chore(deps): bump github.com/btcsuite/btcd from 0.24.2 to 0.25.0

[dependabot]

Bumps github.com/btcsuite/btcd from 0.24.2 to 0.25.0.

Release notes

Sourced from github.com/btcsuite/btcd's releases.

v0.25.0

What's Changed

• psbt: decode keytype as compact size by @​guggero in btcsuite/btcd#2206
• Enable the RpcClient to send requests to Bitcoin Core over a Unix socket. by @​robertmin1 in btcsuite/btcd#2168
• Fix the btcctl uptime command by @​cec489 in btcsuite/btcd#2203
• remove error return value for SignCompact by @​zhiqiangxu in btcsuite/btcd#2211
• ffldb: close block files by @​kcalvinalvin in btcsuite/btcd#2208
• chore: fix some comments for struct field by @​linghuying in btcsuite/btcd#2214
• mod+rpcserver: bump to latest version of btcec by @​guggero in btcsuite/btcd#2218
• blockchain: copy utxo status bytes to avoid UB by @​Crypt-iQ in btcsuite/btcd#2225
• Updated btcd dependency of btcutil to address CVE-2024-34478 by @​AlexsandroRyan in btcsuite/btcd#2235
• wire: check TXID length before creating outpoint by @​jharveyb in btcsuite/btcd#2233
• bugfix: check if both begin and end are numbers in UnmarshalJSON by @​brunoerg in btcsuite/btcd#2242
• rpcclient: signet support by @​wydengyre in btcsuite/btcd#2230
• btcjson: turn warnings into StringOrArray type by @​guggero in btcsuite/btcd#2245
• Formatting code with gofmt by @​huochexizhan in btcsuite/btcd#2255
• chore: fix some comments by @​lencap in btcsuite/btcd#2228
• Fix typos by @​omahs in btcsuite/btcd#2220
• fix: correct the typos [skip ci] by @​threewebcode in btcsuite/btcd#2093
• Correct link to redirect to btcutil docs by @​sanrinconr in btcsuite/btcd#1873
• delete minor unreachable code caused by t.Fatal by @​Abirdcfly in btcsuite/btcd#1875
• rpcclient: add timeout to http request. by @​ziggie1984 in btcsuite/btcd#2256
• Add support for wtxidrelay message. by @​marcopeereboom in btcsuite/btcd#2272
• main: add flag to write execution traces by @​kcalvinalvin in btcsuite/btcd#2223
• wire, peer: fix broken ibd by @​kcalvinalvin in btcsuite/btcd#2281
• Fix non-root hosts failing on resolving DNS by @​same-id in btcsuite/btcd#2269
• rpctest: make sure to WaitForShutdown by @​yyforyongyu in btcsuite/btcd#2277
• rpcclient: safe read and write to batch by @​ynewmann in btcsuite/btcd#2273
• main: add prune documentation to sample-btcd.conf by @​kcalvinalvin in btcsuite/btcd#2299
• typo-Update register_test.go by @​romashka-btc in btcsuite/btcd#2291
• wire: add bitcoin network magic for default SigNet by @​starius in btcsuite/btcd#2276
• psbt: add support for PSBT_GLOBAL_XPUB type by @​guggero in btcsuite/btcd#2296
• deps: bump go version by @​gosunuts in btcsuite/btcd#2316
• refactor: using slices.Contains to simplify the code by @​finaltrip in btcsuite/btcd#2317
• chore: update license by @​davidcardenasus in btcsuite/btcd#2303
• github: upgrade the CI by @​yyforyongyu in btcsuite/btcd#2331
• multi:use t.TempDir replace os.MkdirTemp to simplify test temp dir manager by @​petersssong in btcsuite/btcd#2334
• multi: remove deprecated io/ioutil by @​argentpapa in btcsuite/btcd#2336
• docs: update guidelines and links by @​yyforyongyu in btcsuite/btcd#2333
• multi: implement testnet4 and add support for soft forks that are always active by @​Roasbeef in btcsuite/btcd#2339
• netsync: don't ask for blocks from peers on the same block height by @​kcalvinalvin in btcsuite/btcd#2304
• multi: deprecation goacc by @​petersssong in btcsuite/btcd#2340
• docs: update contribution link by @​quantix9 in btcsuite/btcd#2348
• refactor: use map.Copy for cleaner map handling by @​xinhangzhou in btcsuite/btcd#2343
• psbt: check path minimum length by @​guggero in btcsuite/btcd#2352
• database: shut the program down immediately if we run out of disk space by @​kcalvinalvin in btcsuite/btcd#2358
• multi: introduce v2transport and implement BIP324 by @​Crypt-iQ in btcsuite/btcd#2260
• psbt: overflow checks when computing Taproot BIP32 derivation min size by @​ffranr in btcsuite/btcd#2374
• v2transport: update to btcec v2.3.5, reduce module deps by @​Roasbeef in btcsuite/btcd#2381

... (truncated)

Commits

• e764c17 Merge pull request #2447 from Roasbeef/v-25-branch
• 798b4ed build: bump version to v0.25
• 442ef28 Merge pull request #2443 from sputn1ck/musig2_sign_with_agg_nonce
• 21eb99e musig2: add combinedNonce getter
• 8f54cc6 musig2: add Session.RegisterCombinedNonce
• b7d0706 Merge pull request #2430 from Roasbeef/v-0-25-0-rc1
• 31a762b build: bump version to v0.25.0-beta.rc1
• e8097a1 Merge pull request #2410 from mohamedawnallah/fallback-to-GOPATH-bin-dir
• 29f4215 Makefile+workflows: fallback to GOPATH/bin on non-existent GOBIN
• a4ddae2 Merge pull request #2409 from gosunuts/fix/dockerfile-go-version
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[dependabot]

Labels

The following labels could not be found: security. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/btcsuite/btcd	0.25.0	🟢 6.2	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 4 security policy file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 9 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 License 🟢 10 license file detected Fuzzing 🟢 10 project is fuzzed Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 4 dependency not pinned by hash detected -- score normalized to 4 Signed-Releases 🟢 8 3 out of the last 3 releases have a total of 3 signed artifacts. Vulnerabilities ⚠️ 0 14 existing vulnerabilities detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• go.mod