v4.0.7 — Enterprise Integration Guide & Supply Chain Security Fix #53

Jovancoding · 2026-02-28T10:53:36Z

Jovancoding
Feb 28, 2026
Maintainer

New INTEGRATION_GUIDE.md — the document to hand a technical lead or solutions architect evaluating Network-AI for production.

8 sections covering the full journey from "we want this" to "it's running":

Discovery — agent inventory template, race condition audit, budget exposure assessment, compliance requirements mapping
Framework Mapping — which of the 12 adapters matches your existing stack; CustomAdapter path for legacy systems and REST APIs
Primitive Mapping — which Network-AI primitive solves which problem (LockedBlackboard → race conditions, FederatedBudget → runaway spend, AuthGuardian → access control, ComplianceMonitor → behavioral governance, etc.)
Phased Rollout — 6 stages (Wrap → Shared State → Budget → Access Control → FSM Governance → MCP Observability) with code examples at each stage
Enterprise Concerns — IAM integration, audit log retention (GDPR/SOC2/HIPAA/PCI-DSS), air-gapped/on-prem deployment, multi-tenant isolation, horizontal scaling
Architecture Patterns — Sidecar (minimal disruption), Full Orchestrator, MCP Control Plane
Validation Checklist — functional, race condition safety, budget enforcement, access control, compliance, and audit checks
Common Mistakes — 8 mistakes with consequences and fixes

Included in the npm package (files array).

socket.json added to package.json files array — was missing in prior versions, so Socket.dev ignore entries were never shipped with the npm package (Supply Chain Security score had dropped to 74)
dist/lib/mcp-transport-sse.js and dist/bin/mcp-server.js added to networkAccess ignore list (intentional HTTP layers from v4.0.0, not flagged in prior ignore entries)

Full Changelog: https://github.com/jovanSAPFIONEER/Network-AI/blob/main/CHANGELOG.md

This discussion was created from the release v4.0.7 — Enterprise Integration Guide & Supply Chain Security Fix.