Add self-verification to catch GitHub artifact serving bugs

Bump .cicd submodule to 162b47f (wamp-proto/wamp-cicd) which adds
critical self-verification to download-artifact-verified action.

This catches GitHub Actions artifact corruption where REST API serves
DIFFERENT artifact than requested, despite unique names.

Self-verification works by:
1. Extracting expected meta-checksum from artifact name suffix
2. Comparing with actual meta-checksum from downloaded content
3. Failing with clear error if GitHub served wrong artifact

Example bug now caught:
- Request:  source-distribution-1ca1d501...
- Received: wheels-macos-arm64-47ab6ea6... (WRONG!)
- Old: Passed verification (verified wrong content)
- New: FAILS with 'ARTIFACT NAME MISMATCH - GitHub served wrong artifact!'

The artifact name now cryptographically proves what should be inside,
making it impossible for GitHub to silently serve wrong content.

Author: oberstet