tempfile: bump to 3.4.0

Drops dependency on remove_dir_all which has a TOCTOU vulnerability in 0.5.0 (in the mindeps build).

Avoids: https://rustsec.org/advisories/RUSTSEC-2023-0018