fix: remove dependency on tweetnacl

[JustinBeckwith]

This change drops the dependency on tweetnacl for key verification, instead relying on the node.js built-in Ed25519 implementation. This seems to work locally with node 18+, but needs to be tested in other environments.

I'm not sure this is a good idea. The ed225519 support in node 22 is still experimental, and this will drop a console warning on startup:
https://nodejs.org/api/webcrypto.html#ed25519ed448x25519x448-key-pairs

• Set a correct minimum version of node.js in engines
• Verify it works as expected with Cloudflare workers
• Ship a preview version of the package before 4.x to let people try it out first
• Make sure to update the changelog to call out the breaking change for making verifyKey async

Fixes #30 and generally resolves #54

[JustinBeckwith]

alpha is now available at https://www.npmjs.com/package/discord-interactions/v/4.0.0-alpha.0

[appellation]

This is illegal in the types; are we doing this to protect against JS users?

[JustinBeckwith]

I would assume as such, yes. This function was copypasta'd from index.ts, in it's exact same form. I didn't change of it.

[appellation]

This is kind of insane. Is this really the best approach 😆

[JustinBeckwith]

dude ... if you can find a better approach that works I'm all ears. This is a copy/paste from the original code, just shifted over. I tried doing some other clever things with btoa and TextEncoder, but the whole "hex string" thing threw me for a loop.

[appellation]

I actually ran into this recently on a separate project and ended up resorting to buffers since the native web APIs didn't support this very well. I suppose we're stuck with this for now.

[appellation]

Should we do a typeof Buffer !== 'undefined' check here in case we're swallowing exceptions?

[JustinBeckwith]

I can't imagine what other kind of exception could happen in this very narrow use case