3,736 commits this week - Cardano Updates

Apr 13, 1-2 PM (80)

Apr 13, 2-3 PM (42)

Apr 13, 3-4 PM (20)

Apr 13, 4-5 PM (31)

Apr 13, 5-6 PM (25)

Apr 13, 6-7 PM (18)

Apr 13, 7-8 PM (13)

Apr 13, 8-9 PM (15)

Apr 13, 9-10 PM (22)

Apr 13, 10-11 PM (29)

Apr 13, 11-12 AM (13)

Apr 14, 12-1 AM (6)

Apr 14, 1-2 AM (8)

Apr 14, 2-3 AM (15)

Apr 14, 3-4 AM (4)

Apr 14, 4-5 AM (4)

Apr 14, 5-6 AM (63)

Apr 14, 6-7 AM (50)

Apr 14, 7-8 AM (101)

Apr 14, 8-9 AM (33)

Apr 14, 9-10 AM (21)

Apr 14, 10-11 AM (34)

Apr 14, 11-12 PM (42)

Apr 14, 12-1 PM (72)

Apr 14, 1-2 PM (96)

Apr 14, 2-3 PM (44)

Apr 14, 3-4 PM (35)

Apr 14, 4-5 PM (9)

Apr 14, 5-6 PM (20)

Apr 14, 6-7 PM (22)

Apr 14, 7-8 PM (14)

Apr 14, 8-9 PM (10)

Apr 14, 9-10 PM (11)

Apr 14, 10-11 PM (24)

Apr 14, 11-12 AM (24)

Apr 15, 12-1 AM (3)

Apr 15, 1-2 AM (9)

Apr 15, 2-3 AM (8)

Apr 15, 3-4 AM (1)

Apr 15, 4-5 AM (1)

Apr 15, 5-6 AM (32)

Apr 15, 6-7 AM (7)

Apr 15, 7-8 AM (25)

Apr 15, 8-9 AM (49)

Apr 15, 9-10 AM (40)

Apr 15, 10-11 AM (127)

Apr 15, 11-12 PM (53)

Apr 15, 12-1 PM (60)

Apr 15, 1-2 PM (43)

Apr 15, 2-3 PM (45)

Apr 15, 3-4 PM (29)

Apr 15, 4-5 PM (44)

Apr 15, 5-6 PM (21)

Apr 15, 6-7 PM (33)

Apr 15, 7-8 PM (15)

Apr 15, 8-9 PM (17)

Apr 15, 9-10 PM (5)

Apr 15, 10-11 PM (20)

Apr 15, 11-12 AM (16)

Apr 16, 12-1 AM (12)

Apr 16, 1-2 AM (6)

Apr 16, 2-3 AM (7)

Apr 16, 3-4 AM (3)

Apr 16, 4-5 AM (4)

Apr 16, 5-6 AM (8)

Apr 16, 6-7 AM (33)

Apr 16, 7-8 AM (32)

Apr 16, 8-9 AM (31)

Apr 16, 9-10 AM (27)

Apr 16, 10-11 AM (50)

Apr 16, 11-12 PM (56)

Apr 16, 12-1 PM (58)

Apr 16, 1-2 PM (30)

Apr 16, 2-3 PM (40)

Apr 16, 3-4 PM (46)

Apr 16, 4-5 PM (47)

Apr 16, 5-6 PM (56)

Apr 16, 6-7 PM (17)

Apr 16, 7-8 PM (68)

Apr 16, 8-9 PM (38)

Apr 16, 9-10 PM (11)

Apr 16, 10-11 PM (23)

Apr 16, 11-12 AM (23)

Apr 17, 12-1 AM (12)

Apr 17, 1-2 AM (8)

Apr 17, 2-3 AM (3)

Apr 17, 3-4 AM (4)

Apr 17, 4-5 AM (3)

Apr 17, 5-6 AM (9)

Apr 17, 6-7 AM (26)

Apr 17, 7-8 AM (96)

Apr 17, 8-9 AM (70)

Apr 17, 9-10 AM (53)

Apr 17, 10-11 AM (41)

Apr 17, 11-12 PM (58)

Apr 17, 12-1 PM (64)

Apr 17, 1-2 PM (39)

Apr 17, 2-3 PM (46)

Apr 17, 3-4 PM (36)

Apr 17, 4-5 PM (13)

Apr 17, 5-6 PM (9)

Apr 17, 6-7 PM (25)

Apr 17, 7-8 PM (15)

Apr 17, 8-9 PM (3)

Apr 17, 9-10 PM (16)

Apr 17, 10-11 PM (24)

Apr 17, 11-12 AM (16)

Apr 18, 12-1 AM (2)

Apr 18, 1-2 AM (2)

Apr 18, 2-3 AM (6)

Apr 18, 3-4 AM (1)

Apr 18, 4-5 AM (2)

Apr 18, 5-6 AM (2)

Apr 18, 6-7 AM (1)

Apr 18, 7-8 AM (2)

Apr 18, 8-9 AM (4)

Apr 18, 9-10 AM (4)

Apr 18, 10-11 AM (1)

Apr 18, 11-12 PM (6)

Apr 18, 12-1 PM (7)

Apr 18, 1-2 PM (8)

Apr 18, 2-3 PM (9)

Apr 18, 3-4 PM (0)

Apr 18, 4-5 PM (2)

Apr 18, 5-6 PM (6)

Apr 18, 6-7 PM (2)

Apr 18, 7-8 PM (2)

Apr 18, 8-9 PM (4)

Apr 18, 9-10 PM (9)

Apr 18, 10-11 PM (21)

Apr 18, 11-12 AM (23)

Apr 19, 12-1 AM (1)

Apr 19, 1-2 AM (4)

Apr 19, 2-3 AM (1)

Apr 19, 3-4 AM (0)

Apr 19, 4-5 AM (0)

Apr 19, 5-6 AM (2)

Apr 19, 6-7 AM (0)

Apr 19, 7-8 AM (2)

Apr 19, 8-9 AM (1)

Apr 19, 9-10 AM (1)

Apr 19, 10-11 AM (4)

Apr 19, 11-12 PM (7)

Apr 19, 12-1 PM (6)

Apr 19, 1-2 PM (8)

Apr 19, 2-3 PM (22)

Apr 19, 3-4 PM (7)

Apr 19, 4-5 PM (4)

Apr 19, 5-6 PM (3)

Apr 19, 6-7 PM (8)

Apr 19, 7-8 PM (3)

Apr 19, 8-9 PM (8)

Apr 19, 9-10 PM (6)

Apr 19, 10-11 PM (25)

Apr 19, 11-12 AM (23)

Apr 20, 12-1 AM (4)

Apr 20, 1-2 AM (5)

Apr 20, 2-3 AM (2)

Apr 20, 3-4 AM (7)

Apr 20, 4-5 AM (1)

Apr 20, 5-6 AM (6)

Apr 20, 6-7 AM (7)

Apr 20, 7-8 AM (29)

Apr 20, 8-9 AM (42)

Apr 20, 9-10 AM (35)

Apr 20, 10-11 AM (94)

Apr 20, 11-12 PM (42)

Apr 20, 12-1 PM (23)

Apr 20, 1-2 PM (1)

3,736 commits this week Apr 13, 2026 - Apr 20, 2026

abhigyan1102 · Mon, 20 Apr 26 14:01:38 +0000 · atala-prism-wallet-sdk-ts

fix(pollux): add exp/nbf validation and fix error logging in SDJWT.verify

Fixes #553 — replaced console.log with silent catch in verification
error path, consistent with JWT.verify behavior.

Fixes #554 — added exp and nbf temporal claim validation per
RFC 7519 §4.1.4 and §4.1.5. SDJWT.verify now returns false for
expired or not-yet-valid credentials.

Changes:
- Check exp claim before signature verification; return false if expired
- Check nbf claim before signature verification; return false if too early
- Remove console.log(err) from catch block (was leaking error details)
- Change import from type-only to value import for Domain (needed for
  runtime access to JWT.Claims enum)

Signed-off-by: abhigyan1102 <[email protected]>
Signed-off-by: Abhigyan Singh <[email protected]>

908cfaa1 · pull/556/head · 2/116 ++ 4 --

crocodile-dentist · Mon, 20 Apr 26 13:52:30 +0000 · ouroboros-network

parser

390d62c4 · mw/incremental-decoding · 1/148 ++ 0 --

crocodile-dentist · Mon, 20 Apr 26 13:52:22 +0000 · ouroboros-network

Benchmark to compare incremental and non-incremental block decoders

81193b30 · mw/incremental-decoding · 5/421 ++ 0 --

Jimbo4350 · Mon, 20 Apr 26 13:48:15 +0000 · cardano-api

Add changelog fragment for FromJSON TxOut

bc2431fd · issue-926-experimental-fromjson-txout · 1/12 ++ 0 --

vrom911 · Mon, 20 Apr 26 13:48:00 +0000 · hydra-poc

Add value conservation check to partial fanout validator

checkPartialFanout now verifies that headInValue equals headOutValue plus the sum of all distributed output values, preventing Ada theft via outputs not counted by the membership proof. The off-chain partialFanoutTx builder is updated accordingly to subtract distributed values from the continuing head output.

9b3930aa · vrom911/partial-fanout-SignableRepresentation · 6/59 ++ 15 --

vrom911 · Mon, 20 Apr 26 13:47:59 +0000 · hydra-poc

remove unnecessary constraints

0b1e2ff7 · vrom911/partial-fanout-SignableRepresentation · 1/5 ++ 5 --

vrom911 · Mon, 20 Apr 26 13:47:59 +0000 · hydra

Update scripts, fix tests

16698820 · vrom911/partial-fanout-SignableRepresentation · 5/19 ++ 11 --

vrom911 · Mon, 20 Apr 26 13:47:54 +0000 · hydra

Update Chap, use plutus-accumulator

73aad337 · vrom911/partial-fanout-SignableRepresentation · 2/4 ++ 11 --

Jimbo4350 · Mon, 20 Apr 26 13:45:10 +0000 · cardano-api

Add FromJSON instance for new experimental TxOut

Add per-era FromJSON instances for the experimental TxOut type,
mirroring the ToJSON structure. Pre-Alonzo eras parse address and
value only; Alonzo adds datum hash support; Babbage+ adds inline
datum (parsed from inlineDatumRaw with hash validation) and
reference script support. Supplemental datums are deliberately
unsupported as the ledger TxOut does not carry them.

6b6cb3d6 · issue-926-experimental-fromjson-txout · 2/149 ++ 1 --

Jimbo4350 · Mon, 20 Apr 26 13:43:49 +0000 · cardano-api

Merge pull request #1175 from IntersectMBO/add-has-callstack-constraints

Add HasCallStack constraints to functions containing error calls

b545f509 · gh-readonly-queue/master/pr-1175-a9e0c9c092b69b0318a15ac106ba83e38558bfbc · 19/60 ++ 24 --

abhigyan1102 · Mon, 20 Apr 26 13:37:58 +0000 · atala-prism-wallet-sdk-ts

fix(pollux): improve JWT VC/VP payload validation (#539)

Signed-off-by: Abhigyan Singh <[email protected]>

26fb3178 · main · 2/119 ++ 12 --

dependabot[bot] · Mon, 20 Apr 26 13:30:50 +0000 · atala-prism-wallet-sdk-ts

chore(deps): bump picomatch in the npm_and_yarn group across 1 directory

Bumps the npm_and_yarn group with 1 update in the / directory: [picomatch](https://github.com/micromatch/picomatch).


Updates `picomatch` from 2.3.1 to 2.3.2
- [Release notes](https://github.com/micromatch/picomatch/releases)
- [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
- [Commits](https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2)

---
updated-dependencies:
- dependency-name: picomatch
  dependency-version: 2.3.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>

4dbfab91 · dependabot/npm_and_yarn/npm_and_yarn-66413a1f6e · 1/3 ++ 3 --

abhigyan1102 · Mon, 20 Apr 26 13:30:41 +0000 · atala-prism-wallet-sdk-ts

fix(pollux): improve JWT VC/VP payload validation

Signed-off-by: Abhigyan Singh <[email protected]>

fb52ba74 · pull/539/head · 2/119 ++ 12 --

koslambrou · Mon, 20 Apr 26 13:29:07 +0000 · cardano-ledger

Remove `allowLeftOver` flag from `binaryGetDecoder` and simplify IP address decoders

No longer allow leftover bytes when decoding IPv4/IPv6 addresses regardless
of decoder version.

12d21aa4 · 5664-check-if-any-of-the-pre-conway-transactions-contain-padded-ip-addresses · 1/4 ++ 15 --

Bosko Majdanac · Mon, 20 Apr 26 13:27:43 +0000 · cardano-upgrades-gitbook

GITBOOK-311: No subject

4f0d6268 · main · 1/27 ++ 25 --

paweljakubas · Mon, 20 Apr 26 13:27:02 +0000 · cardano-addresses

add fixes to docs and wasm workflows

4a8f6218 · paweljakubas/fix-browser-wasm-loading-1 · 2/13 ++ 16 --

dependabot[bot] · Mon, 20 Apr 26 13:09:33 +0000 · gouroboros-starter-kit

chore(deps): Bump actions/cache from 5.0.4 to 5.0.5

Bumps [actions/cache](https://github.com/actions/cache) from 5.0.4 to 5.0.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v5.0.4...v5.0.5)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-version: 5.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

cd40932e · dependabot/github_actions/actions/cache-5.0.5 · 1/1 ++ 1 --

waalge · Mon, 20 Apr 26 13:08:44 +0000 · aiken

bump rust version

Prev version (1.86 stable) did not support recently used feature

131aeca8 · pull/1300/head · 2/7 ++ 7 --

dependabot[bot] · Mon, 20 Apr 26 13:08:42 +0000 · gouroboros-starter-kit

chore(deps): Bump github.com/blinklabs-io/gouroboros

Bumps [github.com/blinklabs-io/gouroboros](https://github.com/blinklabs-io/gouroboros) from 0.153.1 to 0.165.2.
- [Release notes](https://github.com/blinklabs-io/gouroboros/releases)
- [Changelog](https://github.com/blinklabs-io/gouroboros/blob/main/RELEASE_NOTES.md)
- [Commits](https://github.com/blinklabs-io/gouroboros/compare/v0.153.1...v0.165.2)

---
updated-dependencies:
- dependency-name: github.com/blinklabs-io/gouroboros
  dependency-version: 0.165.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

9465a5dd · dependabot/go_modules/github.com/blinklabs-io/gouroboros-0.165.2 · 2/27 ++ 29 --

Soupstraw · Mon, 20 Apr 26 13:08:26 +0000 · cardano-ledger

Update eras/shelley/impl/testlib/Test/Cardano/Ledger/Shelley/Binary/RoundTrip.hs

Co-authored-by: Alexey Kuleshevich <[email protected]>

4c13d2c3 · jj/metadatum-int-tests · 1/13 ++ 10 --

abhigyan1102 · Mon, 20 Apr 26 13:08:01 +0000 · atala-prism-wallet-sdk-ts

feat(pollux): support both 'jwt' and 'prism/jwt' credential formats (… (#536)

Signed-off-by: Abhigyan Singh <[email protected]>

f2e30626 · dependabot/npm_and_yarn/npm_and_yarn-66413a1f6e · 5/137 ++ 4 --

github-actions[bot] · Mon, 20 Apr 26 13:02:41 +0000 · iogx

Weekly Update of All flake.lock Files (#128)

Co-authored-by: zeme-wana <[email protected]>

2f0f1886 · main · 2/23 ++ 23 --

Soupstraw · Mon, 20 Apr 26 13:02:24 +0000 · cardano-ledger

Update eras/shelley/impl/testlib/Test/Cardano/Ledger/Shelley/Binary/RoundTrip.hs

Co-authored-by: Alexey Kuleshevich <[email protected]>

193311c3 · jj/metadatum-int-tests · 1/1 ++ 1 --

Soupstraw · Mon, 20 Apr 26 13:01:31 +0000 · cardano-ledger

Add negative tests for Metadatum int decoding range

Verify that the decoder rejects big integers (CBOR tags 2/3) outside
the valid CBOR int range of -2^64 .. 2^64-1, and accepts values at
the boundaries. Also fix an off-by-one in the comment documenting
the supported range.

Co-authored-by: teodanciu <[email protected]>

397e94db · jj/metadatum-int-tests · 2/24 ++ 1 --

abhigyan1102 · Mon, 20 Apr 26 12:56:37 +0000 · atala-prism-wallet-sdk-ts

feat(pollux): support both 'jwt' and 'prism/jwt' credential formats (#444)

Signed-off-by: Abhigyan Singh <[email protected]>

e5f9ab64 · pull/536/head · 5/137 ++ 4 --

Show more commits

Showing 25 of 3736 recent commits.

Yesterday's Report

New Repo Discovered

New Releases