What is the 'Neural Link'?

The Neural Link is a bi-directional bridge that connects AI agents (like Gemini or Claude) directly to the Neo.mjs runtime. It allows agents to 'see' the application's Scene Graph, inspect component state, verify event listeners, and even mutate the running application in real-time. This turns the application into a 'glass box' for AI, enabling autonomous debugging and feature development.

Why is Neo.mjs called an 'Application Engine' instead of a framework?

Traditional frameworks are general-purpose libraries (like a Toyota) that help you organize code, but they compile away into ephemeral DOM nodes. Neo.mjs is a precision-engineered runtime (like an F1 car), similar to Unreal Engine for games. It maintains a persistent 'Scene Graph' of objects in a separate worker thread. These objects retain their identity, state, and relationships, allowing for advanced capabilities like multi-window orchestration, runtime permutation, and deep AI introspection that are impossible with 'melted plastic' DOM-based frameworks.

What is 'Context Engineering'?

Context Engineering is the practice of curating the environment and information flow for AI agents to maximize their autonomy. In Neo.mjs, this is implemented via three Model Context Protocol (MCP) servers: a Knowledge Base for semantic code understanding, a Memory Core for learning from past sessions, and a GitHub Workflow server for project management. This ecosystem allows agents to work as fully integrated members of the development team.

What is 'Object Permanence' in the context of Neo.mjs?

In Neo.mjs, UI components are persistent JavaScript objects living in the App Worker, not just transient rendering results. This 'Object Permanence' means a component (like a Dashboard) maintains its state (scroll position, user input, internal logic) even if it is detached from the DOM or moved to a different browser window. This is the 'Lego Technic' approach versus the 'Duplo' approach of traditional frameworks.

What is an 'Agent Operating System'?

Neo.mjs v11 introduced the concept of an Agent OS, where the platform itself provides the tools and interfaces for AI agents to operate. It combines a standalone, type-safe AI SDK for autonomous 'Code Execution' with the Neural Link for runtime control. This enables agents to monitor, debug, and heal the application autonomously, effectively acting as an operating system for synthetic intelligence.

How does Neo.mjs handle multi-window applications?

Neo.mjs uses shared web workers to run a single application instance across multiple browser windows. All windows share the same application state and data in real-time. Components can even move between windows while retaining their JavaScript instances. This enables desktop-class experiences like multi-window IDEs, browser-based email clients, and multi-screen control rooms.

What makes Neo.mjs different from React, Angular, or Vue?

Neo.mjs is fundamentally different in its architecture: (1) It uses True Multithreading via web workers to prevent UI jank, (2) It is an AI-Native Application Engine with built-in bridges for AI collaboration, and (3) It treats components as persistent objects in a Scene Graph, enabling native multi-window support and runtime permutation.

Frontmatter

id	10860
title	Optional per-agent GitHub credentials: operator-supplied identity→token mapping
state	Closed
labels	enhancementaiarchitecturemodel-experience
assignees	neo-opus-4-7
createdAt	May 7, 2026, 1:12 AM
updatedAt	May 9, 2026, 11:30 PM
githubUrl	https://github.com/neomjs/neo/issues/10860
author	neo-opus-4-7
commentsCount	1
parentIssue	null
subIssues	[]
subIssuesCompleted	0
subIssuesTotal	0
blockedBy	[]
blocking	[]
closedAt	May 7, 2026, 1:25 AM

Optional per-agent GitHub credentials: operator-supplied identity→token mapping

Name: Neo.mjs Application Engine
Author: Neo.mjs

Closedenhancementaiarchitecturemodel-experience

neo-opus-4-7 commented on May 7, 2026, 1:12 AM

Context

The github-workflow MCP server currently authenticates all calls via a single GH_TOKEN env var loaded at startup. For deployments where multiple agents share one GitHub user (typical single-operator deployments), this is correct. For deployments where the operator wants per-agent GitHub-attribution (e.g., multiple agents authoring distinct PRs / commits / comments under separate GitHub users), the current substrate provides no enabling primitive.

This ticket is preventive operational substrate / MX hardening. It introduces an OPTIONAL primitive that lets operators configure per-agent token resolution — without mandating per-agent credentials and without baking specific identities into the substrate.

This ticket supersedes #10858, which baked specific agent identities into env-var naming (an anti-pattern for external operators with their own agent identities).

The Problem

For multi-agent deployments where per-agent GitHub-attribution matters:

All agents currently appear as the same GitHub user in PR/commit/issue authorship.
Audit logs cannot distinguish which agent identity actually performed an action.
Operators have no substrate-level mechanism to map agent identities to distinct PATs.

The Architectural Reality

RequestContextService.getAgentIdentityNodeId() exposes the calling agent's identity at MCP boundary.
The github-workflow MCP server reads credentials at startup; no per-call token selection.
An operator-supplied mapping (file or env-set) keyed by agent identity is the simplest enabling primitive — operators define their own naming conventions, identities, and granularity.

The Fix

Optional config file at operator-defined path:
- Env var NEO_GH_CREDENTIALS_FILE (default unset → falls through to legacy single-token behavior)
- File format: JSON object mapping agent identity → PAT
```
   {
  "@neo-opus-4-7": "ghp_xxx",
  "@neo-gemini-3-1-pro": "ghp_yyy",
  "@external-deployment-agent-1": "ghp_zzz"
}
```
- Gitignored; operator-managed; permission 0600 recommended.
Token resolution helper in github-workflow MCP server:
- At each authenticated call, get RequestContextService.getAgentIdentityNodeId().
- If credentials file is configured AND has an entry for this identity → use that token.
- Else fall through to legacy GH_TOKEN env var (backward-compat for single-operator deployments).
- Audit log emits { agentIdentity, githubUser, tokenSource: 'mapping' | 'legacy' } per call.
Documentation in learn/agentos/per-agent-credentials.md:
- When per-agent credentials matter (which deployments benefit)
- How to set up the credentials file
- Operator-side PAT scope recommendations
- Mapping file is OPTIONAL; default behavior unchanged

Contract Ledger Matrix

Target Surface	Source of Authority	Proposed Behavior	Fallback / Edge Case	Docs	Evidence
`NEO_GH_CREDENTIALS_FILE` env var	Operator	Path to JSON mapping file; unset → legacy behavior	Unset / file-missing → legacy `GH_TOKEN` used; logged once at startup	`learn/agentos/per-agent-credentials.md` (new)	Unit test: unset-uses-legacy, set-uses-mapping, missing-identity-falls-back
Mapping file format	Operator-supplied	JSON object: `{ agentIdentityNodeId: pat }`	Malformed JSON → ERROR + refuse to start github-workflow MCP (fail-fast)	Same	Unit test: malformed-rejected
`RequestContextService.getAgentIdentityNodeId()` → token resolution	github-workflow MCP server helper	Maps agent ID via mapping file; falls through to legacy	Returns null if no source available; tools refuse with structured error	Same	Unit test: identity-without-token-refuses-cleanly
Audit log per call	github-workflow MCP server	Logs `{ agentIdentity, githubUser, tokenSource }`	Standard log level	Same	Verify in integration test

Acceptance Criteria

NEO_GH_CREDENTIALS_FILE env var honored by github-workflow MCP at startup
Token resolution helper looks up per-agent mapping; falls through to legacy GH_TOKEN
Audit log emits { agentIdentity, githubUser, tokenSource } per authenticated call
Malformed credentials file → fail-fast with clear error message at startup
learn/agentos/per-agent-credentials.md documenting setup + when-to-use
Unit tests: (a) no mapping → legacy used, (b) mapping with match → mapping used, (c) mapping without match → legacy used, (d) malformed file → fail-fast, (e) audit log content
No regression for existing single-GH_TOKEN deployments

Out of Scope

Per-agent PAT generation/rotation tooling (operator-side concern)
Encrypted credentials file (separate hardening primitive)
Cross-machine credentials replication
Mandating per-agent credentials (this is an OPTIONAL enabling primitive; default behavior unchanged)

Avoided Traps / Gold Standards Rejected

Per-agent env-var naming convention (e.g., GH_TOKEN_<NORMALIZED_AGENT_ID>) — superseded #10858; bakes specific identities into substrate, breaks for external operators with arbitrary agent identities. The operator-supplied mapping file supports arbitrary identities by design.
Per-MCP-session credential negotiation — would require MCP transport changes; operator-supplied file is simpler + sufficient for v1.
Single shared service-account PAT with custom commit author signing — doesn't fix attribution at GitHub-API level; only changes commit author email which is a different surface.
OAuth flows replacing PAT — out of scope; current substrate uses PAT.

Supersedes #10858 (closed as design-flawed)
Pairs conceptually with #10859 (per-domain env-file split) — both improve operator credential hygiene without mandating any single deployment shape

Origin Session ID: 8b31fd62-6a53-40b5-aae2-c5288f8ced09 Retrieval Hint: "optional per-agent GitHub credentials operator-supplied mapping file github-workflow MCP token resolution"