Quay.io vulnerability scanner fixes

[tsebastiani]

oc CLI has an important role in our project and we ship it inside our container images. We've noticed that some of the dependencies contained in the tool are rising several vulnerabilities of various severities that prevent our users to run the project in mission critical environments.
With this PR we introduced mainly some version bumps and small adaptations to the newer version when a breaking change occured:

• github.com/aws/aws-sdk-go v1.45.20 -> v1.53.11 [severity: Unknown] GO-2022-0646: brought the library to the latest version, unfortunately this does not solve the issue ❌
• github.com/containers/image/v5 v5.29.0 -> v5.30.1 [severity: High] GHSA-6wvf-f2vw-3425 fixed ✅
• github.com/docker/docker v24.0.7+incompatible -> v25.0.5+incompatible [severity: High] GHSA-6wvf-f2vw-3425 fixed ✅
• github.com/opencontainers/runc v1.1.10 -> v1.1.12 [severity: High] GHSA-xr7r-f8xq-vfvv fixed ✅
• golang.org/x/net v0.20.0 -> v0.23.0 [severity: Medium] GHSA-4v7x-pqxf-cx7m fixed ✅

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: tsebastiani
Once this PR has been reviewed and has the lgtm label, please assign ardaguclu for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[tsebastiani]

/retest

[tsebastiani]

/retest

[tsebastiani]

/retest-required

[openshift-ci]

@tsebastiani: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-metal-ipi-ovn-ipv6	f386bc4	link	false	/test e2e-metal-ipi-ovn-ipv6

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[tsebastiani]

/retest-required

[openshift-merge-robot]

PR needs rebase.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-bot]

Issues go stale after 90d of inactivity.

Mark the issue as fresh by commenting /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
Exclude this issue from closing by commenting /lifecycle frozen.

If this issue is safe to close now please do so with /close.

/lifecycle stale

[openshift-bot]

Stale issues rot after 30d of inactivity.

Mark the issue as fresh by commenting /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.
Exclude this issue from closing by commenting /lifecycle frozen.

If this issue is safe to close now please do so with /close.

/lifecycle rotten
/remove-lifecycle stale

[openshift-bot]

Rotten issues close after 30d of inactivity.

Reopen the issue by commenting /reopen.
Mark the issue as fresh by commenting /remove-lifecycle rotten.
Exclude this issue from closing again by commenting /lifecycle frozen.

/close

[openshift-ci]

@openshift-bot: Closed this PR.

In response to this:

Rotten issues close after 30d of inactivity.

Reopen the issue by commenting /reopen.
Mark the issue as fresh by commenting /remove-lifecycle rotten.
Exclude this issue from closing again by commenting /lifecycle frozen.

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.