fix: update testnet nodes

[HashEngineering]

Summary by CodeRabbit

• Chores

  • Bumped SDK and bindings to 2.0.5 (Gradle reference updated to 2.0.5-SNAPSHOT); VCS ignore rules adjusted.

• Documentation

  • Updated README examples and cloning instructions to reference the new version and branch and clarified container example.

• Tests

  • Replaced testnet node list, renamed a test, and strengthened node-validation assertions.

• CI

  • Expanded workflow to fetch an external platform branch, install additional build tools, and skip tests during build.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Bumped package versions, expanded and replaced testnet address lists and strengthened/renamed tests, updated CI to fetch external repos and install protoc/cbindgen/cargo-ndk plus Android Rust targets, and made small README and .gitignore edits.

Changes

Cohort / File(s)	Summary
Version Updates README.md, build.gradle, dash-sdk-android/src/main/rust/Cargo.toml, dash-sdk-bindings/Cargo.toml, platform-mobile/Cargo.toml	Incremented SDK/package versions: Cargo crates → 2.0.5, Gradle/project version → 2.0.5-SNAPSHOT.
Testnet Configuration & Tests platform-mobile/src/config.rs, platform-mobile/src/fetch_document.rs	TESTNET_ADDRESS_LIST changed from 24 → 29 entries; ADDRESS_LIST replaced with 68.67.122.1…68.67.122.29; test renamed check_all_nodes_test → check_all_testnet_nodes_test; tests now assert bad_nodes.len() < good_nodes.len().
CI Workflow Changes .github/workflows/build-and-verify-alignment.yml	Adds ANDROID_NDK_HOME, clones external repos (platform @ ferment-2.0, rs-x11-hash), installs SWIG and pinned protoc (with SHA-256 verify) into ~/.local, installs cbindgen and cargo-ndk, configures Rust nightly and Android targets, and changes Gradle invocation to ./gradlew build -x test.
VCS & Docs Edits dash-sdk-android/.gitignore, dash-sdk-bindings/.gitignore, dash-sdk-bindings/README.md	Removed fermented.rs from .gitignore; updated README cloning instructions and switched platform clone to --branch ferment-2.0; removed rs-x11-hash clone step.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Poem

🐇 I hopped through versions, leaves anew,
Nodes now twenty-nine in view,
CI fetched tools up the hill,
Tests grew firmer, steady will,
I twitch my nose — ready to brew.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'fix: update testnet nodes' directly addresses the main change: updating the TESTNET_ADDRESS_LIST constant with new testnet node IPs and related version/configuration updates.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch fix/update-testnet-nodes

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

🧹 Nitpick comments (1)

platform-mobile/src/fetch_document.rs (1)

450-480: Avoid duplicating the testnet node source of truth.

This list mirrors platform-mobile/src/config.rs and will be easy to desynchronize. Prefer reusing TESTNET_ADDRESS_LIST directly in the test loop.

♻️ Proposed refactor

-use crate::config::{Config, EntryPoint};
+use crate::config::{Config, EntryPoint, TESTNET_ADDRESS_LIST};
@@
-pub const ADDRESS_LIST: [&str; 29] = [
-    "68.67.122.1",
-    ...
-    "68.67.122.29"
-];
@@
-    for address in ADDRESS_LIST {
+    for address in TESTNET_ADDRESS_LIST {

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@platform-mobile/src/fetch_document.rs` around lines 450 - 480, The
ADDRESS_LIST constant duplicates the testnet node list from config.rs; remove
ADDRESS_LIST and update the test loop(s) in fetch_document.rs to reference the
single source of truth TESTNET_ADDRESS_LIST (e.g., import or use
config::TESTNET_ADDRESS_LIST or crate::config::TESTNET_ADDRESS_LIST as
appropriate) so tests iterate over that constant instead of the duplicated
array; ensure any local references to ADDRESS_LIST are replaced and imports
adjusted.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@platform-mobile/src/fetch_document.rs`:
- Around line 450-480: The ADDRESS_LIST constant duplicates the testnet node
list from config.rs; remove ADDRESS_LIST and update the test loop(s) in
fetch_document.rs to reference the single source of truth TESTNET_ADDRESS_LIST
(e.g., import or use config::TESTNET_ADDRESS_LIST or
crate::config::TESTNET_ADDRESS_LIST as appropriate) so tests iterate over that
constant instead of the duplicated array; ensure any local references to
ADDRESS_LIST are replaced and imports adjusted.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 34d565b6-0bbe-4531-a1e7-eed40ff955f6

📥 Commits

Reviewing files that changed from the base of the PR and between 0c509ad and 4e67fbe.

⛔ Files ignored due to path filters (2)

• dash-sdk-bindings/Cargo.lock is excluded by !**/*.lock
• platform-mobile/Cargo.lock is excluded by !**/*.lock

📒 Files selected for processing (7)

• README.md
• build.gradle
• dash-sdk-android/src/main/rust/Cargo.toml
• dash-sdk-bindings/Cargo.toml
• platform-mobile/Cargo.toml
• platform-mobile/src/config.rs
• platform-mobile/src/fetch_document.rs

[abaranouski]

@HashEngineering, do we really use the SNAPSHOT version?

[HashEngineering]

yes, until 2.0.5 is finalized.

[abaranouski]

and here?

[HashEngineering]

yes, until 2.0.5 is finalized.

[abaranouski]

Though the build failed...

[HashEngineering]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (1)

.github/workflows/build-and-verify-alignment.yml (1)

59-60: Pin cbindgen and cargo-ndk versions and cache the binaries.

cargo install cbindgen and cargo install cargo-ndk without --version install whatever is latest on crates.io at build time, harming reproducibility and risking unexpected breakage when new versions ship. These installs also recompile from source on every run, adding significant overhead.

Recommendations:

• Pin versions: cargo install cbindgen --version 0.29.2 --locked and cargo install cargo-ndk --version 4.1.2 --locked (update versions as needed).
• Cache binaries using Swatinem/rust-cache@v2, taiki-e/cache-cargo-install-action, or baptiste0928/cargo-install.
• Optionally group the two Rust tool installs together before generate the header file for clarity (since cargo-ndk is only needed by ./gradlew build).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.github/workflows/build-and-verify-alignment.yml around lines 59 - 60, Pin
the cbindgen and cargo-ndk installs and add caching: replace the unpinned "cargo
install cbindgen" step by installing with explicit versions (e.g., cbindgen
--version 0.29.2 --locked and cargo-ndk --version 4.1.2 --locked) and use a
Rust/cargo-install cache action (such as Swatinem/rust-cache@v2,
taiki-e/cache-cargo-install-action, or baptiste0928/cargo-install) to cache the
installed binaries, and optionally group the two cargo install commands together
before the "generate the header file" step so cargo-ndk is available for
./gradlew build.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/build-and-verify-alignment.yml:
- Around line 44-46: The CI currently clones
https://github.com/hashengineering/platform.git on branch ferment-2.0 which is a
personal fork and not pinned; change the workflow step that runs the git clone
so it either clones the upstream dashpay/platform (replace the remote URL and
branch name in the clone step) or, if you must use that branch, make the clone
immutable by cloning then checking out a specific commit SHA (run git clone ...
then git -C ../platform checkout <sha>) and update the workflow to use that SHA
instead of the branch name to ensure reproducible, non-force-pushable builds;
update any references to the branch/remote in the workflow step that contains
the git clone command.
- Around line 50-57: The protoc download step currently uses curl to fetch the
zip without checksum verification and unzips directly into $HOME/.local which
can silently overwrite; update the job to download the corresponding .sha256 (or
.sha256sum) for PROTOC_VERSION, compute and verify the SHA256 of the downloaded
protoc-${PROTOC_VERSION}-linux-x86_64.zip before unzipping, and change the
extraction to avoid overwriting (e.g., extract to a temporary directory and move
binaries or use a non-overwrite flag). Specifically modify the commands that
reference PROTOC_VERSION, the curl download of protoc, and the unzip step so
they perform checksum verification and safe extraction.

---

Nitpick comments:
In @.github/workflows/build-and-verify-alignment.yml:
- Around line 59-60: Pin the cbindgen and cargo-ndk installs and add caching:
replace the unpinned "cargo install cbindgen" step by installing with explicit
versions (e.g., cbindgen --version 0.29.2 --locked and cargo-ndk --version 4.1.2
--locked) and use a Rust/cargo-install cache action (such as
Swatinem/rust-cache@v2, taiki-e/cache-cargo-install-action, or
baptiste0928/cargo-install) to cache the installed binaries, and optionally
group the two cargo install commands together before the "generate the header
file" step so cargo-ndk is available for ./gradlew build.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 5e86eec9-1b88-4e05-b3ec-af80121d7002

📥 Commits

Reviewing files that changed from the base of the PR and between 4e67fbe and b1ef3b4.

⛔ Files ignored due to path filters (1)

• dash-sdk-android/src/main/rust/Cargo.lock is excluded by !**/*.lock

📒 Files selected for processing (6)

• .github/workflows/build-and-verify-alignment.yml
• dash-sdk-android/.gitignore
• dash-sdk-android/src/main/rust/src/fermented.rs
• dash-sdk-bindings/.gitignore
• dash-sdk-bindings/README.md
• dash-sdk-bindings/src/fermented.rs

💤 Files with no reviewable changes (1)

• dash-sdk-android/.gitignore

✅ Files skipped from review due to trivial changes (2)

• dash-sdk-bindings/.gitignore
• dash-sdk-bindings/README.md

[coderabbitai]

Actionable comments posted: 3

🧹 Nitpick comments (1)

.github/workflows/build-and-verify-alignment.yml (1)

74-75: Pin cbindgen version for reproducible CI.

cargo install cbindgen always pulls the latest version from crates.io, so a new upstream release can silently change generated bindings and break the build. Pin it the same way cargo-ndk is pinned below.

♻️ Suggested change

-    - name: Install cbindgen
-      run: cargo install cbindgen
+    - name: Install cbindgen
+      run: cargo install cbindgen --version "^0.28"   # pick the version you've validated

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.github/workflows/build-and-verify-alignment.yml around lines 74 - 75,
Replace the unpinned `cargo install cbindgen` invocation with a pinned install
so CI is reproducible: change it to the same style used for `cargo-ndk` (e.g.,
`cargo install cbindgen --version "<SPECIFIC_VERSION>"`) and pick the concrete
version your repo currently expects; ensure the workflow uses that explicit
version string instead of the floating latest.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/build-and-verify-alignment.yml:
- Around line 89-93: The workflow step "Install Cargo NDK and Rust targets"
fails if the nightly toolchain isn't present; before running rustup component
add --toolchain nightly and rustup target add ... --toolchain nightly,
explicitly install the nightly toolchain by running rustup toolchain install
nightly so subsequent calls (rustup component add and rustup target add)
succeed.
- Around line 98-99: The workflow currently skips tests by using "./gradlew
build -x test" in the "Build with Gradle" step; change this so CI actually runs
unit tests by removing the "-x test" flag (use "./gradlew build") or add an
additional explicit step named "Run tests" that executes "./gradlew test" after
the build step; ensure the new/modified step uses the same Gradle wrapper
invocation and fails the job on test failures so
platform-mobile/src/fetch_document.rs tests run in CI.
- Around line 48-49: The clone step named "clone rs-x11-hash repo" currently
clones into the Kotlin repo root and uses a mutable branch; change it to clone
the repo into the parent directory expected by the build (destination
../rs-x11-hash) and pin to a specific commit by checking out <pinned-commit-sha>
after cloning (replace <pinned-commit-sha> with the actual commit SHA) so the
path dependency ../rs-x11-hash resolves correctly and builds are reproducible.

---

Nitpick comments:
In @.github/workflows/build-and-verify-alignment.yml:
- Around line 74-75: Replace the unpinned `cargo install cbindgen` invocation
with a pinned install so CI is reproducible: change it to the same style used
for `cargo-ndk` (e.g., `cargo install cbindgen --version "<SPECIFIC_VERSION>"`)
and pick the concrete version your repo currently expects; ensure the workflow
uses that explicit version string instead of the floating latest.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 9d716eea-2bfc-40e5-a27a-8522f5ac72d4

📥 Commits

Reviewing files that changed from the base of the PR and between a297300 and 2a6b1c1.

📒 Files selected for processing (1)

• .github/workflows/build-and-verify-alignment.yml