chore(deps): bump github.com/pulumi/pulumi/sdk/v3 from 3.203.0 to 3.204.0

[dependabot]

Bumps github.com/pulumi/pulumi/sdk/v3 from 3.203.0 to 3.204.0.

Release notes

Sourced from github.com/pulumi/pulumi/sdk/v3's releases.

v3.204.0

3.204.0 (2025-10-23)

Features

• [cli] Print replace diffs when a resource tries to replace but is blocked by still having an import id set #20762

• [engine] Support overriding policy severity on violations #20767

• [backend/service] Send journal entries to the backend if it's supported #20343

Bug Fixes

• [engine] Fix a potential snapshot integrity error when a resources dependency fails to be destroyed using destroy --run-program #20692

• [engine] Fix import error to contain the import ID of non-existent resources #20753

• [sdk/nodejs] Pass secret values as Output objects to resource hooks to properly maintain their secretness. Previously hooks received an internal representation for secret values. #20774

• [sdk/python] Pass secret values as Output objects to resource hooks to properly maintain their secretness. Previously hooks received an internal representation for secret values. #20769

• [sdkgen/go] Fix codegen of scalar return SDK functions #20754

• [sdkgen/{nodejs,python}] Fix scalar return protocol to allow returning secret maps #20747

Miscellaneous

• [sdk/nodejs] Use Language.Link to link Node.js packages #20715

Changelog

Sourced from github.com/pulumi/pulumi/sdk/v3's changelog.

3.204.0 (2025-10-23)

Features

• [cli] Print replace diffs when a resource tries to replace but is blocked by still having an import id set #20762

• [engine] Support overriding policy severity on violations #20767

• [backend/service] Send journal entries to the backend if it's supported #20343

Bug Fixes

• [engine] Fix a potential snapshot integrity error when a resources dependency fails to be destroyed using destroy --run-program #20692

• [engine] Fix import error to contain the import ID of non-existent resources #20753

• [sdk/nodejs] Pass secret values as Output objects to resource hooks to properly maintain their secretness. Previously hooks received an internal representation for secret values. #20774

• [sdk/python] Pass secret values as Output objects to resource hooks to properly maintain their secretness. Previously hooks received an internal representation for secret values. #20769

• [sdkgen/go] Fix codegen of scalar return SDK functions #20754

• [sdkgen/{nodejs,python}] Fix scalar return protocol to allow returning secret maps #20747

Miscellaneous

• [sdk/nodejs] Use Language.Link to link Node.js packages #20715

Commits

• 2465439 Bump dotnet language plugin to latest version (#20778)
• 3882b62 implement journaling API and send journal entries to the service directly (#2...
• ef3c2a3 [Node.js] Pass secret values as Output objects to resource hooks (#20774)
• 8650393 Support overriding policy severity on violations (#20767)
• be6db2b Run analyzer lifecycle tests through gRPC (#20766)
• fd8c0a8 Pass secret values as Outputs to hooks (#20769)
• d292447 Add some tests for Python type inspection utilities (#20736)
• ba809f3 Add a --version flag to pulumi-language-nodejs (#20768)
• 89ea89b update journaling docs (#20763)
• 22797a9 Share CurrentProjectContradictsWorkspace between backends (#20759)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)