mpp has multiple payment bypass and griefing vulnerabilities

Description

### Impact Multiple vulnerabilities were discovered which allowed for undesirable behaviors, including: - Performing free `tempo/charge` requests - Replaying existing `tempo/charge` requests - Performing free `tempo/session` requests - Piggybacking off existing `tempo/session` channels - Griefing existing `tempo/session` channels - Manipulate the fee payer of a `tempo/charge` or `tempo/session` handler into paying for requests - Replaying existing `stripe/charge` requests ### Patches The issues are patched in 0.8.0 ### Workarounds There are no workarounds available for these vulnerabilities

Affected Products

References

• https://github.com/advisories/GHSA-fxc9-7j2w-vx54(advisory)
• https://github.com/tempoxyz/mpp-rs/security/advisories/GHSA-fxc9-7j2w-vx54
• https://github.com/tempoxyz/mpp-rs/releases/tag/v0.8.0
• https://github.com/advisories/GHSA-fxc9-7j2w-vx54