Release 0.3.5: Groq, Vault hardening, and Win+V fix

[silenthillzeroq-code]

Summary

• add Groq as a cloud AI provider and load live model lists during API-key validation
• harden Vault secret detection so Quick Save prompts stop firing on dates, simple text, UUIDs, URLs, and other non-secret clipboard content
• repair browser extension form memory with local HTTP bridge fallbacks so form save/restore keeps working even when the websocket path is unavailable
• fix Win+V handling so QuickPaste opens reliably without Start menu races or stuck modifier behavior
• bump tracked app, extension, and Rust package versions to 0.3.5

Why

This release bundles the clipboard/Vault quality fixes and the final Win+V reliability fix into the 0.3.5 installer/updater build.

Verification

• cargo check
• npm run typecheck
• npm test -- src/tests/lib/formMemoryContent.test.ts
• cargo test password_detection_heuristic_handles_common_cases --lib
• cargo test password_prompt_requires_context_for_medium_candidates --lib
• cargo test password_prompt_deduplicates_recent_candidates --lib

Release assets

Installer/updater binaries are uploaded separately as GitHub release assets and do not include bootstrapper source code.