Home / Cardano Foundation / cardano-wallet
Insights Pull Requests
May 11, 1-2 PM (5)
May 11, 2-3 PM (4)
May 11, 3-4 PM (0)
May 11, 4-5 PM (0)
May 11, 5-6 PM (0)
May 11, 6-7 PM (0)
May 11, 7-8 PM (0)
May 11, 8-9 PM (0)
May 11, 9-10 PM (0)
May 11, 10-11 PM (0)
May 11, 11-12 AM (0)
May 12, 12-1 AM (0)
May 12, 1-2 AM (0)
May 12, 2-3 AM (0)
May 12, 3-4 AM (0)
May 12, 4-5 AM (0)
May 12, 5-6 AM (0)
May 12, 6-7 AM (0)
May 12, 7-8 AM (2)
May 12, 8-9 AM (0)
May 12, 9-10 AM (2)
May 12, 10-11 AM (0)
May 12, 11-12 PM (0)
May 12, 12-1 PM (0)
May 12, 1-2 PM (0)
May 12, 2-3 PM (0)
May 12, 3-4 PM (0)
May 12, 4-5 PM (0)
May 12, 5-6 PM (0)
May 12, 6-7 PM (0)
May 12, 7-8 PM (0)
May 12, 8-9 PM (0)
May 12, 9-10 PM (0)
May 12, 10-11 PM (0)
May 12, 11-12 AM (0)
May 13, 12-1 AM (0)
May 13, 1-2 AM (0)
May 13, 2-3 AM (0)
May 13, 3-4 AM (0)
May 13, 4-5 AM (0)
May 13, 5-6 AM (0)
May 13, 6-7 AM (0)
May 13, 7-8 AM (1)
May 13, 8-9 AM (1)
May 13, 9-10 AM (0)
May 13, 10-11 AM (1)
May 13, 11-12 PM (0)
May 13, 12-1 PM (0)
May 13, 1-2 PM (0)
May 13, 2-3 PM (0)
May 13, 3-4 PM (0)
May 13, 4-5 PM (0)
May 13, 5-6 PM (0)
May 13, 6-7 PM (0)
May 13, 7-8 PM (0)
May 13, 8-9 PM (0)
May 13, 9-10 PM (0)
May 13, 10-11 PM (0)
May 13, 11-12 AM (0)
May 14, 12-1 AM (0)
May 14, 1-2 AM (0)
May 14, 2-3 AM (0)
May 14, 3-4 AM (0)
May 14, 4-5 AM (0)
May 14, 5-6 AM (0)
May 14, 6-7 AM (0)
May 14, 7-8 AM (0)
May 14, 8-9 AM (0)
May 14, 9-10 AM (0)
May 14, 10-11 AM (0)
May 14, 11-12 PM (0)
May 14, 12-1 PM (0)
May 14, 1-2 PM (0)
May 14, 2-3 PM (0)
May 14, 3-4 PM (0)
May 14, 4-5 PM (0)
May 14, 5-6 PM (0)
May 14, 6-7 PM (0)
May 14, 7-8 PM (0)
May 14, 8-9 PM (0)
May 14, 9-10 PM (0)
May 14, 10-11 PM (0)
May 14, 11-12 AM (0)
May 15, 12-1 AM (0)
May 15, 1-2 AM (0)
May 15, 2-3 AM (0)
May 15, 3-4 AM (0)
May 15, 4-5 AM (0)
May 15, 5-6 AM (0)
May 15, 6-7 AM (0)
May 15, 7-8 AM (0)
May 15, 8-9 AM (0)
May 15, 9-10 AM (0)
May 15, 10-11 AM (0)
May 15, 11-12 PM (0)
May 15, 12-1 PM (0)
May 15, 1-2 PM (0)
May 15, 2-3 PM (0)
May 15, 3-4 PM (0)
May 15, 4-5 PM (0)
May 15, 5-6 PM (0)
May 15, 6-7 PM (0)
May 15, 7-8 PM (0)
May 15, 8-9 PM (0)
May 15, 9-10 PM (0)
May 15, 10-11 PM (0)
May 15, 11-12 AM (0)
May 16, 12-1 AM (0)
May 16, 1-2 AM (0)
May 16, 2-3 AM (0)
May 16, 3-4 AM (0)
May 16, 4-5 AM (0)
May 16, 5-6 AM (0)
May 16, 6-7 AM (0)
May 16, 7-8 AM (0)
May 16, 8-9 AM (0)
May 16, 9-10 AM (0)
May 16, 10-11 AM (0)
May 16, 11-12 PM (0)
May 16, 12-1 PM (0)
May 16, 1-2 PM (0)
May 16, 2-3 PM (0)
May 16, 3-4 PM (0)
May 16, 4-5 PM (0)
May 16, 5-6 PM (0)
May 16, 6-7 PM (0)
May 16, 7-8 PM (0)
May 16, 8-9 PM (0)
May 16, 9-10 PM (0)
May 16, 10-11 PM (0)
May 16, 11-12 AM (0)
May 17, 12-1 AM (0)
May 17, 1-2 AM (0)
May 17, 2-3 AM (0)
May 17, 3-4 AM (0)
May 17, 4-5 AM (0)
May 17, 5-6 AM (0)
May 17, 6-7 AM (0)
May 17, 7-8 AM (0)
May 17, 8-9 AM (0)
May 17, 9-10 AM (0)
May 17, 10-11 AM (0)
May 17, 11-12 PM (0)
May 17, 12-1 PM (0)
May 17, 1-2 PM (0)
May 17, 2-3 PM (0)
May 17, 3-4 PM (0)
May 17, 4-5 PM (0)
May 17, 5-6 PM (0)
May 17, 6-7 PM (0)
May 17, 7-8 PM (0)
May 17, 8-9 PM (0)
May 17, 9-10 PM (0)
May 17, 10-11 PM (0)
May 17, 11-12 AM (0)
May 18, 12-1 AM (0)
May 18, 1-2 AM (0)
May 18, 2-3 AM (0)
May 18, 3-4 AM (0)
May 18, 4-5 AM (0)
May 18, 5-6 AM (0)
May 18, 6-7 AM (0)
May 18, 7-8 AM (0)
May 18, 8-9 AM (1)
May 18, 9-10 AM (0)
May 18, 10-11 AM (6)
May 18, 11-12 PM (1)
May 18, 12-1 PM (2)
May 18, 1-2 PM (0)
21 commits this week May 11, 2026 - May 18, 2026
paolino
paolino · · cardano-wallet
Route signed tx through ledger constructor (#5285) (#5286) 
Stacked follow-up for issue #5285, based on
[#5287](https://github.com/cardano-foundation/cardano-wallet/pull/5287)
/ branch `007-ledger-minting`.

## What changed

This PR now contains one narrow API-removal source slice:

- `Cardano.Wallet.buildAndSignTransaction` uses
`Cardano.Wallet.Shelley.Transaction.Ledger.mkTransaction`.
- The obsolete `Cardano.Wallet.Shelley.Transaction.mkTransaction`
cardano-api wrapper was removed.
- The ledger constructor was renamed from `mkTransactionLedger` to
`mkTransaction` now that it owns the production signed path.
- The #5285 and #5287 spec artifacts were aligned with the real state:
mint plumbing is present; script-witness parity remains the blocker for
the unsigned body-builder migration and cert-helper deletion.

## Still out of scope

- `mkUnsignedTransaction` still uses the cardano-api body builder.
- `Transaction/Voting.hs` and `Transaction/Delegation.hs` are not
deleted yet, because their remaining caller still needs the full
unsigned body-builder migration first.
- Script-witness support remains the next blocker.

## Local verification

- `rg -n "mkTransactionLedger" . -S` -> no matches
- `rg -n "\\bmkTransaction\\b"
lib/wallet/src/Cardano/Wallet/Shelley/Transaction.hs -S` -> no matches
- `fourmolu --mode check lib/wallet/src/Cardano/Wallet.hs
lib/wallet/src/Cardano/Wallet/Shelley/Transaction.hs
lib/wallet/src/Cardano/Wallet/Shelley/Transaction/Ledger.hs` -> pass
- `hlint lib/wallet/src/Cardano/Wallet.hs
lib/wallet/src/Cardano/Wallet/Shelley/Transaction.hs
lib/wallet/src/Cardano/Wallet/Shelley/Transaction/Ledger.hs` -> `No
hints`
- `git diff --check` -> pass
- `nix build
.#legacyPackages.x86_64-linux.hsPkgs.cardano-wallet.components.library
--no-link` -> exit 0

Refs: #5285, #5243, #5237, #5287.
fb3b61b1 · master · 15/755 ++ 110 --
paolino
paolino · · cardano-wallet
Plumb mint values through ledger tx builders (#5243) (#5287) 
## Summary

Implements the smallest first slice toward unblocking
[#5285](https://github.com/cardano-foundation/cardano-wallet/issues/5285)
Story 1: the ledger-native transaction builders no longer silently drop
minting.

This PR now includes both the spec artifacts and implementation for
[#5243](https://github.com/cardano-foundation/cardano-wallet/issues/5243):

- adds `toLedgerMintValue :: TokenMap -> TokenMap -> MultiAsset`,
netting wallet mint/burn maps into signed ledger quantities and dropping
zero entries and empty policy buckets
- threads explicit `MultiAsset` mint values through `buildLedgerTx` and
`buildLedgerTxRaw`
- extracts `txAssetsToMint` / `txAssetsToBurn` from `TransactionCtx` for
`mkTransactionLedger`
- extends `constructUnsignedTxLedger` to accept mint/burn maps and
updates the `Cardano.Wallet` call sites
- keeps script-witness support out of scope; that remains the documented
next blocker before non-empty mint transactions can validate on-chain

Follows PR
[#5286](https://github.com/cardano-foundation/cardano-wallet/pull/5286),
which documented why #5285 Story 2 has to land before Story 1.

## Artifacts

- `specs/007-ledger-minting/spec.md` — user stories, requirements,
success criteria, out-of-scope
- `specs/007-ledger-minting/plan.md` — design decisions and
implementation plan
- `specs/007-ledger-minting/research.md` — existing builder/converter
findings
- `specs/007-ledger-minting/data-model.md` — mint/burn netting rules and
invariants
- `specs/007-ledger-minting/contracts/ledger-mint-translation.md` —
converter and builder contracts
- `specs/007-ledger-minting/tasks.md` — planned task breakdown
- `specs/007-ledger-minting/quickstart.md` — reviewer commands

## Verification

- [x] `cabal test cardano-wallet-primitive:test -O0 -v0
--test-show-details=streaming --test-options='--match
toLedgerMintValue'` — 8 examples, 0 failures; each property passed 1000
tests
- [x] `cabal test cardano-wallet-unit:unit -O0 -v0
--test-show-details=streaming --test-options='--match explicit'` — 3
examples, 0 failures
- [x] `fourmolu --mode check` on touched Haskell files
- [x] `git diff --check`
- [x] `rg 'mempty -- TODO: minting support' lib/wallet/src` returns zero
matches
- [x] `rg '^toLedgerMintValue' lib/primitive` returns matches in
`Convert.hs`
- [x] FR-008 guard: `git diff origin/master --
lib/wallet/src/Cardano/Wallet/Shelley/Transaction/Ledger.hs | rg -i
'ScriptSource'` returns zero matches

## Out of Scope

- Script witnesses for mint scripts
- The `mkUnsignedTransaction` migration itself, tracked under #5285
- Dijkstra-era support in `mkLedgerTx`, unchanged from the existing
Conway-only behaviour
1a1bb451 · master · 15/1,125 ++ 6 --
paolino
paolino · · cardano-wallet
docs(5285): correct Story 1 scope — Wallet.hs is already migrated 
Pre-flight grep on the implementation pass showed lib/wallet/src/Cardano/
Wallet.hs already imports certificateFrom{Delegation,Voting}ActionLedger
from Cardano.Wallet.Shelley.Transaction.Ledger and its 4 callsites at
2729, 2738, 3533, 3542 already use the *Ledger variants. The Phase-0
research had it wrong; plan.md, quickstart.md, and tasks.md inherited
the error. Spec.md was correct (line 18 already named the single
caller).

Slice scope shrinks from 'edit two files + delete two + cabal prune' to
'edit Shelley/Transaction.hs + delete two + cabal prune'. SC-001/SC-002,
FR-003, and the byte-equivalence proof are unaffected.
a2b4742f · 006-drop-api-shelley-tx · 4/20 ++ 23 --
paolino
paolino · · cardano-wallet
docs(5285): defer Story 1 — blocked transitively on Story 2 
Implementation pre-flight on dce6abbbf1 showed that swapping the cert
callsites in Shelley/Transaction.hs to the *Ledger variants does not
compile: mkUnsignedTransaction passes the cert lists into
constructUnsignedTx (the cardano-api body builder) at line ~834, which
expects [ApiCert.Certificate (CardanoApiEra era)]. The *Ledger builders
return [Ledger.TxCert era]. The two are not interchangeable at this
callsite.

Cardano/Wallet.hs works on *Ledger because it routes through
constructUnsignedTxLedger — a different code path. The original Phase-0
inventory missed which body builder consumed the certs in
Shelley/Transaction.hs.

Net: Story 1 is blocked transitively on Story 2 (the body-construction
migration to constructUnsignedTxLedger), which is itself blocked on the
minting + script-witness AC in #5243. When Story 2 lands, the helper
deletion + cabal prune fold into Story 2's commit; there is no
standalone Story 1 PR. PR #5286 becomes documentation-only.

Files updated:
- spec.md: Story 1 marked BLOCKED on Story 2; assumption section corrected.
- plan.md: Status block reflects all three stories deferred; Vertical
  Slice Contract rewritten so Story 1 folds into Story 2.
- research.md: new §G "Cert flow in Shelley/Transaction.hs — what
  blocks Story 1" with the GHC error and the call-graph analysis.
- data-model.md: Story 1 row corrected to note it is not downstream-
  compatible at the Shelley/Transaction.hs callsites today.
- contracts/module-interface-invariants.md: helper-deletion invariants
  re-pegged to Story 2.
- quickstart.md: stub explaining the deferral and what to do when
  Story 2 unblocks.
- tasks.md: no work tasks; the prior T001-T014 are removed in favour of
  a deferral notice.

Refs: #5285, #5243, #5237
00da9a23 · 006-drop-api-shelley-tx · 7/105 ++ 271 --
paolino
paolino · · cardano-wallet
docs(5285): plan, research, data-model, contracts, quickstart 
Phase 0 + Phase 1 speckit artifacts for issue #5285.

- plan.md (109 lines): three vertical slices, constitution check clean,
  Story 1 unblocked, Stories 2-3 blocked on Transaction.Ledger
  prerequisite ACs in #5243.
- research.md: full cardano-api symbol inventory in
  Shelley/Transaction.hs (~40 symbols across 4 imports), per-Story
  grouping, ledger replacements located.
- data-model.md: cardano-api -> ledger type map per Story.
- contracts/module-interface-invariants.md: exports that MUST stay
  signature-stable across all three slices.
- quickstart.md: ordered implementation walkthrough for Story 1
  (the unblocked slice; 5 callsites in Shelley/Transaction.hs,
  4 in Cardano/Wallet.hs, plus cabal prune and helper deletion).
2313ce81 · 006-drop-api-shelley-tx · 5/565 ++ 0 --
paolino
paolino · · cardano-wallet
feat(5243): plumb ledger minting through tx builders 
Add toLedgerMintValue for wallet mint/burn TokenMaps and feed the signed ledger MultiAsset through mkTransactionLedger, constructUnsignedTxLedger, buildLedgerTx, and buildLedgerTxRaw.

The converter properties cover totality, empty input, mint-only, burn-only, netting, phantom-key absence, empty-bucket absence, and disjoint roundtrip. The builder specs cover buildLedgerTx and both buildLedgerTxRaw input branches.

Verification:

cabal test cardano-wallet-primitive:test -O0 -v0 --test-show-details=streaming --test-options='--match toLedgerMintValue'

cabal test cardano-wallet-unit:unit -O0 -v0 --test-show-details=streaming --test-options='--match explicit'

hlint lib

fourmolu --mode check touched Haskell files

git diff --check
6d0d81cc · 006-drop-api-shelley-tx · 7/374 ++ 6 --
paolino
paolino · · cardano-wallet
feat(5243): plumb ledger minting through tx builders 
Add toLedgerMintValue for wallet mint/burn TokenMaps and feed the signed ledger MultiAsset through mkTransactionLedger, constructUnsignedTxLedger, buildLedgerTx, and buildLedgerTxRaw.

The converter properties cover totality, empty input, mint-only, burn-only, netting, phantom-key absence, empty-bucket absence, and disjoint roundtrip. The builder specs cover buildLedgerTx and both buildLedgerTxRaw input branches.

Verification:

cabal test cardano-wallet-primitive:test -O0 -v0 --test-show-details=streaming --test-options='--match toLedgerMintValue'

cabal test cardano-wallet-unit:unit -O0 -v0 --test-show-details=streaming --test-options='--match explicit'

fourmolu --mode check touched Haskell files

git diff --check
08d1644f · 007-ledger-minting · 7/374 ++ 6 --
paolino
paolino · · cardano-wallet
docs(5285): defer Story 1 — blocked transitively on Story 2 
Implementation pre-flight on dce6abbbf1 showed that swapping the cert
callsites in Shelley/Transaction.hs to the *Ledger variants does not
compile: mkUnsignedTransaction passes the cert lists into
constructUnsignedTx (the cardano-api body builder) at line ~834, which
expects [ApiCert.Certificate (CardanoApiEra era)]. The *Ledger builders
return [Ledger.TxCert era]. The two are not interchangeable at this
callsite.

Cardano/Wallet.hs works on *Ledger because it routes through
constructUnsignedTxLedger — a different code path. The original Phase-0
inventory missed which body builder consumed the certs in
Shelley/Transaction.hs.

Net: Story 1 is blocked transitively on Story 2 (the body-construction
migration to constructUnsignedTxLedger), which is itself blocked on the
minting + script-witness AC in #5243. When Story 2 lands, the helper
deletion + cabal prune fold into Story 2's commit; there is no
standalone Story 1 PR. PR #5286 becomes documentation-only.

Files updated:
- spec.md: Story 1 marked BLOCKED on Story 2; assumption section corrected.
- plan.md: Status block reflects all three stories deferred; Vertical
  Slice Contract rewritten so Story 1 folds into Story 2.
- research.md: new §G "Cert flow in Shelley/Transaction.hs — what
  blocks Story 1" with the GHC error and the call-graph analysis.
- data-model.md: Story 1 row corrected to note it is not downstream-
  compatible at the Shelley/Transaction.hs callsites today.
- contracts/module-interface-invariants.md: helper-deletion invariants
  re-pegged to Story 2.
- quickstart.md: stub explaining the deferral and what to do when
  Story 2 unblocks.
- tasks.md: no work tasks; the prior T001-T014 are removed in favour of
  a deferral notice.

Refs: #5285, #5243, #5237
df8ebe8c · 006-drop-api-shelley-tx · 7/105 ++ 271 --
paolino
paolino · · cardano-wallet
ci: shorten memory benchmark temp root 
Use a short mktemp directory under /tmp for the Linux Memory Benchmark before running the existing benchmark command. This avoids the cardano-node Unix socket path limit while keeping other benchmark jobs on runner.temp.

Ignore local llm review artifacts and remove the tracked llm review file inherited from the rebased base so the repository keeps llm out of tracked source.

Verification: actionlint accepted linux-benchmarks.yml with repository custom runner-label warnings ignored. The representative issue path is 120 bytes, and the new representative socket path is 94 bytes.

Live verification: Linux Benchmarks workflow dispatch 25724369765 passed end to end and uploaded memory-bench-results.csv, memory.hp, memory.svg, memory.log, and memory.error.log.

Fixes #5283
e04a5f40 · 5283-linux-memory-benchmark-tmpdir · 6/130 ++ 12 --
paolino
paolino · · cardano-wallet
Use Mithril snapshots for every restoration benchmark run (#5279) 
Closes #5278.

Reworks `.github/workflows/restoration-benchmarks.yml` so every
restoration benchmark run starts from a fresh Mithril-provisioned node
database instead of relying on whatever the self-hosted runner happens
to have on disk. Each matrix leg (`base`, `seq0`, `seq1`, `rnd5`) gets
an isolated node DB so legs can run in parallel without sharing mutable
state. Mithril download/extraction/node startup/sync are timed and
logged separately from the wallet restoration benchmark.

## Status

Draft. Only the feature spec is in so far
(`specs/005-mithril-bench-snapshots/spec.md`). Plan, tasks, and
implementation follow as separate commits on this branch.
e5a72854 · 5283-linux-memory-benchmark-tmpdir · 15/1,601 ++ 60 --
paolino
paolino · · cardano-wallet
ci: shorten memory benchmark temp root 
Use a short mktemp directory under /tmp for the Linux Memory Benchmark before running the existing benchmark command. This avoids the cardano-node Unix socket path limit while keeping other benchmark jobs on runner.temp.

Gate: llm/reviews/local-5283-linux-memory-benchmark-tmpdir/gate.sh (old path 120 bytes, new path 94 bytes).

Fixes #5283
60805e89 · 5283-linux-memory-benchmark-tmpdir · 4/129 ++ 1 --
Showing 21 of 21 recent commits. Check out Cardano Foundation on GitHub to see more.