Jovancoding/Network-AI

v5.8.3 Bugfix

This release fixes issues for SREs watching stability and regressions.

Published 10d MCP Developer Tools

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

agent-framework agent-orchestration ai-agents autogen blackboard blackboard-architecture

+14 more

crewai hermes hermes-agent langchain llm mcp multi-agent nemoclaw nodejs openclaw orchestration rlm typescript workflow-engine

Affected surfaces

auth

ReleasePort's take

Light signal

editorial:auto 10d

ReleasePort v5.8.3 corrects the filesystem scope description and fixes inaccuracies in the clawhub_python_scripts list.

Why it matters: Accurate manifest entries ensure proper permission scoping and prevent runtime errors from missing scripts; critical for developers maintaining skill configurations.

Summary

AI summary

Corrected filesystem scope enumeration in the capabilities manifest and fixed script list accuracy.

Changes in this release

Type	Severity	Summary	CVE
Bugfix	Medium	Corrects filesystem scope description to list all accessed paths in capabilities manifest. Corrects filesystem scope description to list all accessed paths in capabilities manifest. Source: llm_adapter@2026-05-24 Confidence: high	—
Bugfix	Medium	Updates clawhub_python_scripts list to include actual script names and remove nonexistent entries. Updates clawhub_python_scripts list to include actual script names and remove nonexistent entries. Source: llm_adapter@2026-05-24 Confidence: high	—

Full changelog

Network-AI v5.8.3 — SKILL.md filesystem scope and script list accuracy

This patch resolves 2 findings from the ClawHub SkillSpector v5.8.2 scan.

Fixed

Filesystem scope understated in capabilities manifest (Description-Behavior Mismatch, 84%)
capabilities.filesystem previously said "data/ directory only", but scripts/blackboard.py also reads and writes swarm-blackboard.md in the project root and data/pending_changes/<id>.json WAL entries. The field now enumerates every file path actually touched by the bundled Python scripts. A separate privacy.blackboard_file entry has been added for swarm-blackboard.md.

Incorrect script names in clawhub_python_scripts (Intent-Code Divergence, 90%)
The frontmatter listed token_manager.py and check_context.py — neither of which exists — and omitted validate_token.py and revoke_token.py, both of which exist in scripts/ and are referenced throughout the documentation. Corrected to the six actual scripts: blackboard.py, check_permission.py, context_manager.py, swarm_guard.py, validate_token.py, revoke_token.py.

Files changed

SKILL.md, CHANGELOG.md, package.json, skill.json, openapi.yaml, README.md, and all version-bearing doc files.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Jovancoding/Network-AI

Get notified when new releases ship.

About Jovancoding/Network-AI

Multi-agent orchestration MCP server with race-condition-safe shared blackboard. 20+ MCP tools: blackboard read/write, agent spawn/stop, FSM transitions, budget tracking, token management, and audit log query. `npx network-ai-server --port 3001`.

All releases →