Bump github.com/bsv-blockchain/go-sdk from 1.1.22 to 1.2.18

[dependabot]

Bumps github.com/bsv-blockchain/go-sdk from 1.1.22 to 1.2.18.

Release notes

Sourced from github.com/bsv-blockchain/go-sdk's releases.

v1.2.18

Fixed

• BIP276 decoding: corrected field order to match spec, fixed prefix validation and network byte parsing (#286)
• AuthFetch data race: replaced plain map with sync.Map for thread-safe nonce tracking (#262)
• CodeQL integer conversion security alerts in BIP276 (#286)

Added

• Test for large stack data NUM2BIN operations (#261)

Release v1.2.17

Added Optional Reference field on CreateActionArgs and ListActionsArgs for associating custom reference identifiers with wallet actions (#289) ReadOptionalString method on ReaderHoldError for deserializing optional string fields

v1.2.16

Added

• Typed sentinel errors for SPV package: ErrFeeTooLow, ErrInvalidMerklePath, ErrMissingSourceTransaction, ErrScriptVerificationFailed
• Typed sentinel error for certificates package: ErrFieldDecryption

Changed

• SPV errors now wrap sentinel errors with context, enabling errors.Is() checking instead of string matching
• Certificate field decryption errors now wrap ErrFieldDecryption sentinel
• Updated tests to use errors.Is() instead of strings.Contains()

v1.2.15

Fixed

• SPV fee validation now only validates fees on the root transaction, not ancestor transactions in the
  BEEF chain. Previously, historical ancestors with different fee rates could incorrectly fail validation.

Added

• VarInt.PutBytes() method for direct buffer writing without allocation
• Beef.MergeTransactionWithTxid() and Beef.MergeBeefTxWithTxid() methods to merge transactions
  without recomputing TxID
• Test coverage for VarInt.PutBytes() method

Changed

• Optimized Transaction.Bytes(), Input.Bytes(), and Output.Bytes() methods with pre-calculated
  size and pre-allocated buffers
• Optimized BEEF serialization with pre-allocated buffers
• LookupFormula.History now uses *Beef type instead of []byte

v1.2.14

Added

• MerklePath.FindLeafByOffset() method to find a PathElement at a given offset and level
• MerklePath.AddLeaf() method to add a PathElement to a specified level
• MerklePath.ComputeMissingHashes() method to compute parent hashes from sparse merkle path data

Changed

• Outpoint.Bytes() now returns 36 bytes in little-endian format (consistent with transaction format)
• Outpoint.TxBytes() is now an alias for Bytes() for backward compatibility

... (truncated)

Changelog

Sourced from github.com/bsv-blockchain/go-sdk's changelog.

[1.2.18] - 2026-02-12

Fixed

• BIP276 decoding: corrected field order to match spec, fixed prefix validation and network byte parsing (#286)
• AuthFetch data race: replaced plain map with sync.Map for thread-safe nonce tracking (#262)
• CodeQL integer conversion security alerts in BIP276 (#286)

Added

• Test for large stack data NUM2BIN operations (#261)

[1.2.17] - 2026-02-06

Added

• Optional Reference field on CreateActionArgs and ListActionsArgs for associating custom reference identifiers with wallet actions (#289)
• ReadOptionalString method on ReaderHoldError for deserializing optional string fields

[1.2.16] - 2026-01-29

Added

• Typed sentinel errors for SPV package: ErrFeeTooLow, ErrInvalidMerklePath, ErrMissingSourceTransaction, ErrScriptVerificationFailed
• Typed sentinel error for certificates package: ErrFieldDecryption

Changed

• SPV errors now wrap sentinel errors with context, enabling errors.Is() checking instead of string matching
• Certificate field decryption errors now wrap ErrFieldDecryption sentinel
• Updated tests to use errors.Is() instead of strings.Contains()

[1.2.15] - 2026-01-27

Fixed

• SPV fee validation now only validates fees on the root transaction, not ancestor transactions in the BEEF chain. Previously, historical ancestors with different fee rates could incorrectly fail validation.

Added

• VarInt.PutBytes() method for direct buffer writing without allocation
• Beef.MergeTransactionWithTxid() and Beef.MergeBeefTxWithTxid() methods to merge transactions without recomputing TxID
• Test coverage for VarInt.PutBytes() method

Changed

• Optimized Transaction.Bytes(), Input.Bytes(), and Output.Bytes() methods with pre-calculated size and pre-allocated buffers
• Optimized BEEF serialization with pre-allocated buffers
• LookupFormula.History now uses *Beef type instead of []byte

[1.2.14] - 2025-12-19

Added

• MerklePath.FindLeafByOffset() method to find a PathElement at a given offset and level
• MerklePath.AddLeaf() method to add a PathElement to a specified level
• MerklePath.ComputeMissingHashes() method to compute parent hashes from sparse merkle path data

Changed

... (truncated)

Commits

• 725db51 Fix BIP276 decoding, AuthFetch data race, and add NUM2BIN tests (#288)
• 58516b8 update changelog for v1.2.17 (#290)
• b97ae10 feat: add option to provide custom reference to action (#289)
• 9e940e7 Add typed sentinel errors for SPV and certificate packages (#287)
• 4f2a935 chore(deps): bump golang.org/x/net from 0.48.0 to 0.49.0 (#284)
• c2663c5 chore(deps): bump golang.org/x/crypto from 0.46.0 to 0.47.0 (#285)
• 83a2833 Fix SPV fee rejection logic and performance optimizations (#283)
• d2bcd7e Add Header type, deep clone for Beef/MerklePath, and outpoint standardization...
• 5707ed7 Add block Header type and fix Beef/MerklePath Clone methods (#276)
• 42df0af Avoid logging sensitive derivation details (#275)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 63.63%. Comparing base (49aa0d5) to head (d24bd67).

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #161      +/-   ##
==========================================
+ Coverage   63.19%   63.63%   +0.44%     
==========================================
  Files           4        4              
  Lines         144      110      -34     
==========================================
- Hits           91       70      -21     
+ Misses         47       34      -13     
  Partials        6        6              

Flag	Coverage Δ
unittests	63.63% <ø> (+0.44%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.
see 4 files with indirect coverage changes

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 49aa0d5...d24bd67. Read the comment docs.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[mergify]

Automatically approving dependabot pull request

[mergify]

This pull request looks stale. Feel free to reopen it if you think it's a mistake.

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.