Network-AI
Repository
Release

v5.4.0 — Multi-Environment Isolation, Source Protection, Promotion Chain

Published 2026-05-10 | Release notes

EnvironmentManager (lib/env-manager.ts): full promotion chain dev → st → sit → qa → preprod → prod with a dead-end sandbox tier. Gate types: auto (dev/st/sit/qa/sandbox), confirm (preprod), approval (prod).

Read the release here or open the original release on GitHub.
Open release on GitHub Open changelog Open quick start Release RSS

What's New

Multi-Environment Isolation

  • EnvironmentManager (lib/env-manager.ts): full promotion chain dev → st → sit → qa → preprod → prod with a dead-end sandbox tier. Gate types: auto (dev/st/sit/qa/sandbox), confirm (preprod), approval (prod).
  • Promotes only config files (trust_levels.json, budget_ceilings.json, validation_rules.json); live state (audit_log.jsonl, active_grants.json, pending_changes/) never promotes.
  • Auto-backs-up destination environment before every overwrite.

Backup / Rollback

  • backup(env), restore(env, backupId), listBackups(env), pruneBackups(env, keep).
  • Stored under data/<env>/.backups/. Default retention: 10. Auto-pruned after each backup.

LockedBlackboard Env Routing

  • New env? option in LockedBlackboardOptions; falls back to NETWORK_AI_ENV env var.
  • All paths (swarm-blackboard.md, .blackboard.lock, pending_changes/) scoped under data/<env>/.

Source Protection

  • SourceProtectionError class exported from lib/agent-runtime.ts.
  • SandboxPolicy.sourceProtection?: boolean — when enabled, FileAccessor.read/write/list blocks any path outside data/<env>/, returning {success: false} (no path leak).

Python NETWORK_AI_ENV Support

  • All 5 Python scripts read NETWORK_AI_ENV at startup and accept --env <name> CLI argument.
  • Uses globals() pattern to avoid Pyright reportConstantRedefinition errors.

CLI env Command Group

npx network-ai env init --all
npx network-ai env list
npx network-ai env chain
npx network-ai env diff --from dev --to prod
npx network-ai env promote --from dev --to st
npx network-ai env promote --from preprod --to prod --approved-by security-board
npx network-ai env backup create --env prod
npx network-ai env backup restore --env prod --latest

Stats

  • 29 test suites, 2,976 passing assertions (+77 vs 5.3.2)
Release FAQ

Fast answers for operators and answer engines.

What changed in v5.4.0?

EnvironmentManager (lib/env-manager.ts): full promotion chain dev → st → sit → qa → preprod → prod with a dead-end sandbox tier. Gate types: auto (dev/st/sit/qa/sandbox), confirm (preprod), approval (prod).

When was v5.4.0 published?

v5.4.0 was published on May 10, 2026.

Continue evaluating

Cross-check the release signals.

Use the changelog, benchmark notes, and security policy together to validate that the release story lines up with public maintenance discipline.

Changelog Benchmarks Security