Jovancoding
diff --git a/‎.github/copilot-instructions.md‎
Lines changed: 49 additions & 0 deletions b/‎.github/copilot-instructions.md‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎ARCHITECTURE.md‎
Lines changed: 2 additions & 1 deletion b/‎ARCHITECTURE.md‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎CHANGELOG.md‎
Lines changed: 17 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎CLAUDE.md‎
Lines changed: 4 additions & 4 deletions b/‎CLAUDE.md‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎CODEX.md‎
Lines changed: 72 additions & 0 deletions b/‎CODEX.md‎
Lines changed: 72 additions & 0 deletions
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 2 additions & 2 deletions b/‎CONTRIBUTING.md‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎ENTERPRISE.md‎
Lines changed: 6 additions & 5 deletions b/‎ENTERPRISE.md‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎INTEGRATION_GUIDE.md‎
Lines changed: 3 additions & 2 deletions b/‎INTEGRATION_GUIDE.md‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎QUICKSTART.md‎
Lines changed: 9 additions & 8 deletions b/‎QUICKSTART.md‎
Lines changed: 9 additions & 8 deletions
@@ -0,0 +1,49 @@
+# GitHub Copilot Instructions for Network-AI
+
+## Project Overview
+
+Network-AI is a TypeScript/Node.js multi-agent orchestrator — shared state, guardrails, budgets, and cross-framework coordination (v4.10.0). 1,617 tests across 20 suites.
+
+## Architecture
+
+- **Blackboard pattern**: All coordination via `LockedBlackboard` — `propose()` → `validate()` → `commit()` with filesystem mutex. Never write to shared state directly.
+- **Permission gating**: `AuthGuardian` uses weighted scoring (justification 40%, trust 30%, risk 30%). Require permission before sensitive resource access.
+- **Adapter system**: All 17 adapters extend `BaseAdapter`. Each is dependency-free (BYOC — bring your own client). No cross-adapter imports.
+- **Audit trail**: Every write, permission grant, and state transition is logged to `data/audit_log.jsonl` via `SecureAuditLogger`.
+
+## Code Conventions
+
+- TypeScript strict mode, target ES2022
+- No `any` types — use proper generics or `unknown`
+- JSDoc on all exported functions and classes
+- No new runtime dependencies without explicit approval
+- Input validation required on all public API entry points
+- Keep adapter files self-contained — no cross-adapter imports
+
+## Key Files
+
+- `index.ts` — Core engine: SwarmOrchestrator, AuthGuardian, FederatedBudget, QualityGateAgent
+- `security.ts` — SecureTokenManager, InputSanitizer, RateLimiter, DataEncryptor, SecureAuditLogger
+- `lib/locked-blackboard.ts` — LockedBlackboard with atomic propose → validate → commit
+- `lib/fsm-journey.ts` — JourneyFSM behavioral control plane
+- `lib/compliance-monitor.ts` — Real-time agent behavior surveillance
+- `adapters/` — 17 framework adapters (LangChain, AutoGen, CrewAI, MCP, Codex, MiniMax, NemoClaw, APS, etc.)
+
+## Build & Test
+
+```bash
+npx tsc --noEmit              # Type-check (zero errors expected)
+npm run test:all              # All 1,582 tests across 20 suites
+npm test                      # Core orchestrator tests
+npm run test:adapters         # All 17 adapters
+```
+
+All tests must pass before any commit. No test should be skipped or marked `.only`.
+
+## Security
+
+- AES-256-GCM encryption at rest
+- HMAC-SHA256 / Ed25519 signed tokens with TTL
+- No hardcoded secrets, keys, or credentials
+- Path traversal and injection protections on all file operations
+- Rate limiting on public-facing endpoints
@@ -262,7 +262,7 @@ Network-AI/
 ├── setup.ts                      # Developer setup & installation checker
 ├── bin/
 │   └── cli.ts                    # Full CLI — bb, auth, budget, audit commands (in-process)
-├── adapters/                     # 16 plug-and-play agent framework adapters
+├── adapters/                     # 17 plug-and-play agent framework adapters
 │   ├── adapter-registry.ts       # Multi-adapter routing & discovery
 │   ├── base-adapter.ts           # Abstract base class
 │   ├── custom-adapter.ts         # Custom function/HTTP agent adapter
@@ -276,6 +276,7 @@ Network-AI/
 │   ├── haystack-adapter.ts
 │   ├── dspy-adapter.ts
 │   ├── agno-adapter.ts
+│   ├── aps-adapter.ts
 │   └── openclaw-adapter.ts
 ├── lib/
 │   ├── locked-blackboard.ts      # Atomic commits with file-system mutexes
 
@@ -5,6 +5,23 @@ All notable changes to Network-AI will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [4.10.0] - 2026-03-21
+
+### Added
+- **APS adapter** — New `APSAdapter` mapping Agent Permission Service delegation chains to AuthGuardian trust levels. Features: depth-decayed trust formula (`baseTrust × (1 - (currentDepth / maxDepth × depthDecay))`), local/MCP/BYOC signature verification, APS scope-to-resource mapping (`file:read` → `FILE_SYSTEM`, `shell:exec` → `SHELL_EXEC`, etc.), namespace derivation, and executeAgent pass-through. Adapter count now 17.
+- 13 new tests for APS adapter: root delegation, mid-chain decay, max depth, unverified signature, custom config, BYOC verifier, input validation, depth overflow, executeAgent, namespace derivation, MCP mode, capabilities (total: 1,617 across 20 suites)
+- `CODEX.md` — Project instructions for OpenAI Codex CLI (mirrors CLAUDE.md)
+- `.github/copilot-instructions.md` — GitHub Copilot workspace instructions
+
+### Changed
+- All documentation updated: adapter count 16 → 17, test count 1,582 → 1,617 across README, QUICKSTART, ARCHITECTURE, ENTERPRISE, INTEGRATION_GUIDE, CONTRIBUTING, CLAUDE.md, CODEX.md, copilot-instructions.md, SKILL.md, skill.json, package.json
+- Security policy updated: 4.10.x now current, 4.9.x moved to security-fixes-only
+- `references/adapter-system.md` — Added APS adapter section with trust formula, verification modes, and usage example
+- `references/auth-guardian.md` — Added APS Integration section documenting delegation-chain → trust mapping
+
+### Fixed
+- Removed unused `grant2` variable in test.ts (CodeQL alert #90)
+
 ## [4.9.1] - 2026-03-19
 
 ### Changed
 
@@ -4,17 +4,17 @@ This file is read automatically by Claude Code when working in this repository.
 
 ## Project Overview
 
-Network-AI is a TypeScript/Node.js multi-agent orchestrator — shared state, guardrails, budgets, and cross-framework coordination. Version 4.9.1.
+Network-AI is a TypeScript/Node.js multi-agent orchestrator — shared state, guardrails, budgets, and cross-framework coordination. Version 4.10.0.
 
 ## Build & Test Commands
 
 ```bash
 npm install                   # Install dependencies
 npx tsc --noEmit              # Type-check (zero errors expected)
-npm run test:all              # Run all 1,582 tests across 20 suites
+npm run test:all              # Run all 1,617 tests across 20 suites
 npm test                      # Core orchestrator tests only
 npm run test:security         # Security module tests
-npm run test:adapters         # All 16 adapter tests
+npm run test:adapters         # All 17 adapter tests
 npm run test:priority         # Priority & preemption tests
 npm run test:cli              # CLI layer tests
 ```
@@ -28,7 +28,7 @@ All tests must pass before any commit. No test should be skipped or marked `.onl
 - `lib/locked-blackboard.ts` — LockedBlackboard with atomic propose → validate → commit and file-system mutex
 - `lib/fsm-journey.ts` — JourneyFSM behavioral control plane
 - `lib/compliance-monitor.ts` — Real-time agent behavior surveillance
-- `adapters/` — 16 framework adapters (LangChain, AutoGen, CrewAI, MCP, Codex, MiniMax, NemoClaw, etc.)
+- `adapters/` — 17 framework adapters (LangChain, AutoGen, CrewAI, MCP, Codex, MiniMax, NemoClaw, APS, etc.)
 - `bin/cli.ts` — CLI entry point (`npx network-ai`)
 - `bin/mcp-server.ts` — MCP server (SSE + stdio transport)
 - `scripts/` — Python helper scripts (blackboard, permissions, token management)
 
@@ -0,0 +1,72 @@
+# CODEX.md — Project Instructions for OpenAI Codex
+
+This file is read automatically by OpenAI Codex CLI when working in this repository.
+
+## Project Overview
+
+Network-AI is a TypeScript/Node.js multi-agent orchestrator — shared state, guardrails, budgets, and cross-framework coordination. Version 4.10.0.
+
+## Build & Test Commands
+
+```bash
+npm install                   # Install dependencies
+npx tsc --noEmit              # Type-check (zero errors expected)
+npm run test:all              # Run all 1,617 tests across 20 suites
+npm test                      # Core orchestrator tests only
+npm run test:security         # Security module tests
+npm run test:adapters         # All 17 adapter tests
+npm run test:priority         # Priority & preemption tests
+npm run test:cli              # CLI layer tests
+```
+
+All tests must pass before any commit. No test should be skipped or marked `.only`.
+
+## Project Structure
+
+- `index.ts` — Core engine: SwarmOrchestrator, AuthGuardian, FederatedBudget, QualityGateAgent, all exports
+- `security.ts` — Security module: SecureTokenManager, InputSanitizer, RateLimiter, DataEncryptor, SecureAuditLogger
+- `lib/locked-blackboard.ts` — LockedBlackboard with atomic propose → validate → commit and file-system mutex
+- `lib/fsm-journey.ts` — JourneyFSM behavioral control plane
+- `lib/compliance-monitor.ts` — Real-time agent behavior surveillance
+- `adapters/` — 17 framework adapters (LangChain, AutoGen, CrewAI, MCP, Codex, MiniMax, NemoClaw, APS, etc.)
+- `bin/cli.ts` — CLI entry point (`npx network-ai`)
+- `bin/mcp-server.ts` — MCP server (SSE + stdio transport)
+- `scripts/` — Python helper scripts (blackboard, permissions, token management)
+- `types/` — TypeScript declaration files
+- `data/` — Runtime data (gitignored): audit log, pending changes
+
+## Key Architecture Patterns
+
+- **Blackboard pattern**: All agent coordination goes through `LockedBlackboard` — `propose()` → `validate()` → `commit()` with file-system mutex. Never write directly.
+- **Permission gating**: `AuthGuardian` uses weighted scoring (justification 40%, trust 30%, risk 30%). Always require permission before sensitive resource access.
+- **Adapter system**: All adapters extend `BaseAdapter`. Each is dependency-free (BYOC — bring your own client). Do not add runtime dependencies to adapters.
+- **Audit trail**: Every write, permission grant, and state transition is logged to `data/audit_log.jsonl` via `SecureAuditLogger`.
+
+## Code Conventions
+
+- TypeScript strict mode, target ES2022
+- No `any` types — use proper generics or `unknown`
+- JSDoc on all exported functions and classes
+- No new runtime dependencies without explicit approval
+- Input validation required on all public API entry points
+- Keep adapter files self-contained — no cross-adapter imports
+
+## Security Requirements
+
+- AES-256-GCM encryption for data at rest
+- HMAC-SHA256 / Ed25519 signed tokens with TTL
+- No hardcoded secrets, keys, or credentials anywhere
+- Path traversal and injection protections on all file operations
+- Rate limiting on all public-facing endpoints
+
+## Common Workflows
+
+**Adding a new adapter:**
+1. Create `adapters/<name>-adapter.ts` extending `BaseAdapter`
+2. Implement `executeAgent()`, `getCapabilities()`, lifecycle methods
+3. Register in `adapters/adapter-registry.ts` and `adapters/index.ts`
+4. Add tests in `test-adapters.ts`
+5. Update README adapter table
+
+**Bumping a version:**
+See `RELEASING.md` for the full checklist. Key files: `package.json`, `skill.json`, `openapi.yaml`, `README.md` badge, `CHANGELOG.md`, `SECURITY.md`, `.github/SECURITY.md`.
@@ -16,7 +16,7 @@ Unsolicited PRs without a linked, approved issue will be closed.
 
 ### Code Quality
 
-- All 1,582 existing tests must pass (`npm run test:all`)
+- All 1,617 existing tests must pass (`npm run test:all`)
 - Zero TypeScript compile errors (`npx tsc --noEmit`)
 - New features must include tests with >90% branch coverage
 - Follow existing code style and patterns
@@ -78,7 +78,7 @@ Unsolicited PRs without a linked, approved issue will be closed.
 git clone https://github.com/Jovancoding/Network-AI.git
 cd Network-AI
 npm install
-npm run test:all  # Run all 1,582 tests (20 suites)
+npm run test:all  # Run all 1,617 tests (20 suites)
 npm run test:phase4  # Phase 4 behavioral control plane tests only
 npx tsc --noEmit  # Type-check
 ```
 
@@ -12,7 +12,7 @@ This document exists so an engineer or architect can evaluate Network-AI in unde
 | Do I control all data? | **Yes.** All state lives in your `data/` directory on your own infrastructure. Nothing is transmitted. |
 | Is the source auditable? | **Yes.** MIT-licensed, fully open source, no obfuscated code, no telemetry. |
 | Does it have an audit trail? | **Yes.** Every permission request, grant, denial, and revocation is appended to `data/audit_log.jsonl` with a UTC timestamp. See [AUDIT_LOG_SCHEMA.md](AUDIT_LOG_SCHEMA.md). |
-| Can I plug in my own LLM / provider? | **Yes.** The adapter registry supports LangChain, AutoGen, CrewAI, LlamaIndex, Semantic Kernel, OpenAI Assistants, Haystack, DSPy, Agno, MCP, OpenClaw, A2A, Codex, MiniMax, NemoClaw, and a `CustomAdapter` for anything else. |
+| Can I plug in my own LLM / provider? | **Yes.** The adapter registry supports LangChain, AutoGen, CrewAI, LlamaIndex, Semantic Kernel, OpenAI Assistants, Haystack, DSPy, Agno, MCP, OpenClaw, A2A, Codex, MiniMax, NemoClaw, APS, and a `CustomAdapter` for anything else. |
 | Does it work with our existing agent framework? | **Yes.** It wraps around your framework — you keep what you have and add guardrails on top. |
 | Is there a security review? | **Yes.** CodeQL scanning on every push, Dependabot auto-merge, Socket.dev supply chain score A, OpenSSF Scorecard. See [SECURITY.md](SECURITY.md). |
 | What does it cost to operate? | **Zero licensing cost.** MIT license. Infrastructure cost = your own compute. |
@@ -84,9 +84,10 @@ Network-AI follows [Semantic Versioning](https://semver.org/):
 
 | Version | Policy |
 |---|---|
-| 4.0.x (current) | Full support — bugs + security fixes |
-| 3.5.x – 3.9.x | Security fixes only |
-| < 3.5 | No support |
+| 4.10.x (current) | Full support — bugs + security fixes |
+| 4.9.x | Security fixes only |
+| 4.0.x – 4.8.x | Security fixes only |
+| < 4.0 | No support |
 
 ### Response Times (GitHub Issues)
 
@@ -98,7 +99,7 @@ Network-AI follows [Semantic Versioning](https://semver.org/):
 
 ### Stability Signals
 
-- 1,582 passing assertions across 20 suites
+- 1,617 passing assertions across 20 suites
 - Deterministic scoring — no random outcomes in permission evaluation or budget enforcement
 - CI runs on every push and every PR
 - All examples ship with the repo and run without mocking
 
@@ -64,7 +64,7 @@ Answers drive `AuthGuardian` configuration and audit log retention policy.
 
 ## 2. Framework Mapping
 
-Network-AI ships 16 adapters. Map your existing agents to the right one:
+Network-AI ships 17 adapters. Map your existing agents to the right one:
 
 | Your Stack | Network-AI Adapter | Notes |
 |-----------|-------------------|-------|
@@ -83,6 +83,7 @@ Network-AI ships 16 adapters. Map your existing agents to the right one:
 | OpenAI Codex CLI | `CodexAdapter` | Codex CLI task execution |
 | MiniMax | `MiniMaxAdapter` | MiniMax chat completions (M2.5) |
 | NVIDIA NemoClaw | `NemoClawAdapter` | Sandboxed agent execution via OpenShell |
+| APS delegation chains | `APSAdapter` | Delegation-chain trust mapping for AuthGuardian |
 | **Anything else** | `CustomAdapter` | Wrap any async function or HTTP endpoint |
 
 ### No matching framework?
@@ -463,7 +464,7 @@ Run these before declaring the integration production-ready:
 |----------|---------------|
 | [QUICKSTART.md](QUICKSTART.md) | Get running in 5 minutes |
 | [QUICKSTART.md § CLI](QUICKSTART.md) | CLI reference — bb, auth, budget, audit commands |
-| [references/adapter-system.md](references/adapter-system.md) | All 16 adapters with code examples |
+| [references/adapter-system.md](references/adapter-system.md) | All 17 adapters with code examples |
 | [references/trust-levels.md](references/trust-levels.md) | Trust scoring formula and agent roles |
 | [references/auth-guardian.md](references/auth-guardian.md) | Permission system, justification scoring, token lifecycle |
 | [references/blackboard-schema.md](references/blackboard-schema.md) | Blackboard key conventions and namespacing |
 
@@ -18,7 +18,7 @@ npm install
 npx ts-node setup.ts --check
 ```
 
-**Zero external AI dependencies.** All 16 adapters are self-contained — add framework SDKs only when you need them.
+**Zero external AI dependencies.** All 17 adapters are self-contained — add framework SDKs only when you need them.
 
 ---
 
@@ -42,7 +42,7 @@ npx ts-node setup.ts --check
 | `a2a` | A2A | none | Agent-to-Agent protocol |
 | `codex` | Codex | `openai` | OpenAI Codex CLI |
 | `minimax` | MiniMax | none | MiniMax chat completions |
-| `nemoclaw` | NemoClaw | none | NVIDIA sandboxed agent execution |
+| `nemoclaw` | NemoClaw | none | NVIDIA sandboxed agent execution |\n| `aps` | APS | none | Delegation-chain trust mapping |
 
 ---
 
@@ -218,9 +218,9 @@ export class MyFrameworkAdapter extends BaseAdapter {
 ## 8. Run Tests
 
 ```bash
-npx ts-node test-standalone.ts    # 79 core tests
-npx ts-node test-security.ts      # 33 security tests
-npx ts-node test-adapters.ts      # 100+ adapter tests (all 14 frameworks)
+npx ts-node test-standalone.ts    # 88 core tests
+npx ts-node test-security.ts      # 34 security tests
+npx ts-node test-adapters.ts      # 176 adapter tests (all 17 frameworks)
 npx ts-node test-cli.ts           # 65 CLI tests
 ```
 
@@ -230,7 +230,7 @@ npx ts-node test-cli.ts           # 65 CLI tests
 
 ```bash
 npx ts-node setup.ts --check      # Verify installation
-npx ts-node setup.ts --list       # List all 16 adapters
+npx ts-node setup.ts --list       # List all 17 adapters
 npx ts-node setup.ts --example    # Generate example.ts
 ```
 
@@ -347,7 +347,8 @@ Your App
             ├── OpenAIAssistantsAdapter── OpenAI Assistants
             ├── HaystackAdapter     ─── Haystack pipelines
             ├── DSPyAdapter         ─── DSPy modules
-            └── AgnoAdapter         ─── Agno agents/teams
+            ├── AgnoAdapter         ─── Agno agents/teams
+            └── APSAdapter          ─── APS delegation-chain trust
 ```
 
 ---
@@ -568,7 +569,7 @@ import SwarmOrchestrator, {
 // Factory
 import { createSwarmOrchestrator } from 'network-ai';
 
-// All 16 adapters
+// All 17 adapters
 import {
   AdapterRegistry, BaseAdapter,
   OpenClawAdapter, LangChainAdapter, AutoGenAdapter,