## Description

Source validation additionally checks that dependencies in the linkage
table of the on-chain package match the published dependencies from the
source package.

Previously it was possible to construct a scenario where source
verification would succeed even though a package's representation
on-chain did not exactly match, because one of the dependencies
mismatched on version but between two versions that were themselves
identical.

## Test plan

New tests exercising the scenario mentioned above:

```
sui-source-validation$ cargo nextest run -- linkage_differs
```

## Stack

- #18956 
- #18959
- #18978
- #18960 
- #18962

---

## Release notes

Check each box that your changes affect. If none of the boxes relate to
your changes, release notes aren't required.

For each box you select, include information after the relevant heading
that describes the impact of your changes that a user might notice and
any actions they must take to implement updates.

- [ ] Protocol: 
- [ ] Nodes (Validators and Full nodes): 
- [ ] Indexer: 
- [ ] JSON-RPC: 
- [ ] GraphQL: 
- [x] CLI: `sui client verify-source` now also confirms a package's
linkage table matches its source dependencies.
- [ ] Rust SDK:
- [ ] REST API: