Workload cluster release aws-29.4.0 for CAPA

Changes compared to v29.3.0

Components

• cluster-aws from v2.2.0 to v2.4.0
• Flatcar from v3975.2.1 to v3975.2.2
• Kubernetes from v1.29.9 to v1.29.10

cluster-aws v2.2.0…v2.4.0

Added

• Add global.providerSpecific.additionalNodeTags. Field used to specify tags applied to nodes only.
• Expose the maxHealthyPercentage property to allow setting the maximum percentage of healthy machines in the Auto Scaling Group during upgrades.

Changed

• Only try to render subnet tags if they are defined by the user.

Apps

• cert-exporter from v2.9.2 to v2.9.3
• observability-bundle from v1.6.2 to v1.8.0

cert-exporter v2.9.2…v2.9.3

Changed

• Chart: Enable global.podSecurityStandards.enforced. (#420)

observability-bundle v1.6.2…v1.8.0

Changed

• Upgrade prometheus-agent from v0.6.9 to v0.7.0.
  • Adds extraArgs to be able to use nice features like wal truncation
• upgrade kube-prometheus-stack from 61.0.0 to 65.1.1
  • prometheus-operator CRDs from 0.73.0 to 0.75.0
  • prometheus-operator from 0.75.0 to 0.77.1
  • prometheus upgraded from 2.53.0 to 2.54.1
  • grafana from 8.2.0 to 8.5.0
  • thanos ruler upgraded from 0.35.1 to 0.36.1
  • prometheus-node-exporter upgraded from 1.8.1 to 1.8.2
• Add missing depends on annotation on alloy-metrics and alloy-logs to make sure they are deployed after the prometheus-operator-crds.
• Upgrade alloyLogs to v0.6.1
  • Allow passing PodLogs via helm chart values
  • Upgrade to Alloy v1.4.2 which fixes a bug with component reload/evaluation and keeping Alloy up-to-date
  • Fixes an issue with CiliumNetworkPolicy preventing Alloy to run in clustering mode