chore(deps): bump github.com/pulumi/pulumi-kubernetes/sdk/v4 from 4.28.0 to 4.29.0

[dependabot]

Bumps github.com/pulumi/pulumi-kubernetes/sdk/v4 from 4.28.0 to 4.29.0.

Release notes

Sourced from github.com/pulumi/pulumi-kubernetes/sdk/v4's releases.

v4.29.0

No release notes provided.

Changelog

Sourced from github.com/pulumi/pulumi-kubernetes/sdk/v4's changelog.

4.29.0 (April 15, 2026)

Fixed

• #2926 Use client-side create for new resources instead of server-side apply.

  Users may observe stricter errors on some Create operations. Please read carefully.

  When a resource already exists in the cluster, the API server now returns an AlreadyExists error instead of silently updating the existing object. This prevents data loss from create-then-delete scenarios (e.g. renaming a Pulumi resource or replacing an explicitly-named resource). A new provider config option upsertExistingObjects (default false) restores the previous upsert behavior for users who intentionally adopt existing cluster resources. To manage fields on existing objects without owning their lifecycle, use Patch resources (e.g. NamespacePatch).

Added

• #2280 Add enablePatchForce provider config option to force SSA patch conflicts on a per-stack basis.

Changed

• Upgrade Kubernetes schema and libraries to v1.35.3.

Commits

• 6a98f51 Update GitHub Actions workflows. (#4283)
• 677360a Fix race condition in istio test (#4282)
• f3ebf58 Prepare for v4.29.0 release (#4280)
• 0d18fe4 Use client-side create to prevent silent upsert of existing objects (#4278)
• 8296942 Update GitHub Actions workflows. (#4279)
• 9d2f6f8 Update module helm.sh/helm/v3 to v3.20.2 [SECURITY] (#4277)
• 7d8fe4d Migrate Windows code signing to Azure Trusted Signing (#4274)
• 374a2b2 Update GitHub Actions workflows. (#4275)
• 065ada9 Update module go.opentelemetry.io/otel/sdk to v1.43.0 [SECURITY] (#4271)
• c2f6707 Update module github.com/go-jose/go-jose/v3 to v3.0.5 [SECURITY] (#4268)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)