hermes-agent [ Crypto ] Fix MultiSigWallet confirmation race condition during execution callback

[KK88100]

Issue

Closes #916

Summary

Added reentrancy protection to executeTransaction via a nonReentrant modifier. Changed confirmation tracking from a simple boolean map to a struct with timestamp, enabling block-level confirmation checks via isConfirmedAtBlock. Added zero-address validation in submitTransaction and added constructor validation for duplicate/zero-address owners. Added Foundry test suite.

Acceptance Criteria

• Transaction cannot execute if confirmations are revoked during the execution callback (nonReentrant guard)
• Block-level confirmation check prevents front-running attacks (isConfirmedAtBlock)
• Zero-address transactions are rejected in submitTransaction
• Existing multi-sig flows work: submit, confirm, execute, revoke
• Tests for: confirmation revocation during callback, front-running revocation, zero-address rejection
• Included _provenance.json

Tests

Tests added in solidity/test/MultiSigWallet.t.sol using Foundry:

• test_SubmitTransactionRejectsZeroAddress
• test_SubmitAndConfirmAndExecute
• test_ConfirmationRevocationPreventsExecution
• test_ConfirmationRevocationDuringCallback
• test_IsConfirmedAtBlock
• test_ZeroAddressOwnerRejected

Payment address (USDT TRC20): TXjaadYhD579e3bCWKnRFKjRq9RZQL7WNj

[KK88100]

Payment address for bounty (USDT TRC20): TXjaadYhD579e3bCWKnRFKjRq9RZQL7WNj

[github-actions]

Unfortunately the changes in this PR didn't fully resolve the issue. Please rework your solution and submit a new pull request.

Make sure to review the acceptance criteria in the linked issue and verify all conditions are met before resubmitting. See CONTRIBUTING.md for guidelines.