build(deps): bump github.com/Masterminds/semver/v3 from 3.3.1 to 3.4.0

[dependabot]

Bumps github.com/Masterminds/semver/v3 from 3.3.1 to 3.4.0.

Release notes

Sourced from github.com/Masterminds/semver/v3's releases.

v3.4.0

There are a few changes in this release to highlight:

1. Constraints now has a property IncludePrerelease. When set to true the Check and Validate methods will include prereleases.
2. When an AND group has one constraint with a prerelease but more than one constraint then prereleases will be included. For example, >1.0.0-beta.1 < 2. In the past this would not have included prereleases because each constraint needed to have a prerelease. Now, only one constraint needs to have a prerelease. This is considered a long standing bug fix. Note, this does not carry across OR groups. For example, >1.0.0-beta.1 < 2 || > 3. In this case, prereleases will not be included when evaluating against >3.
3. NewVersion coercion with leading "0"'s is restored. This can be disabled by setting the package level property CoerceNewVersion to false.

What's Changed

• fix the CodeQL link by @​dmitris in Masterminds/semver#257
• Restore detailed errors when failed to parse with NewVersion by @​mattfarina in Masterminds/semver#262
• updating go version tested with by @​mattfarina in Masterminds/semver#263
• Restore the ability to have leading 0's with NewVersion by @​mattfarina in Masterminds/semver#266
• Handle pre-releases on all in an and group by @​mattfarina in Masterminds/semver#267
• Add property to include prereleases by @​mattfarina in Masterminds/semver#268
• Updating the error message handling by @​mattfarina in Masterminds/semver#269
• Update the release notes and readme for new version by @​mattfarina in Masterminds/semver#270

New Contributors

• @​dmitris made their first contribution in Masterminds/semver#257

Full Changelog: Masterminds/semver@v3.3.1...v3.4.0

Changelog

Sourced from github.com/Masterminds/semver/v3's changelog.

3.4.0 (2025-06-27)

Added

• #268: Added property to Constraints to include prereleases for Check and Validate

Changed

• #263: Updated Go testing for 1.24, 1.23, and 1.22
• #269: Updated the error message handling for message case and wrapping errors
• #266: Restore the ability to have leading 0's when parsing with NewVersion. Opt-out of this by setting CoerceNewVersion to false.

Fixed

• #257: Fixed the CodeQL link (thanks @​dmitris)
• #262: Restored detailed errors when failed to parse with NewVersion. Opt-out of this by setting DetailedNewVersionErrors to false for faster performance.
• #267: Handle pre-releases for an "and" group if one constraint includes them

Commits

• 61fc460 Merge pull request #270 from mattfarina/relnotes-3.4.0
• 69a63e7 Update the release notes and readme for new version
• dc05094 Merge pull request #269 from mattfarina/lowercase-error-strings
• a2cd9c2 Updating the error message handling
• 9760c47 Merge pull request #268 from mattfarina/include-prerelease
• c374751 Add property to include prereleases
• 057c901 Merge pull request #267 from mattfarina/fix-259
• abab1c2 Handle pre-releases on all in an and group
• ebda872 Merge pull request #266 from mattfarina/restore-calver
• 4ed619e Restore the ability to have leading 0's with NewVersion
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The reviewers field in the dependabot.yml file will be removed soon. Please use the code owners file to specify reviewers for Dependabot PRs. For more information, see this blog post.

[github-actions]

The ticket CLOUDP-328634 was created for internal tracking.

Note: Jira ticket will be closed automatically when this PR is merged.

[github-actions]

Coverage Report 📈

Branch	Commit	Coverage
master	39c8d67	25.7%
dependabot/go_modules/master/github.com/Masterminds/semver/v3-3.4.0	a0fa939	25.7%
	Difference	0%