build(deps): Bump github.com/cometbft/cometbft from 0.37.4 to 0.37.5

[dependabot]

Bumps github.com/cometbft/cometbft from 0.37.4 to 0.37.5.

Release notes

Sourced from github.com/cometbft/cometbft's releases.

v0.37.5

See the CHANGELOG for this release.

Changelog

Sourced from github.com/cometbft/cometbft's changelog.

v0.37.5

March 12, 2024

This release fixes a security bug in the light client. It also introduces many improvements to the block sync in collaboration with the Osmosis team.

BUG FIXES

• [mempool] The calculation method of tx size returned by calling proxyapp should be consistent with that of mempool (#1687)
• [evidence] When VerifyCommitLight & VerifyCommitLightTrusting are called as part of evidence verification, all signatures present in the evidence must be verified (#1749)

IMPROVEMENTS

• [types] Validate Validator#Address in ValidateBasic (#1715)
• [abci] Increase ABCI socket message size limit to 2GB (#1730: @​troykessler)
• [blocksync] make the max number of downloaded blocks dynamic. Previously it was a const 600. Now it's peersCount * maxPendingRequestsPerPeer (20) #2467
• [blocksync] Request a block from peer B if we are approaching pool's height (less than 50 blocks) and the current peer A is slow in sending us the block #2475
• [blocksync] Request the block N from peer B immediately after getting NoBlockResponse from peer A #2475
• [blocksync] Sort peers by download rate (the fastest peer is picked first) #2475

Commits

• 07493f4 Release v0.37.5 (#2591)
• 17419f9 fix(blocksync): use timer instead of time.After (backport #2584) (#2588)
• 15d4d91 feat(blocksync): sort peers by download rate & multiple requests for closer b...
• fd52ab7 feat(blocksync): set the max number of (concurrently) downloaded bloc… (#2574)
• 1bb0bd5 fix(docker-compose): fix subnet (backport #2383) (#2582)
• 3caf4a4 build(deps): Bump bufbuild/buf-setup-action from 1.29.0 to 1.30.0 (#2555)
• a940dc8 build(deps): Bump docker/build-push-action from 5.1.0 to 5.2.0 (#2556)
• 0641e47 build(deps): Bump docker/setup-buildx-action from 3.0.0 to 3.1.0 (#2510)
• 1437879 ci: check metrics generation in CI checks (backport #2483) (#2486)
• d954826 docs: images not rendering properly in docs (backport #2331) (#2339)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[julienrbrt]

Downgrade x/exp