Bump risc0-zkvm-platform from 0.16.1 to 0.18.0

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps risc0-zkvm-platform from 0.16.1 to 0.18.0.

Release notes

Sourced from risc0-zkvm-platform's releases.

v0.18.0

Our 0.18 release upgrades the Bonsai SDK with Groth16 SNARK seals for better on-chain verification, better error handling, and more. In the zkVM, this release separates host and guest build toolchains and also supports reproducibly building the same ImageID for the same zkVM code by using a consistent Docker environment.

Thank you to community members @​austinabell and @​winor30 for their contributions to this release!

Important and Breaking Changes

• Separate host and guest build toolchains, allowing the use of different versions of rustc for host and guest code. This has allowed us to move the default host toolchain to the stable channel. The guest toolchain remains on a nightly release of 1.69.
• Add cargo risczero build command to build zkVM guest programs using a Docker container, which enables ImageIDs to remain consistent across builds. See #799 for details.
• Bonsai Ethereum contracts now use Forge as a subprocess, so building Bonsai code will now require installing Foundry tools.
• Bonsai SDK: upload_img and upload_img_file no longer return ImageIdExists errors. Instead they return a boolean, true if the image exists on the server.
• Bonsai SDK: Bonsai now returns Groth16 SNARK seals as well as the journal and post_state_digest for easy on-chain verification.
• Expand Prover support to better work with remote provers like Bonsai.
• Fix bug #820, correcting iterative calls to SHA2
• Add 128 bits of entropy to the memory state, addressing a potential privacy issue where the SystemState root in the ReceiptMetadata was not guaranteed to be a hiding commitment.

What's Changed

• Update factors README to match 0.17 by @​pdg744 in risc0/risc0#787
• aligning quick start by @​pdg744 in risc0/risc0#789
• fixing references to host code by @​pdg744 in risc0/risc0#790
• update groth16 control ID to 0.17 by @​capossele in risc0/risc0#797
• Recover non processed blocks after websocket connection loss by @​Cardosaum in risc0/risc0#762
• Move bootstraps over to xtask by @​flaub in risc0/risc0#791
• Add start of ExternalProver by @​flaub in risc0/risc0#801
• Reproducible builds via Docker by @​capossele in risc0/risc0#799
• Fix #800 by @​flaub in risc0/risc0#803
• Include tools in build-toolchain by @​flaub in risc0/risc0#804
• Print VerificationError message instead of variant by @​rlukata in risc0/risc0#809
• Reorg to support client/server architecture by @​flaub in risc0/risc0#808
• Refactor Bonsai as workspace and use Foundry as external dependency by @​nategraf in risc0/risc0#810
• Support for stable host toolchain by @​flaub in risc0/risc0#817
• Support for devcontainers: Fix #815 by @​flaub in risc0/risc0#819
• Re-enable the Governance Example test with zkVM Integration by @​nategraf in risc0/risc0#823
• feat(crate-validator): Add domain-specific crates by @​Cardosaum in risc0/risc0#792
• zkp: HAL cleanups and perf bump by @​flaub in risc0/risc0#826
• crate validator: run cargo risczero install by @​SchmErik in risc0/risc0#830
• Make easier to update the RISC Zero verifier contract upon version bump by @​capossele in risc0/risc0#831
• zkvm: Protobuf based client/server IPC by @​flaub in risc0/risc0#814
• crate validator: harden cargo risczero install by @​SchmErik in risc0/risc0#838
• fix: multi-package guest-list generation by @​hashcashier in risc0/risc0#839
• Update prost requirement from 0.11 to 0.12 by @​dependabot in risc0/risc0#837
• Update prost-build requirement from 0.11 to 0.12 by @​dependabot in risc0/risc0#836
• Add entropy to memory state to protect privacy by @​nategraf in risc0/risc0#812
• Fix full segment bug by @​capossele in risc0/risc0#844
• fix: include debug error message for unspecified error by @​austinabell in risc0/risc0#846
• Exports needed for recursion by @​flaub in risc0/risc0#847
• Added state and error_msg to bonsai-sdk by @​mothran in risc0/risc0#843
• Remove Bonsai SDK ImageIdExists error by @​mothran in risc0/risc0#848
• Add no_std support for risc0-binfmt by @​flaub in risc0/risc0#857
• Make Control Id Parameters to Constructor by @​jjtny1 in risc0/risc0#813

... (truncated)

Commits

• 29cc16f Bump version to 0.18.0 (#874)
• 1551429 Additional documentation on reproducible builds (#872)
• 05924f1 Rename DynProverImpl to ProverServer (#871)
• 3895078 Added --po2 flag to loop.rs (#858)
• 2a47542 risc0-binfmt: use no_std for anyhow and elf (#869)
• 6cee6e8 Update docs for 0.18 (#868)
• dbdfff6 Re-name factors-->hello-world; move tutorial out of readme (#765)
• 7663b8d Expose host::api::Connector to users (#864)
• e3ff7ff Bonsai: Migrate SnarkProof types to match backend (#853)
• b5085e5 Add a description to factors tutorial step 2 (#793)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[preston-evans98]

Closed by #869

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.