Cardano Updates

Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.13 to 7.5.16.
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/isaacs/node-tar/compare/v7.5.13...v7.5.16)

---
updated-dependencies:
- dependency-name: tar
  dependency-version: 7.5.16
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

Fix Moog CLI download for new asset naming

Koz/999

Replace the Blockfrost-raw and cardano-wallet detection tabs with Evolution and Mesh provider tabs (keeping cardano-cli), so the page uses the same SDK tabs as the rest of the curriculum and its own send section. Detection polls the address UTXOs via each SDK's provider and sums lovelace.

Standardize closing-section headings to Next steps and Key takeaways, fix the Module 6 overview title (was DeFi and Integrations for the Build a dApp module), add the missing id to the optimization page, clarify two sidebar labels, and convert all em and en dashes to ASCII across the curriculum.

The File Hygiene workflow (reusable lint-files.yml from
hyperledger-identus/.github) runs markdownlint-cli2 over **/*.md.
The repo config (.markdownlint-cli2.yaml) ignored only the root
CHANGELOG.md, but per-package CHANGELOGs (packages/**/CHANGELOG.md)
are auto-generated by `nx release` and written without a trailing
newline, violating MD047/single-trailing-newline.

This made the lint / Markdown job fail on every PR after each release
that rewrote the per-package changelogs (e.g. Dependabot PR #661).

Fix: change the ignore from "CHANGELOG.md" to "**/CHANGELOG.md" so all
generated changelogs (root + per-package) are exempt, consistent with
how the root changelog was already handled.

Verified locally: markdownlint-cli2 '**/*.md' -> 0 error(s).

Signed-off-by: Pat Losoponkul <[email protected]>

* Increase lower bound on aeson >= 2.3 to avoid a DoS vulnerability in
  earlier versions:
    https://haskell.github.io/security-advisories/advisory/HSEC-2026-0007.html
* Make it compatible with QuickCheck == 2.18.* and earlier.

The antithesis-leios workflow downloaded the Moog CLI with the glob
"moog-*-linux64.tar.gz". As of Moog v0.5.1.3 the release asset naming
changed and no "*-linux64.tar.gz" asset exists, so "gh release download"
failed with "no assets match the file pattern", breaking CI on main.

Update the pattern to the current convention,
"moog-<version>-x86_64-linux-musl.tar.gz", deriving the version from the
release tag. The v2.0.1 CLI interface (facts test-runs, requester
create-test, and the MOOG_* env vars) is unchanged, so no other updates
are needed.

Resolves #944

Signed-off-by: Chris Gianelloni <[email protected]>

Records the precise, ordered steps to make this PR faithful to the top-down
plan: delete the Certs-PoV provider modules (Certs/Properties/PoV and PoVLemmas,
which are #1210's work), drop their imports from Certs/Properties, and lift the
facts they provide (CERTS-pov, and later CERTS-coinFromDeposits-updateCertDeposits)
to module parameters in Entities.Properties.PoV and the LEDGER-PoV module. Notes
that Utxo/Utxow-PoV are already absent (deferred to #1189) and already
parameterized, flags the Conway-side touches to re-check, and cross-references
the separate coinFromGovDeposit re-derivation. Prose only; to be executed in a
session with the Agda toolchain so each step can be typechecked.

https://claude.ai/code/session_0174ZBS1RKAGSbBXDsESUwoA

epoch is now a view (migration-2-0049), not a table: document it as the UNION
of epoch_finalized + epoch_current, and add the new epoch_current view and
epoch_finalized / epoch_sync_enabled tables. Also correct the header note - the
schema-doc generator (BaseSchema.hs / gen-schema-docs) was removed in the
Persistent->Hasql rewrite, so the file is now maintained manually.

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Fabio Pinheiro <[email protected]>

Note in the native-scripts section that anyone can deposit to a multisig address while the k-of-n requirement only gates spending, the one concept the Evolution multi-sig tutorial added that we had not stated.

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pat Losoponkul <[email protected]>

Records the precise, ordered steps to make this PR faithful to the top-down
plan: delete the Certs-PoV provider modules (Certs/Properties/PoV and PoVLemmas,
which are #1210's work), drop their imports from Certs/Properties, and lift the
facts they provide (CERTS-pov, and later CERTS-coinFromDeposits-updateCertDeposits)
to module parameters in Entities.Properties.PoV and the LEDGER-PoV module. Notes
that Utxo/Utxow-PoV are already absent (deferred to #1189) and already
parameterized, flags the Conway-side touches to re-check, and cross-references
the separate coinFromGovDeposit re-derivation. Prose only; to be executed in a
session with the Agda toolchain so each step can be typechecked.

https://claude.ai/code/session_0174ZBS1RKAGSbBXDsESUwoA

Add a 'Building for the browser' section to Connect a wallet with the complete fix (node polyfills, the node: scheme strip, and the libsodium-wrappers-sumo override), so developers find it independently of the upstream Mesh fix. Mirror it in the Mesh template README, point the Your first dApp walkthrough at it, and surface the walkthrough from scaffolding via an admonition.