other code changes needed.
### `max_completion_tokens` — The Silent Truncation Trap
One of the most common failure modes in agentic output tasks is **silent truncation**. When a model hits the `max_completion_tokens` ceiling it stops mid-output and returns whatever it has — no error, no warning. The API call succeeds with a 200 and `finish_reason: "length"` instead of `"stop"`.
**This is especially dangerous for code-rewrite agents** where the output is a full file. A fixed `max_completion_tokens: 3000` cap will silently drop everything after line ~150 of a 200-line fix.
```
# What you set vs what you need
max_completion_tokens: 3000 → enough for a short blog post
→ NOT enough for a 200-line code rewrite
# Real numbers (gpt-5-mini, order-service.ts rewrite):
Blockers section: ~120 tokens
Fixed code: ~2,800 tokens (213 lines with // FIX: comments)
Total needed: ~3,000 tokens ← hits the cap exactly, empty output
Fix: set to 16,000 → full rewrite delivered in one shot
```
**Lessons learned from building the code-review swarm:**
| Issue | Root cause | Fix |
|---|---|---|
| Fixed code output was empty | `max_completion_tokens: 3000` too low for a full rewrite | Raise to `16000`+ for any code-output agent |
| `finish_reason: "length"` silently discards output | Model hits cap, returns partial response with no error | Always check `choices[0].finish_reason` and alert on `"length"` |
| `gpt-5.2` slow + expensive for reviewer agents | Flagship model = high latency + $14/1M output tokens | Use `gpt-5-mini` ($2/1M, 128k output, same RPM) for reviewer/fixer agents |
| Coordinator + fixer as two separate calls | Second call hits rate limit window, adds 60s wait | Merge into one combined call with a structured two-section response format |
**Rule of thumb for `max_completion_tokens` by task:**
| Task | Recommended cap |
|---|---|
| Short classification / sentiment | 200–500 |
| Code review findings (one reviewer) | 400–800 |
| Blocker summary (coordinator) | 500–1,000 |
| Full file rewrite (≤300 lines) | 12,000–16,000 |
| Full file rewrite (≤1,000 lines) | 32,000–64,000 |
| Document / design revision | 16,000–32,000 |
All GPT-5 variants (`gpt-5`, `gpt-5-mini`, `gpt-5-nano`, `gpt-5.2`) support **128,000 max output tokens** — the ceiling is never the model, it's always the cap you set.
#### Cloud GPU Instances (Self-Hosted on AWS / GCP / Azure)
Running your own model on a cloud GPU VM (e.g. AWS `p3.2xlarge` / A100, GCP `a2-highgpu`, Azure `NC` series) sits between managed APIs and local hardware:
| Setup | Parallelism | Speed vs managed API | RPM limit |
|---|---|---|---|
| A100 (80GB) + vLLM, Llama 3.3 70B | True parallel | **Faster** — 0.5–2s per call | None |
| H100 + vLLM, Mixtral 8x7B | True parallel | **Faster** — 0.3–1s per call | None |
| T4 / V100 + Ollama, Llama 3.2 8B | True parallel | Comparable | None |
Since you own the endpoint, there are no rate limits — all 5 agents fire at the same moment. At inference speeds on an A100, a 5-agent swarm can complete in **3–8 seconds** for a 70B model, comparable to Groq and faster than any managed flagship model.
The tradeoff is cost (GPU VMs are $1–$5/hr) and setup (vLLM install, model download). For high-volume production swarms or teams that want no external API dependency, it's the fastest architecture available. The connection is identical to local Ollama — just point `baseURL` at your VM's IP.
## Permission System
The AuthGuardian evaluates requests using:
| Factor | Weight | Description |
|--------|--------|-------------|
| Justification | 40% | Quality of business reason (hardened against prompt injection) |
| Trust Level | 30% | Agent's established trust |
| Risk Assessment | 30% | Resource sensitivity + scope |
**Approval threshold: 0.5**
### Resource Types
| Resource | Base Risk | Default Restrictions |
|----------|-----------|---------------------|
| `DATABASE` | 0.5 | `read_only`, `max_records:100` |
| `PAYMENTS` | 0.7 | `read_only`, `no_pii_fields`, `audit_required` |
| `EMAIL` | 0.4 | `rate_limit:10_per_minute` |
| `FILE_EXPORT` | 0.6 | `anonymize_pii`, `local_only` |
## Security Module
The security module ([security.ts](security.ts)) provides defense-in-depth protections:
| Component | Class | Purpose |
|-----------|-------|---------|
| Token Manager | `SecureTokenManager` | HMAC-signed tokens with expiration |
| Input Sanitizer | `InputSanitizer` | XSS, injection, traversal prevention |
| Rate Limiter | `RateLimiter` | Per-agent request throttling + lockout |
| Encryptor | `DataEncryptor` | AES-256-GCM encryption for sensitive data |
| Permission Hardener | `PermissionHardener` | Trust-ceiling & privilege escalation prevention |
| Audit Logger | `SecureAuditLogger` | Cryptographically signed audit entries |
| Gateway | `SecureSwarmGateway` | Integrated security layer wrapping all ops |
## Agent Trust Levels
| Agent | Trust | Role |
|-------|-------|------|
| `orchestrator` | 0.9 | Primary coordinator |
| `risk_assessor` | 0.85 | Compliance specialist |
| `data_analyst` | 0.8 | Data processing |
| `strategy_advisor` | 0.7 | Business strategy |
| Unknown | 0.5 | Default |
## Handoff Protocol
Format messages for delegation:
```
[HANDOFF]
Instruction: Analyze monthly sales by product category
Context: Using database export from ./data/sales_export.csv
Constraints: Focus on top 5 categories only
Expected Output: JSON summary with category, revenue, growth_pct
[/HANDOFF]
```
## Testing
Run all test suites:
```bash
# All tests at once
npm run test:all
# Core orchestrator tests (79 tests)
npm test
# Security module tests (33 tests)
npm run test:security
# Adapter system tests (139 tests)
npm run test:adapters
# Full integration tests
npx ts-node test.ts
npm run test:all # All suites in sequence
npm test # Core orchestrator
npm run test:security # Security module
npm run test:adapters # All 12 adapters
npm run test:priority # Priority & preemption
```
Test Python scripts:
**1,184 passing assertions across 15 test suites** (verified by counting `assert()` / `pass()` calls in each file):
```bash
# Test permission system
python scripts/check_permission.py --agent orchestrator --resource PAYMENTS \
--justification "Generating monthly revenue report for management" --json
| Suite | Assertions | Covers |
|---|---|---|
| `test-standalone.ts` | 83 | Blackboard, auth, integration, persistence, parallelisation, quality gate |
| `test-adapters.ts` | 142 | All 12 adapters, registry routing, integration, edge cases |
| `test-phase4.ts` | 133 | FSM, compliance monitor, adapter integration |
| `test-phase5d.ts` | 119 | Pluggable backend |
| `test-phase5f.ts` | 113 | Phase 5f extended |
| `test-phase5g.ts` | 106 | Phase 5g extended |
| `test-phase6.ts` | 122 | Latest feature coverage |
| `test-phase5c.ts` | 74 | Named multi-blackboard |
| `test-phase5e.ts` | 88 | Phase 5e |
| `test-phase5b.ts` | 56 | Pluggable backend part 2 |
| `test-priority.ts` | 65 | Priority preemption, conflict resolution, backward compat |
| `test-security.ts` | 35 | Tokens, sanitization, rate limiting, encryption, audit |
| `test-phase5.ts` | 24 | Named multi-blackboard base |
| `test.ts` | 24 | Full integration |
| `test-phase4.ts` (stubs) | 4 | FSM stub coverage |
# Test blackboard
python scripts/blackboard.py write "test:key" '{"value": 123}' --ttl 60
python scripts/blackboard.py read "test:key"
---
# Test TTL cleanup
python scripts/revoke_token.py --list-expired
python scripts/revoke_token.py --cleanup
```
**Test results (315 total):**
- `test-standalone.ts` -- 79 passed (blackboard, auth, integration, persistence, parallelization, coding domain, quality gate)
- `test-security.ts` -- 33 passed (tokens, sanitization, rate limiting, encryption, permissions, audit)
- `test-adapters.ts` -- 139 passed (12 adapters: Custom, LangChain, AutoGen, CrewAI, MCP, LlamaIndex, Semantic Kernel, OpenAI Assistants, Haystack, DSPy, Agno + registry routing, integration, edge cases)
- `test-priority.ts` -- 64 passed (priority-based preemption, conflict resolution, constructor overloads, backward compatibility)
## Audit Trail
Logged events: `permission_granted`, `permission_denied`, `permission_revoked`, `ttl_cleanup`, `result_validated`
The security module's `SecureAuditLogger` produces cryptographically signed entries that can be verified for tamper detection.
## Documentation
- [QUICKSTART.md](QUICKSTART.md) -- 5-minute getting-started guide
- [SKILL.md](SKILL.md) -- Main skill instructions (includes Orchestrator protocol)
- [references/adapter-system.md](references/adapter-system.md) -- Adapter architecture & writing custom adapters
- [references/auth-guardian.md](references/auth-guardian.md) -- Permission system details
- [references/blackboard-schema.md](references/blackboard-schema.md) -- Data structures
- [references/trust-levels.md](references/trust-levels.md) -- Trust configuration
- [references/mcp-roadmap.md](references/mcp-roadmap.md) -- MCP networking implementation plan
| Doc | Contents |
|---|---|
| [QUICKSTART.md](QUICKSTART.md) | Installation, first run, PowerShell guide, Python scripts CLI |
| [ARCHITECTURE.md](ARCHITECTURE.md) | Race condition problem, FSM design, handoff protocol, project structure |
| [BENCHMARKS.md](BENCHMARKS.md) | Provider performance, rate limits, local GPU, `max_completion_tokens` guide |
| [SECURITY.md](SECURITY.md) | Security module, permission system, trust levels, audit trail |
| [INTEGRATION_GUIDE.md](INTEGRATION_GUIDE.md) | End-to-end integration walkthrough |
| [references/adapter-system.md](references/adapter-system.md) | Adapter architecture, writing custom adapters |
| [references/auth-guardian.md](references/auth-guardian.md) | Permission scoring, resource types |
| [references/trust-levels.md](references/trust-levels.md) | Trust level configuration |
## Configuration
---
### Modify Trust Levels
Edit `scripts/check_permission.py`:
```python
DEFAULT_TRUST_LEVELS = {
"orchestrator": 0.9,
"my_new_agent": 0.75, # Add your agent
}
```
### Adjust Token TTL
```python
GRANT_TOKEN_TTL_MINUTES = 5 # Change as needed
```
## Exports
The module exports everything needed for programmatic use:
```typescript
// Core classes
import SwarmOrchestrator, { SharedBlackboard, AuthGuardian, TaskDecomposer } from 'network-ai';
import { BlackboardValidator, QualityGateAgent } from 'network-ai';
// Factory
import { createSwarmOrchestrator } from 'network-ai';
// Adapters (all 12)
import {
AdapterRegistry, BaseAdapter,
OpenClawAdapter, LangChainAdapter, AutoGenAdapter,
CrewAIAdapter, MCPAdapter, CustomAdapter,
LlamaIndexAdapter, SemanticKernelAdapter, OpenAIAssistantsAdapter,
HaystackAdapter, DSPyAdapter, AgnoAdapter,
} from 'network-ai';
// Types
import type {
IAgentAdapter, AgentPayload, AgentContext, AgentResult, AgentInfo,
AdapterConfig, AdapterCapabilities,
TaskPayload, HandoffMessage, PermissionGrant, SwarmState,
AgentStatus, ParallelTask, ParallelExecutionResult, SynthesisStrategy,
} from 'network-ai';
```
## License
MIT License -- See [LICENSE](LICENSE)
## Contributing
If you find Network-AI useful, **give it a star** -- it helps others discover the project and motivates development:
1. Fork → feature branch → `npm run test:all` → pull request
2. Bugs and feature requests via [Issues](https://github.com/jovanSAPFIONEER/Network-AI/issues)
3. If Network-AI saves you time, a ⭐ helps others find it
[![Star on GitHub](https://img.shields.io/github/stars/jovanSAPFIONEER/Network-AI?style=social)](https://github.com/jovanSAPFIONEER/Network-AI)
**Want to contribute code?**
1. Fork the repository
2. Create a feature branch
3. Make your changes
4. Run all tests (`npm run test:all`)
5. Submit a pull request
**Other ways to help:**
- Report bugs or suggest features via [Issues](https://github.com/jovanSAPFIONEER/Network-AI/issues)
- Share Network-AI with your team or on social media
- Write about your experience using it
---
**Compatible with 12 agent frameworks: OpenClaw, LangChain, AutoGen, CrewAI, MCP, LlamaIndex, Semantic Kernel, OpenAI Assistants, Haystack, DSPy, Agno, and any custom adapter**
## Competitive Comparison
> **TL;DR** — LangGraph, CrewAI, and AutoGen are excellent agent builders. Network-AI is the coordination layer you add on top when those agents need to share state, stay within budget, and leave an audit trail. They are complementary, not competing.
How Network-AI compares to other multi-agent frameworks:
| Capability | Network-AI | LangChain/LangGraph | AutoGen/AG2 | CrewAI | Claude SDK |
|---|---|---|---|---|---|
| **Multi-framework support** | 12 adapters | LangChain only | AutoGen only | CrewAI only | Claude only |
| **Shared state (blackboard)** | Atomic commits, TTL, priority | LangGraph state | Shared context | Shared memory | Project memory |
| **Conflict resolution** | Priority preemption, last-write-wins | None | None | None | None |
| **Fan-out / fan-in** | Native (parallel + merge) | LangGraph branches | Group chat | Parallel tasks | Subagents |
| **Permission gating** | AuthGuardian (weighted scoring) | None | None | None | None |
| **Budget tracking** | Token ceiling + per-task budgets | Callbacks only | None | None | None |
| **Audit trail** | HMAC-signed, tamper-evident | None | None | None | None |
| **Encryption at rest** | AES-256-GCM | None | None | None | None |
| **Observability** | `--active-grants`, `--audit-summary` | LangSmith (SaaS) | None | None | None |
| **Rate limiting** | Per-agent with lockout | None | None | None | None |
| **Justification hardening** | 16-pattern injection defense | None | None | None | None |
| **Language** | TypeScript/Node.js | Python | Python | Python | Python |
| **Dependencies** | Zero (per adapter) | Heavy | Heavy | Heavy | Moderate |
| **License** | MIT | MIT | CC-BY-4.0 | MIT | MIT |
**Key differentiator:** Network-AI is the only framework that combines multi-framework orchestration with a governance layer (permissions, audit, encryption, budget enforcement). Other frameworks focus on one LLM provider; Network-AI wraps all of them.
## Related Concepts
Network-AI fits into the broader AI agent ecosystem:
- **Multi-Agent Systems** -- Coordinate multiple AI agents working together on complex tasks
- **Agentic AI** -- Build autonomous agents that reason, plan, and execute using LLMs
- **Behavioral Control Plane** -- Govern agent behavior with permission gating, compliance enforcement, and audit trails
- **Swarm Intelligence** -- Parallel fan-out/fan-in patterns with voting, merging, and chain strategies
- **Model Context Protocol (MCP)** -- Standard protocol support for LLM tool integration
- **Agent-to-Agent (A2A)** -- Inter-agent communication via shared blackboard and handoff protocol
- **Context Engineering** -- Manage and share context across agent boundaries
- **Agentic Workflows** -- Task decomposition, parallel processing, and synthesis pipelines
- **LLM Orchestration** -- Route tasks to the right agent framework automatically
- **Agent Governance** -- Permission gating, budget enforcement, audit logging, and compliance monitoring
If you're using LangGraph, Dify, Flowise, PraisonAI, AutoGen/AG2, CrewAI, or any other agent framework, Network-AI can integrate with it through the adapter system.
---
<details>
<summary>Keywords (for search)</summary>
ai-agents, agentic-ai, multi-agent, multi-agent-systems, multi-agent-system, agent-framework, ai-agent-framework, agentic-framework, agentic-workflow, llm, llm-agents, llm-agent, large-language-models, generative-ai, genai, orchestration, ai-orchestration, swarm, swarm-intelligence, autonomous-agents, agents, ai, typescript, nodejs, mcp, model-context-protocol, a2a, agent-to-agent, function-calling, tool-integration, context-engineering, rag, ai-safety, multi-agents-collaboration, multi-agents, aiagents, aiagentframework, plug-and-play, adapter-registry, blackboard-pattern, agent-coordination, agent-handoffs, token-permissions, budget-tracking, cost-awareness, atomic-commits, hallucination-detection, content-quality-gate, behavioral-control-plane, governance-layer, compliance-enforcement, fan-out-fan-in, agent-observability, permission-gating, audit-trail, OpenClaw, Clawdbot, Moltbot, Clawdbot Swarm, Moltbot Security, Moltbot multi-agent, OpenClaw skills, AgentSkills, LangChain adapter, LangGraph, AutoGen adapter, AG2, CrewAI adapter, MCP adapter, LlamaIndex adapter, Semantic Kernel adapter, OpenAI Assistants adapter, Haystack adapter, DSPy adapter, Agno adapter, Phidata adapter, Dify, Flowise, PraisonAI, custom-adapter, AES-256 encryption, HMAC tokens, rate limiting, input sanitization, privilege escalation prevention, ClawHub, clawhub, agentic-rag, deep-research, workflow-orchestration, ai-assistant, ai-tools, developer-tools, open-source
</details>
MIT License — [LICENSE](LICENSE) &nbsp;·&nbsp; [CHANGELOG](CHANGELOG.md) &nbsp;·&nbsp; [CONTRIBUTING](CONTRIBUTING.md)
dist/index.js

Sorry, the diff of this file is too big to display