Latest Updates

Today, Clarinet introduces a built-in Clarity linter as part of clarinet check, designed to help developers catch common mistakes, eliminate dead code, and improve overall contract quality earlier in the development cycle.

This first release focuses on dead code analysis, surfacing declarations and expressions that have no effect on contract execution and are often sources of bugs, confusion, or unnecessary complexity.

Dead Code Analysis (Available Today)

The initial lint set includes seven configurable lints, each targeting a specific class of unused code:

In addition, Clarinet includes the noop lint (contributed by GitHub user 0xalpharush), which flags expressions that have no effect, such as: (is-eq 1)

Suppressing Lints

Some unused code is intentional—for example, private functions used only in tests or bindings whose evaluation has side effects.

To handle these cases, Clarinet supports:

Identifier-based suppression

Appending a trailing _ to an identifier might generate other kinds of warnings but the linter will allow them to be unused, following a convention similar to Rust. (Note: prefixing identifiers with _ is not yet supported.)

Line-level suppression

Individual lints can also be disabled on a per-line basis using Clarity annotations:

;; #[allow(lint_name)]

Configuration

All non-style/non-cosmetic lints are enabled by default at warning level. Style lints may be enabled by default at notice eventually.

Configure individual lints

[repl.analysis.lints]
noop = true # Defaults to "warning"
unused_const = "warning"
unused_data_var = "error"
unused_map = false

Configure lint groups

[repl.analysis.lint_groups]
all = true       # Sets default level to "warning" for all lints
style = "notice" # Cosmetic lints generate notices only
unused = "error" # Enforces removal of unused code

What’s Next

This release lays the foundation for a broader linting system in Clarinet. Upcoming work includes:

• Style lints for consistent and idiomatic Clarity code

• Performance lints to surface inefficient patterns

• Safety lints to help identify potentially dangerous constructs

If you have ideas for additional lints, feedback can be shared via the Clarinet GitHub issue or in the community Discord.

Navigate to the Clarinet section on this.

For the latest release: https://github.com/stacks-network/stacks-core/releases/tag/3.3.0.0.2

Details on what was updated

Added

• Fixed an issue where event.committed was always equal to true in the block replay RPC endpoint

• Added result_hex and post_condition_aborted to the block replay RPC endpoint

• Added --epoch <epoch_number> flag to clarity-cli commands to specify the epoch context for evaluation.

• Support read-count tenure extends

• Added read_count_idle_timeout_secs config option to set the amount of seconds of idle time must pass before a read-count tenure extend is allowed (defaults to 20 seconds)

• Send a read-count tenure extend timestamp in the block responses

• Approve a block with a read-count tenure extend when the appropriate amount of idle time has passed

Fixed

• Correctly produce the receipt for the costs-4 contract, which was deployed on epoch 3.3 activation. Users who consume node events and want to fill in the missing receipt (e.g. the Hiro API) will need to revert their chainstate to before the 3.3 activation and then resume sync to receive the previously missing event.

tl;dr

• If you enrolled in Dual Stacking you'll be moved over automatically with no action needed.

• If you did not enroll in the web app but were receiving Dual Stacking rewards through a participating app, you need to enroll on the web app.

To check your enrollment status go to app.stacks.co.

The contract will upgrade from .dual-stacking-v1 to .dual-stacking-v2_0_2 .

To use this feature, a user must first run clarinet deployments encrypt, which will prompt the user for the seed phrase and a password, then print the encrypted mnemonic to the console. The user can then put the resulting ciphertext into their deployment config file using the key encrypted_mnemonic. The next time the user runs clarinet deployments apply, they will be prompted for the password, and the mnemonic will be decrypted for use in that session.

For example, if your settings/Mainnet.toml file looks like this:

You would then run:

You would then replace the mnemonic field in your settings file with the encrypted_mnemonic output above:

Then the next time you deploy your package, you will be prompted for the password:

What Clarity 4 Means for Bitcoin Builders

1. On-chain Contract Verification

Developers can now fetch the hash of another contract’s code body.

contract-hash?

This makes it possible for one contract to verify that another follows a specific template before interacting with it – a major step toward safer, more trustless bridges and marketplaces that can support a wider range of assets.

2. Allowing Contracts to Set Post-Conditions

New functions allow contracts to set post-conditions that protect their assets.

restrict-assets?

This means a contract can safely call external contracts (such as traits) and automatically roll back any changes if the executed code moves assets beyond what’s allowed.

3. Convert Simple Values into ASCII Strings

Clarity 4 adds a function to convert simple values like booleans or principals into ASCII strings.

to-ascii?

This makes it easier to generate readable, string-based messages – a useful tool for developers building cross-chain features and integrations.

4. Get the Timestamp of the Current Block

A new keyword lets developers retrieve the timestamp of the current block.

stacks-block-time

This addition enables time-based logic in smart contracts – an essential capability for building features like yield schedules, lockups, or expiration conditions in DeFi applications.

5. Native Passkey Integration

Clarity 4 introduces a new function enabling on-chain verification of secp256r1 signatures.

secp256r1-verify

This lays the groundwork for passkey-based authentication, opening the door to features like hardware-secured wallets and biometric transaction signing.

6. Dimension-specific Tenure Extensions

The SIP-033 vote also included technical rider SIP-034, which introduces dimension-specific tenure extensions. Signers can approve resets to one budget dimension (e.g., read-count) without resetting the others, allowing high-throughput workloads even when the cost model is pessimistic.

Why This Matters for Bitcoin

Clarity 4 strengthens Stacks' position as Bitcoin's liquidity layer by giving developers the tools to build more sophisticated Bitcoin DeFi applications – all secured by Bitcoin through Stacks' Proof of Transfer mechanism.

Whether you're building Bitcoin lending protocols, yield products with sBTC, or the next generation of BTCFi applications, Clarity 4 delivers the security and functionality Bitcoin capital markets demand.

Check out the full SIP-033 & SIP-034 specifications.

Additional Resources

• [Hiro Youtube] A Dev N' Tell with Brice on new Clarity 4 features

tl;dr

Checklist: ✅ Update NPM packages:

• "@stacks/clarinet-sdk": "^3.10.0"

• "vitest-environment-clarinet": "3.0.2" ✅ Replace all imports of @hiroystems/clarinet-sdk to @stacks/clarinet-sdk ✅ Optionally, update Vitest to v4 and update vitest config

How to migrate?

VSCode

In VSCode (or similar variants such as Cursor), you'll have to uninstall the Hiro Systems "Clarity" extension in favor of the new "Clarity - Stacks Labs" extension published by Stacks Labs. The name of the extension will eventually revert to "Clarity" at some point, once the Hiro one is deprecated. You can also see it in the online marketplace - feel free to leave a 5 ⭐ review if you enjoy Clarinet!

NPM

New Clarinet projects created with 3.9.0 will automatically use the @stacks/ NPM package.

However, older projects require a few manual updates to be migrated.

package.json

In your package.json, replace @hirosystems/clarinet-sdk with the @stacks one, and upgrade vitest-environement-clarinet to version 3.0.1. Your dependencies should look like that.

Optionally, you can upgrade to Vitest@4, more on that below

tsconfig.json

In the tsconfig.json, you need to update the "includes" config like so, so that is using @stacks/clarinet-sdk

vitest.config.ts (or .js)

Your Vitest config has to import @stacks/clarinet-sdk/vitest.

Double check that you import defineConfig from "vitest/config" and not "vite".

If you upgraded to Vitest v4, a few other changes are needed in defineConfig:

Docker image

The Clarinet Docker image has been moved from Docker Hub to GitHub Container Registry (ghcr). It can be used like so:

Double check

Search for all occurrences of @hirosystems/clarinet-sdk in your project; they'll likely need to be updated to @stacks/clarinet-sdk.

See it in action

See how the clarity-starter project was updated in this PR: stx-labs/clarity-starter#17

Conclusion

We understand that these types of breaking changes can be frustrating. Although it's not ideal, we need it to move forward.

If you experience any issues with the migrations, reach out to us in the #clarinet channel on Discord or reply to this discussion.