traefik/crowdsec: remove dead Yaegi-plugin middleware reference (PR1/2)

The Traefik CrowdSec (Yaegi) bouncer plugin enforces nothing on Traefik 3.7.5
(handler never invoked) and is fully superseded by the cs-firewall-bouncer
(in-kernel nftables drop on direct hosts) + the Cloudflare IP-List/WAF rule
(proxied hosts). Drop the `traefik-crowdsec@kubernetescrd` middleware from the
ingress_factory chain and the 8 explicit `exclude_crowdsec = true` call sites,
and delete the now-unused `exclude_crowdsec` variable.

This is PR1 of a 2-phase removal: the reference is removed FIRST (a shared-module
change → full-cluster apply re-renders every ingress without the middleware) so
that PR2 can delete the `crowdsec` Middleware CRD + the plugin itself WITHOUT
leaving any ingress pointing at a missing middleware (which would error those
routers). PR2 MUST NOT land until this has fully applied and zero live ingresses
reference traefik-crowdsec@kubernetescrd.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

stacks/f1-stream/main.tf

@@ -301,7 +301,6 @@ module "ingress" {
   service_name      = module.anubis.service_name
   port              = module.anubis.service_port
   tls_secret_name   = var.tls_secret_name
-  exclude_crowdsec  = true
   anti_ai_scraping  = false
   extra_middlewares = ["traefik-x402@kubernetescrd"]
   extra_annotations = {