CHANGELOG.md

Changelog

All notable changes to this project will be documented in this file.

This changelog is maintained using git-cliff and conventional commits.

[3.9.0] - 2026-04-16

🚀 Features

• #2727(@barakeinav1): Add metrics for TEE attestation generation attempts (#2727)

• #2818(@DSharifi): Support BNB chain in the contract (#2818)

• #2784(@DSharifi): (contract) API to submit foreign chain config without RPC url consensus (#2784)

• #2822(@DSharifi): Bnb support in foreign chain inspector (#2822)

• #2824(@DSharifi): Support BNB foreign transactions in the near-mpc-sdk crate (#2824)

• #2823(@DSharifi): Node handles BNB foreign chain transactions (#2823)

• #2917(@DSharifi): Mpc contract accepts base foreign chain requests (#2917)

🐛 Bug Fixes

• #2729(@DSharifi): Set default crypto provider in tee-launcher to avoid rustls panic (#2729)

• #2706(@barakeinav1): Add missing docker-cli package and merge Rust launcher CI jobs to use latest launcher code for CI testing (#2706)

• #2762(@netrome): Replace API key placeholder into RPC URL when path auth is used (#2762)

• #2711(@barakeinav1): Don't crash when TEE attestation fails on startup (#2711)

• #2746(@SimonRastikian): Assert in crypto layer replaced by proper error handling (#2746)

• #2748(@SimonRastikian): Witness should not inherit serde traits (#2748)

• #2827(@barakeinav1): Block GCP keyshare storage config in TEE mode (#2827)

• #2851(@gilcu3): Remove stale foreign chain votes from non-participants (#2851)

• #2861(@netrome): Remove race condition in take_unowned (#2861)

• #2896(@gilcu3): (test) Localnet script deleting non-existing validator config file (#2896)

• #2892(@netrome): Use curve instead of scheme in vote_add_domain parameters for localnet (#2892)

• #2903(@gilcu3): (test) Localnet fixes for nearcore 2.11 (#2903)

• #2908(@anodar): Web_server web_endpoints (#2908)

💼 Other

• #2780(@barakeinav1): Switch MPC node image push to skopeo with --preserve-digests (#2780)

• #2863(@barakeinav1): Compute manifest digest locally without requiring --push (#2863)

• #2916(@DSharifi): (nix) Bump near-cli-rs version to meet localnet requirements (#2916)

🚜 Refactor

• #2702(@pbeza): Replace per-field #[serde_as(as = "Hex")] with newtype wrappers (#2702)

• #2777(@kevindeforth): Simplify contract error handling (#2777)

• #2735(@SimonRastikian): Getting rid of clippy slicing (#2735)

• #2832(@gilcu3): Make preconditions uniform for requests in the contract (#2832)

• #2785(@barakeinav1): Simplify launcher image validation by accepting manifest digest directly (#2785)

• #2858(@pbeza): Use canonical types from contract interface in test-parallel-contract (#2858)

• #2870(@gilcu3): Participants should depend on contract interface not contract (#2870)

• #2907(@anodar): Merge parallel tests, refactor code, reword comments (#2907)

📚 Documentation

• #2672(@barakeinav1): Pin QEMU 8.2.2 and add --qemu-version to dstack-mr command (#2672)

• #2909(@barakeinav1): Fix scheme to curve in contract README vote_add_domains example (#2909)

• #2864(@netrome): Refer to the bug bounty program instead of our security email (#2864)

⚡ Performance

• #2775(@gilcu3): (bench) Make snap-then-simulate benchmarks faster (#2775)

🧪 Testing

• #2744(@gilcu3): Remove async account creation workaround (#2744)

• #2759(@anodar): Improve e2e framework, implement tests for web_endpoints, submit_participant_info, robust_ecdsa (#2759)

• #2751(@gilcu3): Add benchmarks with latency PoC (#2751)

• #2760(@anodar): Implement request_during_resharing test (#2760)

• #2820(@DSharifi): Add integration tests for foreign chain requests (#2820)

• #2761(@anodar): Implement key_resharing, cancellation_of_resharing tests (#2761)

• #2859(@anodar): Migrate cdk_verification, cdk_pv_verification, lost_assets, parallel_sign_calls tests from pytests (#2859)

⚙️ Miscellaneous Tasks

• #2724(@gilcu3): Fix scheduled rust cache clean II (#2724)

• #2709(@barakeinav1): Add startup logging to start-with-config-file path (#2709)

• #2742(@DSharifi): Increase resources for contract sandbox tests (#2742)

• #2726(@DSharifi): Fix cargo clippy lint on MacOs (#2726)

• #2731(@gilcu3): Unify test-utils in the node and ts crates (#2731)

• #2755(@DSharifi): Fix localnet template by removing duplicate attribute (#2755)

• #2736(@pbeza): Clean up stale TODO comments and update issue references (#2736)

• #2749(@pbeza): Check for TODOs referencing closed issues (#2749)

• #2763(@gilcu3): Update contract migration after 3.8.1 release (#2763)

• #2767(@gilcu3): Remove legacy support of CKDAppPublicKey in the node (#2767)

• #2787(@dependabot[bot]): Bump the cargo group across 1 directory with 2 updates (#2787)

• #2768(@gilcu3): Add public verifiability support in ckd-example-cli (#2768)

• #2830(@gilcu3): Make rust-cache key depend on week (#2830)

• #2835(@gilcu3): Bump actions versions to avoid node 20 warning (#2835)

• #2837(@DSharifi): Add .codex file to git ignore (#2837)

• #2773(@barakeinav1): Use restricted access keys instead of full access keys for MPC nodes (#2773)

• #2845(@dependabot[bot]): Bump the rust-minor-and-patch group with 4 updates (#2845)

• #2855(@gilcu3): Add ExpectedMeasurements to MockAttestation (#2855)

• #2771(@kevindeforth): (contract) Remove DomainConfigCompat and CurveCompat (#2771)

• #2165(@DSharifi): Use contract interface sign request args instead of internal type in contract (#2165)

• #2878(@gilcu3): Add mise and worktrees to gitignore (#2878)

• #2886(@netrome): Bump rustls-webpki (#2886)

• #2869(@pbeza): Reduce contract WASM size and add CI size check (#2869)

• #2911(@netrome): Make llm agents better at following our testing conventions (#2911)

[3.8.1] - 2026-04-07

🚀 Features

• #2701(@gilcu3): Support arbitrary OCI registries in the launcher (#2701)

🐛 Bug Fixes

• #2718(@netrome): Set default crypto provider to avoid rustls panic (#2718)

📚 Documentation

• #2670(@pbeza): Define attestation data for backup service (#2670)

⚙️ Miscellaneous Tasks

• #2694(@pbeza): Add workflow to automate nearcore version bumps (#2694)

• #2699(@gilcu3): Unify testing contract build steps (#2699)

• #2720(@gilcu3): Fix rust-tee launcher failing with OOM (#2720)

• #2722(@netrome): Bump changelog, crate versions and upgrade third-party licenses for 3.8.1 release (#2722)

[3.8.0] - 2026-04-02

🚀 Features

• #2464(@kevindeforth): Chain gateway transaction sender (#2464)

• #2483(@gilcu3): Added ckd public verification support in the contract (#2483)

• #2500(@DSharifi): (node) Allow configuration of logging through configuration file (#2500)

• #2495(@gilcu3): Integrate CKD public verifiability in the node (#2495)

• #2447(@barakeinav1): Add voting mechanism for expected OS measurements (#2447)

• #2505(@pbeza): Add tee-context crate (#2505)

• #2448(@barakeinav1): Check OS measurements during attestation re-verification (#2448)

• #2527(@anodar): Add e2e-tests crate skeleton with port allocator (#2527)

• #2601(@anodar): Support hostnames in backup-cli (#2601)

• #2621(@barakeinav1): Add Rust tee-launcher crate (#2621)

• #2667(@DSharifi): Implement BorshSchema for NonEmptyBTreeMap (#2667)

• #2625(@kevindeforth): Chain-gateway block event subscriber (#2625)

🐛 Bug Fixes

• #2431(@anodar): Downgrade "peer closed connection without TLS close_notify" errors to debug (#2431)

• #2348(@SimonRastikian): Threshold signatures sensitive types print custom debug message (#2348)

• #2567(@gilcu3): Cleanup stale votes after resharing (#2567)

• #2574(@gilcu3): Remove rename scheme from DomainConfig (#2574)

• #2549(@barakeinav1): Set 0o600 permissions on secret files (#2549)

• #2579(@gilcu3): Use CKDOutput type both for sender and receiver (#2579)

• #2585(@gilcu3): Add more informative error messages for participant sets (#2585)

• #2417(@SimonRastikian): Improving security by adding zeroization to the secret cryptography material (#2417)

• #2646(@gilcu3): Ensure asset id origins are validated before use (#2646)

• #2636(@Copilot): Update stale localnet config template (#2636)

• #2678(@netrome): Log index lookup finds logs with matching .log_index fields (#2678)

💼 Other

• #2640(@barakeinav1): Add CI and build support for Rust launcher (#2640)

• #2665(@gilcu3): Make rust launcher docker build reproducible (#2665)

• #2668(@gilcu3): Use debian trixie for rust launcher image (#2668)

🚜 Refactor

• #2494(@anodar): Deduplicate dependencies in check-all target (#2494)

• #2535(@pbeza): (tee-context) Address post-merge review feedback from #2505 (#2535)

• #2540(@pbeza): Rename MpcDockerImageHash to NodeImageHash (#2540)

• #2396(@SimonRastikian): Changing SignatureScheme into Curve (#2396)

• #2553(@kevindeforth): Simplify TeeContext by removing SubmitTransaction indirection (#2553)

• #2564(@pbeza): Generalize Hash32<T> to Hash<T, N> and replace Sha384Digest (#2564)

• #2584(@pbeza): Replace assert!(matches!(...)) with assert_matches! and enforce in CI (#2584)

• #2489(@kevindeforth): Start chain-gateway in dedicated multi-threaded tokio runtime + transaction sender integration test (#2489)

• #2633(@gilcu3): Split main.rs in tee-launcher crate (#2633)

• #2645(@DSharifi): Use tokio TaskInterval type (#2645)

• #2619(@pbeza): Unify duplicate hash newtype macros into a single generic HashDigest<S, N> type in primitives (#2619)

• #2664(@anodar): Extract StartConfig from mpc-node into a lightweight config crate (#2664)

• #2409(@SimonRastikian): Renaming Ed25519 to Edwards25519 (#2409)

• #2634(@SimonRastikian): Improve crypto code without banners (#2634)

• #2681(@barakeinav1): Remove unused HostEntry struct from tee-launcher (#2681)

📚 Documentation

• #2472(@DSharifi): Update releases.md to reflect current release process (#2472)

• #2484(@barakeinav1): Add vote_add_launcher_hash to deployment scripts and guides (#2484)

• #2269(@barakeinav1): AES transport key provisioning design (#2269)

• #2488(@barakeinav1): Add OS measurement voting to TEE setup flows (#2488)

• #2427(@barakeinav1): Update migration guide after testnet migration. (#2427)

• #2446(@anodar): Add design doc for Rust E2E test infrastructure (pytest deprecation) (#2446)

• #2577(@gilcu3): Update after public verifiability CKD (#2577)

• #2522(@SimonRastikian): Designing domain separation (#2522)

• #2642(@barakeinav1): Warn that docker inspect must run on Linux for hash verification (#2642)

⚡ Performance

• #2644(@kevindeforth): (mpc-node) Do not send duplicate values between threads (#2644)

• #2623(@SimonRastikian): DKG benchmarks implementations (#2623)

🧪 Testing

• #2503(@gilcu3): Add pytest for ckd public verifiability (#2503)

• #2528(@anodar): Implement mpc node manager (#2528)

• #2545(@barakeinav1): Extract launcher image hash from test assets and improve attestation docs (#2545)

• #2589(@anodar): Implement MPC cluster orchestration for Rust E2E tests (#2589)

• #2590(@anodar): Implement NearSandbox, NearBlockchain and request lifecycle test (#2590)

⚙️ Miscellaneous Tasks

• #2473(@DSharifi): Use .cliffignore file for ignoring commits with git-cliff (#2473)

• #2475(@gilcu3): Move vscode extension recommendations to doc (#2475)

• #2457(@DSharifi): Create interface crate for types shared between rust launcher and node (#2457)

• #2477(@gilcu3): Move CKDRequestArgs to the contract interface (#2477)

• #2481(@gilcu3): Cleanup migration after 3.7.0 release (#2481)

• #2499(@DSharifi): Move TEE config into launcher-interface and enforce image hash file (#2499)

• #2504(@DSharifi): Parallelize pytests in separate runners to speed up CI (#2504)

• #2509(@gilcu3): Prevent unbounded growth of rust cache (#2509)

• #2513(@gilcu3): Allow failed pytest jobs to re-run (#2513)

• #2510(@gilcu3): Optimize runners used for pytests (#2510)

• #2518(@DSharifi): Move reproducible build of contract as separate task (#2518)

• #2525(@gilcu3): Update to nearcore 2.11.0-rc.3 (#2525)

• #2530(@gilcu3): Parallelize cargo test (#2530)

• #2531(@gilcu3): Rust tests should not use same cache key (#2531)

• #2534(@gilcu3): Fix phala test filter (#2534)

• #2537(@anodar): Add comment on Code Style regarding checked operations in tests and allow local claude md (#2537)

• #2550(@barakeinav1): Bump rustls-webpki to fix RUSTSEC-2026-0049 (#2550)

• #2556(@barakeinav1): Bump tar to fix RUSTSEC-2026-0067/0068 (#2556)

• #2557(@gilcu3): Bump reqwest to 0.13 (#2557)

• #2552(@barakeinav1): Update dstack OS image 0.5.4 to 0.5.7 (#2552)

• #2566(@gilcu3): Cache cleanup should not delete cargo binary (#2566)

• #2559(@dependabot[bot]): Bump quinn-proto from 0.11.13 to 0.11.14 (#2559)

• #2568(@dependabot[bot]): Bump the rust-minor-and-patch group with 4 updates (#2568)

• #2569(@dependabot[bot]): Bump gcloud-sdk from 0.28.5 to 0.29.0 (#2569)

• #2578(@anodar): Bump MAX_GAS_FOR_THRESHOLD_VOTE from 178 to 180 (#2578)

• #2573(@barakeinav1): Update dstack OS image to 0.5.8 and gramine key provider (#2573)

• #2437(@gilcu3): Force usage of constructor for PermanentKeyshareData (#2437)

• #2593(@gilcu3): Make sure docs explain why we have deposits, handle deposits in a single function (#2593)

• #2586(@barakeinav1): Usability improvements for testing scripts (#2586)

• #2620(@dependabot[bot]): Bump requests from 2.32.4 to 2.33.0 in /tee_launcher in the pip group across 1 directory (#2620)

• #2653(@dependabot[bot]): Bump the rust-minor-and-patch group with 2 updates (#2653)

• #2563(@barakeinav1): Add localnet TEE scripts for Rust launcher (#2563)

• #2658(@barakeinav1): Add Rust launcher configs, docs, and templates (#2658)

• #2669(@gilcu3): Use BTreeMap for permanent keyshare data (#2669)

• #2591(@gilcu3): Bump to nearcore 2.11 (#2591)

• #2689(@gilcu3): Fix e2e tests, cache being overwritten (#2689)

• #2674(@gilcu3): Automatic draft release creation on tag push (#2674)

• #2691(@gilcu3): Fix and simplify release automation (#2691)

• #2696(@anodar): Create mpc-node release v3.8.0 (#2696)

[3.7.0] - 2026-03-17

🚀 Features

• #2329(@anodar): Serve mpc-node configuration over debug endpoint (#2329)

• #2211(@barakeinav1): Add standalone attestation-cli for independent TEE verification (#2211)

• #2332(@DSharifi): Allow configuration files for full config of the mpc node (#2332)

• #2378(@DSharifi): [breaking] Remove derivation paths from foreign chain validation requests (#2378)

• #2344(@kevindeforth): Chain gateway state viewer (#2344)

• #2343(@barakeinav1): Vote on launcher image hash (#2343)

• #2392(@gilcu3): Ckd with public verifiability in ts crate (#2392)

• #2455(@DSharifi): (node) Start with config file option also initializes neard (#2455)

• #2460(@SimonRastikian): Viewing method for code hash votes and testings (#2460)

🐛 Bug Fixes

• #2346(@SimonRastikian): Using ct-eq ensures security (#2346)

• #2386(@gilcu3): Do not crash when vectors received are smaller than expected (#2386)

🚜 Refactor

• #2318(@anodar): Retry read calls in localnet script (#2318)

• #2410(@gilcu3): Feature gate mod testing in p2p.rs (#2410)

📚 Documentation

• #2214(@gilcu3): Added asset generation doc (#2214)

• #2371(@barakeinav1): Add attestation verification step to operator guide (#2371)

• #2397(@barakeinav1): Fix operator guide access key section (#2397)

• #2414(@barakeinav1): Update to latest dstack configuration (#2414)

• #2408(@gilcu3): Add cargo insta instructions to contributing guidelines (#2408)

• #2324(@pbeza): Restructure TEE lifecycle and extract TEE Context design doc (#2324)

⚙️ Miscellaneous Tasks

• #2325(@barakeinav1): Rename shadowed variable in verify_event_log_rtmr3 (#2325)

• #2319(@gilcu3): Added borsch schema snapshot test (#2319)

• #2338(@gilcu3): Replace ed25519_dalek::VerifyingKey with Ed25519PublicKey in node-types crate (#2338)

• #2352(@pbeza): Add security section to PR review prompt (#2352)

• #2384(@gilcu3): Update migrations after 3.6.0 release, remove infer domain purpose helpers (#2384)

• #2372(@dependabot[bot]): Bump the rust-minor-and-patch group with 3 updates (#2372)

• #2389(@gilcu3): Try all nearcore branches to have a better chance of getting the binary (#2389)

• #2394(@barakeinav1): Update TEE localnet deploy script and documentation (#2394)

• #2405(@gilcu3): Tiny follow up to contract cleanup in #2384 (#2405)

• #2412(@gilcu3): Add all features to rust tests in ci (#2412)

• #2406(@gilcu3): Remove usage of deprecated near_bindgen (#2406)

• #2421(@gilcu3): Ensure we do not block ci on external services tests (#2421)

• #2306(@DSharifi): Prepare workspace crates for publishing by setting version to 0.0.1 (#2306)

• #2429(@DSharifi): Add near-mpc- prefix for crates that will be published (#2429)

• #2432(@DSharifi): Add missing fields to publish all external crates (#2432)

• #2426(@DSharifi): Use cargo lint section for clippy lint rules (#2426)

• #2436(@DSharifi): Disallow allow attributes, and remove unexpected allows (#2436)

• #2438(@gilcu3): Remove EXTRA_HOST usage in launcher (#2438)

• #2425(@gilcu3): Upgrade to a patched nearcore 2.11.0-rc.1 (#2425)

• #2468(@DSharifi): Bump nearcore to 2.11.0-rc.2 (#2468)

• #2465(@dependabot[bot]): Bump the rust-minor-and-patch group with 3 updates (#2465)

• #2466(@DSharifi): Update changelog and bump workspace crates to 3.7.0 (#2466)

[3.6.0] - 2026-03-05

🚀 Features

• #2199(@DSharifi): Add new collection type, BoundedVec, to the bounded collections crate (#2199)

• #2132(@barakeinav1): Allow passing mpc_ env variables (#2132)

• #2202(@DSharifi): Create near-mpc-sdk crate with types for sign requests (#2202)

• #2218(@DSharifi): (sdk) The SDK can build foreign chain requests for bitcoin (#2218)

• #2222(@DSharifi): (sdk) The SDK can build foreign chain requests for abstract (#2222)

• #2224(@DSharifi): (sdk) The SDK can build foreign chain requests for starknet (#2224)

• #2233(@DSharifi): (sdk) Add verification support of foreign transaction signatures (#2233)

• #2254(@DSharifi): (sdk) Chain-specific builder entry points for foreign chain request builder (#2254)

• #2258(@olga24912): Add StarkNet event log extraction support (#2258)

• #2266(@DSharifi): (sdk) Add borsh serialization derives to all contract interface types and SDK verifier (#2266)

• #2265(@DSharifi): (sdk) Verify foreign transaction payload signatures (#2265)

• #2281(@gilcu3): Added support for abi generation in mpc-sdk and signature-verifier crate (#2281)

🐛 Bug Fixes

• #2237(@gilcu3): Update wasmtime to avoid vulnerability in CVE-2026-27204 (#2237)

• #2257(@gilcu3): Bug in from_be_bytes_mod_order when not a multiple of 8 bytes (#2257)

• #2268(@gilcu3): Use bounded incoming message buffers for all protocols (#2268)

• #2308(@gilcu3): Reject foreign chain transaction if requested chain not in policy (#2308)

• #2310(@netrome): Don't log raw mpc protocol messages (#2310)

• #2309(@gilcu3): Reject wrong payload versions for foreign chain transaction (#2309)

• #2317(@netrome): Ensure resharing leaders wait for start events to prevent them from getting stuck forever (#2317)

💼 Other

• #2195(@gilcu3): Make sure nix includes all needed tools (#2195)

• #2200(@SimonRastikian): Automate MPC release process (#2200)

• #2291(@anodar): Clang version in Nix flake for Darwin (#2291)

🚜 Refactor

• #2279(@anodar): Use strong threshold types in signature provider layer (#2279)

• #2277(@gilcu3): Unify crypto conversions (#2277)

• #2294(@gilcu3): Create mpc-crypto-types crate (#2294)

• #2313(@anodar): Handle errors on conversions to usize (#2313)

• #2295(@gilcu3): Reduce code duplication in buffer limit tests (#2295)

📚 Documentation

• #2251(@gilcu3): Rework the mpc readme (#2251)

• #2270(@barakeinav1): CVM upgrade mechanism with launcher and OS measurement voting (#2270)

• #2204(@pbeza): Archive Signer design for legacy HOT key support (#2204)

⚡ Performance

• #2276(@SimonRastikian): Split eddsa benchmarks (#2276)

⚙️ Miscellaneous Tasks

• #2212(@pbeza): Rename docs and scripts to kebab-case, add file naming CI check (#2212)

• #2169(@pbeza): Add check-use-in-fn.py CI script (#2169)

• #2227(@gilcu3): Add ts crate to the workspace (#2227)

• #2229(@netrome): Make CLAUDE.md a symlink to AGENTS.md (#2229)

• #2172(@barakeinav1): Launcher update process guide and automation script (#2172)

• #2249(@gilcu3): Make dependabot separate minor bumps from major bumps (#2249)

• #2259(@DSharifi): Create standalone crate to verify signatures that are in dto format (#2259)

• #2278(@dependabot[bot]): Bump the rust-minor-and-patch group with 2 updates (#2278)

• #2304(@gilcu3): Allow concurrent execution of release image workflow (#2304)

• #2235(@gilcu3): Update migration code and contract history after 3.5.1 is deployed (#2235)

• #2312(@gilcu3): Build docker workflows cancelling each other (#2312)

• #2314(@gilcu3): Update nearcore to 2.10.7 (#2314)

• #2321(@netrome): Update changelog, licenses and bump crate versions for 3.6.0 (#2321)

[3.5.1] - 2026-02-20

🐛 Bug Fixes

• #2189(@netrome): Ensure nodes can read 3.4.1 state (#2189)

• #2190(@gilcu3): Add_domain_votes are preserver after resharing (#2190)

📚 Documentation

• #2103(@kevindeforth): Indexer proposal (#2103)

⚙️ Miscellaneous Tasks

• #2174(@gilcu3): Make logs -error reading config from chain- explicit (#2174)

• #2192(@gilcu3): Resolve rustdoc warnings and enforce warnings check in CI (#2192)

• #2198(@netrome): Update changelog and bump crate versions for 3.5.1 (#2198)

[3.5.0] - 2026-02-19

🚀 Features

• #1980(@DSharifi): Implement JSON rpc client and extractor for bitcoin (#1980)

• #1968(@netrome): Foreign chain config & parsing (#1968)

• #1998(@netrome): Canonical sign payload for foreign chain transactions (#1998)

• #2008(@gilcu3): Implement verify foreign key logic in the contract (#2008)

• #1997(@netrome): Automatic foreign chain policy voting (#1997)

• #2015(@DSharifi): Foreign chain inspector for abstract block chain (#2015)

• #2039(@andrei-near): Add claude reviewer (#2039)

• #2055(@gilcu3): Integrate foreign chain tx feature in the node (#2055)

• #2065(@netrome): Allow SecretDB to open unknown column families (#2065)

• #1990(@pbeza): (dtos) Add Participants JSON serialization types to contract-interface (#1990)

• #2070(@netrome): Remove observed_at_block special response field (#2070)

• #2075(@DSharifi): Add extractor for evm Logs (#2075)

• #2087(@gilcu3): Integrate Abstract in the node (#2087)

• #2084(@netrome): Starknet inspector (#2084)

• #2129(@pbeza): Update Claude model to use Opus 4.6 for code reviews (#2129)

• #2126(@DSharifi): Return payload hash instead of the payload for the sign foreign chain requests (#2126)

• #2158(@gilcu3): Adding consistent hashing to select RPC providers (#2158)

• #2163(@netrome): Domain separation (#2163)

• #2179(@DSharifi): Add on chain metrics for sign request payload version (#2179)

• #2180(@netrome): Add abstract rpc configuration in localnet guide + foreign policy serialization fix (#2180)

🐛 Bug Fixes

• #2014(@gilcu3): Broken reproducibility (#2014)

• #2043(@netrome): Three small post-merge fixes from #1997 (#2043)

• #2107(@netrome): Remove accidentally included prompt file (#2107)

• #2124(@gilcu3): Make run_receive_messages_loop infallible, log error on internal failures (#2124)

• #2133(@gilcu3): Ecdsa background tasks should be infallible (#2133)

• #2137(@SimonRastikian): Updating the documentation (#2137)

• #2149(@gilcu3): Boot nodes deduplication in docs (#2149)

💼 Other

• #2048(@DSharifi): Bump cargo resolver version to version 3 (#2048)

• #2092(@DSharifi): Use nixpkgss to install cargo-nextest (#2092)

• #2184(@DSharifi): Set Cargo linker for aarch64-darwin to resolve -lSystem (#2184)

🚜 Refactor

• #2044(@pbeza): Improve gas benchmark tests by optimizing account handling (#2044)

• #2141(@SimonRastikian): Const string contract methods (#2141)

📚 Documentation

• #2013(@barakeinav1): Add node migration guide for operators (#2013)

🧪 Testing

• #1993(@gilcu3): Check if 100s is enough to avoid flaky tests (#1993)

• #2023(@netrome): System test for foreign chain policy voting (#2023)

• #2072(@netrome): System test for foreign transaction validation (#2072)

• #2125(@gilcu3): Added system test for starknet (#2125)

⚙️ Miscellaneous Tasks

• #1985(@barakeinav1): Correct error codes (#1985)

• #1995(@DSharifi): (nix) Bump cargo-near version to 0.19.1 (#1995)

• #2000(@gilcu3): Make cargo-deny and license checks optional in CI (#2000)

• #1991(@gilcu3): Add missing verify foreign chain functions to the contract (#1991)

• #1967(@gilcu3): Bump gcloud-sdk to fix jsonwebsocket vuln (#1967)

• #2019(@DSharifi): Move rustfmt.toml file to workspace root (#2019)

• #2010(@DSharifi): Use jsonrpsee to support JSON-RPC v2 instead of manual implementation (#2010)

• #2028(@DSharifi): (cargo-deny) Remove unnecessary skip for prost (#2028)

• #2034(@gilcu3): Update ts reference (#2034)

• #2026(@gilcu3): Update contract history to 3.4.1 (#2026)

• #2041(@DSharifi): Remove cargo-about third-party licenses check from CI (#2041)

• #2046(@DSharifi): Update near cli version in nix shell (#2046)

• #2049(@DSharifi): Run cargo-update on lock file (#2049)

• #2027(@DSharifi): Remove usage of near_o11 for metrics and test logger (#2027)

• #2052(@gilcu3): Upgrade and organize workspace deps (#2052)

• #2059(@gilcu3): Disable flaky robust-ecdsa test (#2059)

• #2035(@DSharifi): Revert the revert of using socket addresses (#2035)

• #2079(@DSharifi): Make API types specific per chain (#2079)

• #2082(@DSharifi): Make nix and ci version of tools in sync (#2082)

• #2097(@gilcu3): Update keccak to 0.1.6 (#2097)

• #2098(@gilcu3): Enable all steps in cargo deny except advisories in fast CI (#2098)

• #2100(@SimonRastikian): Dependabot with exceptions (#2100)

• #2104(@DSharifi): Add From and TryFrom conversions between dto and foreign chain inspector types (#2104)

• #2117(@gilcu3): Add exceptions to dependabot that are known to fail because of devnet (#2117)

• #2115(@pbeza): Extract Claude review prompt into standalone file (#2115)

• #2131(@DSharifi): Validate local RPC provider config with on chain config (#2131)

• #2146(@gilcu3): Bump buildkit and runner images versions to overcome build failure (#2146)

• #2153(@gilcu3): Disable rust cache temporarily, as warpbuilds is providing different runners for the same label (#2153)

• #2144(@DSharifi): (nix) Add jq and ruff to dev shell packages (#2144)

• #2155(@pbeza): Add CI workflow to validate PR title type against changed files (#2155)

• #2139(@DSharifi): Use non empty colletion types for foreign chain types (#2139)

• #2162(@gilcu3): Enable back rust-cache (#2162)

• #2148(@pbeza): Add lychee CI check for markdown link validation (#2148)

• #2152(@pbeza): Update format_pr_comments script to read JSON from file argument (#2152)

• #2168(@gilcu3): Fix flaky claude review permissions (#2168)

• #2176(@DSharifi): Exclude .direnv from lychee link checker (#2176)

• #2181(@gilcu3): Fix lychee not respecting gitignore (#2181)

• #2187(@SimonRastikian): Bump crate versions to 3.5.0 and update changelog (#2187)

[3.4.1] - 2026-02-05

🚀 Features

• #1923(@DSharifi): (contract) Define contract API for verification of foreign transactions (#1923)

• #1948(@gilcu3): Added indexer types for verify foreign tx (#1948)

• #1961(@netrome): Add foreign chain policy types and voting method (#1961)

🐛 Bug Fixes

• #1939(@gilcu3): Ensure test_verify_tee_expired_attestation_triggers_resharing is not flaky (#1939)

• #1831(@kevindeforth): Properly fix network race condition (#1831)

• #1983(@kevindeforth): (network) TCP Listener task must not die (#1983)

📚 Documentation

• #1920(@netrome): Foreign chain transaction design doc (#1920)

• #1928(@barakeinav1): Update release guide (#1928)

• #1925(@netrome): Post-discussion updates for foreign chain transaction design doc (#1925)

• #1931(@netrome): Extractor-based foreign chain transaction validation design update (#1931)

• #1938(@netrome): Derive separate tweak for foreign transaction validation (#1938)

• #1953(@DSharifi): Include set of reommended extensions for VSCode (#1953)

• #1964(@DSharifi): Add note on branch being pushed to github pre git-cliff instructions (#1964)

🧪 Testing

• #1945(@gilcu3): Add timeout/retry mechanism to try to fix flaky test creating many accounts (#1945)

• #1951(@gilcu3): Enable test_embedded abi test (#1951)

• #1937(@barakeinav1): Add localnet TEE automation scripts and templates (#1937)

⚙️ Miscellaneous Tasks

• #1894(@gilcu3): Bump near crates, remove AccountId conversions (#1894)

• #1916(@netrome): Add CLAUDE.md and AGENTS.md to make coding agents more effective (#1916)

• #1914(@gilcu3): Update 3.3.2 mainnet contract history, clean-up previous contract migrations (#1914)

• #1935(@gilcu3): Remove the use of jemalloc (#1935)

• #1879(@barakeinav1): TEE testnet automation scripts and launcher (#1879)

• #1933(@DSharifi): (clippy) Enable warning on assertions_on_result_states clippy lint (#1933)

• #1947(@gilcu3): Update nearcore to 2.10.6 (#1947)

• #1950(@DSharifi): RPC requests to EVM chains should have separate struct per chain (#1950)

• #1973(@gilcu3): Remove extra license file (#1973)

• #1982(@DSharifi): Add git-cliff to nix dev environment (#1982)

• #1972(@SimonRastikian): Bump crate versions to 3.4.1 (#1972)

[3.4.0] - 2026-01-29

🚀 Features

• #1887(@netrome): Remove storage deposit requirement from contract (#1887)

🐛 Bug Fixes

• #1801(@andrei-near): TCP user keepalive (#1801)

• #1830(@gilcu3): Cargo-make check-all using wrong profile parameter (#1830)

• #1854(@gilcu3): Update deps dcap-qvl and oneshot to avoid known vulnerabilities (#1854)

• #1865(@gilcu3): Hot loop bug in running state when no keyshares are found (#1865)

• #1876(@gilcu3): Bump wasmtime version due to RUSTSEC-2026-0006 (#1876)

💼 Other

• #1808(@DSharifi): (nix) Include apple-sdk_14 package to build neard on MacOs (#1808)

• #1812(@DSharifi): (nix) Include neard as a nix flake (#1812)

• #1845(@DSharifi): (nix) Remove neard as a tool in dev shell (#1845)

📚 Documentation

• #1850(@barakeinav1): Add port 80 configuration support (#1850)

⚡ Performance

• #1859(@DSharifi): Avoid fragmented header writes on TCP connections (#1859)

🧪 Testing

• #1804(@gilcu3): Added automated localnet setup (#1804)

• #1813(@pbeza): Add benchmark regression tests for Participants struct (#1813)

• #1886(@gilcu3): Make account creation much faster using async transactions (#1886)

• #1885(@gilcu3): Add CI test for mpc-node through non-tee launcher (#1885)

• #1896(@gilcu3): Add 3.3.2 contract to contract-history (#1896)

• #1899(@gilcu3): Add fixture tests for key derivation path (#1899)

⚙️ Miscellaneous Tasks

• #1816(@DSharifi): Make pprof web server endpoint queriable (#1816)

• #1818(@netrome): Bump nearcore to 2.10.5 (#1818)

• #1819(@gilcu3): Update ts repo ref (#1819)

• #1823(@gilcu3): Fix cargo-deny warnings, adapt to changes in dcap-qvl (#1823)

• #1838(@gilcu3): Make launcher-script more user friendly (#1838)

• #1837(@DSharifi): (metrics) Track tokio runtime and task metrics and export it to prometheus (#1837)

• #1840(@gilcu3): Remove outdated research file (#1840)

• #1843(@gilcu3): [breaking] Use hex for attestation dto types (#1843)

• #1849(@DSharifi): Check licenses is up to date on CI (#1849)

• #1862(@DSharifi): Use --force flag for cargo-binstall installations (#1862)

• #1855(@DSharifi): Create histogram for bytes written on p2p TCP streams (#1855)

• #1871(@gilcu3): Optimize rust cache in CI (#1871)

• #1873(@DSharifi): Bump axum to 0.8.8 (#1873)

• #1878(@gilcu3): Enable ignored tests (#1878)

• #1881(@DSharifi): Bump flume to version 0.12.0 (#1881)

• #1903(@barakeinav1): Bump crate versions to 3.4.0 and update changelog (#1903)

[3.3.2] - 2026-01-20

🐛 Bug Fixes

• #1802(@DSharifi): Include default value for pprof address (#1802)

⚙️ Miscellaneous Tasks

• #1806(@kevindeforth): Bump crate versions to 3.3.2 and update changelog (#1806)

[3.3.1] - 2026-01-19

🐛 Bug Fixes

• #1795(@netrome): Revert #1707 (use SocketAddr instead of custom struct) (#1795)

💼 Other

• #1786(@DSharifi): Add instruction how to get rust-analyzer to work with nix flakes (#1786)

⚙️ Miscellaneous Tasks

• #1798(@netrome): Update version and changelog for 3.3.1 release (#1798)

[3.3.0] - 2026-01-16

🚀 Features

• #1723(@DSharifi): (node) Add web endpoint to collect CPU profiles with pprof-rs (#1723)

• #1735(@barakeinav1): (launcher) Add ability to use the launcher also for non tee setups. (#1735)

🐛 Bug Fixes

• #1729(@gilcu3): Ruint unsoundness issue RUSTSEC-2025-0137 (#1729)

• #1752(@gilcu3): Enable TCP_KEEPALIVE for network connections (#1752)

• #1764(@kevindeforth): (network) Do not accept incoming connection if previous one is still active (#1764)

• #1772(@DSharifi): Don't crash MPC node on startup for failed attestation submission (#1772)

💼 Other

• #1738(@DSharifi): (rust) Add support for Nix build environment (#1738)

• #1767(@DSharifi): (nix) Add instructions to enable direnv with Nix flake (#1767)

• #1771(@DSharifi): (nix) Resolve openssl-sys compilation errors in devShell (#1771)

🚜 Refactor

• #1697(@DSharifi): Return Result type in is_caller_an_attested_participant (#1697)

📚 Documentation

• #1733(@kevindeforth): Update readme to reflect correct test terminology (#1733)

• #1661(@barakeinav1): Support running two MPC CVMs (Frodo + Sam) on the same physical machine (#1661)

⚡ Performance

• #1713(@DSharifi): Enable TCP_NODELAY for nodes' P2P TCP connections (#1713)

• #1663(@DSharifi): (contract) Contract should not store full attestation submission (#1663)

🧪 Testing

• #1708(@gilcu3): Improve pytest handling of crate builds (#1708)

• #1709(@gilcu3): Refactor wait_for_state to avoid self.contract_state() in tight loop (#1709)

• #1725(@pbeza): Fix contract integration tests (#1725)

• #1769(@gilcu3): Handle transaction nonces locally (#1769)

⚙️ Miscellaneous Tasks

• #1699(@netrome): Initial contribution guidelines (#1699)

• #1705(@gilcu3): Add cargo-deny support (#1705)

• #1707(@gilcu3): Update testnet contract (#1707)

• #1715(@DSharifi): Ignore RUSTSEC-2025-0137 in cargo-deny check (#1715)

• #1717(@DSharifi): Use SocketAddr instead of custom struct for addresses in configs (#1717)

• #1718(@barakeinav1): Update tee testnet guide (#1718)

• #1722(@DSharifi): Update rkyv version to fix RUSTSEC-2026-0001 (#1722)

• #1720(@pbeza): Fix typo (#1720)

• #1726(@DSharifi): Ignore RUSTSEC-2026-0002 in cargo-deny check (#1726)

• #1739(@kevindeforth): Unify ckd and sign sandbox tests (#1739)

• #1744(@gilcu3): Use attestation crate types (#1744)

• #1749(@gilcu3): Update to nearcore 2.10.4 (#1749)

• #1742(@pbeza): CI check to enforce TODO comment format (#1742)

• #1756(@gilcu3): Improve log messages for tokio tasks (#1756)

• #1761(@pbeza): Remove dead Python code (#1761)

• #1774(@gilcu3): Update mainnet history contract to 3.2.0 (#1774)

• #1776(@gilcu3): Add missing metrics in eddsa (#1776)

• #1778(@kevindeforth): Nodes accept peer with same or higher protocol version (#1778)

• #1780(@gilcu3): Refactor CI tests to group fast tests in a single run (#1780)

• #1790(@pbeza): Skip TODO format checks for CHANGELOG.md (#1790)

• #1791(@pbeza): Update version and changelog for 3.3.0 release (#1791)

[3.2.0] - 2025-12-18

🚀 Features

• #1627(@gilcu3): Add derivation path support for ckd (#1627)

• #1670(@gilcu3): Add robust ecdsa SignatureScheme variant (#1670)

• #1658(@kevindeforth): Add new signature scheme variant to contract (#1658)

• #1679(@gilcu3): Robust_ecdsa provider implementation (#1679)

🐛 Bug Fixes

• #1614(@DSharifi): Use gas value in the new config for the update promise (#1614)

• #1620(@DSharifi): Code hashes can now be be voted for in all code protocol states (#1620)

• #1635(@barakeinav1): Correct error reporting of invalid TEE participants (#1635)

• #1636(@pbeza): Remove votes from UpdateEntry (#1636)

• #1665(@pbeza): Bump ProposedUpdatesEntries to V3 and clean up V2 (#1665)

• #1673(@gilcu3): Fix derivation_path params in ckd-example-cli (#1673)

🚜 Refactor

• #1626(@pbeza): Remove ReportData::new() (#1626)

• #1642(@DSharifi): Remove stale comment and improve if condition for charging of attestation storage (#1642)

• #1668(@pbeza): Move gas constants for voting from test to common module (#1668)

• #1695(@DSharifi): Clarify that tee_state contains attestations for not just active participants (#1695)

📚 Documentation

• #1456(@barakeinav1): Create a guide for localnet + MPC node running in TEE setup (#1456)

• #1604(@barakeinav1): Testnet with tee support guide (#1604)

⚡ Performance

• #1659(@netrome): Use procedural macro to include expected measurements at compile time (#1659)

🧪 Testing

• #1623(@DSharifi): (pytest) Run all pytests with 1 validator (#1623)

• #1637(@kevindeforth): Migration system test (#1637)

• #1671(@gilcu3): Refactor pytests, several improvements preparing for robust ecdsa integration (#1671)

• #1672(@gilcu3): Refactor integration test in the node, improve PortSeed struct (#1672)

• #1678(@kevindeforth): Fix sign sandbox tests (#1678)

• #1682(@gilcu3): Add tests for robust ecdsa (#1682)

⚙️ Miscellaneous Tasks

• #1613(@DSharifi): Remove latest_code_hash method from contract (#1613)

• #1612(@pbeza): Introduce a gas constant for vote_update (#1612)

• #1618(@barakeinav1): Update config files (#1618)

• #1633(@gilcu3): Update reference to ts repo (#1633)

• #1648(@gilcu3): Enforce kebab-case for crate names (#1648)

• #1651(@gilcu3): Broken contract verification (#1651)

• #1653(@netrome): Bump nearcore to 2.10.2 (#1653)

• #1676(@DSharifi): Run test profile on cargo nextest invocation (#1676)

• #1681(@DSharifi): Enable debug-asserttions on CI test profile (#1681)

• #1692(@gilcu3): Update version and changelog for 3.2.0 release (#1692)

• #1683(@kevindeforth): (contract) Sandbox code organization (#1683)

• #1698(@gilcu3): Bump nearcore to 2.10.3 (#1698)

[3.1.0] - 2025-12-04

🚀 Features

• #1552(@gilcu3): Scale all remaining sandbox tests (#1552)

• #1554(@gilcu3): Add cargo-make support (#1554)

• #1563(@gilcu3): Embed abi in contract (#1563)

• #1527(@barakeinav1): (launcher) Add support for multiple MPC hashes with fallback logic (#1527)

• #1566(@DSharifi): (contract) Make contract configuration values configurable (#1566)

• #1559(@pbeza): Clear update votes from non-participants after resharing (#1559)

🐛 Bug Fixes

• #1556(@DSharifi): Only allow contract itself to call migrate function (#1556)

• #1576(@gilcu3): Check python code quality in CI enabled (#1576)

• #1594(@gilcu3): Wrong tag name in gcp image creation (#1594)

📚 Documentation

• #1610(@DSharifi): Create release changelog for 3.1.0 release (#1610)

🧪 Testing

• #1581(@DSharifi): Fix broken example pytest command (#1581)

• #1538(@DSharifi): (pytest fix) Remove 1 validator override in pytests (#1538)

⚙️ Miscellaneous Tasks

• #1501(@DSharifi): Remove pub migrate function and make gas deposit for upgrades configurable (#1501)

• #1558(@gilcu3): Provide cargo-binstall with a token (#1558)

• #1561(@gilcu3): Bump attestation submission frequency (#1561)

• #1569(@DSharifi): Don't take self needlessly on contract methods (#1569)

• #1580(@DSharifi): (dead-code) Remove allowed_code_hashes and mig_migration_info methods from the contract (#1580)

• #1579(@DSharifi): Bump near-sdk to 5.18.1 (#1579)

• #1577(@gilcu3): Create mpc attestation wrapper crate (#1577)

• #1593(@netrome): Bump nearcore to 2.10.0 (#1593)

• #1586(@DSharifi): Bump project version to 3.1.0 (#1586)

• #1588(@gilcu3): Make attestation crate independent of the mpc (#1588)

• #1551(@netrome): Document how to make a release (#1551)

• #1584(@barakeinav1): Update dockerhub configuration parameter and add integration test for validate_image_hash using Docker Hub image (#1584)

• #1602(@DSharifi): Use jemalloc as memory allocator (#1602)

• #1607(@DSharifi): Remove dead legacy code in contract (#1607)

• #1603(@gilcu3): Remove legacy support in devnet (#1603)

• #1609(@netrome): Bump nearcore to 2.10.1 (#1609)

[3.0.6] - 2025-11-25

🚀 Features

• #1533(@gilcu3): Fix rust-cache in CI (#1533)

• #1537(@kevindeforth): Allow participants to withdraw their update vote (#1537)

• #1542(@gilcu3): Initial ckd example app (#1542)

🐛 Bug Fixes

• #1521(@gilcu3): Both test could be fixed by bumping gas appropiately (#1521)

• #1530(@gilcu3): Enable pytest optimizations removed in #1511 (#1530)

• #1531(@gilcu3): Use reproducible build in existing test (#1531)

• #1539(@gilcu3): Use correct nearcore commit in submodule (#1539)

• #1547(@gilcu3): Patch nearcore version 210 (#1547)

📚 Documentation

• #1467(@pbeza): Design TEE-enabled backup service (#1467)

⚙️ Miscellaneous Tasks

• #1549(@netrome): Bump crate versions to 3.0.6 and update changelog (#1549)

[3.0.5] - 2025-11-23

🚀 Features

• #1505(@andrei-near): Periodic mpc build workflow (#1505)

• #1506(@kevindeforth): Contract allows querying update proposals (#1506)

• #1510(@gilcu3): Sandbox tests support for any number of participants (#1510)

🐛 Bug Fixes

• #1488(@kevindeforth): (contract) Fix ProposeUpdate vote method and add unit test (#1488)

• #1490(@gilcu3): Remove balance checks (#1490)

• #1492(@barakeinav1): (test) Enable and update test_from_str_valid (#1492)

• #1509(@andrei-near): Nightly build MPC workflow (#1509)

• #1525(@netrome): Use patched near core supporting reproducible builds (#1525)

🧪 Testing

• #1498(@pbeza): Add unit tests for do_update function in contract.rs (#1498)

• #1504(@barakeinav1): Update attestation test and refresh asset extraction files (#1504)

⚙️ Miscellaneous Tasks

• #1503(@DSharifi): Update mainnet to use 3_0_2 release for backwards compatibilit… (#1503)

• #1511(@DSharifi): Bump nearcore dependency to 2.10.0-rc.3 (#1511)

• #1523(@netrome): Bump crate versions to 3.0.5 and update changelog (#1523)

[3.0.4] - 2025-11-18

🚀 Features

• #1428(@barakeinav1): (verification) Allow RTMR2 to match production or dev measurements (#1428)

• #1438(@gilcu3): Add support for abi snapshots (#1438)

• #1459(@gilcu3): Add pytest with CKD private verification (#1459)

• #1468(@gilcu3): Group compatible pytests to use shared cluster (#1468)

🐛 Bug Fixes

• #1448(@barakeinav1): (localnet) Ensure MPC node can sync after delay by updating neard retention policy (#1448)

• #1446(@gilcu3): Align waiting time with number of added domains (#1446)

• #1463(@gilcu3): Update snapshot after recent contract ABI changes (#1463)

• #1469(@netrome): Separate build workflows for launcher and node (#1469)

• #1471(@gilcu3): Make sure cargo-near is installed from binary release (#1471)

• #1480(@gilcu3): Fetch mpc secret store key and add gcp image (#1480)

⚙️ Miscellaneous Tasks

• #1451(@gilcu3): Update testnet contract (#1451)

• #1454(@gilcu3): Update contract readme wrt CKD (#1454)

• #1460(@netrome): Improved docker workflows for node and launcher image (#1460)

• #1464(@gilcu3): Extend localnet guide to include eddsa and ckd examples as well (#1464)

• #1487(@netrome): Bump crate versions to 3.0.4 and update changelog (#1487)

[3.0.3] - 2025-11-12

🐛 Bug Fixes

• #1441(@pbeza): Reduce log noise in migration monitor task (#1441)

⚙️ Miscellaneous Tasks

• #1434(@barakeinav1): Fix key names in localnet guide (#1434)

• #1444(@netrome): Bump nearcore to include 2.9.1 (#1444)

• #1445(@netrome): Bump crate versions to 3.0.3 and update changelog (#1445)

[3.0.2] - 2025-11-11

🚀 Features

• #1412(@gilcu3): Validate attestation before submission (#1412)

🐛 Bug Fixes

• #1405(@gilcu3): Test_latest_allowed_image_hash_is_written assuming wrong order (#1405)

• #1413(@gilcu3): Remove wrong near_sdk::PublicKey conversions (#1413)

• #1414(@pbeza): Disable state sync in start.sh for localnet (#1414)

• #1418(@gilcu3): Path to store latest mpc node image hashes in devnet (#1418)

• #1426(@barakeinav1): (tee) Add prefix to written image digest for launcher compatibility (#1426)

• #1432(@gilcu3): Enable user_views tests in the contract (#1432)

• #1436(@gilcu3): Add pub_migrate function to get current contract migration unstuck (#1436)

🧪 Testing

• #1406(@kevindeforth): Improve unit tests (#1406)

⚙️ Miscellaneous Tasks

• #1409(@Copilot): Downgrade account balance fetch log to debug level (#1409)

• #1427(@barakeinav1): Remove "exit 1" that could close ssh session (#1427)

• #1430(@netrome): Bump protocol version (#1430)

• #1439(@netrome): Update version and changelog for 3.0.2 release (#1439)

[3.0.1] - 2025-11-06

🚀 Features

• #1401(@pbeza): Add default behavior if MPC_LATEST_ALLOWED_HASH_FILE is not set (#1401)

🐛 Bug Fixes

• #1396(@gilcu3): Compute fresh attestations before submitting (#1396)

• #1403(@kevindeforth): Node uses correct latest docker image hash (#1403)

⚙️ Miscellaneous Tasks

• #1385(@barakeinav1): Small operator guide fixes (#1385)

• #1398(@kevindeforth): Generate backup encryption key if env var is not provided (#1398)

• #1397(@netrome): Update nearcore to a modified 2.9 with testnet voting date set (#1397)

• #1404(@netrome): Update version and changelog for 3.0.1 release (#1404)

[3.0.0] - 2025-11-05

🚀 Features

• #489(@kevindeforth): (devnet) Loadtest tracks success statistics (#489)

• #410(@pbeza): (contract) Add support for TEE (#410)

• #511(@DSharifi): (contract) Add method to contract to get allowed image hashes (#511)

• #468(@kevindeforth): (Tee) Automatic kickout mechanism for invalid TEE status (#468)

• #509(@pbeza): (contract) Verification of TEE RTMRs 0-2 and MRTD (#509)

• #513(@DSharifi): (indexer) Periodically fetch allowed image hashes from mpc contract (#513)

• #525(@DSharifi): (tee) Node monitors latest allowed image hashes from contract (#525)

• #524(@barakeinav1): Initial launcher script (#524)

• #445(@kuksag): (tee) Generate p2p key/near signer key inside MPC node (#445)

• #516(@pbeza): (contract) Verification of RTMR3 (#516)

• #537(@pbeza): (contract) Verify report_data field of the TEE quote (#537)

• #541(@barakeinav1): (remote attestation ) RTMRs and app_compose field checks (#541)

• #543(@DSharifi): Submit remote attestation on startup (#543)

• #553(@kevindeforth): (Tee) Join logic for new participant and readme (#553)

• #558(@kevindeforth): (devnet) Enable ssd support (#558)

• #576(@kevindeforth): (pytest) Interactive pytest (#576)

• #560(@kevindeforth): Enable network hardship simulation (#560)

• #639(@barakeinav1): (tee) Add p2p public key to StaticWebData and http endpoint (#639)

• #632(@pbeza): (tee) Custom attestation module (#632)

• #653(@pbeza): (tee) Implement attestation quote generation in attestation module (#653)

• #665(@DSharifi): (contract) Key resharing can be cancelled on the contract (#665)

• #684(@kevindeforth): (metrics) Expose peers block height metric (#684)

• #683(@pbeza): (tee) Implement TEE quote verification in attestation module (#683)

• #722(@gilcu3): Added TEE enabled dockerfile + github workflow (#722)

• #734(@gilcu3): Add support for cargo-near reproducible build (#734)

• #711(@pbeza): (tee) Add Docker image verification logic to attestation (#711)

• #776(@kevindeforth): Export account balances as metric (#776)

• #747(@barakeinav1): Add CLI script to deploy the Launcher in dstack CVM (#747)

• #769(@andrei-near): Build info metrics (#769)

• #885(@gilcu3): Add CKD support to the MPC contract (#885)

• #934(@gilcu3): Add DomainId to CKDRequest (#934)

• #956(@gilcu3): CKD support in indexer - node/src/indexer/ changes (#956)

• #957(@gilcu3): CKD support in indexer - store + web changes (#957)

• #942(@pbeza): (tee) Clean TEE state when concluding a resharing (#942)

• #964(@andrei-near): Overwrite mpc/near configs from ENV vars (#964)

• #968(@gilcu3): CKD indexer - queue refactor (#968)

• #974(@gilcu3): CKD provider support (#974)

• #967(@netrome): Cli option to configure attestation authority (#967)

• #985(@gilcu3): Added pytests for CKD (#985)

• #1008(@gilcu3): DomainId separation enforcement in the contract (#1008)

• #1032(@kevindeforth): Improve asset cleanup behavior when entering running or resharing (#1032)

• #1038(@gilcu3): Make leader explicit in completed requests (#1038)

• #1023(@gilcu3): CKD support in devnet (#1023)

• #1061(@kevindeforth): Change of participant set leads to exit of running state. (#1061)

• #1064(@gilcu3): Achieve reproducible builds for the mpc node and launcher (#1064)

• #1070(@barakeinav1): (pytest) Restrict signer keys to MPC contract method (clean) (#1070)

• #1153(@andrei-near): Failed cluster signatures metrics main (#1153)

• #1162(@kevindeforth): Contract supports migration service (#1162)

• #1155(@barakeinav1): Devnet add missing image_hash and latest_allowed_hash_file (#1155)

• #1197(@DSharifi): Enforce all participants to have valid attestations (#1197)

• #1219(@gilcu3): Update to use new ts rerandomization+coordinator API (#1219)

• #1233(@kevindeforth): Metrics tracking participant ids in failed signature computations (#1233)

• #1215(@kevindeforth): Import keyshares into empty keyshare storage (#1215)

• #1225(@gilcu3): New dtos_contract::PublicKey type (#1225)

• #1223(@pbeza): Re-submit attestation if node detects it has no attestation on chain (#1223)

• #1241(@gilcu3): Add near_sdk compatible serde serialization for dto types + Bls types (#1241)

• #1250(@kevindeforth): Indexer fetches migration state from contract and displays it on a web-endpoint (#1250)

• #1239(@gilcu3): Ckd bls pivot (#1239)

• #1267(@kevindeforth): Onboarding logic for MPC node (#1267)

• #1272(@gilcu3): Support CKD with BLS in pytests (#1272)

• #1289(@pbeza): Scaffold initial backup service (#1289)

• #1216(@kevindeforth): Import keyshares into non empty keyshare storage (#1216)

• #1283(@kevindeforth): Migration service web server and client logic (#1283)

• #1270(@barakeinav1): Add public key enforcement feature (#1270)

• #1300(@gilcu3): Add read-only getter for keyshares (#1300)

• #1301(@gilcu3): Backup_cli store secrets in json file (#1301)

• #1313(@barakeinav1): Add enforcement that contract call are by attested participants (#1313)

• #1317(@gilcu3): Backup-cli http over mtls support (#1317)

• #1319(@kevindeforth): Mpc node spawns recovery web endpoint (1295) (#1319)

• #1316(@barakeinav1): Use pre predecessor_account_id (#1316)

• #1329(@Copilot): Add secrets.json migration support for 2.2.0 → 3.0.0 upgrade path (#1329)

• #1339(@gilcu3): Update to current ts version, more changes than I expected, some tricky deps changes as well (#1339)

• #1353(@gilcu3): Ensure docker compose file is up to date in get docker compose hash (#1353)

• #1333(@pbeza): Implement public key registration for the backup service (#1333)

• #1366(@barakeinav1): Update launcher to remove old MPC container (#1366)

• #1369(@netrome): More detailed error messages when attestation validation fails (#1369)

• #1375(@netrome): Don't enforce secure time (#1375)

• #1380(@netrome): (launcher) Allow passing through NEAR_TESTS_PROTOCOL_UPGRADE_OVERRIDE env var (#1380)

• #1376(@kevindeforth): Send AES-256 encrypted secrets over mutual TLS instead of plaintext (#1376)

• #1384(@pbeza): Implement KeyshareStorageAdapter for keyshare persistence (#1384)

🐛 Bug Fixes

• #552(@pbeza): (tee) Hotfix of TEE report_data verification (#552)

• #585(@pbeza): (tee) Ensure quote verification status is UpToDate (#585)

• #578(@kevindeforth): (devnet) Refill contract account for initalization (#578)

• #595(@kevindeforth): Ignore peers who are behind in a computation (#595)

• #589(@barakeinav1): Harden launcher docker-compose config against privilege escalation (#589)

• #617(@DSharifi): (dstack) Bump dstack rust sdk version (#617)

• #627(@DSharifi): (tee) Don't re-encode tdx_quote to hex (#627)

• #629(@DSharifi): (tee) Serialize quote_collateral to a serde_json::Value instead of String (#629)

• #588(@barakeinav1): (launcher) Enforce env var allow-list and custom host/port parsing in user-config (#588)

• #620(@DSharifi): (dstack) Bump dstack rust sdk version (#620)

• #612(@DSharifi): Create tokio enter guard for spawning TEE related tasks (#612)

• #667(@andrei-near): Add boot nodes at near indexer config init state (#667)

• #680(@kuksag): Adjust invariant checks when selecting participants (#680)

• #705(@kevindeforth): (deployment) Gcp start script key error (#705)

• #704(@netrome): Transparent serialization for Hash32 (#704)

• #715(@kevindeforth): (devnet) Compatibility with upcoming mpc node version 3.0.0 (#715)

• #724(@gilcu3): Fixes test_from_str_valid test in the contract crate (#724)

• #740(@gilcu3): Display error message when participant list is empty in mpc-node generate-test-configs (#740)

• #755(@andrei-near): Bumping nearcore to 2.7.0-rc4 (#755)

• #768(@DSharifi): Defer creating allowed_image_hash file until write (#768)

• #762(@barakeinav1): (launcher) Fixing of issues found during testing (#762)

• #778(@kevindeforth): Spawn mointor docker images task before listening to blocks indefinitely (#778)

• #785(@jaswinder6991): Update README.md to fix the broken link to Cait-Sith blog post (#785)

• #800(@gilcu3): Replay all RTMR3 required events (#800)

• #802(@DSharifi): Node ignores peers lagging 50 blocks behind (#802)

• #780(@barakeinav1): (node) Enforce RTMR3 validation on event checks (#780)

• #807(@kevindeforth): Node abort_key_event_instance instead of abort_key_event (#807)

• #774(@gilcu3): Verify docker compose hashes correctly (#774)

• #816(@barakeinav1): (contract) Correct tee_status and verify_tee logic (#816)

• #838(@gilcu3): Fix typos and name inconsistencies (#838)

• #852(@kevindeforth): Api mismatch for submitting participant info (#852)

• #851(@kevindeforth): Propose join and rename to submit_participant_info (#851)

• #788(@gilcu3): Use download_config parameter in mpc-node cli (#788)

• #887(@pbeza): (tee) Ensure participants run valid TEE or none (#887)

• #925(@kevindeforth): Increase gas limit for sign calls (#925)

• #928(@gilcu3): CI get docker manifest timeouts (#928)

• #955(@gilcu3): Add domainid ckdrequest again (#955)

• #971(@pbeza): (tee) Avoid passing ExpectedMeasurements as a parameter in contract (#971)

• #997(@think-in-universe): Redundant secure_time validation for app compose (#997)

• #1022(@gilcu3): Use correct assert_matches (#1022)

• #1031(@netrome): Use version controlled contracts in compatibility tests (#1031)

• #1040(@netrome): Add missing bs58 dependency in contract_history crate (#1040)

• #1096(@DSharifi): Return participants with invalid attestation in error message (#1096)

• #1149(@netrome): Ignore broken tests (#1149)

• #1146(@pbeza): Don't cleanup allowed hashes on getters (#1146)

• #738(@robin-near): Stream while syncing instead of waiting for full sync. (#738)

• #1170(@gilcu3): Add needed deps in dockerfile, remove unnecessary (#1170)

• #1165(@pbeza): Contract was refunding too much of deposit (#1165)

• #1189(@pbeza): Address post-merge code review comments for PR #1183 (#1189)

• #1193(@gilcu3): Restore exact workflow before #1113 not including MPC launcher (#1193)

• #1174(@DSharifi): Node should retry attestation submission until its observed onchain (#1174)

• #1202(@pbeza): Resubmit participant info more frequently (#1202)

• #1229(@netrome): Run attestation requests within a tokio runtime (#1229)

• #1247(@pbeza): tee_authority::get_with_backoff was ending up in a hot loop (#1247)

• #1258(@netrome): Remove references to stale scripts (#1258)

• #1266(@gilcu3): Devnet using ckd with BLS (#1266)

• #1281(@gilcu3): Use more efficient DomainRegistry (#1281)

• #1282(@gilcu3): Remaining issues in TDX external guide (#1282)

• #1330(@gilcu3): Bug wasm execution failed error when running mpc localnet nodes (#1330)

• #1350(@netrome): Use port 24566 instead of 24567 for boot node arg in localnet guide (#1350)

• #1358(@gilcu3): Ensure hex serialization in vote-code-hash (#1358)

• #1364(@netrome): Disable state sync in localnet (#1364)

• #1365(@gilcu3): Github actions by pinning versions, added zizmor to CI (#1365)

• #1374(@gilcu3): Continue when receiver has lagged messages and log event (#1374)

• #1381(@barakeinav1): Update operator guide with correct port configuration (#1381)

• #1382(@gilcu3): Update the measurements that are actually used in the contract (#1382)

🚜 Refactor

• #670(@barakeinav1): (launcher) Update user-config format and values (#670)

• #758(@pbeza): (tee) Move attestation generation logic (#758)

• #882(@DSharifi): (attestation) Remove TcbInfo wrapper struct (#882)

• #884(@DSharifi): Remove Quote wrapper struct in attestation (#884)

• #890(@netrome): Consistent usage of SerializableEdwardsPoint in crypto_shared/types.rs (#890)

• #998(@netrome): Get rid of mod.rs files (#998)

• #1098(@DSharifi): Make verify_tee_participant API infallible (#1098)

📚 Documentation

• #733(@gilcu3): Added doc on how to deploy an MPC node within a TEE (#733)

• #886(@barakeinav1): Operator guide first version (#886)

• #877(@kevindeforth): Document disaster recovery plan (#877)

• #954(@DSharifi): Update readme to list testnet RPC providers for devnet tool (#954)

• #980(@barakeinav1): Tdx cloud providers (#980)

• #983(@barakeinav1): Update operator's guide with CVM update flow (#983)

• #979(@barakeinav1): TEE design doc (#979)

• #992(@barakeinav1): Explain how to get dstack logs (#992)

• #993(@barakeinav1): Add link to HLD (#993)

• #1002(@think-in-universe): Make the launcher docs more readable (#1002)

• #999(@barakeinav1): Port collision documentation (#999)

• #1001(@barakeinav1): Update production_settings (#1001)

• #1033(@barakeinav1): Add explanation about key generation (#1033)

• #1030(@barakeinav1): How to add MPC node key into account (#1030)

• #1043(@barakeinav1): Getting lasted MPC hash from the contract (#1043)

• #1045(@barakeinav1): Voting_new_hash (#1045)

• #1041(@barakeinav1): Add vote_new_parameters documentation (#1041)

• #1059(@barakeinav1): Update TEE difference table (#1059)

• #1048(@barakeinav1): Update local key provider section (#1048)

• #1072(@barakeinav1): Update information about MPC node retrieval (#1072)

• #1062(@barakeinav1): Add submit_participant_info details (#1062)

• #1106(@barakeinav1): Add reproducible build instructions for Dstack (#1106)

• #1154(@barakeinav1): Update RTMR generation instructions for dstack 0.5.4 (#1154)

• #1178(@pbeza): Update contract README with gas cost details (#1178)

• #1256(@netrome): Document contract interface crate (#1256)

• #1262(@netrome): Operator guide includes installation instructions for dstack-vmm instead of referencing their readme (#1262)

• #1278(@pbeza): (localnet) Refine localnet setup instructions (#1278)

🧪 Testing

• #481(@DSharifi): Test that threshold from previous running state is used when serving sign requests in resharing (#481)

• #498(@kevindeforth): (node) Add timeout to avoid race condition in integration test (#498)

• #555(@kevindeforth): (pytest) Resolve pytest nonce conflicts (#555)

• #682(@DSharifi): Create pytest to test cancellation of key resharing (#682)

• #746(@pbeza): (tee) Add an integration test for attestation verification (#746)

• #819(@pbeza): (tee) Add contract integration test for MPC image hash voting (#819)

• #834(@DSharifi): Re-organize tests in attestation crate (#834)

• #828(@pbeza): (contract) Integration test to ensure contract rejects invalid remote attestations (#828)

• #1099(@pbeza): Expired attestation kickout flow (#1099)

• #1168(@DSharifi): Move sandbox integration tests into separate directory. (#1168)

• #1183(@pbeza): Add grace period test for multi-node voting (#1183)

• #1186(@DSharifi): Rewrite upgrade test as a sandbox integration tests (#1186)

• #1200(@DSharifi): Wait for TEE attestations on resharings in pytests (#1200)

• #986(@DSharifi): Proposal for adding new participant without valid TEE attestation should fail (#986)

• #1211(@DSharifi): Resolve flaky test caused by ordering of attestations (#1211)

• #1066(@pbeza): (contract) System test for submit_tee_participant_info (#1066)

⚙️ Miscellaneous Tasks

• #493(@netrome): Update devnet docs (#493)

• #494(@netrome): Initial Changelog + CI check (#494)

• #508(@kuksag): (pytests) Split cluster setup logic (#508)

• #526(@DSharifi): Increase bytes allocated to version in report data from u8 to u16 (#526)

• #549(@kevindeforth): (tee) Launcher cleanup (#549)

• #564(@DSharifi): Fix docker build and publish action (#564)

• #571(@andrei-near): Sanitize docker build CI to replace invalid tag symbol (#571)

• #572(@kuksag): Remove p2p and signer key retrival via gcp (#572)

• #569(@netrome): Enable support for JSON logging (#569)

• #586(@sergey-ni): Migrated stats into IndexerState (#586)

• #574(@DSharifi): Add info logs when creating file handle for TEE image hash (#574)

• #573(@kuksag): Add near_responder_id and number of responder keys in gcp-start.sh logic (#573)

• #575(@DSharifi): Keep MPC node running if image hash is disallowed (#575)

• #615(@netrome): Bump nearcore to 2.7.0-rc.2 (#615)

• #640(@gilcu3): Rename cait-sith -> threshold-signatures (#640)

• #631(@netrome): Define release process (#631)

• #649(@andrei-near): Build Docker image as part of CI tests (#649)

• #651(@DSharifi): Use workspace for dependencies (#651)

• #659(@DSharifi): Add --enable-bulk-memory-opt requirement in contract readme (#659)

• #662(@DSharifi): Do not wait for indexer sync before generating TEE attestation (#662)

• #669(@DSharifi): Use the right protocol_state type for MpcContractV1 state (#669)

• #673(@DSharifi): Update pytest build step to include --enable-bulk-memory flag (#673)

• #677(@DSharifi): Setup black as formatter for pytest code (#677)

• #686(@kuksag): Make python formatter apply for the whole repo (#686)

• #633(@IkerAlus): (readme) Eddsa example in readme.md (#633)

• #685(@kuksag): Add TEE Launcher image building step to CI (#685)

• #692(@kuksag): Fix failing CI for TEE Launcher build (#692)

• #688(@kuksag): Add tee_launcher tests in CI (#688)

• #694(@kuksag): Specify TEE Launcher image from nearone registry (#694)

• #700(@DSharifi): Remove unused threshold parameter in start_cluster_with_mpc (#700)

• #707(@kevindeforth): (deployment) Gcp start bash script: avoid unnecessary warning (#707)

• #708(@kevindeforth): Rename web endpoint /get_public_data to /public_data (#708)

• #718(@netrome): Override org-wide issue template (#718)

• #720(@netrome): Move MPC node modules to lib.rs (#720)

• #742(@DSharifi): (devnet) Add support for voting new approved code hash on devnet (#742)

• #749(@kuksag): Remove mpc-keys crate in contract (#749)

• #660(@hackpk): (lazy_static) Replace lazy_static with LazyLock (#660)

• #750(@kuksag): Add python linter (#750)

• #751(@kuksag): Allow contract to generate ABI (#751)

• #773(@gilcu3): Execute python lint/format CI only when needed (#773)

• #775(@DSharifi): Remove i/o code from attestation crate (#775)

• #783(@gilcu3): Unify near-sdk versions (#783)

• #787(@kevindeforth): (ci) Split ci-tests into multiple jobs (#787)

• #790(@gilcu3): Remove nightly features from fmt config (#790)

• #793(@gilcu3): Fix cargo-near install failure in CI (#793)

• #792(@barakeinav1): (launcher) Small update of variable and file name for better clarity (#792)

• #796(@kevindeforth): (pytests) Speedup - reduce rpc poll timeout and send txs in parallel (#796)

• #798(@kevindeforth): (ci) Add clippy all-features (#798)

• #810(@kevindeforth): (pytest) Improve test_lost_assets.py performance and coverage (#810)

• #812(@kevindeforth): (pytest) Fix flaky test_signature_lifecycle (#812)

• #813(@gilcu3): Use our own fork of dcap-qvl v0.2.4 (#813)

• #821(@gilcu3): Remove default features prometheus (#821)

• #806(@DSharifi): Implement serde + borsh (de)serialization for attestation crate types (#806)

• #822(@gilcu3): Upd near-crypto in infra/scripts/generate_keys/ (#822)

• #840(@DSharifi): Update dcap-qvl crate to upstream version (#840)

• #833(@barakeinav1): (launcher script) Update readme (#833)

• #870(@DSharifi): Replace YamlValue with a String wrapper for docker_compose_file (#870)

• #835(@DSharifi): Add docker TEE build as a CI check (#835)

• #871(@gilcu3): Added test_vote_code_hash_doesnt_accept_account_id_not_in_participant_list test (#871)

• #873(@DSharifi): Implement borsh schema for attestation crate types (#873)

• #874(@kevindeforth): (test) More detailed error checking in contract test (#874)

• #876(@DSharifi): Update phala cloud API endpoint for collateral generation (#876)

• #869(@pbeza): (tee) Remove account key from report data (#869)

• #867(@gilcu3): Integrate ts#22 refactor (#867)

• #878(@DSharifi): Integrate the attestation module into the contract code (#878)

• #889(@DSharifi): Remove near_crypto from attestation crate (#889)

• #922(@kevindeforth): (contract) Remove stale log of random seed in contract (#922)

• #933(@DSharifi): Remove near_crypto dependency from smart contract (#933)

• #937(@DSharifi): Move config.rs unit test behind feature gated test module (#937)

• #872(@barakeinav1): (deploy script) Update MPC node ports (#872)

• #914(@DSharifi): [breaking] Remove near_crypto from node code (#914)

• #963(@kevindeforth): (node) Move tls into crate (#963)

• #989(@gilcu3): Bump version tracing-subscriber (#989)

• #991(@gilcu3): Bump dcap-qvl to released version (#991)

• #995(@DSharifi): Use configuration value instead of constant for TEE_UPGRADE_PERIOD (#995)

• #1000(@DSharifi): Upgrade ed25519-dalek version in contract (#1000)

• #1004(@DSharifi): Use crates.io version of dstack-sdk (#1004)

• #1010(@netrome): Enable running with dstack TEE authority in start.sh (#1010)

• #1007(@DSharifi): Delete docker_release_tee.yaml workflow (#1007)

• #1011(@gilcu3): Fix warning while building contract in pytests (#1011)

• #1021(@gilcu3): Fix deployment start script (#1021)

• #1013(@DSharifi): Use test_utils crate for image hashes in contract tests (#1013)

• #1018(@barakeinav1): Set MPC authority stared by launcher to always expect real TDX HW (#1018)

• #1036(@andrei-near): Test for new docker images (#1036)

• #1047(@gilcu3): Avoid storing migration contract binary (#1047)

• #1016(@DSharifi): Enhance mock attestation struct with conditional validation (#1016)

• #1068(@kevindeforth): (test) Fix resharing tests (#1068)

• #1082(@kevindeforth): Update disaster recovery doc (#1082)

• #1093(@gilcu3): Refactor to adapt to API changes in threshold-signatures (#1093)

• #1104(@barakeinav1): Unify launcher folders (#1104)

• #1108(@DSharifi): Remove redundant and duplicate clippy check for devnet crate (#1108)

• #1101(@DSharifi): Create an interface for submitting transactions with response (#1101)

• #1113(@gilcu3): Update ci to use reproducible builds (#1113)

• #1102(@DSharifi): Move contract crate into root workspace (#1102)

• #1116(@gilcu3): Add detailed steps for mpc node image code inspection during upgrades (#1116)

• #1122(@DSharifi): Fix build script for builds in detached head (#1122)

• #1124(@gilcu3): Added security policy (#1124)

• #1125(@DSharifi): Pin serde to 1.0.2191 to fix compilation issue with dstack-sdk (#1125)

• #1127(@gilcu3): (ci) Separate CI actions for launcher and node (#1127)

• #1131(@gilcu3): (docs) Update docs after #1127 (#1131)

• #1136(@DSharifi): Move all workspace members in to /crates directory (#1136)

• #1115(@barakeinav1): Update user guide with dstack 0.5.4 changes (#1115)

• #1143(@gilcu3): Adapt to API changes in ts#78 (#1143)

• #1120(@kevindeforth): Index nodes by account id & TLS key in TEE State (#1120)

• #1142(@gilcu3): Use workspace versions in contract Cargo.toml (#1142)

• #1111(@DSharifi): Remove enum VersionedMpcContract contract state in favor of a single version struct (#1111)

• #1157(@gilcu3): Bring back legacy CI (#1157)

• #1159(@DSharifi): Update error message in image hash watcher (#1159)

• #1151(@DSharifi): Create DTO types for the attestation submission method (#1151)

• #1166(@DSharifi): Use time durations instead of block numbers for tee grace period (#1166)

• #1190(@gilcu3): Make sure devnet tests ckd (#1190)

• #1141(@DSharifi): Add github action for unused dependencies (#1141)

• #1221(@pbeza): Remove redundant allow attribute (#1221)

• #1230(@DSharifi): Use base58 encoding for public key serialization on node HTTP server. (#1230)

• #1231(@DSharifi): Document how to run a local mpc network (#1231)

• #1251(@gilcu3): Remove unneeded deps in attestation crate (#1251)

• #1253(@gilcu3): Added systemd service for VMM (#1253)

• #1273(@kevindeforth): Resolve flaky integration tests (#1273)

• #1261(@gilcu3): Contract unit tests for ckd (#1261)

• #1276(@kevindeforth): Contract move helpers (#1276)

• #1274(@gilcu3): Add support for CKD BLS in contract sandbox tests (#1274)

• #1305(@kevindeforth): Use read-write lock for keyshare storage (#1305)

• #1315(@DSharifi): Enforce sorted cargo dependencies on CI (#1315)

• #1323(@netrome): Bump nearcore to 2.9.0 (#1323)

• #1326(@netrome): Use pinned nextest version and standard installation action (#1326)

• #1338(@gilcu3): Use proper serialization format for PersistentSecrets (#1338)

• #1336(@netrome): Add support for dockerized localnet (#1336)

• #1340(@pbeza): Cargo update and fix deprecated API usage (#1340)

• #1347(@Copilot): Document reproducible builds in README.md (#1347)

• #1352(@gilcu3): Use 0 as SOURCE_DATE_EPOCH for repro builds (#1352)

• #1344(@gilcu3): Move test-utils to ts repo (#1344)

• #1378(@gilcu3): Updated hard-coded TCB info for 3.0.0 release (#1378)

• #1383(@netrome): Set crate versions to 3.0.0 and update changelog (#1383)

• #1388(@netrome): Support publishing images from git tags (#1388)

◀️ Revert

• #779(@DSharifi): "refactor(tee): move attestation generation logic" (#779)

[2.2.0-rc1] - 2025-06-11

⚙️ Miscellaneous Tasks

• #490(@DSharifi): Bump versions for new release candidate (#490)

[2.0.1-rc2] - 2025-06-10

🚀 Features

• #466(@DSharifi): (TEE) Implement remote attestation information generation (#466)

🐛 Bug Fixes

• #480(@DSharifi): Use threshold number for previous running state in resharing (#480)

⚙️ Miscellaneous Tasks

• #477(@netrome): Add MIT license and third party license notices (#477)

[2.0.1-rc1] - 2025-06-03

🚀 Features

• #438(@DSharifi): Parallel resharing and running (#438)

🐛 Bug Fixes

• #370(@DSharifi): Return early in Indexer thread and listen_blocks if channel to MPC node is closed.

💼 Other

• #416(@andrei-near): Fix import keyshare (#416)

⚙️ Miscellaneous Tasks

• #366(@DSharifi): Add metrics for latency of signature request responses (#366)

• #373(@DSharifi): Add metrics for latency of signature request responses in seconds

• #371(@DSharifi): Remove spawn_blocking call wrapping the indexer thread (#371)

• #406(@DSharifi): Remove unwrap in monitor_passive_channels_inner (#406)

[2.0.0-rc.1] - 2025-04-11

🚀 Features

• #294(@DSharifi): (EdDSA) Add support for EdDSA signature requests on the smart contract (#294)

🐛 Bug Fixes

• #209(@pbeza): (audit) Fix TLS certificate verification (#209)

• #268(@DSharifi): Pinned legacy contract dependency to git revistion (#268)

• #328(@DSharifi): Add pre-computed edwards_point of EdDSA keys to contract state (#328)

• #358(@DSharifi): Use internal tag for signature response type for backwards compatibility (#358)

💼 Other

• #260(@andrei-near): MPC Load Balancer removal (#260)

• #267(@andrei-near): Implement import-export keyshare (#267)

• #274(@peter-near): Removed unused cipher key generation (#274)

• #292(@andrei-near): Tokio runtime for import/export keyshare commands (#292)

• #300(@andrei-near): Vote leave cmd (#300)

• #269(@kuksag): Reuse PayloadHash and Epsilon types from contact (#269)

• #304(@andrei-near): Warpbuild GHA runners (#304)

• #331(@andrei-near): Option to use own funding account (#331)

• #335(@andrei-near): MPC_HOME_DIR in image init script (#335)

• #336(@peter-near): Added IDE configs to git ignore (#336)

🚜 Refactor

• #210(@pbeza): (audit) Remove explicit .into_iter (#210)

• #215(@pbeza): (audit) Shorten CLI's function bodies (#215)

• #283(@DSharifi): Use [u8; 32] instead of Scalar type from k256 crate in contract (#283)

• #341(@DSharifi): Remove ScalarExt trait (#341)

🧪 Testing

• #265(@bowenwang1996): Reduce flakiness by reducing the amount of assets buffered in tests (#265)

• #339(@DSharifi): Test public key derivation in contract (#339)

• #347(@DSharifi): (eddsa) Add integration test for EdDSA signature requests (#347)

• #348(@DSharifi): Enable EdDSA signature requets in pytests (#348)

⚙️ Miscellaneous Tasks

• #281(@DSharifi): Remove self dependency to legacy_contract (#281)

• #286(@DSharifi): Pin near-sdk version to 5.2.1 (#286)

• #282(@DSharifi): Move crypto-shared to a module in contract (#282)

• #359(@DSharifi): Fix typo in codebase edd25519 to ed25519

• #334(@DSharifi): Add docs to EdDSA fields in PublicKeyExtended. (#334)

[testnet-upgrade] - 2025-01-09

💼 Other

• #59(@andrei-near): Replace cache with rust-cache (#59)

• #115(@andrei-near): Workflow to build and publish MPC docker images (#115)

• #116(@andrei-near): Docker image builder nit (#116)