[release-v0.14] Backport CVE-2025-22869 changes to v0.14 from v0.15; Update go to 1.23.0 from 1.22.0 to support x/crypto 0.35

[psrvere]

Changes

Backport #1755 to release-0.14. This PR

• updates golang.org/x/crypto to 0.35 to address CVE-2025-22869
• updates go to 1.23.0 from 1.22.0 to support golang.org/x/crypto 0.35 version

/kind dependency-change

Submitter Checklist

• Includes tests if functionality changed/was added
• Includes docs if changes are user-facing
• Set a kind label on this PR
• Release notes block has been filled in, or marked NONE

Release Notes

Update golang.org/x/crypto to v0.35.0 to address CVE-2025-22869. Update go to 1.23.0 from 1.22.0 to support x/crypto 0.35.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign adambkaplan for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[SaschaSchwarze0]

@psrvere please make sure to sign the commits.

I also expect things to not compile because you did not change the Go version in the GitHub actions. But we will see when they run.

[psrvere]

Sure @SaschaSchwarze0. Let me raise another PR with signed commits. Also, will check for Github actions.

[SaschaSchwarze0]

Sure @SaschaSchwarze0. Let me raise another PR with signed commits. Also, will check for Github actions.

Oh, you could have easily signed the commits on this PR.

[psrvere]

Yes I figured but I had deleted the remote branch by then 🤦‍♂️