Bump the dependencies group with 3 updates

[dependabot]

Bumps the dependencies group with 3 updates: github.com/ethereum/go-ethereum, github.com/holiman/uint256 and golang.org/x/crypto.

Updates github.com/ethereum/go-ethereum from 1.13.10 to 1.14.7

Release notes

Sourced from github.com/ethereum/go-ethereum's releases.

Trident (v1.14.7)

This is a hot-fix release for a bug (#30139) which affects only the previous release. Users of v1.14.6 are kindly requested to update.

For a full rundown of the changes please consult the Geth 1.14.7 release milestone.

---

As with all our previous releases, you can find the:

• Pre-built binaries for all platforms on our downloads page.
• Docker images published under ethereum/client-go.
• Ubuntu packages in our Launchpad PPA repository.
• OSX packages in our Homebrew Tap repository.

Talaria (v1.14.6)

Geth v1.14.6 is a maintenance release, but it does ship with the experimental witness building validation code used in @​karalabe's "cross validation" proposal. Note that the engine API part is not included in this release.

---

Shipped features:

• Add stateless witness builder and (self-)cross validator (#29719, #29807, #29970, #30024)
• Set a 2KB hard limit for p2p handshake messages (#30029)
• Improved display of database statistics (#29948)

Shipped bugfixes:

• Fix issue in which the beacon root contract balance would not be saved in developer mode, causing an error on restart (#29963)
• Fix shutdown crash when geth runs in blsync mode (#29946)
• Fix data races in snapshot access (#30001, #30011)
• Fix out of bounds access in json unmarshalling (#30014)
• Add missing lock in peer discovery (#29960)

For a full rundown of the changes please consult the Geth 1.14.6 release milestone.

---

As with all our previous releases, you can find the:

• Pre-built binaries for all platforms on our downloads page.
• Docker images published under ethereum/client-go.
• Ubuntu packages in our Launchpad PPA repository.
• OSX packages in our Homebrew Tap repository.

Bothros (v1.14.5)

Geth v1.14.5 is a hotfix release that addresses a regression introduced in v1.14.4, which prevented the node from discovering other peers in certain networking setups (#29944). It is otherwise identical to v1.14.4.

---

Geth v1.14.4 in a usual maintenance release, but it does ship a 5-7% block import speed improvement. Furthermore, v1.14.4 also finally includes an Ether supply live tracer, that you can enable via --vmtrace supply. Also please note, the default value for miner tip enforcement was dropped from 1 gwei to 0.001 gwei (block producers can change this via --miner.gasprice).

... (truncated)

Commits

• aa55f5e Merge branch 'master' into release/1.14
• 0aafbb3 params: go-ethereum v1.14.7 stable
• 803dc6b core/txpool/blobpool: revert #29989, WLock on Nonce (#30142)
• 37590b2 eth/catalyst: fix params in failure log (#30131)
• 10467ac go.mod: update uint256 to 1.3.0 (#30134)
• c4b4d05 crypto: remove hardcoded value for secp256k1.N (#30126)
• 2d9d423 build: upgrade -dlgo version to Go 1.22.5 (#30112)
• c6cae0f Merge remote-tracking branch 'gballet/release-1.14.6'
• aadddf3 params: release Geth v1.14.6
• 640e0f1 params: begin v1.14.7 release cycle
• Additional commits viewable in compare view

Updates github.com/holiman/uint256 from 1.2.4 to 1.3.0

Release notes

Sourced from github.com/holiman/uint256's releases.

Fitcher Penrose (v1.3.0)

The 1.3.0-release contains a lot of optimizations, contributed by @​AaronChen0. Thanks for all the contributions! Other than that, a breaking change in the ssz-interface implementation and a bugfix.

What's Changed

• optimizations to Mul, squared, Exp, Set, DivMod, Byte, Lsh, Rsh, SRsh, ExtendSign, AddMod, MulOverflow, MulMod, MulDivOverflow, MulModWithReciprocal , Mod, Sqrt by @​AaronChen0 in (holiman/uint256#152, holiman/uint256#153, holiman/uint256#154, holiman/uint256#158, holiman/uint256#165, holiman/uint256#166, holiman/uint256#167, holiman/uint256#168, holiman/uint256#169, holiman/uint256#172, holiman/uint256#173, holiman/uint256#174

• Fixes a bug in SetBytes29 (holiman/uint256#157)

• Test-improvements, now using golang-native fuzzing instead of gofuzz-based fuzzing by @​holiman (holiman/uint256#163, holiman/uint256#164)

• The method MarshalSSZTo was removed, and has been replaced by MarshalSSZAppend and MarshalSSZInto. This is an intentionally breaking change, forcing users to explicitly choose which implementation they desire. For more info, see holiman/uint256#171

Full Changelog: holiman/uint256@v1.2.4...v1.2.5

---

The uint256 release naming-convention is "fictional mathematicians", later expanded into "fictional scientists", due to the dearth of fiction about mathematicians.

Fitcher Penrose appears in Amitav Ghosh's Ibis-trilogy, part II, "River of Smoke". He is a botanist collecting rare plants in Asia.

Commits

• 75a5209 conversion: replace MarshalSSZTo with MarshalSSZAppend and `MarshalSSZInt...
• b3cb927 uint256: optimize Sqrt (#174)
• 8dfcfde uint256: optimize mod, DivMod (#173)
• b85bc2a uint256: optimize MulMod, MulModWithReciprocal (#172)
• 70cbe2b uint256: optimize div-related functions by removing unnecessary computation (...
• 11a325c uint256: optimize div-related functions by reducing bounds check (#168)
• 66a4528 uint256: minor improvement for Mul (#167)
• 5ecf78c uint256: optimize umul (MulOverflow, MulMod, MulModWithReciprocal, MulDivOver...
• 34f0760 uint256: optimize AddMod (#165)
• 09331ab make oss-fuzz integration work again (#164)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.17.0 to 0.22.0

Commits

• d042a39 go.mod: update golang.org/x dependencies
• b92bf94 ssh: respect MaxAuthTries also for "none" auth attempts
• 6f79b5a ssh: add server side multi-step authentication
• 8d0d405 x/crypto/chacha20: cleanup chacha_ppc64le.s
• b91329d all: remove redundant words in comments and fix some typos
• 7067223 go.mod: update golang.org/x dependencies
• 0d2316b ssh/test: work around for TestCiphers failures on macOS
• 0aab8d0 all: update go.mod x/net dependency
• 5bead59 ocsp: don't use iota for externally defined constants
• 1a86580 x/crypto/internal/poly1305: improve sum_ppc64le.s
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions