Update module golang.org/x/net to v0.19.0 - autoclosed

[openstack-k8s-ci-robot]

This PR contains the following updates:

Package	Type	Update	Change
golang.org/x/net	replace	minor	v0.18.0 -> v0.19.0

---

Configuration

📅 Schedule: Branch creation - "every weekend" in timezone America/New_York, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: openstack-k8s-ci-robot
Once this PR has been reviewed and has the lgtm label, please assign stuggi for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[ASBishop]

/retest

[ASBishop]

@dprince this stuff is obsolete now, right? L46 shows we're already using v0.19.0 and are well past the version that addresses the rapid reset CVE.

I don't know how renovate works, so do we just push an update to this PR that removes L73..L74?

[dprince]

I think we could drop these replace lines now. It was basically done to clean up the go.sum on dev-preview2 (which could have references to the older x/net version effected by the CVE). Technically speaking though I don't that that causes us any issues as go.mod controls which version our operator uses