* op-node: Fix OPB-01

`(*ExectionPayload).UnmarshalSSZ()` fails to properly validate the `transactionsOffset` and `extraDataOffset` values, allowing a malicious actor to crash multiple op-nodes by gossiping a P2P message containing a specially crafted `SSZExecutionPayload`.

* lint

- OPB-05: Puts the signature verification before further unmarshaling to guard against mal-formed payloads.
- Adds a minimum size check to the payload decoding to ensure we always have at least a signature and a payload available.

Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>

* chore: Upgrade foundry

* Changeset

ops: Automatically upgrade deps, release v0.8.3

* op-bindings: Add storage layout generation

* semgrep

* add forgotten files

* fix op-node, remove deprecated script

* Remove deployed

* Remove targets

* go mod tidy

* goimports

* imports

* devnet fix

* parallelize bindgen, fix diff

* op-node: buffer unsafe payloads with priority queue, pop lowest number to maintain max size, and do not drop if the first payload is in the future

* payload queue testing

* op-node: payload queue metrics, error handling

* op-node: fix payloads queue test missing pop

* op-node: payloads queue false semgrep case
Co-authored-by: Matthew Slipper <me@matthewslipper.com>

* bedrock: update to latest op-geth, based on geth master, after v1.10.23

* op-chain-ops: fix test deep equal check
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>

Significantly improves the bundle size of the contracts package by
exporting deployments more intentionally and by removing certain
unnecessary exports.

We're moving to Bedrock, so these nightlies aren't used anymore. Additionally, they were pushing directly to our Docker Hub repository. If we need to bring these back, we'll need to update them to push to GCR instead.

Co-authored-by: Matthew Slipper <me@matthewslipper.com>

* style(batch-submitter): fix lint

* style(bss-core): fix lint

* chore(proxyd): use io and os instead of deprecated ioutil methods, fixes lint

Fixes withdrawals by specifying the correct storage slot. Note that this does not fix the op-e2e tests, which were incorrectly passing. @protolambda is working on this.

merge Master into Develop

develop => master

contracts-bedrock: use `MemorySafeCall`

Replace `ExcessivelySafeCall` with a local `SafeCall`
that does not copy any calldata back. We do not care about
returndata being returned so this prevents returndata bombs.

Co-authored-by: Matthew Slipper <me@matthewslipper.com>

contracts-bedrock: add gpo to Predeploys.sol