chore(deps): bump github.com/multiformats/go-varint from 0.0.7 to 0.1.0

[dependabot]

Bumps github.com/multiformats/go-varint from 0.0.7 to 0.1.0.

Release notes

Sourced from github.com/multiformats/go-varint's releases.

v0.1.0

What's Changed

• Update minimum Go version to 1.23
• chore: optimise UvarintSize by @​rvagg in multiformats/go-varint#28

Full Changelog: multiformats/go-varint@v0.0.7...v0.1.0

Commits

• 23576a8 v0.1.0 bump (#29)
• 5057a0a chore: optimise UvarintSize (#28)
• 021588e ci: uci/copy-templates (#27)
• a3707f1 chore!: bump go.mod to Go 1.23 and run go fix (#26)
• 5d4c294 chore!: bump go.mod to Go 1.22 and run go fix (#25)
• 849faf8 ci: uci/copy-templates (#24)
• 6183d11 ci: uci/update-go (#23)
• 37bc8d5 chore: bump go.mod to Go 1.20 and run go fix (#22)
• 39745d7 chore: add or force update .github/workflows/tagpush.yml
• 5d3a8be chore: add or force update .github/workflows/release-check.yml
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[rvagg]

I'd like to hold off on this one for now; will leave it open

[BigLep]

I assume we'll tackle this post nv27 update.

[rvagg]

yeah, it's not a big deal, just a minor optimisation I introduced, but I'm a bit gunshy given the dramas in trying to upgrade boost -- I'm pretty sure I've ruled this out as a problem in filecoin-project/boost#2020 but it does fit the bill as being potentially a problem so let's not saddle ourselves to this update in the middle of an upgrade

[rvagg]

0.17.0 was tagged and pulled into the lotus release, so this can go out in a non-mandatory update