Jun 15, 12-1 PM (40)
Jun 15, 1-2 PM (26)
Jun 15, 2-3 PM (21)
Jun 15, 3-4 PM (24)
Jun 15, 4-5 PM (21)
Jun 15, 5-6 PM (13)
Jun 15, 6-7 PM (13)
Jun 15, 7-8 PM (7)
Jun 15, 8-9 PM (26)
Jun 15, 9-10 PM (20)
Jun 15, 10-11 PM (22)
Jun 15, 11-12 AM (39)
Jun 16, 12-1 AM (11)
Jun 16, 1-2 AM (5)
Jun 16, 2-3 AM (1)
Jun 16, 3-4 AM (9)
Jun 16, 4-5 AM (6)
Jun 16, 5-6 AM (1)
Jun 16, 6-7 AM (16)
Jun 16, 7-8 AM (81)
Jun 16, 8-9 AM (18)
Jun 16, 9-10 AM (28)
Jun 16, 10-11 AM (22)
Jun 16, 11-12 PM (31)
Jun 16, 12-1 PM (37)
Jun 16, 1-2 PM (49)
Jun 16, 2-3 PM (34)
Jun 16, 3-4 PM (28)
Jun 16, 4-5 PM (37)
Jun 16, 5-6 PM (17)
Jun 16, 6-7 PM (26)
Jun 16, 7-8 PM (9)
Jun 16, 8-9 PM (11)
Jun 16, 9-10 PM (4)
Jun 16, 10-11 PM (31)
Jun 16, 11-12 AM (9)
Jun 17, 12-1 AM (8)
Jun 17, 1-2 AM (8)
Jun 17, 2-3 AM (11)
Jun 17, 3-4 AM (4)
Jun 17, 4-5 AM (1)
Jun 17, 5-6 AM (6)
Jun 17, 6-7 AM (99)
Jun 17, 7-8 AM (33)
Jun 17, 8-9 AM (23)
Jun 17, 9-10 AM (56)
Jun 17, 10-11 AM (18)
Jun 17, 11-12 PM (19)
Jun 17, 12-1 PM (57)
Jun 17, 1-2 PM (28)
Jun 17, 2-3 PM (37)
Jun 17, 3-4 PM (26)
Jun 17, 4-5 PM (19)
Jun 17, 5-6 PM (16)
Jun 17, 6-7 PM (10)
Jun 17, 7-8 PM (14)
Jun 17, 8-9 PM (12)
Jun 17, 9-10 PM (37)
Jun 17, 10-11 PM (29)
Jun 17, 11-12 AM (14)
Jun 18, 12-1 AM (12)
Jun 18, 1-2 AM (8)
Jun 18, 2-3 AM (5)
Jun 18, 3-4 AM (11)
Jun 18, 4-5 AM (11)
Jun 18, 5-6 AM (11)
Jun 18, 6-7 AM (10)
Jun 18, 7-8 AM (20)
Jun 18, 8-9 AM (83)
Jun 18, 9-10 AM (45)
Jun 18, 10-11 AM (51)
Jun 18, 11-12 PM (23)
Jun 18, 12-1 PM (67)
Jun 18, 1-2 PM (14)
Jun 18, 2-3 PM (53)
Jun 18, 3-4 PM (44)
Jun 18, 4-5 PM (64)
Jun 18, 5-6 PM (24)
Jun 18, 6-7 PM (21)
Jun 18, 7-8 PM (13)
Jun 18, 8-9 PM (17)
Jun 18, 9-10 PM (23)
Jun 18, 10-11 PM (30)
Jun 18, 11-12 AM (26)
Jun 19, 12-1 AM (13)
Jun 19, 1-2 AM (9)
Jun 19, 2-3 AM (5)
Jun 19, 3-4 AM (2)
Jun 19, 4-5 AM (11)
Jun 19, 5-6 AM (4)
Jun 19, 6-7 AM (92)
Jun 19, 7-8 AM (18)
Jun 19, 8-9 AM (38)
Jun 19, 9-10 AM (39)
Jun 19, 10-11 AM (27)
Jun 19, 11-12 PM (30)
Jun 19, 12-1 PM (53)
Jun 19, 1-2 PM (66)
Jun 19, 2-3 PM (32)
Jun 19, 3-4 PM (61)
Jun 19, 4-5 PM (9)
Jun 19, 5-6 PM (4)
Jun 19, 6-7 PM (17)
Jun 19, 7-8 PM (16)
Jun 19, 8-9 PM (11)
Jun 19, 9-10 PM (45)
Jun 19, 10-11 PM (30)
Jun 19, 11-12 AM (8)
Jun 20, 12-1 AM (4)
Jun 20, 1-2 AM (0)
Jun 20, 2-3 AM (4)
Jun 20, 3-4 AM (1)
Jun 20, 4-5 AM (8)
Jun 20, 5-6 AM (6)
Jun 20, 6-7 AM (6)
Jun 20, 7-8 AM (6)
Jun 20, 8-9 AM (2)
Jun 20, 9-10 AM (2)
Jun 20, 10-11 AM (0)
Jun 20, 11-12 PM (2)
Jun 20, 12-1 PM (7)
Jun 20, 1-2 PM (1)
Jun 20, 2-3 PM (9)
Jun 20, 3-4 PM (11)
Jun 20, 4-5 PM (1)
Jun 20, 5-6 PM (0)
Jun 20, 6-7 PM (2)
Jun 20, 7-8 PM (8)
Jun 20, 8-9 PM (7)
Jun 20, 9-10 PM (0)
Jun 20, 10-11 PM (17)
Jun 20, 11-12 AM (5)
Jun 21, 12-1 AM (14)
Jun 21, 1-2 AM (0)
Jun 21, 2-3 AM (1)
Jun 21, 3-4 AM (0)
Jun 21, 4-5 AM (1)
Jun 21, 5-6 AM (0)
Jun 21, 6-7 AM (9)
Jun 21, 7-8 AM (1)
Jun 21, 8-9 AM (2)
Jun 21, 9-10 AM (2)
Jun 21, 10-11 AM (1)
Jun 21, 11-12 PM (2)
Jun 21, 12-1 PM (0)
Jun 21, 1-2 PM (17)
Jun 21, 2-3 PM (4)
Jun 21, 3-4 PM (10)
Jun 21, 4-5 PM (4)
Jun 21, 5-6 PM (8)
Jun 21, 6-7 PM (7)
Jun 21, 7-8 PM (19)
Jun 21, 8-9 PM (0)
Jun 21, 9-10 PM (1)
Jun 21, 10-11 PM (15)
Jun 21, 11-12 AM (15)
Jun 22, 12-1 AM (12)
Jun 22, 1-2 AM (6)
Jun 22, 2-3 AM (9)
Jun 22, 3-4 AM (4)
Jun 22, 4-5 AM (2)
Jun 22, 5-6 AM (29)
Jun 22, 6-7 AM (17)
Jun 22, 7-8 AM (49)
Jun 22, 8-9 AM (90)
Jun 22, 9-10 AM (50)
Jun 22, 10-11 AM (45)
Jun 22, 11-12 PM (52)
Jun 22, 12-1 PM (21)
3,294 commits this week Jun 15, 2026 - Jun 22, 2026
v0d1ch
v0d1ch · · hydra-poc
Enforce --deposit-period consistency across all head nodes 
  Embed depositPeriod in the on-chain OpenDatum at Init time so every
  node can validate it against its local --deposit-period config.
  A node with a mismatching value emits IgnoredHeadInitializing, the
  same way contestationPeriod mismatches are already handled.

  - New Plutus type Hydra.Data.DepositPeriod and off-chain
    Hydra.Tx.DepositPeriod (moved out of hydra-node into hydra-tx so
    HeadParameters can reference it)
  - depositPeriod added to OpenDatum and HeadParameters
  - onIdleChainInitTx guard extended with configuredDepositPeriod == depositPeriod
  - validateParameters in Node.hs checks mismatch on restart (DepositPeriodMismatch)
  - prop_ignoresUnrelatedOnInitTx extended with genOnInitWithDifferentDepositPeriod
  - Stale golden files deleted (script hashes and HeadParameters JSON change)
  - Docs updated: --deposit-period is now a protocol parameter

Signed-off-by: Sasha Bogicevic <[email protected]>
a4d5db29 · enforce-deposit-period · 50/210 ++ 8,905 --
vrom911
vrom911 · · hydra-poc
Stop benchmark working state from leaking into published docs (#2739) 
The matrix bench ran each cluster directly in `cellDir`, which lives
under the published benchmarks/ output. Node working state (etcd WAL
segments, `cardano-node` db, logs) was published, and since the docs
deploy uses `clean:false` it accumulated on `gh-pages` until the branch
exceeded the GitHub Pages 10GB limit, breaking every deployment.

Run each matrix cell in a throwaway temp dir so only dataset.json and
the aggregated scenarios.md reach the output. Also strip any
etcd/db/logs dirs in the publish workflow as a safety net before
deploying.

<!-- Describe your change here -->

---

<!-- Consider each and tick it off one way or the other -->
* [ ] CHANGELOG updated or not needed
* [ ] Documentation updated or not needed
* [ ] Haddocks updated or not needed
* [ ] No new TODOs introduced or explained herafter
21991650 · enforce-deposit-period · 2/13 ++ 1 --
rhyslbw
rhyslbw · · cardano-js-sdk
fix(deps): pin protobufjs to 7.6.4 (CRITICAL ACE re-introduced by #1723) 
#1723 removed the protobufjs resolution as "redundant" — wrong. Without it the
tree resolves protobufjs 7.2.6 (via @trezor), vulnerable to GHSA-xq3m-2v4x-88gg
(CRITICAL arbitrary code execution, affects < 7.5.5) + 5 high + 4 medium.

This can't be fixed by a parent bump: @trezor/connect 9.7.3 (latest) still pins
@trezor/[email protected] + @trezor/[email protected] (both
latest), which declare @trezor/[email protected] -> protobufjs 7.4.0 (also < 7.5.5).
And even @trezor's patched @trezor/[email protected] only reaches protobufjs 7.5.5,
which still carries 10 open advisories — only 7.6.4 is fully clean, and no @trezor
release reaches it. Documented last-resort pin per the remediation policy.

Pin -> 7.6.4 (clean). Build green. Tracked in #1701 (remove once @trezor aligns).

Co-Authored-By: Claude Opus 4.8 (1M context) <[email protected]>
ba6a01cd · fix/restore-protobufjs-serialize-resolutions · 2/7 ++ 33 --
dependabot[bot]
dependabot[bot] · · atala-prism-building-blocks
chore(deps): bump @openapitools/openapi-generator-cli 
Bumps the npm-prod-deps group with 1 update in the /cloud-agent/client/generator directory: [@openapitools/openapi-generator-cli](https://github.com/OpenAPITools/openapi-generator-cli).


Updates `@openapitools/openapi-generator-cli` from 2.38.0 to 2.39.0
- [Release notes](https://github.com/OpenAPITools/openapi-generator-cli/releases)
- [Commits](https://github.com/OpenAPITools/openapi-generator-cli/compare/v2.38.0...v2.39.0)

---
updated-dependencies:
- dependency-name: "@openapitools/openapi-generator-cli"
  dependency-version: 2.39.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-prod-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
8ed210a2 · dependabot/npm_and_yarn/cloud-agent/client/generator/npm-prod-deps-7704612800 · 2/17 ++ 17 --
dependabot[bot]
dependabot[bot] · · atala-prism-building-blocks
chore(deps): bump the actions-deps group across 1 directory with 5 updates 
Bumps the actions-deps group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `6.0.3` | `7.0.0` |
| [actions/setup-java](https://github.com/actions/setup-java) | `5.2.0` | `5.3.0` |
| [sbt/setup-sbt](https://github.com/sbt/setup-sbt) | `1.2.1` | `1.4.0` |
| [EnricoMi/publish-unit-test-result-action](https://github.com/enricomi/publish-unit-test-result-action) | `2.23.0` | `2.24.0` |
| [oasdiff/oasdiff-action](https://github.com/oasdiff/oasdiff-action) | `0.0.57` | `0.1.3` |



Updates `actions/checkout` from 6.0.3 to 7.0.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/df4cb1c069e1874edd31b4311f1884172cec0e10...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0)

Updates `actions/setup-java` from 5.2.0 to 5.3.0
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/be666c2fcd27ec809703dec50e508c2fdc7f6654...ad2b38190b15e4d6bdf0c97fb4fca8412226d287)

Updates `sbt/setup-sbt` from 1.2.1 to 1.4.0
- [Release notes](https://github.com/sbt/setup-sbt/releases)
- [Commits](https://github.com/sbt/setup-sbt/compare/af116cce31c00823d3903ce687f9cda3a4f19f1b...3afe9cf056c5d139bfc46579af1192d77a2f0821)

Updates `EnricoMi/publish-unit-test-result-action` from 2.23.0 to 2.24.0
- [Release notes](https://github.com/enricomi/publish-unit-test-result-action/releases)
- [Commits](https://github.com/enricomi/publish-unit-test-result-action/compare/c950f6fb443cb5af20a377fd0dfaa78838901040...d0a4676d0e0b938bc201470d88276b7c74c712b3)

Updates `oasdiff/oasdiff-action` from 0.0.57 to 0.1.3
- [Release notes](https://github.com/oasdiff/oasdiff-action/releases)
- [Commits](https://github.com/oasdiff/oasdiff-action/compare/3530478ec30f84adedbfeb28f0d9527a290f50a9...ccc2442df0d99f8c419ed73e3de88641c91b3bc6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions-deps
- dependency-name: actions/setup-java
  dependency-version: 5.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-deps
- dependency-name: sbt/setup-sbt
  dependency-version: 1.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-deps
- dependency-name: EnricoMi/publish-unit-test-result-action
  dependency-version: 2.24.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-deps
- dependency-name: oasdiff/oasdiff-action
  dependency-version: 0.1.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
d388c401 · dependabot/github_actions/actions-deps-86e9ac6f4a · 13/34 ++ 34 --
etorreborre
etorreborre · · amaru
test: serde checks (#969) 
* test: use cddl and antigen to generate serialization test cases

Signed-off-by: Eric Torreborre <[email protected]>

* test: add a flox environment to install and run the cbor fixture generator

Signed-off-by: Eric Torreborre <[email protected]>

* test: generate serialization test cases

Signed-off-by: Eric Torreborre <[email protected]>

---------

Signed-off-by: Eric Torreborre <[email protected]>
9a99fb42 · main · 300/5,220 ++ 20 --
dependabot[bot]
dependabot[bot] · · gouroboros
chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0 (#1825) 
* chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.52.0 to 0.53.0.
- [Commits](https://github.com/golang/crypto/compare/v0.52.0...v0.53.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* docs(examples): go mod tidy

Signed-off-by: Chris Gianelloni <[email protected]>

---------

Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: Chris Gianelloni <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Chris Gianelloni <[email protected]>
cf53ec0e · main · 18/54 ++ 54 --
dependabot[bot]
dependabot[bot] · · open-enterprise-agent
chore(deps): bump form-data in /cloud-agent/client/generator 
Bumps [form-data](https://github.com/form-data/form-data) from 4.0.5 to 4.0.6.
- [Changelog](https://github.com/form-data/form-data/blob/master/CHANGELOG.md)
- [Commits](https://github.com/form-data/form-data/compare/v4.0.5...v4.0.6)

---
updated-dependencies:
- dependency-name: form-data
  dependency-version: 4.0.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
fa5cfca6 · dependabot/npm_and_yarn/cloud-agent/client/generator/form-data-4.0.6 · 1/14 ++ 7 --
dependabot[bot]
dependabot[bot] · · open-enterprise-agent
chore(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 
Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.1 to 4.2.0.
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nodeca/js-yaml/compare/4.1.1...4.2.0)

---
updated-dependencies:
- dependency-name: js-yaml
  dependency-version: 4.2.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
1754fbab · dependabot/npm_and_yarn/js-yaml-4.2.0 · 1/13 ++ 3 --
Showing 25 of 3294 recent commits.