chore(deps): Combined dependency updates from red-hat-konflux (batch 3)

[bsquizz]

Summary

This PR combines 24 dependency update PRs from the red-hat-konflux bot into a single consolidated update (batch 3).

Note: After running go mod tidy, many of the major version updates were reverted because they were attempting to update indirect dependencies that are controlled by their parent packages. Only the updates that are actually compatible with the codebase were retained.

Dependency Updates Successfully Applied

Digest Updates:

• golang.org/x/crypto/x509roots/fallback: updated digest to 7dacc38
• github.com/tailscale/tscert: updated digest to aea342f
• github.com/google/pprof: updated digest to b05bdac
• knative.dev/pkg: updated digest to 80c8bc4
• sigs.k8s.io/controller-runtime/tools/setup-envtest: updated digest to f28fd58

Package Version Updates:

• k8s.io/apimachinery: v0.35.0-beta.0 → v0.35.0 (stable release, required by controller-runtime)
• github.com/quic-go/quic-go: updated to v0.58.0
• sigs.k8s.io/controller-runtime: updated to v0.22.4
• github.com/prometheus/common: updated to v0.67.4
• sigs.k8s.io/structured-merge-diff/v6: updated to v6.3.1
• github.com/KimMachineGun/automemlimit: updated to v0.7.5

Docker Base Images:

• registry.access.redhat.com/ubi8/ubi: updated to v8.10-1766090767

Konflux References:

• Updated Konflux pipeline references in .tekton files

Go Version:

• Go: updated to 1.25.3 with matching Docker image (ubi9/go-toolset:1.25.3-1763633888)

Major Version Updates That Were Reverted

The following PRs attempted to update indirect dependencies to newer major versions, but go mod tidy reverted them because the parent packages still require the older versions:

• gopkg.in/yaml.v2 → v3 ❌ (indirect dependency, controlled by parent packages)
• gopkg.in/evanphx/json-patch.v4 → v5 ❌ (indirect dependency)
• gomodules.xyz/jsonpatch/v2 → v3 ❌ (indirect dependency)
• go.yaml.in/yaml/v2 → v3 ❌ (indirect dependency)
• github.com/urfave/cli v1 → v3 ❌ (indirect dependency)
• github.com/golang-jwt/jwt/v4 → v5 ❌ (indirect dependency)
• github.com/go-jose/go-jose/v3 → v4 ❌ (indirect dependency)
• github.com/dgraph-io packages ❌ (indirect dependencies)
• github.com/cespare/xxhash v1 → v2 ❌ (indirect dependency)
• github.com/redhatinsights/platform-go-middlewares v1 → v2 ❌ (indirect dependency)

These updates would only be applicable if the direct dependencies that use them are also updated to versions that support the newer major versions.

Important Notes

• ✅ rhc-osdk-utils version preserved at v0.14.0 (critical dependency)
• ✅ Go version 1.25.3 matches Docker image version
• ✅ All merge conflicts resolved by choosing newer versions
• ✅ go mod tidy run to ensure consistency
• ✅ Fixed golangci-lint error by using stable k8s.io/apimachinery v0.35.0 instead of beta
• ✅ All 24 individual PRs will be auto-closed after this is merged

Individual PRs Combined

• chore(deps): update golang.org/x/crypto/x509roots/fallback digest to 7dacc38 - autoclosed #1585: golang.org/x/crypto/x509roots/fallback digest ✅
• chore(deps): update github.com/tailscale/tscert digest to aea342f - autoclosed #1584: github.com/tailscale/tscert digest ✅
• chore(deps): update github.com/google/pprof digest to b05bdac - autoclosed #1583: github.com/google/pprof digest ✅
• chore(deps): update knative.dev/pkg digest to 80c8bc4 - autoclosed #1573: knative.dev/pkg digest ✅
• chore(deps): update sigs.k8s.io/controller-runtime/tools/setup-envtest digest to adb6465 #1572: setup-envtest digest ✅
• chore(deps): update module gopkg.in/yaml.v2 to v3 - autoclosed #1571: gopkg.in/yaml.v2 → v3 ❌ (reverted by go mod tidy)
• chore(deps): update module gopkg.in/evanphx/json-patch.v4 to v5 #1570: gopkg.in/evanphx/json-patch.v4 → v5 ❌ (reverted)
• chore(deps): update module gomodules.xyz/jsonpatch/v2 to v3 #1569: gomodules.xyz/jsonpatch/v2 → v3 ❌ (reverted)
• chore(deps): update module go.yaml.in/yaml/v2 to v3 #1568: go.yaml.in/yaml/v2 → v3 ❌ (reverted)
• chore(deps): update module github.com/urfave/cli to v3 #1567: github.com/urfave/cli → v3 ❌ (reverted)
• chore(deps): update module github.com/redhatinsights/platform-go-middlewares to v2 #1566: platform-go-middlewares → v2 ❌ (reverted)
• chore(deps): update module github.com/golang-jwt/jwt/v4 to v5 #1565: github.com/golang-jwt/jwt/v4 → v5 ❌ (reverted)
• chore(deps): update module github.com/go-jose/go-jose/v3 to v4 #1564: github.com/go-jose/go-jose/v3 → v4 ❌ (reverted)
• chore(deps): update module github.com/dgraph-io/ristretto to v2 #1563: github.com/dgraph-io/ristretto → v2 ❌ (reverted)
• chore(deps): update module github.com/dgraph-io/badger/v2 to v4 #1562: github.com/dgraph-io/badger/v2 → v4 ❌ (reverted)
• chore(deps): update module github.com/dgraph-io/badger to v4 #1561: github.com/dgraph-io/badger → v4 ❌ (reverted)
• chore(deps): update module github.com/cespare/xxhash to v2 #1560: github.com/cespare/xxhash → v2 ❌ (reverted)
• chore(deps): update module github.com/quic-go/quic-go to v0.58.0 - autoclosed #1558: github.com/quic-go/quic-go v0.58.0 ✅
• chore(deps): update registry.access.redhat.com/ubi8/ubi docker tag to v8.10-1766090767 - autoclosed #1557: ubi8/ubi v8.10-1766090767 ✅
• chore(deps): update konflux references to 0b10508 #1556: Konflux references ✅
• fix(deps): update module sigs.k8s.io/controller-runtime to v0.22.4 - autoclosed #1555: controller-runtime v0.22.4 ✅
• chore(deps): update module github.com/prometheus/common to v0.67.4 - autoclosed #1554: prometheus/common v0.67.4 ✅
• chore(deps): update module sigs.k8s.io/structured-merge-diff/v6 to v6.3.1 - autoclosed #1553: structured-merge-diff v6.3.1 ✅
• chore(deps): update module github.com/kimmachinegun/automemlimit to v0.7.5 - autoclosed #1552: automemlimit v0.7.5 ✅

🤖 Generated with Claude Code

[bsquizz]

All kuttl tests are passing locally, merging