input-output-hk
diff --git a/‎.github/workflows/build.yml‎
Lines changed: 95 additions & 0 deletions b/‎.github/workflows/build.yml‎
Lines changed: 95 additions & 0 deletions
diff --git a/‎.github/workflows/ci_tests.yml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/ci_tests.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/nix.yml‎
Lines changed: 105 additions & 0 deletions b/‎.github/workflows/nix.yml‎
Lines changed: 105 additions & 0 deletions
diff --git a/‎Cargo.lock‎
Lines changed: 23 additions & 34 deletions b/‎Cargo.lock‎
Lines changed: 23 additions & 34 deletions
diff --git a/‎README.md‎
Lines changed: 4 additions & 2 deletions b/‎README.md‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎SECURITY.md‎
Lines changed: 17 additions & 0 deletions b/‎SECURITY.md‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎book/src/core-ledger-doc/api/v0.yaml‎
Lines changed: 6 additions & 4 deletions b/‎book/src/core-ledger-doc/api/v0.yaml‎
Lines changed: 6 additions & 4 deletions
diff --git a/‎flake.lock‎
Lines changed: 3 additions & 3 deletions b/‎flake.lock‎
Lines changed: 3 additions & 3 deletions
@@ -0,0 +1,95 @@
+name: Build
+
+on:
+  push:
+    branches: [ "main" ]
+    paths-ignore: ["README.md", "CODE_OF_CONDUCT.md", "CONTRIBUTING.md"]
+  pull_request:
+    branches: [ "main" ]
+    paths-ignore: ["README.md", "CODE_OF_CONDUCT.md", "CONTRIBUTING.md"]
+
+env:
+  CARGO_TERM_COLOR: always
+  RUSTFLAGS: -D warnings
+  RUST_BACKTRACE: 1
+  CARGO_INCREMENTAL: 0
+
+jobs:
+  build_on_linux:
+    name: Build Catalyst Core on Linux
+    runs-on: ubuntu-latest
+    env:
+      CARGO_FLAGS: --verbose --locked
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+        with:
+          ref: ${{ github.event.pull_request.head.sha }}
+
+      - uses: Swatinem/rust-cache@v2
+
+      - name: Install deps
+        run:
+          sudo apt install -y protobuf-compiler libssl-dev libpq-dev libsqlite3-dev pkg-config
+
+      - name: Build on Linux
+        uses: actions-rs/toolchain@v1
+        with:
+          toolchain: "1.65"
+      - run: cargo build
+
+  build_on_windows:
+    name: Build Catalyst Core on Windows
+    runs-on: windows-latest
+    env:
+      CARGO_FLAGS: --verbose --locked
+    steps:
+      - name: Checkout code on PR
+        #Workaround for the running out of disk space issue. See https://github.com/actions/runner-images/issues/1341
+        run: |
+          mkdir C:\\${{ github.event.repository.name }}
+          git clone -n -v --progress https://github.com/input-output-hk/${{ github.event.repository.name }}.git C:\\${{ github.event.repository.name }}
+          cd C:\\${{ github.event.repository.name }}
+          git checkout ${{ github.event.pull_request.head.sha }}
+        if: ${{ github.event_name == 'pull_request' }}
+
+      - name: Checkout code on push
+        run: |
+          mkdir C:\\${{ github.event.repository.name }}
+          git clone -v --progress https://github.com/input-output-hk/${{ github.event.repository.name }}.git C:\\${{ github.event.repository.name }}
+          cd C:\\${{ github.event.repository.name }}
+        if: ${{ github.event_name == 'push' }}
+
+      - name: Allow long paths on Windows
+        working-directory: "C:\\${{ github.event.repository.name }}"
+        shell: powershell
+        run: |
+          reg add HKLM\SYSTEM\CurrentControlSet\Control\FileSystem /v LongPathsEnabled /t REG_DWORD /d 1 /f
+          git config --system core.longpaths true
+
+      - uses: Swatinem/rust-cache@v2
+        with:
+          workspaces: "C:\\${{ github.event.repository.name }}"
+
+      - name: Set default linker
+        working-directory: "C:\\${{ github.event.repository.name }}"
+        run: rustup default stable-x86_64-pc-windows-msvc
+
+      - name: Install dependencies
+        working-directory: "C:\\${{ github.event.repository.name }}"
+        run:
+          choco install -y protoc openssl sqlite postgresql14
+
+      - name: Set PostgreSQL env variables
+        working-directory: "C:\\${{ github.event.repository.name }}"
+        shell: powershell
+        run: |
+          "PQ_LIB_DIR=${env:PROGRAMFILES}\PostgreSQL\14\lib" >> $env:GITHUB_ENV
+
+      - uses: actions-rs/toolchain@v1
+        with:
+          toolchain: "1.65"
+
+      - name: Build on Windows
+        working-directory: "C:\\${{ github.event.repository.name }}"
+        run: cargo build --workspace
@@ -210,4 +210,4 @@ jobs:
         with:
           toolchain: "1.65"  # it says it can read the rust-toolchain file, but it fails if we omit this
           components: rustfmt, clippy
-      - run: scripts/check-fmt.sh
+      - run: scripts/check-fmt.sh
@@ -0,0 +1,105 @@
+name: Nix CI
+
+on:
+  pull_request:
+    paths:
+      - '.github/workflows/nix.yml'
+      - 'nix/**'
+      - 'src/**'
+      - 'Cargo.*'
+      - 'flake.*'
+  push:
+    branches:
+      - main
+    paths:
+      - '.github/workflows/nix.yml'
+      - 'nix/**'
+      - 'src/**'
+      - 'Cargo.*'
+      - 'flake.*'
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+concurrency:
+  group: ${{ github.sha }}
+  cancel-in-progress: true
+
+jobs:
+  discover:
+    outputs:
+      hits: ${{ steps.discovery.outputs.hits }}
+      nix_conf: ${{ steps.discovery.outputs.nix_conf }}
+    runs-on: ubuntu-latest
+    concurrency:
+      group: ${{ github.workflow }}
+    steps:
+      - name: Standard Discovery
+        uses: divnix/std-action/discover@main
+        id: discovery
+  publish-containers:
+    needs: discover
+    strategy:
+      fail-fast: false
+      matrix:
+        target: ${{ fromJSON(needs.discover.outputs.hits).containers.publish }}
+    name: ${{ matrix.target.cell }} - ${{ matrix.target.name }}
+    runs-on: ubuntu-latest
+    steps:
+      - run: |
+          config="$HOME/.docker/config.json"
+          mkdir -p "${config%/*}"
+          jq -n --arg token "${{ secrets.DOCKER_AUTH_TOKEN }}" '{ "auths": { "registry.ci.iog.io": { auth: $token } } }' > "$config"
+          chmod 0600 "$config"
+      - uses: divnix/std-action/run@main
+        with:
+          extra_nix_config: |
+            ${{ needs.discover.outputs.nix_conf }}
+          json: ${{ toJSON(matrix.target) }}
+          nix_key: ${{ secrets.NIX_SIGNING_KEY }}
+          s3_id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          s3_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          cache: s3://iog-catalyst-cache?region=eu-central-1
+  build-packages:
+    if: always()
+    needs:
+      - discover
+      - publish-containers
+    strategy:
+      fail-fast: false
+      matrix:
+        target: ${{ fromJSON(needs.discover.outputs.hits).packages.build }}
+    name: ${{ matrix.target.cell }} - ${{ matrix.target.name }}
+    runs-on: ubuntu-latest
+    steps:
+      - uses: divnix/std-action/run@main
+        with:
+          extra_nix_config: |
+            ${{ needs.discover.outputs.nix_conf }}
+          json: ${{ toJSON(matrix.target) }}
+          nix_key: ${{ secrets.NIX_SIGNING_KEY }}
+          s3_id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          s3_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          cache: s3://iog-catalyst-cache?region=eu-central-1
+  build-devshells:
+    if: always()
+    needs:
+      - discover
+      - publish-containers
+    strategy:
+      fail-fast: false
+      matrix:
+        target: ${{ fromJSON(needs.discover.outputs.hits).devshells.build }}
+    name: ${{ matrix.target.cell }} - ${{ matrix.target.name }}
+    runs-on: ubuntu-latest
+    steps:
+      - uses: divnix/std-action/run@main
+        with:
+          extra_nix_config: |
+            ${{ needs.discover.outputs.nix_conf }}
+          json: ${{ toJSON(matrix.target) }}
+          nix_key: ${{ secrets.NIX_SIGNING_KEY }}
+          s3_id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          s3_key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          cache: s3://iog-catalyst-cache?region=eu-central-1
@@ -74,9 +74,11 @@ brew install protobuf-c libsigsegv libpq libserdes pkg-config
 
 ##### Windows
 
+- [choco](https://chocolatey.org/)
 
-TODO: - https://github.com/input-output-hk/catalyst-core/issues/138
-
+```sh
+choco install protoc openssl sqlite postgresql14
+```
 
 ### Install Extra Packages/Tools
 
 
@@ -0,0 +1,17 @@
+# Security
+
+## Reporting a Vulnerability
+
+Please report (suspected) security vulnerabilities to [email protected]. You will receive a
+response from us within 48 hours. If the issue is confirmed, we will release a patch as soon
+as possible.
+
+Please provide a clear and concise description of the vulnerability, including:
+
+* the affected version(s),
+* steps that can be followed to exercise the vulnerability,
+* any workarounds or mitigations.
+
+If you have developed any code or utilities that can help demonstrate the suspected
+vulnerability, please mention them in your email but ***DO NOT*** attempt to include them as
+attachments as this may cause your Email to be blocked by spam filters.
@@ -71,10 +71,12 @@ paths:
                     description: Current balance of this account
                     type: integer
                     minimum: 0
-                  counter:
-                    description: Number of transactions performed with this account
-                    type: integer
-                    minimum: 0
+                  counters:
+                    description: An array of corresponding spending counters to the account
+                    type: array
+                    items:
+                      description: Spending counter with the specified lane
+                      type: integer
                   tokens:
                     description: Current state of the token balances of this account
                     type: object