Feb 21, 6-7 AM (2)
Feb 21, 7-8 AM (9)
Feb 21, 8-9 AM (3)
Feb 21, 9-10 AM (0)
Feb 21, 10-11 AM (1)
Feb 21, 11-12 PM (22)
Feb 21, 12-1 PM (4)
Feb 21, 1-2 PM (2)
Feb 21, 2-3 PM (7)
Feb 21, 3-4 PM (4)
Feb 21, 4-5 PM (9)
Feb 21, 5-6 PM (1)
Feb 21, 6-7 PM (7)
Feb 21, 7-8 PM (3)
Feb 21, 8-9 PM (0)
Feb 21, 9-10 PM (22)
Feb 21, 10-11 PM (33)
Feb 21, 11-12 AM (22)
Feb 22, 12-1 AM (5)
Feb 22, 1-2 AM (3)
Feb 22, 2-3 AM (6)
Feb 22, 3-4 AM (0)
Feb 22, 4-5 AM (6)
Feb 22, 5-6 AM (3)
Feb 22, 6-7 AM (1)
Feb 22, 7-8 AM (0)
Feb 22, 8-9 AM (1)
Feb 22, 9-10 AM (0)
Feb 22, 10-11 AM (1)
Feb 22, 11-12 PM (2)
Feb 22, 12-1 PM (10)
Feb 22, 1-2 PM (1)
Feb 22, 2-3 PM (1)
Feb 22, 3-4 PM (1)
Feb 22, 4-5 PM (10)
Feb 22, 5-6 PM (10)
Feb 22, 6-7 PM (8)
Feb 22, 7-8 PM (13)
Feb 22, 8-9 PM (8)
Feb 22, 9-10 PM (23)
Feb 22, 10-11 PM (20)
Feb 22, 11-12 AM (23)
Feb 23, 12-1 AM (2)
Feb 23, 1-2 AM (3)
Feb 23, 2-3 AM (12)
Feb 23, 3-4 AM (11)
Feb 23, 4-5 AM (0)
Feb 23, 5-6 AM (1)
Feb 23, 6-7 AM (5)
Feb 23, 7-8 AM (78)
Feb 23, 8-9 AM (32)
Feb 23, 9-10 AM (45)
Feb 23, 10-11 AM (42)
Feb 23, 11-12 PM (64)
Feb 23, 12-1 PM (56)
Feb 23, 1-2 PM (111)
Feb 23, 2-3 PM (59)
Feb 23, 3-4 PM (35)
Feb 23, 4-5 PM (28)
Feb 23, 5-6 PM (29)
Feb 23, 6-7 PM (22)
Feb 23, 7-8 PM (17)
Feb 23, 8-9 PM (5)
Feb 23, 9-10 PM (21)
Feb 23, 10-11 PM (30)
Feb 23, 11-12 AM (17)
Feb 24, 12-1 AM (7)
Feb 24, 1-2 AM (6)
Feb 24, 2-3 AM (11)
Feb 24, 3-4 AM (6)
Feb 24, 4-5 AM (6)
Feb 24, 5-6 AM (11)
Feb 24, 6-7 AM (9)
Feb 24, 7-8 AM (36)
Feb 24, 8-9 AM (28)
Feb 24, 9-10 AM (56)
Feb 24, 10-11 AM (42)
Feb 24, 11-12 PM (27)
Feb 24, 12-1 PM (36)
Feb 24, 1-2 PM (52)
Feb 24, 2-3 PM (122)
Feb 24, 3-4 PM (36)
Feb 24, 4-5 PM (129)
Feb 24, 5-6 PM (28)
Feb 24, 6-7 PM (18)
Feb 24, 7-8 PM (15)
Feb 24, 8-9 PM (40)
Feb 24, 9-10 PM (21)
Feb 24, 10-11 PM (38)
Feb 24, 11-12 AM (24)
Feb 25, 12-1 AM (20)
Feb 25, 1-2 AM (6)
Feb 25, 2-3 AM (13)
Feb 25, 3-4 AM (5)
Feb 25, 4-5 AM (2)
Feb 25, 5-6 AM (7)
Feb 25, 6-7 AM (6)
Feb 25, 7-8 AM (16)
Feb 25, 8-9 AM (66)
Feb 25, 9-10 AM (38)
Feb 25, 10-11 AM (25)
Feb 25, 11-12 PM (34)
Feb 25, 12-1 PM (37)
Feb 25, 1-2 PM (33)
Feb 25, 2-3 PM (38)
Feb 25, 3-4 PM (24)
Feb 25, 4-5 PM (21)
Feb 25, 5-6 PM (24)
Feb 25, 6-7 PM (93)
Feb 25, 7-8 PM (37)
Feb 25, 8-9 PM (12)
Feb 25, 9-10 PM (38)
Feb 25, 10-11 PM (30)
Feb 25, 11-12 AM (15)
Feb 26, 12-1 AM (5)
Feb 26, 1-2 AM (3)
Feb 26, 2-3 AM (9)
Feb 26, 3-4 AM (2)
Feb 26, 4-5 AM (2)
Feb 26, 5-6 AM (5)
Feb 26, 6-7 AM (25)
Feb 26, 7-8 AM (22)
Feb 26, 8-9 AM (97)
Feb 26, 9-10 AM (73)
Feb 26, 10-11 AM (42)
Feb 26, 11-12 PM (40)
Feb 26, 12-1 PM (63)
Feb 26, 1-2 PM (55)
Feb 26, 2-3 PM (53)
Feb 26, 3-4 PM (39)
Feb 26, 4-5 PM (12)
Feb 26, 5-6 PM (58)
Feb 26, 6-7 PM (26)
Feb 26, 7-8 PM (38)
Feb 26, 8-9 PM (11)
Feb 26, 9-10 PM (31)
Feb 26, 10-11 PM (39)
Feb 26, 11-12 AM (30)
Feb 27, 12-1 AM (11)
Feb 27, 1-2 AM (3)
Feb 27, 2-3 AM (7)
Feb 27, 3-4 AM (7)
Feb 27, 4-5 AM (4)
Feb 27, 5-6 AM (4)
Feb 27, 6-7 AM (9)
Feb 27, 7-8 AM (8)
Feb 27, 8-9 AM (10)
Feb 27, 9-10 AM (28)
Feb 27, 10-11 AM (43)
Feb 27, 11-12 PM (65)
Feb 27, 12-1 PM (43)
Feb 27, 1-2 PM (24)
Feb 27, 2-3 PM (27)
Feb 27, 3-4 PM (12)
Feb 27, 4-5 PM (37)
Feb 27, 5-6 PM (37)
Feb 27, 6-7 PM (31)
Feb 27, 7-8 PM (9)
Feb 27, 8-9 PM (33)
Feb 27, 9-10 PM (11)
Feb 27, 10-11 PM (41)
Feb 27, 11-12 AM (26)
Feb 28, 12-1 AM (9)
Feb 28, 1-2 AM (7)
Feb 28, 2-3 AM (13)
Feb 28, 3-4 AM (1)
Feb 28, 4-5 AM (4)
Feb 28, 5-6 AM (3)
Feb 28, 6-7 AM (0)
3,823 commits this week Feb 21, 2026 - Feb 28, 2026
chore(deps): bump minimatch in /examples/gift_card
Bumps  and [minimatch](https://github.com/isaacs/minimatch). These dependencies needed to be updated together.

Updates `minimatch` from 9.0.5 to 9.0.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v9.0.5...v9.0.9)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v9.0.5...v9.0.9)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 9.0.9
  dependency-type: indirect
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Bump minimatch from 3.1.2 to 3.1.5
Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.1.2 to 3.1.5.
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Add nix eval fallback to -env closure discovery (#242)
When Hydra resolves builds from cache, it creates only aggregate
"required" check-runs but not individual per-build check-runs.
This causes the GHA upload workflow to discover zero -env closures
and skip all container uploads.

Add a fallback path: when no Hydra check-runs ending in "-env"
are found, evaluate the store paths directly from the flake using
nix eval with extra/discover-env.nix. This ensures containers are
always uploaded regardless of Hydra's check-run behavior.

Also install Nix and checkout the repo in the Discover step to
support the fallback evaluation.
fix(wait-for-hydra): add periodic re-checks during SSE stream
CDN proxies like Cloudflare may buffer SSE events, preventing real-time
delivery of status updates to the client. This caused the script to
hang indefinitely on the SSE stream even after the build completed.

Three fixes:

1. Periodic one-shot re-check: every 120s, poll the bridge's cached
   /status endpoint directly. This catches status changes even when
   SSE events are buffered or lost.

2. Reserve time for fallback: set curl --max-time to TIMEOUT - 120s
   so there's always 2 minutes left for one-shot re-check + polling.

3. Final one-shot re-check after SSE stream ends, before entering
   the polling fallback loop.
Add nix eval fallback to -env closure discovery
When Hydra resolves builds from cache, it creates only aggregate
"required" check-runs but not individual per-build check-runs.
This causes the GHA upload workflow to discover zero -env closures
and skip all container uploads.

Add a fallback path: when no Hydra check-runs ending in "-env"
are found, evaluate the store paths directly from the flake using
nix eval with extra/discover-env.nix. This ensures containers are
always uploaded regardless of Hydra's check-run behavior.

Also install Nix and checkout the repo in the Discover step to
support the fallback evaluation.
chore(deps): bump the npm_and_yarn group across 3 directories with 1 update
Bumps the npm_and_yarn group with 1 update in the /demos/next directory: [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /demos/next-oidc directory: [minimatch](https://github.com/isaacs/minimatch).
Bumps the npm_and_yarn group with 1 update in the /demos/next-sdjwt-workshop directory: [minimatch](https://github.com/isaacs/minimatch).


Updates `minimatch` from 5.1.6 to 5.1.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 6.2.0 to 6.2.3
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 9.0.3 to 9.0.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 5.1.6 to 5.1.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 6.2.0 to 6.2.3
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 9.0.5 to 9.0.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 5.1.6 to 5.1.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 3.1.2 to 3.1.5
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 6.2.0 to 6.2.3
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

Updates `minimatch` from 9.0.3 to 9.0.9
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 5.1.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 6.2.3
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 9.0.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 5.1.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 6.2.3
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 9.0.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 5.1.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 6.2.3
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-version: 9.0.9
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>
fix(wait-for-hydra): enforce timeout during idle SSE streams
Two fixes for SSE mode reliability:

1. Use `read -t 60` instead of blocking `read` so check_timeout fires
   every 60s even when the SSE stream is idle. Without this, if the
   stream goes idle (e.g. Cloudflare buffering, no new events), read
   blocks indefinitely and the script's TIMEOUT is never enforced.

2. After the SSE stream ends, re-check the one-shot endpoint before
   falling back to polling. This catches the case where the target
   status changed while we were connected but the SSE event was lost
   in transit (common with CDN/proxy intermediaries).
Centralize IOG library lists in iog-libs.nix (#240)
* Centralize IOG library lists in iog-libs.nix

Extract the duplicated IOG dependency lists from dynamic.nix,
static.nix, cross-js.nix, and cross-windows.nix into a single
iog-libs.nix file. This eliminates manual synchronization when
adding new libraries (e.g., lmdb was previously missing from
cross-compilation targets) and provides a canonical source of
truth for IOG-specific dependencies.

The centralized file categorizes dependencies into:
- crypto: libblst, libsodium-vrf, secp256k1 (all shell types)
- data: lmdb (dynamic/static only)
- tools: cbor-diag, cddl, gh, icu, jq, yq-go (dynamic/static)
- cross-tools: cbor-diag, cddl (cross-compilation targets)

Each consumer imports iog-libs.nix and transforms as needed
(e.g., static.nix passes static=true to resolve static-* variants).

Addresses #56

* Fix ShellCheck SC2215 in wrapped-cabal script

Move the iog-libs.nix sync comment from inside the shell heredoc
(where it breaks line continuation and triggers SC2215) to a Nix
comment above the writeShellApplicationWithRuntime block.