Bump up cardano-ledger-core version to reflect backport
Apr 05, 11-12 PM (7)
Apr 05, 12-1 PM (5)
Apr 05, 1-2 PM (2)
Apr 05, 2-3 PM (3)
Apr 05, 3-4 PM (3)
Apr 05, 4-5 PM (18)
Apr 05, 5-6 PM (3)
Apr 05, 6-7 PM (2)
Apr 05, 7-8 PM (2)
Apr 05, 8-9 PM (0)
Apr 05, 9-10 PM (5)
Apr 05, 10-11 PM (19)
Apr 05, 11-12 AM (18)
Apr 06, 12-1 AM (4)
Apr 06, 1-2 AM (6)
Apr 06, 2-3 AM (12)
Apr 06, 3-4 AM (11)
Apr 06, 4-5 AM (5)
Apr 06, 5-6 AM (7)
Apr 06, 6-7 AM (4)
Apr 06, 7-8 AM (8)
Apr 06, 8-9 AM (24)
Apr 06, 9-10 AM (15)
Apr 06, 10-11 AM (9)
Apr 06, 11-12 PM (2)
Apr 06, 12-1 PM (38)
Apr 06, 1-2 PM (49)
Apr 06, 2-3 PM (27)
Apr 06, 3-4 PM (8)
Apr 06, 4-5 PM (32)
Apr 06, 5-6 PM (18)
Apr 06, 6-7 PM (3)
Apr 06, 7-8 PM (11)
Apr 06, 8-9 PM (6)
Apr 06, 9-10 PM (9)
Apr 06, 10-11 PM (29)
Apr 06, 11-12 AM (16)
Apr 07, 12-1 AM (8)
Apr 07, 1-2 AM (8)
Apr 07, 2-3 AM (3)
Apr 07, 3-4 AM (4)
Apr 07, 4-5 AM (1)
Apr 07, 5-6 AM (17)
Apr 07, 6-7 AM (6)
Apr 07, 7-8 AM (14)
Apr 07, 8-9 AM (35)
Apr 07, 9-10 AM (38)
Apr 07, 10-11 AM (25)
Apr 07, 11-12 PM (63)
Apr 07, 12-1 PM (38)
Apr 07, 1-2 PM (56)
Apr 07, 2-3 PM (54)
Apr 07, 3-4 PM (24)
Apr 07, 4-5 PM (36)
Apr 07, 5-6 PM (19)
Apr 07, 6-7 PM (22)
Apr 07, 7-8 PM (21)
Apr 07, 8-9 PM (20)
Apr 07, 9-10 PM (16)
Apr 07, 10-11 PM (41)
Apr 07, 11-12 AM (21)
Apr 08, 12-1 AM (13)
Apr 08, 1-2 AM (6)
Apr 08, 2-3 AM (9)
Apr 08, 3-4 AM (9)
Apr 08, 4-5 AM (4)
Apr 08, 5-6 AM (21)
Apr 08, 6-7 AM (40)
Apr 08, 7-8 AM (72)
Apr 08, 8-9 AM (41)
Apr 08, 9-10 AM (24)
Apr 08, 10-11 AM (56)
Apr 08, 11-12 PM (43)
Apr 08, 12-1 PM (36)
Apr 08, 1-2 PM (64)
Apr 08, 2-3 PM (45)
Apr 08, 3-4 PM (17)
Apr 08, 4-5 PM (16)
Apr 08, 5-6 PM (17)
Apr 08, 6-7 PM (27)
Apr 08, 7-8 PM (12)
Apr 08, 8-9 PM (11)
Apr 08, 9-10 PM (6)
Apr 08, 10-11 PM (50)
Apr 08, 11-12 AM (18)
Apr 09, 12-1 AM (7)
Apr 09, 1-2 AM (5)
Apr 09, 2-3 AM (2)
Apr 09, 3-4 AM (4)
Apr 09, 4-5 AM (6)
Apr 09, 5-6 AM (15)
Apr 09, 6-7 AM (36)
Apr 09, 7-8 AM (22)
Apr 09, 8-9 AM (25)
Apr 09, 9-10 AM (33)
Apr 09, 10-11 AM (20)
Apr 09, 11-12 PM (60)
Apr 09, 12-1 PM (68)
Apr 09, 1-2 PM (43)
Apr 09, 2-3 PM (74)
Apr 09, 3-4 PM (22)
Apr 09, 4-5 PM (51)
Apr 09, 5-6 PM (26)
Apr 09, 6-7 PM (23)
Apr 09, 7-8 PM (21)
Apr 09, 8-9 PM (39)
Apr 09, 9-10 PM (18)
Apr 09, 10-11 PM (29)
Apr 09, 11-12 AM (14)
Apr 10, 12-1 AM (5)
Apr 10, 1-2 AM (4)
Apr 10, 2-3 AM (4)
Apr 10, 3-4 AM (12)
Apr 10, 4-5 AM (3)
Apr 10, 5-6 AM (9)
Apr 10, 6-7 AM (29)
Apr 10, 7-8 AM (45)
Apr 10, 8-9 AM (47)
Apr 10, 9-10 AM (20)
Apr 10, 10-11 AM (61)
Apr 10, 11-12 PM (70)
Apr 10, 12-1 PM (46)
Apr 10, 1-2 PM (23)
Apr 10, 2-3 PM (36)
Apr 10, 3-4 PM (33)
Apr 10, 4-5 PM (38)
Apr 10, 5-6 PM (30)
Apr 10, 6-7 PM (11)
Apr 10, 7-8 PM (13)
Apr 10, 8-9 PM (7)
Apr 10, 9-10 PM (25)
Apr 10, 10-11 PM (47)
Apr 10, 11-12 AM (18)
Apr 11, 12-1 AM (6)
Apr 11, 1-2 AM (4)
Apr 11, 2-3 AM (2)
Apr 11, 3-4 AM (0)
Apr 11, 4-5 AM (8)
Apr 11, 5-6 AM (4)
Apr 11, 6-7 AM (5)
Apr 11, 7-8 AM (7)
Apr 11, 8-9 AM (3)
Apr 11, 9-10 AM (0)
Apr 11, 10-11 AM (10)
Apr 11, 11-12 PM (4)
Apr 11, 12-1 PM (7)
Apr 11, 1-2 PM (3)
Apr 11, 2-3 PM (7)
Apr 11, 3-4 PM (10)
Apr 11, 4-5 PM (18)
Apr 11, 5-6 PM (39)
Apr 11, 6-7 PM (0)
Apr 11, 7-8 PM (0)
Apr 11, 8-9 PM (1)
Apr 11, 9-10 PM (1)
Apr 11, 10-11 PM (19)
Apr 11, 11-12 AM (23)
Apr 12, 12-1 AM (4)
Apr 12, 1-2 AM (1)
Apr 12, 2-3 AM (9)
Apr 12, 3-4 AM (2)
Apr 12, 4-5 AM (0)
Apr 12, 5-6 AM (2)
Apr 12, 6-7 AM (0)
Apr 12, 7-8 AM (1)
Apr 12, 8-9 AM (3)
Apr 12, 9-10 AM (2)
Apr 12, 10-11 AM (4)
Apr 12, 11-12 PM (0)
3,195 commits this week
Apr 05, 2026
-
Apr 12, 2026
Compatibility with `cardano-ledger-binary-1.9`
Switch to `VS` in `ActiveStake` and add `Storable` instances for:
* `NonZero` * `CompactForm Coin` * `Credential` * `KeyHash` * `ScriptHash` * and `StakeWithDelegation`
Update index-state and flake.lock
SRP + Switch to `VS` in `ActiveStake` and add `Storable` instances for:
* `NonZero` * `CompactForm Coin` * `Credential` * `KeyHash` * `ScriptHash` * and `StakeWithDelegation`
Update index-state and flake.lock
add Haskell Benchmark (customSmallerIsBetter) benchmark result for 4e3fa17299f274bc93df2f0bdfb59136cbc39a45
Merge pull request #5725 from IntersectMBO/jj/remove-wits-coders
Revert decoders to a more efficient implementation
cardano-node: optimize delegMapSize metric
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?v=4&s=80)
flake.lock: Update
Flake lock file updates:
• Updated input 'advisory-db':
'github:rustsec/advisory-db/ce9208c' (2025-10-03)
→ 'github:rustsec/advisory-db/d99f7b9' (2026-04-11)
• Updated input 'crane':
'github:ipetkov/crane/a669fe7' (2025-09-18)
→ 'github:ipetkov/crane/7cf72d9' (2026-04-10)
• Updated input 'devshell':
'github:numtide/devshell/7c9e793' (2025-03-08)
→ 'github:numtide/devshell/255a2b1' (2026-01-19)
• Updated input 'fenix':
'github:nix-community/fenix/9ba6d89' (2026-03-03)
→ 'github:nix-community/fenix/6fbc54d' (2026-04-11)
• Updated input 'fenix/rust-analyzer-src':
'github:rust-lang/rust-analyzer/3c4ae11' (2026-03-02)
→ 'github:rust-lang/rust-analyzer/9eb97ea' (2026-04-10)
• Updated input 'flake-compat':
'github:edolstra/flake-compat/9100a0f' (2025-05-12)
→ 'github:edolstra/flake-compat/5edf11c' (2025-12-29)
• Updated input 'flake-parts':
'github:hercules-ci/flake-parts/9305fe4' (2025-06-08)
→ 'github:hercules-ci/flake-parts/3107b77' (2026-04-01)
• Updated input 'flake-parts/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/656a641' (2025-06-01)
→ 'github:nix-community/nixpkgs.lib/333c4e0' (2026-03-29)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/b43c397' (2025-06-29)
→ 'github:nixos/nixpkgs/ac62194' (2026-01-02)
• Updated input 'treefmt-nix':
'github:numtide/treefmt-nix/337a4fe' (2026-02-04)
→ 'github:numtide/treefmt-nix/790751f' (2026-04-08)
chore: update translation progress from Crowdin [skip ci]
Artifacts generated from b19c738452b454ba60c99c081c0b48e72425684d
fix(pollux): check nbf claim in JWT.verify
JWT.verify did not validate the nbf (not before) claim, so JWTs with nbf in the future were incorrectly considered valid. This is a security issue per RFC 7519 Section 4.1.5. Added an explicit nbf check after JWT decode: if nbf is present and the current time is before it, verify() returns false. JWTs without an nbf claim keep the previous behavior (no nbf enforced). This is a sister fix to #489/#550 (which addressed the exp claim). Closes #551 Signed-off-by: Seydi Charyyev <[email protected]>
fix(pollux): check exp claim in JWT.verify
JWT.verify did not validate the exp (expiration) claim, so expired JWTs were incorrectly considered valid. This is a security issue per RFC 7519 Section 4.1.4. Added an explicit exp check after JWT decode: if exp is present and the current time is at or past it, verify() returns false. JWTs without an exp claim keep the previous behavior (no expiration enforced). Closes #489 Signed-off-by: Seydi Charyyev <[email protected]>
Fix bulk credential parsing on 10.7.1
[Dijkstra] CIP-159-08: Phantom asset attack prevention (#1120)
Add batch-wide withdrawal bound check to prevent phantom asset attacks when nested transactions combine deposits and withdrawals. `Transaction.lagda.md`: + Define allWithdrawals batch aggregation helper (mirrors allDirectDeposits) `Utxo.lagda.md`: + Define NoPhantomWithdrawals predicate using allWithdrawals + Add NoPhantomWithdrawals premise to UTXO rule + Document phantom asset attack and spend-side safety analogy `Utxo/Properties/Computational.lagda.md`: + Update Computational-UTXO for new premise tuple arity (21+h → 22+h)
feat: offload crypto operations to Web Workers for non-blocking UI
Signed-off-by: Seydi Charyyev <[email protected]>
fix: use direct undefined comparison instead of typeof
Signed-off-by: Seydi Charyyev <[email protected]>
fix: address SonarCloud code smells in worker files
Signed-off-by: Seydi Charyyev <[email protected]>
Artifacts generated from a01e60f09b79683cd6180acc7d380fb09d028b94
Artifacts generated from 4fa6ef3cab1a58b494b939f644460c4d5d0aa4a1
[Dijkstra] CIP-159-04: Update certificate rules for partial withdrawals (#1116)
CIP-159 changes withdrawal semantics from "all-or-nothing" (withdrawal amount must equal the full account balance) to "partial" (any amount up to the current balance may be withdrawn). `Certs.lagda.md`: + Define _≤ᵐ_ relation and Dec-≤ᵐ decision procedure for comparing a Coin value against a Maybe Coin (just bal → amt ≤ bal; nothing → ⊥). + Define applyWithdrawals helper (fold-based pointwise subtraction of withdrawal amounts from account balances). + Relax PRE-CERT precondition to three premises: credential is a registered key hash, credential is in dom rewards, and withdrawal amount ≤ balance (via ≤ᵐ with lookupᵐ?). + Update PRE-CERT effect from zeroing withdrawn credentials to pointwise subtraction via applyWithdrawals. + Document partial withdrawal semantics and version restriction deferral. `Certs/Properties/Computational.lagda.md`: + Add scoped ⁇-≤ᵐ instance (positioned after DELEG/POOL/GOVCERT/CERT proofs to avoid instance pollution). + Update Computational-PRE-CERT for the new three-premise precondition.
Update README with dashboard, extension, and current architecture
Rewrites the project README to reflect the full scope: node with Praos consensus, React dashboard with SSE, standalone SolidJS Chrome extension (Koios), scripts/tools, and funding info. Co-Authored-By: Claude Opus 4.6 <[email protected]>