feat(lint): add missing-zero-check

[stevencartavia]

Adds a missing-zero-check lint that flags address parameters of externally-callable functions and constructors used in state writes or value transfers (call/delegatecall/staticcall/transfer/send) without a prior require/assert/if check.

Testing

cargo run -p forge -- lint crates/lint/testdata/MissingZeroCheck.sol

[mablr]

Staticcall is read-only, unsure it makes sense to flag it.

[mablr]

Guard ordering is not enforced.

This seems to be a false negative:

function guardAfterSink(address a) external {
    owner = a; // sink: 'a' written to state
    require(a != address(0)); // guard too late, but marks 'a' as guarded anyway
}