diff --git a/commitchecker.yaml b/commitchecker.yaml
index db447ae2c..5b0154c8b 100644
--- a/commitchecker.yaml
+++ b/commitchecker.yaml
@@ -1,4 +1,4 @@
-expectedMergeBase: 25704ad1e1d3dd9029d01b918829850f7139a63a
+expectedMergeBase: f4d74cc750de049c681d0b7f5cacc64c38633eeb
 upstreamBranch: main
 upstreamOrg: operator-framework
 upstreamRepo: operator-controller
diff --git a/openshift/tests-extension/go.mod b/openshift/tests-extension/go.mod
index 038a6ee4e..1ea5a36a5 100644
--- a/openshift/tests-extension/go.mod
+++ b/openshift/tests-extension/go.mod
@@ -5,11 +5,11 @@ go 1.25.7
 require (
 	github.com/blang/semver/v4 v4.0.0
 	github.com/ghodss/yaml v1.0.1-0.20190212211648-25d852aebe32
-	github.com/onsi/ginkgo/v2 v2.28.1
+	github.com/onsi/ginkgo/v2 v2.28.0
 	github.com/onsi/gomega v1.39.1
-	github.com/openshift-eng/openshift-tests-extension v0.0.0-20260127124016-0fed2b824818
-	github.com/openshift/api v0.0.0-20260226164249-f733385bc39e
-	github.com/openshift/client-go v0.0.0-20260226152647-d8b2196ff0d9
+	github.com/openshift-eng/openshift-tests-extension v0.0.0-20251105193959-75a0be5d9bd7
+	github.com/openshift/api v0.0.0-20260128000234-c16ec2bcf089
+	github.com/openshift/client-go v0.0.0-20260108185524-48f4ccfc4e13
 	github.com/openshift/origin v1.5.0-alpha.3.0.20251010041851-79ff1dbbe815
 	github.com/operator-framework/operator-controller v1.8.0
 	github.com/pborman/uuid v1.2.1
@@ -17,13 +17,13 @@ require (
 	github.com/tidwall/gjson v1.18.0
 	github.com/tidwall/pretty v1.2.1
 	gopkg.in/yaml.v3 v3.0.1
-	k8s.io/api v0.35.1
-	k8s.io/apiextensions-apiserver v0.35.1
-	k8s.io/apimachinery v0.35.1
-	k8s.io/apiserver v0.35.1
-	k8s.io/client-go v1.5.2
-	k8s.io/kubernetes v1.35.1
-	k8s.io/utils v0.0.0-20260210185600-b8788abfbbc2
+	k8s.io/api v0.35.0
+	k8s.io/apiextensions-apiserver v0.35.0
+	k8s.io/apimachinery v0.35.0
+	k8s.io/apiserver v0.35.0
+	k8s.io/client-go v0.35.0
+	k8s.io/kubernetes v1.35.0
+	k8s.io/utils v0.0.0-20260108192941-914a6e750570
 	sigs.k8s.io/controller-runtime v0.23.1
 )
 
@@ -60,10 +60,10 @@ require (
 	github.com/google/cel-go v0.27.0 // indirect
 	github.com/google/gnostic-models v0.7.1 // indirect
 	github.com/google/go-cmp v0.7.0 // indirect
-	github.com/google/pprof v0.0.0-20260202012954-cb029daf43ef // indirect
+	github.com/google/pprof v0.0.0-20260115054156-294ebfa9ad83 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gorilla/websocket v1.5.4-0.20250319132907-e064f32e3674 // indirect
-	github.com/grpc-ecosystem/grpc-gateway/v2 v2.28.0 // indirect
+	github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.7 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
 	github.com/kylelemons/godebug v1.1.0 // indirect
@@ -80,7 +80,7 @@ require (
 	github.com/prometheus/common v0.67.5 // indirect
 	github.com/prometheus/procfs v0.20.0 // indirect
 	github.com/spf13/pflag v1.0.10 // indirect
-	github.com/tidwall/match v1.2.0 // indirect
+	github.com/tidwall/match v1.1.1 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
 	go.opentelemetry.io/auto/sdk v1.2.1 // indirect
 	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.65.0 // indirect
@@ -94,8 +94,8 @@ require (
 	go.yaml.in/yaml/v2 v2.4.3 // indirect
 	go.yaml.in/yaml/v3 v3.0.4 // indirect
 	golang.org/x/crypto v0.48.0 // indirect
-	golang.org/x/exp v0.0.0-20260218203240-3dfff04db8fa // indirect
-	golang.org/x/net v0.51.0 // indirect
+	golang.org/x/exp v0.0.0-20260209203927-2842357ff358 // indirect
+	golang.org/x/net v0.50.0 // indirect
 	golang.org/x/oauth2 v0.35.0 // indirect
 	golang.org/x/sync v0.19.0 // indirect
 	golang.org/x/sys v0.41.0 // indirect
@@ -103,21 +103,21 @@ require (
 	golang.org/x/text v0.34.0 // indirect
 	golang.org/x/time v0.14.0 // indirect
 	golang.org/x/tools v0.42.0 // indirect
-	google.golang.org/genproto/googleapis/api v0.0.0-20260223185530-2f722ef697dc // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20260223185530-2f722ef697dc // indirect
-	google.golang.org/grpc v1.79.1 // indirect
+	google.golang.org/genproto/googleapis/api v0.0.0-20260209200024-4cfbd4190f57 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20260209200024-4cfbd4190f57 // indirect
+	google.golang.org/grpc v1.78.0 // indirect
 	google.golang.org/protobuf v1.36.11 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.13.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	k8s.io/component-base v0.35.1 // indirect
-	k8s.io/component-helpers v0.35.1 // indirect
-	k8s.io/controller-manager v0.35.1 // indirect
+	k8s.io/component-base v0.35.0 // indirect
+	k8s.io/component-helpers v0.35.0 // indirect
+	k8s.io/controller-manager v0.33.2 // indirect
 	k8s.io/klog/v2 v2.130.1 // indirect
 	k8s.io/kube-openapi v0.0.0-20260127142750-a19766b6e2d4 // indirect
-	k8s.io/kubectl v0.35.1 // indirect
-	k8s.io/kubelet v0.35.1 // indirect
-	k8s.io/pod-security-admission v0.35.1 // indirect
+	k8s.io/kubectl v0.35.0 // indirect
+	k8s.io/kubelet v0.31.1 // indirect
+	k8s.io/pod-security-admission v0.33.4 // indirect
 	sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.34.0 // indirect
 	sigs.k8s.io/json v0.0.0-20250730193827-2d320260d730 // indirect
 	sigs.k8s.io/randfill v1.0.0 // indirect
diff --git a/openshift/tests-extension/go.sum b/openshift/tests-extension/go.sum
index 601147d03..b50ae7cfe 100644
--- a/openshift/tests-extension/go.sum
+++ b/openshift/tests-extension/go.sum
@@ -83,15 +83,15 @@ github.com/google/gnostic-models v0.7.1/go.mod h1:whL5G0m6dmc5cPxKc5bdKdEN3UjI7O
 github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8=
 github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20260202012954-cb029daf43ef h1:xpF9fUHpoIrrjX24DURVKiwHcFpw19ndIs+FwTSMbno=
-github.com/google/pprof v0.0.0-20260202012954-cb029daf43ef/go.mod h1:MxpfABSjhmINe3F1It9d+8exIHFvUqtLIRCdOGNXqiI=
+github.com/google/pprof v0.0.0-20260115054156-294ebfa9ad83 h1:z2ogiKUYzX5Is6zr/vP9vJGqPwcdqsWjOt+V8J7+bTc=
+github.com/google/pprof v0.0.0-20260115054156-294ebfa9ad83/go.mod h1:MxpfABSjhmINe3F1It9d+8exIHFvUqtLIRCdOGNXqiI=
 github.com/google/uuid v1.0.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/gorilla/websocket v1.5.4-0.20250319132907-e064f32e3674 h1:JeSE6pjso5THxAzdVpqr6/geYxZytqFMBCOtn/ujyeo=
 github.com/gorilla/websocket v1.5.4-0.20250319132907-e064f32e3674/go.mod h1:r4w70xmWCQKmi1ONH4KIaBptdivuRPyosB9RmPlGEwA=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.28.0 h1:HWRh5R2+9EifMyIHV7ZV+MIZqgz+PMpZ14Jynv3O2Zs=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.28.0/go.mod h1:JfhWUomR1baixubs02l85lZYYOm7LV6om4ceouMv45c=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.7 h1:X+2YciYSxvMQK0UZ7sg45ZVabVZBeBuvMkmuI2V3Fak=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.7/go.mod h1:lW34nIZuQ8UDPdkon5fmfp2l3+ZkQ2me/+oecHYLOII=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
@@ -122,12 +122,12 @@ github.com/onsi/gomega v1.39.1 h1:1IJLAad4zjPn2PsnhH70V4DKRFlrCzGBNrNaru+Vf28=
 github.com/onsi/gomega v1.39.1/go.mod h1:hL6yVALoTOxeWudERyfppUcZXjMwIMLnuSfruD2lcfg=
 github.com/opencontainers/go-digest v1.0.0 h1:apOUWs51W5PlhuyGyz9FCeeBIOUDA/6nW8Oi/yOhh5U=
 github.com/opencontainers/go-digest v1.0.0/go.mod h1:0JzlMkj0TRzQZfJkVvzbP0HBR3IKzErnv2BNG4W4MAM=
-github.com/openshift-eng/openshift-tests-extension v0.0.0-20260127124016-0fed2b824818 h1:jJLE/aCAqDf8U4wc3bE1IEKgIxbb0ICjCNVFA49x/8s=
-github.com/openshift-eng/openshift-tests-extension v0.0.0-20260127124016-0fed2b824818/go.mod h1:6gkP5f2HL0meusT0Aim8icAspcD1cG055xxBZ9yC68M=
-github.com/openshift/api v0.0.0-20260226164249-f733385bc39e h1:8oQA5MNsymHQjlI0Wq8yWJT7x2ob2tvr1unO1w3VID0=
-github.com/openshift/api v0.0.0-20260226164249-f733385bc39e/go.mod h1:ZYAxo9t1AALeEotN07tNzIvqqqWSxcZIqMUKnY/xCeQ=
-github.com/openshift/client-go v0.0.0-20260226152647-d8b2196ff0d9 h1:5gHG1T3PUm5Ly7vILl9+byccl9eAUiV2RZuWXVVNnB4=
-github.com/openshift/client-go v0.0.0-20260226152647-d8b2196ff0d9/go.mod h1:TeUQXSUW0UPXSmEtMZLfTYIE3MajxnziS3lbdH0WSwk=
+github.com/openshift-eng/openshift-tests-extension v0.0.0-20251105193959-75a0be5d9bd7 h1:Z1swlS6b3Adm6RPhjqefs3DWnNFLDxRX+WC8GMXhja4=
+github.com/openshift-eng/openshift-tests-extension v0.0.0-20251105193959-75a0be5d9bd7/go.mod h1:6gkP5f2HL0meusT0Aim8icAspcD1cG055xxBZ9yC68M=
+github.com/openshift/api v0.0.0-20260128000234-c16ec2bcf089 h1:qcKLN7H1dh2wt59Knpc1J5XzCCStSeaaFyEHHilFypg=
+github.com/openshift/api v0.0.0-20260128000234-c16ec2bcf089/go.mod h1:d5uzF0YN2nQQFA0jIEWzzOZ+edmo6wzlGLvx5Fhz4uY=
+github.com/openshift/client-go v0.0.0-20260108185524-48f4ccfc4e13 h1:6rd4zSo2UaWQcAPZfHK9yzKVqH0BnMv1hqMzqXZyTds=
+github.com/openshift/client-go v0.0.0-20260108185524-48f4ccfc4e13/go.mod h1:YvOmPmV7wcJxpfhTDuFqqs2Xpb3M3ovsM6Qs/i2ptq4=
 github.com/openshift/kubernetes v0.0.0-20251108023427-891f5bb03061 h1:XVgudZfcjtF8UPIUarXXu6z7tZJLxrenIXOaB8e0tRk=
 github.com/openshift/kubernetes v0.0.0-20251108023427-891f5bb03061/go.mod h1:w3+IfrXNp5RosdDXg3LB55yijJqR/FwouvVntYHQf0o=
 github.com/openshift/kubernetes/staging/src/k8s.io/api v0.0.0-20251108023427-891f5bb03061 h1:uE4i/OdgU+YypcJ7vc8abZJQRyd6zwnUpY9nSdBAHEs=
@@ -187,9 +187,8 @@ github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu
 github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U=
 github.com/tidwall/gjson v1.18.0 h1:FIDeeyB800efLX89e5a8Y0BNH+LOngJyGrIWxG2FKQY=
 github.com/tidwall/gjson v1.18.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
+github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
 github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
-github.com/tidwall/match v1.2.0 h1:0pt8FlkOwjN2fPt4bIl4BoNxb98gGHN2ObFEDkrfZnM=
-github.com/tidwall/match v1.2.0/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
 github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/tidwall/pretty v1.2.1 h1:qjsOFOWWQl+N3RsoF5/ssm1pHmJJwhjlSbZ51I6wMl4=
 github.com/tidwall/pretty v1.2.1/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
@@ -232,16 +231,16 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.48.0 h1:/VRzVqiRSggnhY7gNRxPauEQ5Drw9haKdM0jqfcCFts=
 golang.org/x/crypto v0.48.0/go.mod h1:r0kV5h3qnFPlQnBSrULhlsRfryS2pmewsg+XfMgkVos=
-golang.org/x/exp v0.0.0-20260218203240-3dfff04db8fa h1:Zt3DZoOFFYkKhDT3v7Lm9FDMEV06GpzjG2jrqW+QTE0=
-golang.org/x/exp v0.0.0-20260218203240-3dfff04db8fa/go.mod h1:K79w1Vqn7PoiZn+TkNpx3BUWUQksGO3JcVX6qIjytmA=
+golang.org/x/exp v0.0.0-20260209203927-2842357ff358 h1:kpfSV7uLwKJbFSEgNhWzGSL47NDSF/5pYYQw1V0ub6c=
+golang.org/x/exp v0.0.0-20260209203927-2842357ff358/go.mod h1:R3t0oliuryB5eenPWl3rrQxwnNM3WTwnsRZZiXLAAW8=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.51.0 h1:94R/GTO7mt3/4wIKpcR5gkGmRLOuE/2hNGeWq/GBIFo=
-golang.org/x/net v0.51.0/go.mod h1:aamm+2QF5ogm02fjy5Bb7CQ0WMt1/WVM7FtyaTLlA9Y=
+golang.org/x/net v0.50.0 h1:ucWh9eiCGyDR3vtzso0WMQinm2Dnt8cFMuQa9K33J60=
+golang.org/x/net v0.50.0/go.mod h1:UgoSli3F/pBgdJBHCTc+tp3gmrU4XswgGRgtnwWTfyM=
 golang.org/x/oauth2 v0.35.0 h1:Mv2mzuHuZuY2+bkyWXIHMfhNdJAdwW3FuWeCPYN5GVQ=
 golang.org/x/oauth2 v0.35.0/go.mod h1:lzm5WQJQwKZ3nwavOZ3IS5Aulzxi68dUSgRHujetwEA=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -274,12 +273,12 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gonum.org/v1/gonum v0.16.0 h1:5+ul4Swaf3ESvrOnidPp4GZbzf0mxVQpDCYUQE7OJfk=
 gonum.org/v1/gonum v0.16.0/go.mod h1:fef3am4MQ93R2HHpKnLk4/Tbh/s0+wqD5nfa6Pnwy4E=
-google.golang.org/genproto/googleapis/api v0.0.0-20260223185530-2f722ef697dc h1:ULD+ToGXUIU6Pkzr1ARxdyvwfHbelw+agoFDRbLg4TU=
-google.golang.org/genproto/googleapis/api v0.0.0-20260223185530-2f722ef697dc/go.mod h1:M5krXqk4GhBKvB596udGL3UyjL4I1+cTbK0orROM9ng=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20260223185530-2f722ef697dc h1:51Wupg8spF+5FC6D+iMKbOddFjMckETnNnEiZ+HX37s=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20260223185530-2f722ef697dc/go.mod h1:4Hqkh8ycfw05ld/3BWL7rJOSfebL2Q+DVDeRgYgxUU8=
-google.golang.org/grpc v1.79.1 h1:zGhSi45ODB9/p3VAawt9a+O/MULLl9dpizzNNpq7flY=
-google.golang.org/grpc v1.79.1/go.mod h1:KmT0Kjez+0dde/v2j9vzwoAScgEPx/Bw1CYChhHLrHQ=
+google.golang.org/genproto/googleapis/api v0.0.0-20260209200024-4cfbd4190f57 h1:JLQynH/LBHfCTSbDWl+py8C+Rg/k1OVH3xfcaiANuF0=
+google.golang.org/genproto/googleapis/api v0.0.0-20260209200024-4cfbd4190f57/go.mod h1:kSJwQxqmFXeo79zOmbrALdflXQeAYcUbgS7PbpMknCY=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20260209200024-4cfbd4190f57 h1:mWPCjDEyshlQYzBpMNHaEof6UX1PmHcaUODUywQ0uac=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20260209200024-4cfbd4190f57/go.mod h1:j9x/tPzZkyxcgEFkiKEEGxfvyumM01BEtsW8xzOahRQ=
+google.golang.org/grpc v1.78.0 h1:K1XZG/yGDJnzMdd/uZHAkVqJE+xIDOcmdSFZkBUicNc=
+google.golang.org/grpc v1.78.0/go.mod h1:I47qjTo4OKbMkjA/aOOwxDIiPSBofUtQUI5EfpWvW7U=
 google.golang.org/protobuf v1.36.11 h1:fV6ZwhNocDyBLK0dj+fg8ektcVegBBuEolpbTQyBNVE=
 google.golang.org/protobuf v1.36.11/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
@@ -298,8 +297,8 @@ k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kube-openapi v0.0.0-20260127142750-a19766b6e2d4 h1:HhDfevmPS+OalTjQRKbTHppRIz01AWi8s45TMXStgYY=
 k8s.io/kube-openapi v0.0.0-20260127142750-a19766b6e2d4/go.mod h1:kdmbQkyfwUagLfXIad1y2TdrjPFWp2Q89B3qkRwf/pQ=
-k8s.io/utils v0.0.0-20260210185600-b8788abfbbc2 h1:AZYQSJemyQB5eRxqcPky+/7EdBj0xi3g0ZcxxJ7vbWU=
-k8s.io/utils v0.0.0-20260210185600-b8788abfbbc2/go.mod h1:xDxuJ0whA3d0I4mf/C4ppKHxXynQ+fxnkmQH0vTHnuk=
+k8s.io/utils v0.0.0-20260108192941-914a6e750570 h1:JT4W8lsdrGENg9W+YwwdLJxklIuKWdRm+BC+xt33FOY=
+k8s.io/utils v0.0.0-20260108192941-914a6e750570/go.mod h1:xDxuJ0whA3d0I4mf/C4ppKHxXynQ+fxnkmQH0vTHnuk=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.34.0 h1:hSfpvjjTQXQY2Fol2CS0QHMNs/WI1MOSGzCm1KhM5ec=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.34.0/go.mod h1:Ve9uj1L+deCXFrPOk1LpFXqTg7LCFzFso6PA48q/XZw=
 sigs.k8s.io/controller-runtime v0.23.1 h1:TjJSM80Nf43Mg21+RCy3J70aj/W6KyvDtOlpKf+PupE=
diff --git a/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/handler.go b/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/handler.go
index 4c9083d79..2f0b9e9e0 100644
--- a/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/handler.go
+++ b/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/handler.go
@@ -28,9 +28,7 @@ func ForwardResponseStream(ctx context.Context, mux *ServeMux, marshaler Marshal
 	}
 	handleForwardResponseServerMetadata(w, mux, md)
 
-	if !mux.disableChunkedEncoding {
-		w.Header().Set("Transfer-Encoding", "chunked")
-	}
+	w.Header().Set("Transfer-Encoding", "chunked")
 	if err := handleForwardResponseOptions(ctx, w, nil, opts); err != nil {
 		HTTPError(ctx, mux, marshaler, w, req, err)
 		return
diff --git a/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/mux.go b/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/mux.go
index 4e684c7de..3eb161671 100644
--- a/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/mux.go
+++ b/openshift/tests-extension/vendor/github.com/grpc-ecosystem/grpc-gateway/v2/runtime/mux.go
@@ -73,7 +73,6 @@ type ServeMux struct {
 	disablePathLengthFallback bool
 	unescapingMode            UnescapingMode
 	writeContentLength        bool
-	disableChunkedEncoding    bool
 }
 
 // ServeMuxOption is an option that can be given to a ServeMux on construction.
@@ -126,16 +125,6 @@ func WithMiddlewares(middlewares ...Middleware) ServeMuxOption {
 	}
 }
 
-// WithDisableChunkedEncoding disables the Transfer-Encoding: chunked header
-// for streaming responses. This is useful for streaming implementations that use
-// Content-Length, which is mutually exclusive with Transfer-Encoding:chunked.
-// Note that this option will not automatically add Content-Length headers, so it should be used with caution.
-func WithDisableChunkedEncoding() ServeMuxOption {
-	return func(mux *ServeMux) {
-		mux.disableChunkedEncoding = true
-	}
-}
-
 // SetQueryParameterParser sets the query parameter parser, used to populate message from query parameters.
 // Configuring this will mean the generated OpenAPI output is no longer correct, and it should be
 // done with careful consideration.
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runsuite.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runsuite.go
index 998fd7040..d81d07cb2 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runsuite.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runsuite.go
@@ -2,11 +2,9 @@ package cmdrun
 
 import (
 	"context"
-	"encoding/json"
 	"fmt"
 	"os"
 	"os/signal"
-	"path/filepath"
 	"syscall"
 	"time"
 
@@ -24,13 +22,11 @@ func NewRunSuiteCommand(registry *extension.Registry) *cobra.Command {
 		outputFlags      *flags.OutputFlags
 		concurrencyFlags *flags.ConcurrencyFlags
 		junitPath        string
-		htmlPath         string
 	}{
 		componentFlags:   flags.NewComponentFlags(),
 		outputFlags:      flags.NewOutputFlags(),
 		concurrencyFlags: flags.NewConcurrencyFlags(),
 		junitPath:        "",
-		htmlPath:         "",
 	}
 
 	cmd := &cobra.Command{
@@ -92,14 +88,6 @@ func NewRunSuiteCommand(registry *extension.Registry) *cobra.Command {
 				}
 				compositeWriter.AddWriter(junitWriter)
 			}
-			// HTML writer if needed
-			if opts.htmlPath != "" {
-				htmlWriter, err := extensiontests.NewHTMLResultWriter(opts.htmlPath, suite.Name)
-				if err != nil {
-					return errors.Wrap(err, "couldn't create html writer")
-				}
-				compositeWriter.AddWriter(htmlWriter)
-			}
 
 			// JSON writer
 			jsonWriter, err := extensiontests.NewJSONResultWriter(os.Stdout,
@@ -114,40 +102,13 @@ func NewRunSuiteCommand(registry *extension.Registry) *cobra.Command {
 				return errors.Wrap(err, "couldn't filter specs")
 			}
 
-			concurrency := opts.concurrencyFlags.MaxConcurency
-			if suite.Parallelism > 0 {
-				concurrency = min(concurrency, suite.Parallelism)
-			}
-			results, runErr := specs.Run(ctx, compositeWriter, concurrency)
-			if opts.junitPath != "" {
-				// we want to commit the results to disk regardless of the success or failure of the specs
-				if err := writeResults(opts.junitPath, results); err != nil {
-					fmt.Fprintf(os.Stderr, "Failed to write test results to disk: %v\n", err)
-				}
-			}
-			return runErr
+			return specs.Run(ctx, compositeWriter, opts.concurrencyFlags.MaxConcurency)
 		},
 	}
 	opts.componentFlags.BindFlags(cmd.Flags())
 	opts.outputFlags.BindFlags(cmd.Flags())
 	opts.concurrencyFlags.BindFlags(cmd.Flags())
 	cmd.Flags().StringVarP(&opts.junitPath, "junit-path", "j", opts.junitPath, "write results to junit XML")
-	cmd.Flags().StringVar(&opts.htmlPath, "html-path", opts.htmlPath, "write results to summary HTML")
 
 	return cmd
 }
-
-func writeResults(jUnitPath string, results []*extensiontests.ExtensionTestResult) error {
-	jUnitDir := filepath.Dir(jUnitPath)
-	if err := os.MkdirAll(jUnitDir, 0755); err != nil {
-		return fmt.Errorf("failed to create output directory: %v", err)
-	}
-
-	encodedResults, err := json.MarshalIndent(results, "", "  ")
-	if err != nil {
-		return fmt.Errorf("failed to marshal results: %v", err)
-	}
-
-	outputPath := filepath.Join(jUnitDir, fmt.Sprintf("extension_test_result_e2e_%s.json", time.Now().UTC().Format("20060102-150405")))
-	return os.WriteFile(outputPath, encodedResults, 0644)
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runtest.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runtest.go
index c62021e7e..c06894ed9 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runtest.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdrun/runtest.go
@@ -3,9 +3,9 @@ package cmdrun
 import (
 	"bufio"
 	"context"
-	"errors"
 	"fmt"
 	"os"
+	"errors"
 	"os/signal"
 	"syscall"
 	"time"
@@ -100,8 +100,7 @@ func NewRunTestCommand(registry *extension.Registry) *cobra.Command {
 			}
 			defer w.Flush()
 
-			_, err = specs.Run(ctx, w, opts.concurrencyFlags.MaxConcurency)
-			return err
+			return specs.Run(ctx, w, opts.concurrencyFlags.MaxConcurency)
 		},
 	}
 	opts.componentFlags.BindFlags(cmd.Flags())
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result.go
index 9c03a0a84..2e36969fe 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result.go
@@ -1,12 +1,8 @@
 package extensiontests
 
 import (
-	"bytes"
-	_ "embed"
-	"encoding/json"
 	"fmt"
 	"strings"
-	"text/template"
 
 	"github.com/openshift-eng/openshift-tests-extension/pkg/junit"
 )
@@ -71,55 +67,3 @@ func (results ExtensionTestResults) ToJUnit(suiteName string) junit.TestSuite {
 
 	return suite
 }
-
-//go:embed viewer.html
-var viewerHtml []byte
-
-// RenderResultsHTML renders the HTML viewer template with the provided JSON data.
-// The caller is responsible for marshaling their results to JSON. This allows
-// callers with different result struct types to use the same HTML viewer.
-func RenderResultsHTML(jsonData []byte, suiteName string) ([]byte, error) {
-	tmpl, err := template.New("viewer").Parse(string(viewerHtml))
-	if err != nil {
-		return nil, fmt.Errorf("failed to parse template: %w", err)
-	}
-	var out bytes.Buffer
-	if err := tmpl.Execute(&out, struct {
-		Data      string
-		SuiteName string
-	}{
-		string(jsonData),
-		suiteName,
-	}); err != nil {
-		return nil, fmt.Errorf("failed to execute template: %w", err)
-	}
-	return out.Bytes(), nil
-}
-
-func (results ExtensionTestResults) ToHTML(suiteName string) ([]byte, error) {
-	encoded, err := json.Marshal(results)
-	if err != nil {
-		return nil, fmt.Errorf("failed to marshal extension test results: %w", err)
-	}
-	// pare down the output if there's a lot, we want this to load in some reasonable amount of time
-	if len(encoded) > 2<<20 {
-		// n.b. this is wasteful, but we want to mutate our inputs in a safe manner, so the encode/decode/encode
-		// pass is useful as a deep copy
-		var copiedResults ExtensionTestResults
-		if err := json.Unmarshal(encoded, &copiedResults); err != nil {
-			return nil, fmt.Errorf("failed to unmarshal extension test results: %w", err)
-		}
-		copiedResults.Walk(func(result *ExtensionTestResult) {
-			if result.Result == ResultPassed {
-				result.Error = ""
-				result.Output = ""
-				result.Details = nil
-			}
-		})
-		encoded, err = json.Marshal(copiedResults)
-		if err != nil {
-			return nil, fmt.Errorf("failed to marshal extension test results: %w", err)
-		}
-	}
-	return RenderResultsHTML(encoded, suiteName)
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result_writer.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result_writer.go
index f9ca434ca..aedc409c1 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result_writer.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/result_writer.go
@@ -124,9 +124,8 @@ func NewJSONResultWriter(out io.Writer, format ResultFormat) (*JSONResultWriter,
 	}
 
 	return &JSONResultWriter{
-		out:     out,
-		format:  format,
-		results: ExtensionTestResults{},
+		out:    out,
+		format: format,
 	}, nil
 }
 
@@ -163,51 +162,3 @@ func (w *JSONResultWriter) Flush() error {
 
 	return nil
 }
-
-type HTMLResultWriter struct {
-	lock      sync.Mutex
-	testSuite *junit.TestSuite
-	out       *os.File
-	suiteName string
-	path      string
-	results   ExtensionTestResults
-}
-
-func NewHTMLResultWriter(path, suiteName string) (ResultWriter, error) {
-	file, err := os.Create(path)
-	if err != nil {
-		return nil, err
-	}
-
-	return &HTMLResultWriter{
-		testSuite: &junit.TestSuite{
-			Name: suiteName,
-		},
-		out:       file,
-		suiteName: suiteName,
-		path:      path,
-	}, nil
-}
-
-func (w *HTMLResultWriter) Write(res *ExtensionTestResult) {
-	w.lock.Lock()
-	defer w.lock.Unlock()
-	w.results = append(w.results, res)
-}
-
-func (w *HTMLResultWriter) Flush() error {
-	w.lock.Lock()
-	defer w.lock.Unlock()
-	data, err := w.results.ToHTML(w.suiteName)
-	if err != nil {
-		return fmt.Errorf("failed to create result HTML: %w", err)
-	}
-	if _, err := w.out.Write(data); err != nil {
-		return err
-	}
-	if err := w.out.Close(); err != nil {
-		return err
-	}
-
-	return nil
-}
\ No newline at end of file
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/spec.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/spec.go
index e87809c8a..1b3635423 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/spec.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/spec.go
@@ -107,32 +107,18 @@ func (specs ExtensionTestSpecs) MustSelectAll(selectFns []SelectFunction) (Exten
 	return filtered, nil
 }
 
-// ModuleTestsOnly ensures that ginkgo tests from vendored sources aren't selected. Unfortunately, making
-// use of kubernetes test helpers results in the entire Ginkgo suite being initialized (ginkgo loves global state),
-// so we need to be careful about which tests we select.
-//
-// A test is excluded if ALL of its code locations with full paths are external (vendored or from external test
-// suites). If at least one code location with a full path is from the local module, the test is included, because
-// local tests may legitimately call helper functions from vendored test frameworks.
+// ModuleTestsOnly ensures that ginkgo tests from vendored sources aren't selected,
+// except for the Origin extended util packages, that may contain Ginkgo nodes but
+// should not cause a test exclusion.
 func ModuleTestsOnly() SelectFunction {
 	return func(spec *ExtensionTestSpec) bool {
-		hasLocalCode := false
-
 		for _, cl := range spec.CodeLocations {
-			// Short-form code locations (e.g., "set up framework | framework.go:200") are ignored in this determination.
-			if !strings.Contains(cl, "/") {
-				continue
-			}
-
-			// If this code location is not external (vendored or k8s test), it's local code
-			if !(strings.Contains(cl, "/vendor/") || strings.HasPrefix(cl, "k8s.io/kubernetes")) {
-				hasLocalCode = true
-				break
+			if strings.Contains(cl, "/vendor/") && !strings.Contains(cl, "github.com/openshift/origin/test/extended/util") {
+				return false
 			}
 		}
 
-		// Include the test only if it has at least one local code location
-		return hasLocalCode
+		return true
 	}
 }
 
@@ -196,7 +182,7 @@ func (specs ExtensionTestSpecs) Names() []string {
 // are written to the given ResultWriter after each spec has completed execution.  BeforeEach,
 // BeforeAll, AfterEach, AfterAll hooks are executed when specified. "Each" hooks must be thread
 // safe. Returns an error if any test spec failed, indicating the quantity of failures.
-func (specs ExtensionTestSpecs) Run(ctx context.Context, w ResultWriter, maxConcurrent int) ([]*ExtensionTestResult, error) {
+func (specs ExtensionTestSpecs) Run(ctx context.Context, w ResultWriter, maxConcurrent int) error {
 	queue := make(chan *ExtensionTestSpec)
 	terminalFailures := atomic.Int64{}
 	nonTerminalFailures := atomic.Int64{}
@@ -224,7 +210,6 @@ func (specs ExtensionTestSpecs) Run(ctx context.Context, w ResultWriter, maxConc
 
 	// Start consumers
 	var wg sync.WaitGroup
-	resultChan := make(chan *ExtensionTestResult, len(specs))
 	for i := 0; i < maxConcurrent; i++ {
 		wg.Add(1)
 		go func() {
@@ -251,14 +236,12 @@ func (specs ExtensionTestSpecs) Run(ctx context.Context, w ResultWriter, maxConc
 				// it does, we may want to modify it (e.g. k8s-tests for annotations currently).
 				res.Name = spec.Name
 				w.Write(res)
-				resultChan <- res
 			}
 		}()
 	}
 
 	// Wait for all consumers to finish
 	wg.Wait()
-	close(resultChan)
 
 	// Execute afterAll
 	for _, spec := range specs {
@@ -267,11 +250,6 @@ func (specs ExtensionTestSpecs) Run(ctx context.Context, w ResultWriter, maxConc
 		}
 	}
 
-	var results []*ExtensionTestResult
-	for res := range resultChan {
-		results = append(results, res)
-	}
-
 	terminalFailCount := terminalFailures.Load()
 	nonTerminalFailCount := nonTerminalFailures.Load()
 
@@ -283,12 +261,12 @@ func (specs ExtensionTestSpecs) Run(ctx context.Context, w ResultWriter, maxConc
 	// Only exit with error if terminal lifecycle tests failed
 	if terminalFailCount > 0 {
 		if nonTerminalFailCount > 0 {
-			return results, fmt.Errorf("%d tests failed (%d informing)", terminalFailCount+nonTerminalFailCount, nonTerminalFailCount)
+			return fmt.Errorf("%d tests failed (%d informing)", terminalFailCount+nonTerminalFailCount, nonTerminalFailCount)
 		}
-		return results, fmt.Errorf("%d tests failed", terminalFailCount)
+		return fmt.Errorf("%d tests failed", terminalFailCount)
 	}
 
-	return results, nil
+	return nil
 }
 
 // AddBeforeAll adds a function to be run once before all tests start executing.
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/types.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/types.go
index cd23be81f..5bfaab2f1 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/types.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/types.go
@@ -74,10 +74,8 @@ type Resources struct {
 }
 
 type Isolation struct {
-	Mode       string   `json:"mode,omitempty"`
-	Conflict   []string `json:"conflict,omitempty"`
-	Taint      []string `json:"taint,omitempty"`
-	Toleration []string `json:"toleration,omitempty"`
+	Mode     string   `json:"mode,omitempty"`
+	Conflict []string `json:"conflict,omitempty"`
 }
 
 type EnvironmentSelector struct {
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/viewer.html b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/viewer.html
deleted file mode 100644
index 2ff236aa3..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/extension/extensiontests/viewer.html
+++ /dev/null
@@ -1,1520 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-    <meta charset="UTF-8">
-    <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <title>Results for {{ .SuiteName }}</title>
-    <style>
-        :root {
-            --bg-primary: #0d1117;
-            --bg-secondary: #161b22;
-            --bg-tertiary: #21262d;
-            --border-color: #30363d;
-            --text-primary: #c9d1d9;
-            --text-secondary: #8b949e;
-            --text-muted: #6e7681;
-            --success: #238636;
-            --success-bg: #1a4721;
-            --failure: #da3633;
-            --failure-bg: #4a1d1d;
-            --skipped: #6e7681;
-            --skipped-bg: #2d333b;
-            --flaky: #d29922;
-            --flaky-bg: #3d2e0a;
-            --accent: #58a6ff;
-            --accent-hover: #79c0ff;
-        }
-
-        * {
-            box-sizing: border-box;
-            margin: 0;
-            padding: 0;
-        }
-
-        body {
-            font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', 'Noto Sans', Helvetica, Arial, sans-serif;
-            background-color: var(--bg-primary);
-            color: var(--text-primary);
-            line-height: 1.5;
-            min-height: 100vh;
-        }
-
-        .container {
-            max-width: 1400px;
-            margin: 0 auto;
-            padding: 24px;
-        }
-
-        header {
-            margin-bottom: 24px;
-        }
-
-        h1 {
-            font-size: 24px;
-            font-weight: 600;
-            margin-bottom: 8px;
-            display: flex;
-            align-items: center;
-            gap: 12px;
-        }
-
-        .file-info {
-            color: var(--text-secondary);
-            font-size: 14px;
-        }
-
-        /* File Drop Zone */
-        .drop-zone {
-            border: 2px dashed var(--border-color);
-            border-radius: 12px;
-            padding: 48px;
-            text-align: center;
-            background: var(--bg-secondary);
-            transition: all 0.2s;
-            cursor: pointer;
-            margin-bottom: 24px;
-        }
-
-        .drop-zone:hover, .drop-zone.drag-over {
-            border-color: var(--accent);
-            background: var(--bg-tertiary);
-        }
-
-        .drop-zone h2 {
-            font-size: 20px;
-            margin-bottom: 8px;
-            color: var(--text-primary);
-        }
-
-        .drop-zone p {
-            color: var(--text-secondary);
-            margin-bottom: 16px;
-        }
-
-        .drop-zone input[type="file"] {
-            display: none;
-        }
-
-        .drop-zone .btn {
-            display: inline-block;
-            padding: 10px 20px;
-            background: var(--accent);
-            color: #fff;
-            border-radius: 6px;
-            font-weight: 500;
-            cursor: pointer;
-            transition: background 0.2s;
-        }
-
-        .drop-zone .btn:hover {
-            background: var(--accent-hover);
-        }
-
-        /* Summary Cards */
-        .summary {
-            display: grid;
-            grid-template-columns: repeat(auto-fit, minmax(150px, 1fr));
-            gap: 16px;
-            margin-bottom: 24px;
-        }
-
-        .summary-card {
-            background: var(--bg-secondary);
-            border: 1px solid var(--border-color);
-            border-radius: 8px;
-            padding: 16px;
-            text-align: center;
-            cursor: pointer;
-            transition: all 0.2s;
-        }
-
-        .summary-card:hover {
-            border-color: var(--accent);
-        }
-
-        .summary-card.active {
-            border-color: var(--accent);
-            box-shadow: 0 0 0 1px var(--accent);
-        }
-
-        .summary-card .count {
-            font-size: 32px;
-            font-weight: 700;
-            line-height: 1.2;
-        }
-
-        .summary-card .label {
-            font-size: 12px;
-            font-weight: 500;
-            text-transform: uppercase;
-            letter-spacing: 0.5px;
-            color: var(--text-secondary);
-        }
-
-        .summary-card.passed .count { color: var(--success); }
-        .summary-card.failed .count { color: var(--failure); }
-        .summary-card.skipped .count { color: var(--skipped); }
-        .summary-card.flaky .count { color: var(--flaky); }
-        .summary-card.total .count { color: var(--accent); }
-
-        /* Time Slider */
-        .time-slider-group {
-            grid-column: 1 / -1;
-            padding-top: 8px;
-            border-top: 1px solid var(--border-color);
-            margin-top: 8px;
-        }
-
-        .time-slider-header {
-            display: flex;
-            justify-content: space-between;
-            align-items: center;
-            margin-bottom: 12px;
-        }
-
-        .time-slider-label {
-            font-size: 12px;
-            font-weight: 500;
-            text-transform: uppercase;
-            letter-spacing: 0.5px;
-            color: var(--text-secondary);
-        }
-
-        .time-slider-values {
-            font-size: 13px;
-            color: var(--text-primary);
-            font-family: 'SF Mono', 'Consolas', 'Monaco', monospace;
-        }
-
-        .time-slider-track {
-            position: relative;
-            height: 24px;
-            background: var(--bg-tertiary);
-            border-radius: 4px;
-            cursor: pointer;
-        }
-
-        .time-slider-range {
-            position: absolute;
-            height: 100%;
-            background: var(--accent);
-            opacity: 0.3;
-            border-radius: 4px;
-        }
-
-        .time-slider-handle {
-            position: absolute;
-            top: 50%;
-            transform: translate(-50%, -50%);
-            width: 16px;
-            height: 16px;
-            background: var(--accent);
-            border: 2px solid var(--bg-primary);
-            border-radius: 50%;
-            cursor: grab;
-            z-index: 2;
-        }
-
-        .time-slider-handle:hover {
-            background: var(--accent-hover);
-        }
-
-        .time-slider-handle:active {
-            cursor: grabbing;
-        }
-
-        .time-slider-ticks {
-            display: flex;
-            justify-content: space-between;
-            margin-top: 4px;
-            font-size: 10px;
-            color: var(--text-muted);
-        }
-
-        /* Filters */
-        .filters {
-            background: var(--bg-secondary);
-            border: 1px solid var(--border-color);
-            border-radius: 8px;
-            padding: 16px;
-            margin-bottom: 24px;
-            display: grid;
-            grid-template-columns: repeat(auto-fit, minmax(200px, 1fr));
-            gap: 16px;
-        }
-
-        .filter-group {
-            display: flex;
-            flex-direction: column;
-            gap: 6px;
-        }
-
-        .filter-group label {
-            font-size: 12px;
-            font-weight: 500;
-            color: var(--text-secondary);
-            text-transform: uppercase;
-            letter-spacing: 0.5px;
-        }
-
-        .filter-group input,
-        .filter-group select {
-            background: var(--bg-tertiary);
-            border: 1px solid var(--border-color);
-            border-radius: 6px;
-            padding: 8px 12px;
-            color: var(--text-primary);
-            font-size: 14px;
-            outline: none;
-            transition: border-color 0.2s;
-        }
-
-        .filter-group input:focus,
-        .filter-group select:focus {
-            border-color: var(--accent);
-        }
-
-        .filter-group input::placeholder {
-            color: var(--text-muted);
-        }
-
-        .filter-actions {
-            display: flex;
-            align-items: flex-end;
-            gap: 8px;
-        }
-
-        .btn-clear {
-            padding: 8px 16px;
-            background: var(--bg-tertiary);
-            border: 1px solid var(--border-color);
-            border-radius: 6px;
-            color: var(--text-secondary);
-            font-size: 14px;
-            cursor: pointer;
-            transition: all 0.2s;
-        }
-
-        .btn-clear:hover {
-            border-color: var(--accent);
-            color: var(--text-primary);
-        }
-
-        /* Results Count */
-        .results-header {
-            display: flex;
-            justify-content: space-between;
-            align-items: center;
-            margin-bottom: 16px;
-            padding: 0 4px;
-        }
-
-        .results-count {
-            font-size: 14px;
-            color: var(--text-secondary);
-        }
-
-        .sort-options {
-            display: flex;
-            gap: 8px;
-            align-items: center;
-        }
-
-        .sort-options label {
-            font-size: 14px;
-            color: var(--text-secondary);
-        }
-
-        .sort-options select {
-            background: var(--bg-tertiary);
-            border: 1px solid var(--border-color);
-            border-radius: 6px;
-            padding: 6px 10px;
-            color: var(--text-primary);
-            font-size: 14px;
-            outline: none;
-        }
-
-        /* Test List */
-        .test-list {
-            display: flex;
-            flex-direction: column;
-            gap: 8px;
-        }
-
-        .test-item {
-            background: var(--bg-secondary);
-            border: 1px solid var(--border-color);
-            border-radius: 8px;
-            overflow: hidden;
-            transition: border-color 0.2s;
-        }
-
-        .test-item:hover {
-            border-color: var(--text-muted);
-        }
-
-        .test-header {
-            padding: 12px 16px;
-            cursor: pointer;
-            display: flex;
-            align-items: flex-start;
-            gap: 12px;
-        }
-
-        .test-status {
-            flex-shrink: 0;
-            width: 10px;
-            height: 10px;
-            border-radius: 50%;
-            margin-top: 6px;
-        }
-
-        .test-status.passed { background: var(--success); }
-        .test-status.failed { background: var(--failure); }
-        .test-status.skipped { background: var(--skipped); }
-        .test-status.flaky { background: var(--flaky); }
-
-        .test-info {
-            flex: 1;
-            min-width: 0;
-        }
-
-        .test-name {
-            font-size: 14px;
-            font-weight: 500;
-            word-break: break-word;
-            margin-bottom: 4px;
-        }
-
-        .test-meta {
-            display: flex;
-            flex-wrap: wrap;
-            gap: 8px;
-            font-size: 12px;
-            color: var(--text-secondary);
-        }
-
-        .test-meta-item {
-            display: inline-flex;
-            align-items: center;
-            gap: 4px;
-        }
-
-        .tag {
-            display: inline-block;
-            padding: 2px 8px;
-            border-radius: 12px;
-            font-size: 11px;
-            font-weight: 500;
-        }
-
-        .tag.passed { background: var(--success-bg); color: #3fb950; }
-        .tag.failed { background: var(--failure-bg); color: #f85149; }
-        .tag.skipped { background: var(--skipped-bg); color: #8b949e; }
-        .tag.flaky { background: var(--flaky-bg); color: #d29922; }
-
-        .copy-btn {
-            flex-shrink: 0;
-            width: 32px;
-            height: 32px;
-            display: flex;
-            align-items: center;
-            justify-content: center;
-            background: var(--bg-tertiary);
-            border: 1px solid var(--border-color);
-            border-radius: 6px;
-            color: var(--text-muted);
-            cursor: pointer;
-            transition: all 0.2s;
-        }
-
-        .copy-btn:hover {
-            border-color: var(--accent);
-            color: var(--text-primary);
-        }
-
-        .copy-btn.copied {
-            border-color: var(--success);
-            color: var(--success);
-        }
-
-        .test-toggle {
-            flex-shrink: 0;
-            width: 20px;
-            height: 20px;
-            display: flex;
-            align-items: center;
-            justify-content: center;
-            color: var(--text-muted);
-            transition: transform 0.2s;
-        }
-
-        .test-item.expanded .test-toggle {
-            transform: rotate(90deg);
-        }
-
-        .test-output {
-            display: none;
-            border-top: 1px solid var(--border-color);
-            background: var(--bg-primary);
-        }
-
-        .test-item.expanded .test-output {
-            display: block;
-        }
-
-        .test-details-panel {
-            padding: 16px;
-            background: var(--bg-secondary);
-            border-bottom: 1px solid var(--border-color);
-        }
-
-        .details-grid {
-            display: grid;
-            grid-template-columns: repeat(auto-fill, minmax(220px, 1fr));
-            gap: 12px;
-        }
-
-        .detail-item {
-            display: flex;
-            flex-direction: column;
-            gap: 4px;
-            min-width: 0;
-        }
-
-        .detail-label {
-            font-size: 11px;
-            font-weight: 500;
-            text-transform: uppercase;
-            letter-spacing: 0.5px;
-            color: var(--text-muted);
-        }
-
-        .detail-value {
-            font-size: 13px;
-            color: var(--text-primary);
-            word-break: break-all;
-            overflow-wrap: break-word;
-        }
-
-        .detail-value.mono {
-            font-family: 'SF Mono', 'Consolas', 'Monaco', monospace;
-            font-size: 12px;
-        }
-
-        .tag-subtle {
-            color: var(--text-secondary);
-            font-size: 12px;
-        }
-
-        .output-section {
-            border-bottom: 1px solid var(--border-color);
-        }
-
-        .output-section:last-child {
-            border-bottom: none;
-        }
-
-        .output-label {
-            padding: 8px 16px;
-            font-size: 12px;
-            font-weight: 600;
-            text-transform: uppercase;
-            letter-spacing: 0.5px;
-            color: var(--text-secondary);
-            background: var(--bg-tertiary);
-            border-bottom: 1px solid var(--border-color);
-        }
-
-        .output-section:first-child .output-label {
-            background: var(--failure-bg);
-            color: #f85149;
-        }
-
-        .output-content {
-            padding: 16px;
-            font-family: 'SF Mono', 'Consolas', 'Monaco', monospace;
-            font-size: 12px;
-            line-height: 1.6;
-            white-space: pre-wrap;
-            word-break: break-word;
-            overflow-x: auto;
-            max-height: 500px;
-            overflow-y: auto;
-        }
-
-        .output-content.error-content {
-            background: rgba(248, 81, 73, 0.05);
-        }
-
-        .output-content .log-line {
-            padding: 1px 0;
-        }
-
-        .output-content .log-step {
-            color: #58a6ff;
-            font-weight: 500;
-        }
-
-        .output-content .log-info {
-            color: #8b949e;
-        }
-
-        .output-content .log-error {
-            color: #f85149;
-        }
-
-        .output-content .log-warning {
-            color: #d29922;
-        }
-
-        .output-content .log-success {
-            color: #3fb950;
-        }
-
-        .output-content .log-skip {
-            color: #a371f7;
-        }
-
-        /* Empty State */
-        .empty-state {
-            text-align: center;
-            padding: 64px 24px;
-            color: var(--text-secondary);
-        }
-
-        .empty-state h3 {
-            font-size: 18px;
-            margin-bottom: 8px;
-            color: var(--text-primary);
-        }
-
-        /* Loading */
-        .loading {
-            display: flex;
-            align-items: center;
-            justify-content: center;
-            padding: 48px;
-            color: var(--text-secondary);
-        }
-
-        .spinner {
-            width: 24px;
-            height: 24px;
-            border: 2px solid var(--border-color);
-            border-top-color: var(--accent);
-            border-radius: 50%;
-            animation: spin 0.8s linear infinite;
-            margin-right: 12px;
-        }
-
-        @keyframes spin {
-            to { transform: rotate(360deg); }
-        }
-
-        /* Hidden */
-        .hidden {
-            display: none !important;
-        }
-
-        /* Scrollbar */
-        ::-webkit-scrollbar {
-            width: 8px;
-            height: 8px;
-        }
-
-        ::-webkit-scrollbar-track {
-            background: var(--bg-secondary);
-        }
-
-        ::-webkit-scrollbar-thumb {
-            background: var(--border-color);
-            border-radius: 4px;
-        }
-
-        ::-webkit-scrollbar-thumb:hover {
-            background: var(--text-muted);
-        }
-
-        /* Pagination */
-        .pagination {
-            display: flex;
-            justify-content: center;
-            align-items: center;
-            gap: 8px;
-            margin-top: 24px;
-            padding: 16px;
-        }
-
-        .pagination button {
-            padding: 8px 16px;
-            background: var(--bg-secondary);
-            border: 1px solid var(--border-color);
-            border-radius: 6px;
-            color: var(--text-primary);
-            font-size: 14px;
-            cursor: pointer;
-            transition: all 0.2s;
-        }
-
-        .pagination button:hover:not(:disabled) {
-            border-color: var(--accent);
-        }
-
-        .pagination button:disabled {
-            opacity: 0.5;
-            cursor: not-allowed;
-        }
-
-        .pagination .page-info {
-            color: var(--text-secondary);
-            font-size: 14px;
-            padding: 0 16px;
-        }
-
-        /* Duration bar */
-        .duration-bar {
-            height: 3px;
-            background: var(--border-color);
-            border-radius: 2px;
-            margin-top: 8px;
-            overflow: hidden;
-        }
-
-        .duration-bar-fill {
-            height: 100%;
-            background: var(--accent);
-            border-radius: 2px;
-            transition: width 0.3s;
-        }
-
-        /* Search highlighting */
-        .search-highlight {
-            background: #5c4d1a;
-            color: #ffd700;
-            padding: 1px 2px;
-            border-radius: 2px;
-        }
-    </style>
-</head>
-<body>
-    <div class="container">
-        <header>
-            <h1>
-                <svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
-                    <path d="M9 11l3 3L22 4"/>
-                    <path d="M21 12v7a2 2 0 01-2 2H5a2 2 0 01-2-2V5a2 2 0 012-2h11"/>
-                </svg>
-                <span id="pageTitle">Results for {{ .SuiteName }}</span>
-            </h1>
-            <p class="file-info" id="fileInfo">No file loaded</p>
-        </header>
-
-        <div class="drop-zone" id="dropZone">
-            <h2>Load Test Results</h2>
-            <p>Drag and drop a JSON test results file here, or click to browse</p>
-            <label class="btn">
-                Choose File
-                <input type="file" id="fileInput" accept=".json">
-            </label>
-        </div>
-
-        <div id="resultsContainer" class="hidden">
-            <div class="summary" id="summary">
-                <div class="summary-card total" data-filter="all">
-                    <div class="count" id="totalCount">0</div>
-                    <div class="label">Total</div>
-                </div>
-                <div class="summary-card passed" data-filter="passed">
-                    <div class="count" id="passedCount">0</div>
-                    <div class="label">Passed</div>
-                </div>
-                <div class="summary-card failed" data-filter="failed">
-                    <div class="count" id="failedCount">0</div>
-                    <div class="label">Failed</div>
-                </div>
-                <div class="summary-card flaky" data-filter="flaky">
-                    <div class="count" id="flakyCount">0</div>
-                    <div class="label">Flaky</div>
-                </div>
-                <div class="summary-card skipped" data-filter="skipped">
-                    <div class="count" id="skippedCount">0</div>
-                    <div class="label">Skipped</div>
-                </div>
-            </div>
-
-            <div class="filters">
-                <div class="filter-group">
-                    <label for="nameFilter">Test Name</label>
-                    <input type="text" id="nameFilter" placeholder="Filter by name...">
-                </div>
-                <div class="filter-group">
-                    <label for="outputFilter">Output / Error</label>
-                    <input type="text" id="outputFilter" placeholder="Search (regex supported)...">
-                </div>
-                <div class="filter-group">
-                    <label for="lifecycleFilter">Lifecycle</label>
-                    <select id="lifecycleFilter">
-                        <option value="">All</option>
-                    </select>
-                </div>
-                <div class="filter-group hidden" id="binaryFilterGroup">
-                    <label for="binaryFilter">Binary</label>
-                    <select id="binaryFilter">
-                        <option value="">All</option>
-                    </select>
-                </div>
-                <div class="filter-group hidden" id="imageFilterGroup">
-                    <label for="imageFilter">Image</label>
-                    <select id="imageFilter">
-                        <option value="">All</option>
-                    </select>
-                </div>
-                <div class="filter-actions">
-                    <button class="btn-clear" id="clearFilters">Clear Filters</button>
-                </div>
-                <div class="filter-group time-slider-group" id="timeSliderContainer">
-                    <div class="time-slider-header">
-                        <label class="time-slider-label">Time Range</label>
-                        <span class="time-slider-values" id="timeSliderValues">0ms - 0ms</span>
-                        <button class="btn-clear" id="resetTimeSlider">Reset</button>
-                    </div>
-                    <div class="time-slider-track" id="timeSliderTrack">
-                        <div class="time-slider-range" id="timeSliderRange"></div>
-                        <div class="time-slider-handle" id="timeSliderStart" data-handle="start"></div>
-                        <div class="time-slider-handle" id="timeSliderEnd" data-handle="end"></div>
-                    </div>
-                    <div class="time-slider-ticks">
-                        <span id="timeTickStart">0ms</span>
-                        <span id="timeTickEnd">0ms</span>
-                    </div>
-                </div>
-            </div>
-
-            <div class="results-header">
-                <span class="results-count" id="resultsCount">0 tests</span>
-                <div class="sort-options">
-                    <label for="sortBy">Sort by:</label>
-                    <select id="sortBy">
-                        <option value="startTime" selected>Start Time</option>
-                        <option value="name">Name</option>
-                        <option value="duration-desc">Duration (longest first)</option>
-                        <option value="duration-asc">Duration (shortest first)</option>
-                        <option value="status">Status</option>
-                    </select>
-                </div>
-            </div>
-
-            <div class="test-list" id="testList"></div>
-
-            <div class="pagination" id="pagination">
-                <button id="prevPage">Previous</button>
-                <span class="page-info" id="pageInfo">Page 1 of 1</span>
-                <button id="nextPage">Next</button>
-            </div>
-        </div>
-
-        <div class="empty-state hidden" id="emptyState">
-            <h3>No tests match your filters</h3>
-            <p>Try adjusting your search criteria</p>
-        </div>
-    </div>
-
-    <script id="test-data" type="application/json">{{ .Data }}</script>
-    <script>
-        // State
-        let rawData = null;
-        try {
-            const dataEl = document.getElementById('test-data');
-            // Check for unrendered Go template - but not just any double-braces which may appear in test output
-            const isUnrenderedTemplate = dataEl && dataEl.textContent.trim().startsWith('{' + '{ .Data }' + '}');
-            if (dataEl && dataEl.textContent.trim() && !isUnrenderedTemplate) {
-                rawData = JSON.parse(dataEl.textContent);
-            }
-        } catch(e) {
-            console.error('Failed to parse embedded test data:', e);
-        }
-        let allTests = [];
-        let filteredTests = [];
-        let currentPage = 1;
-        const pageSize = 50;
-        let activeStatusFilter = 'all';
-        let runStartTime = 0;
-        let runEndTime = 0;
-        let totalRunDuration = 0;
-        let timeFilterStart = 0;
-        let timeFilterEnd = 0;
-        let outputSearchTerm = '';
-        let hasBinaryField = false;
-        let hasImageField = false;
-
-        // DOM Elements
-        const dropZone = document.getElementById('dropZone');
-        const fileInput = document.getElementById('fileInput');
-        const fileInfo = document.getElementById('fileInfo');
-        const resultsContainer = document.getElementById('resultsContainer');
-        const testList = document.getElementById('testList');
-        const emptyState = document.getElementById('emptyState');
-
-        // Initialize
-        function init() {
-            // Fix title if it contains template literal (no inline data)
-            const pageTitle = document.getElementById('pageTitle');
-            if (pageTitle && pageTitle.textContent.includes('{' + '{')) {
-                pageTitle.textContent = 'Test Results';
-                document.title = 'Test Results';
-            }
-
-            setupDragAndDrop();
-            setupFilters();
-            setupPagination();
-            setupSummaryCards();
-            setupTimeSlider();
-
-            if (rawData) {
-                processData(rawData, null);
-            }
-        }
-
-        // Drag and Drop
-        function setupDragAndDrop() {
-            dropZone.addEventListener('dragover', (e) => {
-                e.preventDefault();
-                dropZone.classList.add('drag-over');
-            });
-
-            dropZone.addEventListener('dragleave', () => {
-                dropZone.classList.remove('drag-over');
-            });
-
-            dropZone.addEventListener('drop', (e) => {
-                e.preventDefault();
-                dropZone.classList.remove('drag-over');
-                const file = e.dataTransfer.files[0];
-                if (file) loadFile(file);
-            });
-
-            dropZone.addEventListener('click', (e) => {
-                // Avoid double-triggering when clicking the label/button
-                if (e.target.tagName !== 'LABEL' && !e.target.closest('label')) {
-                    fileInput.click();
-                }
-            });
-            fileInput.addEventListener('change', (e) => {
-                if (e.target.files[0]) loadFile(e.target.files[0]);
-            });
-        }
-
-        // Load File
-        function loadFile(file) {
-            if (!file.name.endsWith('.json')) {
-                alert('Please select a JSON file');
-                return;
-            }
-
-            const reader = new FileReader();
-            reader.onload = (e) => {
-                try {
-                    const data = JSON.parse(e.target.result);
-                    processData(data, file.name);
-                } catch (err) {
-                    alert('Error parsing JSON file: ' + err.message);
-                }
-            };
-            reader.readAsText(file);
-        }
-
-        // Process Data
-        function processData(data, filename) {
-            // Handle both array and object with tests property
-            allTests = Array.isArray(data) ? data : (data.tests || []);
-
-            // Detect flaky tests (tests with multiple runs where at least one passed and one didn't)
-            const testsByName = {};
-            allTests.forEach(test => {
-                if (!testsByName[test.name]) {
-                    testsByName[test.name] = [];
-                }
-                testsByName[test.name].push(test);
-            });
-
-            const flakyTestNames = new Set();
-            Object.entries(testsByName).forEach(([name, tests]) => {
-                if (tests.length > 1) {
-                    const hasPassed = tests.some(t => t.result === 'passed');
-                    const hasNonPassed = tests.some(t => t.result !== 'passed');
-                    if (hasPassed && hasNonPassed) {
-                        flakyTestNames.add(name);
-                    }
-                }
-            });
-
-            // Parse timestamps and extract metadata
-            allTests = allTests.map(test => {
-                const startMs = test.startTime ? new Date(test.startTime.replace(' UTC', 'Z').replace(' ', 'T')).getTime() : 0;
-                const endMs = test.endTime ? new Date(test.endTime.replace(' UTC', 'Z').replace(' ', 'T')).getTime() : 0;
-                return {
-                    ...test,
-                    durationMs: test.duration || 0,
-                    startMs: startMs,
-                    endMs: endMs,
-                    isFlaky: flakyTestNames.has(test.name),
-                    displayResult: flakyTestNames.has(test.name) ? 'flaky' : test.result
-                };
-            });
-
-            // Calculate overall run timespan
-            const validStartTimes = allTests.filter(t => t.startMs > 0).map(t => t.startMs);
-            const validEndTimes = allTests.filter(t => t.endMs > 0).map(t => t.endMs);
-            runStartTime = validStartTimes.length > 0 ? Math.min(...validStartTimes) : 0;
-            runEndTime = validEndTimes.length > 0 ? Math.max(...validEndTimes) : 0;
-            totalRunDuration = runEndTime - runStartTime;
-
-            // Initialize time filter to full range
-            timeFilterStart = runStartTime;
-            timeFilterEnd = runEndTime;
-
-            // Update time slider ticks and UI
-            document.getElementById('timeTickStart').textContent = formatTimestamp(runStartTime);
-            document.getElementById('timeTickEnd').textContent = formatTimestamp(runEndTime);
-            if (window.updateTimeSliderUI) window.updateTimeSliderUI();
-
-            // Update file info and title
-            fileInfo.textContent = filename ? `${filename} - ${allTests.length} tests` : `${allTests.length} tests`;
-
-            // Update title if it contains template literal (file was loaded via picker)
-            const pageTitle = document.getElementById('pageTitle');
-            if (pageTitle && pageTitle.textContent.includes('{' + '{')) {
-                pageTitle.textContent = 'Test Results';
-                document.title = 'Test Results';
-            }
-
-            // Populate filters
-            populateFilters();
-
-            // Update counts
-            updateCounts();
-
-            // Show results
-            dropZone.classList.add('hidden');
-            resultsContainer.classList.remove('hidden');
-
-            // Apply filters and render
-            applyFilters();
-        }
-
-        // Populate filter dropdowns
-        function populateFilters() {
-            const lifecycles = [...new Set(allTests.map(t => t.lifecycle).filter(Boolean))].sort();
-
-            const lifecycleFilter = document.getElementById('lifecycleFilter');
-            lifecycleFilter.innerHTML = '<option value="">All</option>' +
-                lifecycles.map(l => `<option value="${l}">${l}</option>`).join('');
-
-            // Check for binary/image fields and populate if present
-            const binaries = [...new Set(allTests.map(t => t.source?.source_binary).filter(Boolean))].sort();
-            const images = [...new Set(allTests.map(t => t.source?.source_image).filter(Boolean))].sort();
-
-            hasBinaryField = binaries.length > 0;
-            hasImageField = images.length > 0;
-
-            const binaryFilterGroup = document.getElementById('binaryFilterGroup');
-            const imageFilterGroup = document.getElementById('imageFilterGroup');
-
-            if (hasBinaryField) {
-                binaryFilterGroup.classList.remove('hidden');
-                const binaryFilter = document.getElementById('binaryFilter');
-                binaryFilter.innerHTML = '<option value="">All</option>' +
-                    binaries.map(b => `<option value="${escapeHtml(b)}">${escapeHtml(b)}</option>`).join('');
-            } else {
-                binaryFilterGroup.classList.add('hidden');
-            }
-
-            if (hasImageField) {
-                imageFilterGroup.classList.remove('hidden');
-                const imageFilter = document.getElementById('imageFilter');
-                imageFilter.innerHTML = '<option value="">All</option>' +
-                    images.map(i => `<option value="${escapeHtml(i)}">${escapeHtml(i)}</option>`).join('');
-            } else {
-                imageFilterGroup.classList.add('hidden');
-            }
-        }
-
-        // Update summary counts
-        function updateCounts() {
-            const counts = {
-                total: allTests.length,
-                passed: allTests.filter(t => t.displayResult === 'passed').length,
-                failed: allTests.filter(t => t.displayResult === 'failed').length,
-                skipped: allTests.filter(t => t.displayResult === 'skipped').length,
-                flaky: allTests.filter(t => t.displayResult === 'flaky').length
-            };
-
-            document.getElementById('totalCount').textContent = counts.total;
-            document.getElementById('passedCount').textContent = counts.passed;
-            document.getElementById('failedCount').textContent = counts.failed;
-            document.getElementById('skippedCount').textContent = counts.skipped;
-            document.getElementById('flakyCount').textContent = counts.flaky;
-        }
-
-        // Setup summary card clicks
-        function setupSummaryCards() {
-            document.querySelectorAll('.summary-card').forEach(card => {
-                card.addEventListener('click', () => {
-                    const filter = card.dataset.filter;
-
-                    // Toggle active state
-                    document.querySelectorAll('.summary-card').forEach(c => c.classList.remove('active'));
-
-                    if (activeStatusFilter === filter) {
-                        activeStatusFilter = 'all';
-                    } else {
-                        activeStatusFilter = filter;
-                        card.classList.add('active');
-                    }
-
-                    applyFilters();
-                });
-            });
-        }
-
-        // Setup time slider
-        function setupTimeSlider() {
-            const track = document.getElementById('timeSliderTrack');
-            const startHandle = document.getElementById('timeSliderStart');
-            const endHandle = document.getElementById('timeSliderEnd');
-            const range = document.getElementById('timeSliderRange');
-            let dragging = null;
-
-            function updateSliderUI() {
-                if (totalRunDuration <= 0) return;
-                const startPercent = ((timeFilterStart - runStartTime) / totalRunDuration) * 100;
-                const endPercent = ((timeFilterEnd - runStartTime) / totalRunDuration) * 100;
-                startHandle.style.left = startPercent + '%';
-                endHandle.style.left = endPercent + '%';
-                range.style.left = startPercent + '%';
-                range.style.width = (endPercent - startPercent) + '%';
-                document.getElementById('timeSliderValues').textContent =
-                    formatTimestamp(timeFilterStart) + ' - ' + formatTimestamp(timeFilterEnd);
-            }
-
-            function handleDrag(e) {
-                if (!dragging || totalRunDuration <= 0) return;
-                const rect = track.getBoundingClientRect();
-                let percent = (e.clientX - rect.left) / rect.width;
-                percent = Math.max(0, Math.min(1, percent));
-                const time = runStartTime + (percent * totalRunDuration);
-
-                if (dragging === 'start') {
-                    timeFilterStart = Math.min(time, timeFilterEnd - 1);
-                } else {
-                    timeFilterEnd = Math.max(time, timeFilterStart + 1);
-                }
-                updateSliderUI();
-            }
-
-            function stopDrag() {
-                if (dragging) {
-                    dragging = null;
-                    applyFilters();
-                }
-                document.removeEventListener('mousemove', handleDrag);
-                document.removeEventListener('mouseup', stopDrag);
-            }
-
-            startHandle.addEventListener('mousedown', (e) => {
-                e.preventDefault();
-                dragging = 'start';
-                document.addEventListener('mousemove', handleDrag);
-                document.addEventListener('mouseup', stopDrag);
-            });
-
-            endHandle.addEventListener('mousedown', (e) => {
-                e.preventDefault();
-                dragging = 'end';
-                document.addEventListener('mousemove', handleDrag);
-                document.addEventListener('mouseup', stopDrag);
-            });
-
-            // Click on track to move nearest handle
-            track.addEventListener('click', (e) => {
-                if (e.target === startHandle || e.target === endHandle) return;
-                const rect = track.getBoundingClientRect();
-                const percent = (e.clientX - rect.left) / rect.width;
-                const time = runStartTime + (percent * totalRunDuration);
-                const distToStart = Math.abs(time - timeFilterStart);
-                const distToEnd = Math.abs(time - timeFilterEnd);
-                if (distToStart < distToEnd) {
-                    timeFilterStart = Math.min(time, timeFilterEnd - 1);
-                } else {
-                    timeFilterEnd = Math.max(time, timeFilterStart + 1);
-                }
-                updateSliderUI();
-                applyFilters();
-            });
-
-            // Reset button
-            document.getElementById('resetTimeSlider').addEventListener('click', () => {
-                timeFilterStart = runStartTime;
-                timeFilterEnd = runEndTime;
-                updateSliderUI();
-                applyFilters();
-            });
-
-            // Expose update function globally
-            window.updateTimeSliderUI = updateSliderUI;
-        }
-
-        // Setup filters
-        function setupFilters() {
-            const nameFilter = document.getElementById('nameFilter');
-            const outputFilter = document.getElementById('outputFilter');
-            const lifecycleFilter = document.getElementById('lifecycleFilter');
-            const binaryFilter = document.getElementById('binaryFilter');
-            const imageFilter = document.getElementById('imageFilter');
-            const sortBy = document.getElementById('sortBy');
-            const clearFilters = document.getElementById('clearFilters');
-
-            let debounceTimer;
-            nameFilter.addEventListener('input', () => {
-                clearTimeout(debounceTimer);
-                debounceTimer = setTimeout(() => applyFilters(), 300);
-            });
-
-            outputFilter.addEventListener('input', () => {
-                clearTimeout(debounceTimer);
-                debounceTimer = setTimeout(() => {
-                    outputSearchTerm = outputFilter.value;
-                    applyFilters();
-                }, 300);
-            });
-
-            [lifecycleFilter, binaryFilter, imageFilter, sortBy].forEach(el => {
-                el.addEventListener('change', () => applyFilters());
-            });
-
-            clearFilters.addEventListener('click', () => {
-                nameFilter.value = '';
-                outputFilter.value = '';
-                outputSearchTerm = '';
-                lifecycleFilter.value = '';
-                binaryFilter.value = '';
-                imageFilter.value = '';
-                activeStatusFilter = 'all';
-                document.querySelectorAll('.summary-card').forEach(c => c.classList.remove('active'));
-                applyFilters();
-            });
-        }
-
-        // Apply filters
-        function applyFilters() {
-            const nameFilter = document.getElementById('nameFilter').value.toLowerCase();
-            const lifecycleFilter = document.getElementById('lifecycleFilter').value;
-            const binaryFilter = document.getElementById('binaryFilter').value;
-            const imageFilter = document.getElementById('imageFilter').value;
-            const sortBy = document.getElementById('sortBy').value;
-            const outputSearch = outputSearchTerm.toLowerCase();
-
-            filteredTests = allTests.filter(test => {
-                if (activeStatusFilter !== 'all' && test.displayResult !== activeStatusFilter) return false;
-                if (nameFilter && !test.name.toLowerCase().includes(nameFilter)) return false;
-                if (lifecycleFilter && test.lifecycle !== lifecycleFilter) return false;
-                if (binaryFilter && (test.source?.source_binary || '') !== binaryFilter) return false;
-                if (imageFilter && (test.source?.source_image || '') !== imageFilter) return false;
-                // Output/error search filter (supports regex)
-                if (outputSearch) {
-                    const output = test.output || '';
-                    const error = test.error || '';
-                    try {
-                        const regex = new RegExp(outputSearchTerm, 'i');
-                        if (!regex.test(output) && !regex.test(error)) return false;
-                    } catch (e) {
-                        // Invalid regex, fall back to literal search
-                        if (!output.toLowerCase().includes(outputSearch) && !error.toLowerCase().includes(outputSearch)) return false;
-                    }
-                }
-                // Time range filter: include test if it overlaps with the selected range
-                if (test.startMs > 0 && totalRunDuration > 0) {
-                    const testEnd = test.endMs || (test.startMs + test.durationMs);
-                    if (testEnd < timeFilterStart || test.startMs > timeFilterEnd) return false;
-                }
-                return true;
-            });
-
-            // Sort
-            filteredTests.sort((a, b) => {
-                switch (sortBy) {
-                    case 'duration-desc':
-                        return b.durationMs - a.durationMs;
-                    case 'duration-asc':
-                        return a.durationMs - b.durationMs;
-                    case 'status':
-                        const order = { failed: 0, flaky: 1, passed: 2, skipped: 3 };
-                        return (order[a.displayResult] || 4) - (order[b.displayResult] || 4);
-                    case 'startTime':
-                        return (a.startMs || 0) - (b.startMs || 0);
-                    default:
-                        return a.name.localeCompare(b.name);
-                }
-            });
-
-            currentPage = 1;
-            renderTests();
-            updatePagination();
-        }
-
-        // Render tests
-        function renderTests() {
-            const start = (currentPage - 1) * pageSize;
-            const end = start + pageSize;
-            const pageTests = filteredTests.slice(start, end);
-
-            document.getElementById('resultsCount').textContent =
-                `${filteredTests.length} test${filteredTests.length !== 1 ? 's' : ''}`;
-
-            if (pageTests.length === 0) {
-                testList.innerHTML = '';
-                emptyState.classList.remove('hidden');
-                document.getElementById('pagination').classList.add('hidden');
-                return;
-            }
-
-            emptyState.classList.add('hidden');
-            document.getElementById('pagination').classList.remove('hidden');
-
-            testList.innerHTML = pageTests.map((test, idx) => `
-                <div class="test-item" data-index="${start + idx}">
-                    <div class="test-header" onclick="toggleTest(this.parentElement)">
-                        <div class="test-status ${test.displayResult}"></div>
-                        <div class="test-info">
-                            <div class="test-name">${escapeHtml(test.name)}</div>
-                            <div class="test-meta">
-                                <span class="tag ${test.displayResult}">${test.displayResult}</span>
-                                ${test.isFlaky ? `<span class="test-meta-item">(${test.result})</span>` : ''}
-                                ${test.lifecycle ? `<span class="test-meta-item">${escapeHtml(test.lifecycle)}</span>` : ''}
-                                <span class="test-meta-item">${formatDuration(test.durationMs)}</span>
-                                ${test.startTime ? `<span class="test-meta-item">${escapeHtml(test.startTime)}</span>` : ''}
-                            </div>
-                            ${totalRunDuration > 0 && test.startMs > 0 ? `
-                            <div class="duration-bar">
-                                <div class="duration-bar-fill" style="margin-left: ${((test.startMs - runStartTime) / totalRunDuration) * 100}%; width: ${Math.max((test.durationMs / totalRunDuration) * 100, 0.5)}%"></div>
-                            </div>
-                            ` : ''}
-                        </div>
-                        <button class="copy-btn" onclick="event.stopPropagation(); copyTestJson(${start + idx})" title="Copy JSON to clipboard">
-                            <svg width="16" height="16" viewBox="0 0 16 16" fill="currentColor">
-                                <path d="M0 6.75C0 5.784.784 5 1.75 5h1.5a.75.75 0 010 1.5h-1.5a.25.25 0 00-.25.25v7.5c0 .138.112.25.25.25h7.5a.25.25 0 00.25-.25v-1.5a.75.75 0 011.5 0v1.5A1.75 1.75 0 019.25 16h-7.5A1.75 1.75 0 010 14.25v-7.5z"/>
-                                <path d="M5 1.75C5 .784 5.784 0 6.75 0h7.5C15.216 0 16 .784 16 1.75v7.5A1.75 1.75 0 0114.25 11h-7.5A1.75 1.75 0 015 9.25v-7.5zm1.75-.25a.25.25 0 00-.25.25v7.5c0 .138.112.25.25.25h7.5a.25.25 0 00.25-.25v-7.5a.25.25 0 00-.25-.25h-7.5z"/>
-                            </svg>
-                        </button>
-                        <div class="test-toggle">
-                            <svg width="16" height="16" viewBox="0 0 16 16" fill="currentColor">
-                                <path d="M6 12l4-4-4-4"/>
-                            </svg>
-                        </div>
-                    </div>
-                    <div class="test-output">
-                        <div class="test-details-panel">
-                            <div class="details-grid">
-                                <div class="detail-item">
-                                    <span class="detail-label">Status</span>
-                                    <span class="detail-value"><span class="tag ${test.displayResult}">${test.displayResult}</span>${test.isFlaky ? ` <span class="tag-subtle">(${test.result})</span>` : ''}</span>
-                                </div>
-                                <div class="detail-item">
-                                    <span class="detail-label">Duration</span>
-                                    <span class="detail-value">${formatDuration(test.durationMs)}</span>
-                                </div>
-                                <div class="detail-item">
-                                    <span class="detail-label">Start Time</span>
-                                    <span class="detail-value">${escapeHtml(test.startTime || 'N/A')}</span>
-                                </div>
-                                <div class="detail-item">
-                                    <span class="detail-label">End Time</span>
-                                    <span class="detail-value">${escapeHtml(test.endTime || 'N/A')}</span>
-                                </div>
-                                ${test.lifecycle ? `
-                                <div class="detail-item">
-                                    <span class="detail-label">Lifecycle</span>
-                                    <span class="detail-value">${escapeHtml(test.lifecycle)}</span>
-                                </div>
-                                ` : ''}
-                                ${test.source ? `
-                                ${test.source.source_binary ? `
-                                <div class="detail-item">
-                                    <span class="detail-label">Binary</span>
-                                    <span class="detail-value mono">${escapeHtml(test.source.source_binary)}</span>
-                                </div>
-                                ` : ''}
-                                ${test.source.source_image ? `
-                                <div class="detail-item">
-                                    <span class="detail-label">Image</span>
-                                    <span class="detail-value mono">${escapeHtml(test.source.source_image)}</span>
-                                </div>
-                                ` : ''}
-                                ${test.source.commit ? `
-                                <div class="detail-item">
-                                    <span class="detail-label">Commit</span>
-                                    <span class="detail-value mono">${escapeHtml(test.source.commit)}</span>
-                                </div>
-                                ` : ''}
-                                ${test.source.build_date ? `
-                                <div class="detail-item">
-                                    <span class="detail-label">Build Date</span>
-                                    <span class="detail-value">${escapeHtml(test.source.build_date)}</span>
-                                </div>
-                                ` : ''}
-                                ${test.source.git_tree_state ? `
-                                <div class="detail-item">
-                                    <span class="detail-label">Git State</span>
-                                    <span class="detail-value">${escapeHtml(test.source.git_tree_state)}</span>
-                                </div>
-                                ` : ''}
-                                ` : ''}
-                            </div>
-                        </div>
-                        ${test.error ? `
-                        <div class="output-section">
-                            <div class="output-label">Error</div>
-                            <div class="output-content error-content">${formatOutput(test.error)}</div>
-                        </div>
-                        ` : ''}
-                        <div class="output-section">
-                            <div class="output-label">Output</div>
-                            <div class="output-content">${formatOutput(test.output || 'No output available')}</div>
-                        </div>
-                    </div>
-                </div>
-            `).join('');
-        }
-
-        // Toggle test expansion
-        window.toggleTest = function(element) {
-            element.classList.toggle('expanded');
-        }
-
-        // Copy test JSON to clipboard
-        window.copyTestJson = function(index) {
-            const test = filteredTests[index];
-            if (!test) return;
-
-            // Get original test data (without computed properties)
-            const originalTest = {
-                name: test.name,
-                lifecycle: test.lifecycle,
-                duration: test.duration,
-                startTime: test.startTime,
-                endTime: test.endTime,
-                result: test.result,
-                error: test.error,
-                output: test.output,
-                source: test.source
-            };
-
-            const json = JSON.stringify(originalTest, null, 2);
-
-            navigator.clipboard.writeText(json).then(() => {
-                // Show feedback
-                const btn = document.querySelector(`[data-index="${index}"] .copy-btn`);
-                if (btn) {
-                    btn.classList.add('copied');
-                    setTimeout(() => btn.classList.remove('copied'), 1500);
-                }
-            }).catch(err => {
-                console.error('Failed to copy:', err);
-                alert('Failed to copy to clipboard');
-            });
-        }
-
-        // Format duration
-        function formatDuration(ms) {
-            if (!ms) return '0ms';
-            if (ms < 1000) return `${ms}ms`;
-            if (ms < 60000) return `${(ms / 1000).toFixed(2)}s`;
-            const mins = Math.floor(ms / 60000);
-            const secs = ((ms % 60000) / 1000).toFixed(1);
-            return `${mins}m ${secs}s`;
-        }
-
-        // Format timestamp as HH:MM:SS
-        function formatTimestamp(ms) {
-            if (!ms) return '--:--:--';
-            const date = new Date(ms);
-            return date.toTimeString().split(' ')[0];
-        }
-
-        // Format output with syntax highlighting
-        function formatOutput(output) {
-            return escapeHtml(output)
-                .split('\n')
-                .map(line => {
-                    let className = '';
-                    if (line.includes('STEP:')) className = 'log-step';
-                    else if (line.match(/error|fail|panic/i)) className = 'log-error';
-                    else if (line.match(/warn/i)) className = 'log-warning';
-                    else if (line.match(/success|pass/i)) className = 'log-success';
-                    else if (line.match(/skip/i)) className = 'log-skip';
-                    else if (line.match(/^I\d{4}/)) className = 'log-info';
-
-                    // Highlight search matches (supports regex)
-                    let highlightedLine = line;
-                    if (outputSearchTerm) {
-                        try {
-                            const regex = new RegExp(`(${outputSearchTerm})`, 'gi');
-                            highlightedLine = line.replace(regex, '<span class="search-highlight">$1</span>');
-                        } catch (e) {
-                            // Invalid regex, fall back to literal search
-                            const escapedTerm = escapeHtml(outputSearchTerm).replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
-                            const literalRegex = new RegExp(`(${escapedTerm})`, 'gi');
-                            highlightedLine = line.replace(literalRegex, '<span class="search-highlight">$1</span>');
-                        }
-                    }
-
-                    return `<div class="log-line ${className}">${highlightedLine}</div>`;
-                })
-                .join('');
-        }
-
-        // Escape HTML
-        function escapeHtml(str) {
-            if (!str) return '';
-            const div = document.createElement('div');
-            div.textContent = str;
-            return div.innerHTML;
-        }
-
-        // Setup pagination
-        function setupPagination() {
-            document.getElementById('prevPage').addEventListener('click', () => {
-                if (currentPage > 1) {
-                    currentPage--;
-                    renderTests();
-                    updatePagination();
-                    window.scrollTo(0, 0);
-                }
-            });
-
-            document.getElementById('nextPage').addEventListener('click', () => {
-                const totalPages = Math.ceil(filteredTests.length / pageSize);
-                if (currentPage < totalPages) {
-                    currentPage++;
-                    renderTests();
-                    updatePagination();
-                    window.scrollTo(0, 0);
-                }
-            });
-        }
-
-        // Update pagination
-        function updatePagination() {
-            const totalPages = Math.max(1, Math.ceil(filteredTests.length / pageSize));
-            document.getElementById('pageInfo').textContent = `Page ${currentPage} of ${totalPages}`;
-            document.getElementById('prevPage').disabled = currentPage === 1;
-            document.getElementById('nextPage').disabled = currentPage >= totalPages;
-        }
-
-        // Initialize on load
-        init();
-    </script>
-</body>
-</html>
diff --git a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/ginkgo/logging.go b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/ginkgo/logging.go
index 1cf299a7c..0b84ca41c 100644
--- a/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/ginkgo/logging.go
+++ b/openshift/tests-extension/vendor/github.com/openshift-eng/openshift-tests-extension/pkg/ginkgo/logging.go
@@ -17,9 +17,5 @@ func GinkgoLogrFunc(writer ginkgo.GinkgoWriterInterface) logr.Logger {
 		} else {
 			writer.Printf("%s %s\n", prefix, args)
 		}
-	}, funcr.Options{
-		// LogTimestamp adds timestamps to log lines using the format "2006-01-02 15:04:05.000000"
-		// See: https://github.com/go-logr/logr/blob/bb8ea8159175ccb4eddf4ac8704f84e40ac6d9b0/funcr/funcr.go#L211
-		LogTimestamp: true,
-	})
+	}, funcr.Options{})
 }
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_ingress.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_ingress.go
index 26e0ebf21..f70fe8f44 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_ingress.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_ingress.go
@@ -43,7 +43,6 @@ type IngressSpec struct {
 	// default ingresscontroller domain will follow this pattern: "*.<domain>".
 	//
 	// Once set, changing domain is not currently supported.
-	// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="domain is immutable once set"
 	Domain string `json:"domain"`
 
 	// appsDomain is an optional domain to use instead of the one specified
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_insights.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_insights.go
index 710d4303d..b0959881f 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_insights.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_insights.go
@@ -13,7 +13,6 @@ import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 // +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/2448
 // +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=config-operator,operatorOrdering=01
 // +openshift:enable:FeatureGate=InsightsConfig
-// +openshift:capability=Insights
 //
 // Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
 // +openshift:compatibility-gen:level=1
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_network.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_network.go
index fb8ed2fff..c0d1602b3 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_network.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_network.go
@@ -41,7 +41,7 @@ type Network struct {
 // As a general rule, this SHOULD NOT be read directly. Instead, you should
 // consume the NetworkStatus, as it indicates the currently deployed configuration.
 // Currently, most spec fields are immutable after installation. Please view the individual ones for further details on each.
-// +kubebuilder:validation:XValidation:rule="!has(self.networkDiagnostics) || !has(self.networkDiagnostics.mode) || self.networkDiagnostics.mode!='Disabled' || !has(self.networkDiagnostics.sourcePlacement) && !has(self.networkDiagnostics.targetPlacement)",message="cannot set networkDiagnostics.sourcePlacement and networkDiagnostics.targetPlacement when networkDiagnostics.mode is Disabled"
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=NetworkDiagnosticsConfig,rule="!has(self.networkDiagnostics) || !has(self.networkDiagnostics.mode) || self.networkDiagnostics.mode!='Disabled' || !has(self.networkDiagnostics.sourcePlacement) && !has(self.networkDiagnostics.targetPlacement)",message="cannot set networkDiagnostics.sourcePlacement and networkDiagnostics.targetPlacement when networkDiagnostics.mode is Disabled"
 type NetworkSpec struct {
 	// IP address pool to use for pod IPs.
 	// This field is immutable after installation.
@@ -85,6 +85,7 @@ type NetworkSpec struct {
 	// the network diagnostics feature will be disabled.
 	//
 	// +optional
+	// +openshift:enable:FeatureGate=NetworkDiagnosticsConfig
 	NetworkDiagnostics NetworkDiagnostics `json:"networkDiagnostics"`
 }
 
@@ -118,6 +119,7 @@ type NetworkStatus struct {
 	// +optional
 	// +listType=map
 	// +listMapKey=type
+	// +openshift:enable:FeatureGate=NetworkDiagnosticsConfig
 	Conditions []metav1.Condition `json:"conditions,omitempty"`
 }
 
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_tlssecurityprofile.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_tlssecurityprofile.go
index 48657b089..1e5189796 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_tlssecurityprofile.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/types_tlssecurityprofile.go
@@ -7,10 +7,9 @@ type TLSSecurityProfile struct {
 	// type is one of Old, Intermediate, Modern or Custom. Custom provides the
 	// ability to specify individual TLS security profile parameters.
 	//
-	// The profiles are based on version 5.7 of the Mozilla Server Side TLS
-	// configuration guidelines. The cipher lists consist of the configuration's
-	// "ciphersuites" followed by the Go-specific "ciphers" from the guidelines.
-	// See: https://ssl-config.mozilla.org/guidelines/5.7.json
+	// The profiles are currently based on version 5.0 of the Mozilla Server Side TLS
+	// configuration guidelines (released 2019-06-28) with TLS 1.3 ciphers added for
+	// forward compatibility. See: https://ssl-config.mozilla.org/guidelines/5.0.json
 	//
 	// The profiles are intent based, so they may change over time as new ciphers are
 	// developed and existing ciphers are found to be insecure. Depending on
@@ -23,6 +22,9 @@ type TLSSecurityProfile struct {
 	// old is a TLS profile for use when services need to be accessed by very old
 	// clients or libraries and should be used only as a last resort.
 	//
+	// The cipher list includes TLS 1.3 ciphers for forward compatibility, followed
+	// by the "old" profile ciphers.
+	//
 	// This profile is equivalent to a Custom profile specified as:
 	//   minTLSVersion: VersionTLS10
 	//   ciphers:
@@ -35,15 +37,23 @@ type TLSSecurityProfile struct {
 	//     - ECDHE-RSA-AES256-GCM-SHA384
 	//     - ECDHE-ECDSA-CHACHA20-POLY1305
 	//     - ECDHE-RSA-CHACHA20-POLY1305
+	//     - DHE-RSA-AES128-GCM-SHA256
+	//     - DHE-RSA-AES256-GCM-SHA384
+	//     - DHE-RSA-CHACHA20-POLY1305
 	//     - ECDHE-ECDSA-AES128-SHA256
 	//     - ECDHE-RSA-AES128-SHA256
 	//     - ECDHE-ECDSA-AES128-SHA
 	//     - ECDHE-RSA-AES128-SHA
+	//     - ECDHE-ECDSA-AES256-SHA384
+	//     - ECDHE-RSA-AES256-SHA384
 	//     - ECDHE-ECDSA-AES256-SHA
 	//     - ECDHE-RSA-AES256-SHA
+	//     - DHE-RSA-AES128-SHA256
+	//     - DHE-RSA-AES256-SHA256
 	//     - AES128-GCM-SHA256
 	//     - AES256-GCM-SHA384
 	//     - AES128-SHA256
+	//     - AES256-SHA256
 	//     - AES128-SHA
 	//     - AES256-SHA
 	//     - DES-CBC3-SHA
@@ -56,6 +66,9 @@ type TLSSecurityProfile struct {
 	// legacy clients and want to remain highly secure while being compatible with
 	// most clients currently in use.
 	//
+	// The cipher list includes TLS 1.3 ciphers for forward compatibility, followed
+	// by the "intermediate" profile ciphers.
+	//
 	// This profile is equivalent to a Custom profile specified as:
 	//   minTLSVersion: VersionTLS12
 	//   ciphers:
@@ -68,6 +81,8 @@ type TLSSecurityProfile struct {
 	//     - ECDHE-RSA-AES256-GCM-SHA384
 	//     - ECDHE-ECDSA-CHACHA20-POLY1305
 	//     - ECDHE-RSA-CHACHA20-POLY1305
+	//     - DHE-RSA-AES128-GCM-SHA256
+	//     - DHE-RSA-AES256-GCM-SHA384
 	//
 	// +optional
 	// +nullable
@@ -145,14 +160,12 @@ const (
 // TLSProfileSpec is the desired behavior of a TLSSecurityProfile.
 type TLSProfileSpec struct {
 	// ciphers is used to specify the cipher algorithms that are negotiated
-	// during the TLS handshake. Operators may remove entries that their operands
-	// do not support. For example, to use only ECDHE-RSA-AES128-GCM-SHA256 (yaml):
+	// during the TLS handshake.  Operators may remove entries their operands
+	// do not support.  For example, to use DES-CBC3-SHA  (yaml):
 	//
 	//   ciphers:
-	//     - ECDHE-RSA-AES128-GCM-SHA256
+	//     - DES-CBC3-SHA
 	//
-	// TLS 1.3 cipher suites (e.g. TLS_AES_128_GCM_SHA256) are not configurable
-	// and are always enabled when TLS 1.3 is negotiated.
 	// +listType=atomic
 	Ciphers []string `json:"ciphers"`
 	// minTLSVersion is used to specify the minimal version of the TLS protocol
@@ -187,11 +200,9 @@ const (
 
 // TLSProfiles contains a map of TLSProfileType names to TLSProfileSpec.
 //
-// These profiles are based on version 5.7 of the Mozilla Server Side TLS
-// configuration guidelines. See: https://ssl-config.mozilla.org/guidelines/5.7.json
-//
-// Each Ciphers slice is the configuration's "ciphersuites" followed by the
-// Go-specific "ciphers" from the guidelines JSON.
+// These profiles are based on version 5.0 of the Mozilla Server Side TLS
+// configuration guidelines (2019-06-28) with TLS 1.3 cipher suites prepended for
+// forward compatibility. See: https://ssl-config.mozilla.org/guidelines/5.0.json
 //
 // NOTE: The caller needs to make sure to check that these constants are valid
 // for their binary. Not all entries map to values for all binaries. In the case
@@ -209,15 +220,23 @@ var TLSProfiles = map[TLSProfileType]*TLSProfileSpec{
 			"ECDHE-RSA-AES256-GCM-SHA384",
 			"ECDHE-ECDSA-CHACHA20-POLY1305",
 			"ECDHE-RSA-CHACHA20-POLY1305",
+			"DHE-RSA-AES128-GCM-SHA256",
+			"DHE-RSA-AES256-GCM-SHA384",
+			"DHE-RSA-CHACHA20-POLY1305",
 			"ECDHE-ECDSA-AES128-SHA256",
 			"ECDHE-RSA-AES128-SHA256",
 			"ECDHE-ECDSA-AES128-SHA",
 			"ECDHE-RSA-AES128-SHA",
+			"ECDHE-ECDSA-AES256-SHA384",
+			"ECDHE-RSA-AES256-SHA384",
 			"ECDHE-ECDSA-AES256-SHA",
 			"ECDHE-RSA-AES256-SHA",
+			"DHE-RSA-AES128-SHA256",
+			"DHE-RSA-AES256-SHA256",
 			"AES128-GCM-SHA256",
 			"AES256-GCM-SHA384",
 			"AES128-SHA256",
+			"AES256-SHA256",
 			"AES128-SHA",
 			"AES256-SHA",
 			"DES-CBC3-SHA",
@@ -235,6 +254,8 @@ var TLSProfiles = map[TLSProfileType]*TLSProfileSpec{
 			"ECDHE-RSA-AES256-GCM-SHA384",
 			"ECDHE-ECDSA-CHACHA20-POLY1305",
 			"ECDHE-RSA-CHACHA20-POLY1305",
+			"DHE-RSA-AES128-GCM-SHA256",
+			"DHE-RSA-AES256-GCM-SHA384",
 		},
 		MinTLSVersion: VersionTLS12,
 	},
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
index eb7c485e0..576fd510c 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -417,7 +417,7 @@ insightsdatagathers.config.openshift.io:
   Annotations: {}
   ApprovedPRNumber: https://github.com/openshift/api/pull/2448
   CRDName: insightsdatagathers.config.openshift.io
-  Capability: Insights
+  Capability: ""
   Category: ""
   FeatureGates:
   - InsightsConfig
@@ -443,7 +443,8 @@ networks.config.openshift.io:
   CRDName: networks.config.openshift.io
   Capability: ""
   Category: ""
-  FeatureGates: []
+  FeatureGates:
+  - NetworkDiagnosticsConfig
   FilenameOperatorName: config-operator
   FilenameOperatorOrdering: "01"
   FilenameRunLevel: "0000_10"
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
index 69fb37c52..7f0018950 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
@@ -3004,7 +3004,7 @@ func (OldTLSProfile) SwaggerDoc() map[string]string {
 
 var map_TLSProfileSpec = map[string]string{
 	"":              "TLSProfileSpec is the desired behavior of a TLSSecurityProfile.",
-	"ciphers":       "ciphers is used to specify the cipher algorithms that are negotiated during the TLS handshake. Operators may remove entries that their operands do not support. For example, to use only ECDHE-RSA-AES128-GCM-SHA256 (yaml):\n\n  ciphers:\n    - ECDHE-RSA-AES128-GCM-SHA256\n\nTLS 1.3 cipher suites (e.g. TLS_AES_128_GCM_SHA256) are not configurable and are always enabled when TLS 1.3 is negotiated.",
+	"ciphers":       "ciphers is used to specify the cipher algorithms that are negotiated during the TLS handshake.  Operators may remove entries their operands do not support.  For example, to use DES-CBC3-SHA  (yaml):\n\n  ciphers:\n    - DES-CBC3-SHA",
 	"minTLSVersion": "minTLSVersion is used to specify the minimal version of the TLS protocol that is negotiated during the TLS handshake. For example, to use TLS versions 1.1, 1.2 and 1.3 (yaml):\n\n  minTLSVersion: VersionTLS11",
 }
 
@@ -3014,9 +3014,9 @@ func (TLSProfileSpec) SwaggerDoc() map[string]string {
 
 var map_TLSSecurityProfile = map[string]string{
 	"":             "TLSSecurityProfile defines the schema for a TLS security profile. This object is used by operators to apply TLS security settings to operands.",
-	"type":         "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters.\n\nThe profiles are based on version 5.7 of the Mozilla Server Side TLS configuration guidelines. The cipher lists consist of the configuration's \"ciphersuites\" followed by the Go-specific \"ciphers\" from the guidelines. See: https://ssl-config.mozilla.org/guidelines/5.7.json\n\nThe profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced.",
-	"old":          "old is a TLS profile for use when services need to be accessed by very old clients or libraries and should be used only as a last resort.\n\nThis profile is equivalent to a Custom profile specified as:\n  minTLSVersion: VersionTLS10\n  ciphers:\n    - TLS_AES_128_GCM_SHA256\n    - TLS_AES_256_GCM_SHA384\n    - TLS_CHACHA20_POLY1305_SHA256\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n    - ECDHE-RSA-AES128-GCM-SHA256\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n    - ECDHE-RSA-AES256-GCM-SHA384\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n    - ECDHE-RSA-CHACHA20-POLY1305\n    - ECDHE-ECDSA-AES128-SHA256\n    - ECDHE-RSA-AES128-SHA256\n    - ECDHE-ECDSA-AES128-SHA\n    - ECDHE-RSA-AES128-SHA\n    - ECDHE-ECDSA-AES256-SHA\n    - ECDHE-RSA-AES256-SHA\n    - AES128-GCM-SHA256\n    - AES256-GCM-SHA384\n    - AES128-SHA256\n    - AES128-SHA\n    - AES256-SHA\n    - DES-CBC3-SHA",
-	"intermediate": "intermediate is a TLS profile for use when you do not need compatibility with legacy clients and want to remain highly secure while being compatible with most clients currently in use.\n\nThis profile is equivalent to a Custom profile specified as:\n  minTLSVersion: VersionTLS12\n  ciphers:\n    - TLS_AES_128_GCM_SHA256\n    - TLS_AES_256_GCM_SHA384\n    - TLS_CHACHA20_POLY1305_SHA256\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n    - ECDHE-RSA-AES128-GCM-SHA256\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n    - ECDHE-RSA-AES256-GCM-SHA384\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n    - ECDHE-RSA-CHACHA20-POLY1305",
+	"type":         "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters.\n\nThe profiles are currently based on version 5.0 of the Mozilla Server Side TLS configuration guidelines (released 2019-06-28) with TLS 1.3 ciphers added for forward compatibility. See: https://ssl-config.mozilla.org/guidelines/5.0.json\n\nThe profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced.",
+	"old":          "old is a TLS profile for use when services need to be accessed by very old clients or libraries and should be used only as a last resort.\n\nThe cipher list includes TLS 1.3 ciphers for forward compatibility, followed by the \"old\" profile ciphers.\n\nThis profile is equivalent to a Custom profile specified as:\n  minTLSVersion: VersionTLS10\n  ciphers:\n    - TLS_AES_128_GCM_SHA256\n    - TLS_AES_256_GCM_SHA384\n    - TLS_CHACHA20_POLY1305_SHA256\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n    - ECDHE-RSA-AES128-GCM-SHA256\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n    - ECDHE-RSA-AES256-GCM-SHA384\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n    - ECDHE-RSA-CHACHA20-POLY1305\n    - DHE-RSA-AES128-GCM-SHA256\n    - DHE-RSA-AES256-GCM-SHA384\n    - DHE-RSA-CHACHA20-POLY1305\n    - ECDHE-ECDSA-AES128-SHA256\n    - ECDHE-RSA-AES128-SHA256\n    - ECDHE-ECDSA-AES128-SHA\n    - ECDHE-RSA-AES128-SHA\n    - ECDHE-ECDSA-AES256-SHA384\n    - ECDHE-RSA-AES256-SHA384\n    - ECDHE-ECDSA-AES256-SHA\n    - ECDHE-RSA-AES256-SHA\n    - DHE-RSA-AES128-SHA256\n    - DHE-RSA-AES256-SHA256\n    - AES128-GCM-SHA256\n    - AES256-GCM-SHA384\n    - AES128-SHA256\n    - AES256-SHA256\n    - AES128-SHA\n    - AES256-SHA\n    - DES-CBC3-SHA",
+	"intermediate": "intermediate is a TLS profile for use when you do not need compatibility with legacy clients and want to remain highly secure while being compatible with most clients currently in use.\n\nThe cipher list includes TLS 1.3 ciphers for forward compatibility, followed by the \"intermediate\" profile ciphers.\n\nThis profile is equivalent to a Custom profile specified as:\n  minTLSVersion: VersionTLS12\n  ciphers:\n    - TLS_AES_128_GCM_SHA256\n    - TLS_AES_256_GCM_SHA384\n    - TLS_CHACHA20_POLY1305_SHA256\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n    - ECDHE-RSA-AES128-GCM-SHA256\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n    - ECDHE-RSA-AES256-GCM-SHA384\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n    - ECDHE-RSA-CHACHA20-POLY1305\n    - DHE-RSA-AES128-GCM-SHA256\n    - DHE-RSA-AES256-GCM-SHA384",
 	"modern":       "modern is a TLS security profile for use with clients that support TLS 1.3 and do not need backward compatibility for older clients.\n\nThis profile is equivalent to a Custom profile specified as:\n  minTLSVersion: VersionTLS13\n  ciphers:\n    - TLS_AES_128_GCM_SHA256\n    - TLS_AES_256_GCM_SHA384\n    - TLS_CHACHA20_POLY1305_SHA256",
 	"custom":       "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this:\n\n  minTLSVersion: VersionTLS11\n  ciphers:\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n    - ECDHE-RSA-CHACHA20-POLY1305\n    - ECDHE-RSA-AES128-GCM-SHA256\n    - ECDHE-ECDSA-AES128-GCM-SHA256",
 }
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/register.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/register.go
index c90962495..4b30ea380 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/register.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/register.go
@@ -40,8 +40,6 @@ func addKnownTypes(scheme *runtime.Scheme) error {
 		&ImagePolicyList{},
 		&ClusterImagePolicy{},
 		&ClusterImagePolicyList{},
-		&CRIOCredentialProviderConfig{},
-		&CRIOCredentialProviderConfigList{},
 	)
 	metav1.AddToGroupVersion(scheme, GroupVersion)
 	return nil
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_monitoring.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_monitoring.go
index e72f537f9..0653eeb5a 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_monitoring.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_monitoring.go
@@ -94,19 +94,6 @@ type ClusterMonitoringSpec struct {
 	// When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.
 	// +optional
 	MetricsServerConfig MetricsServerConfig `json:"metricsServerConfig,omitempty,omitzero"`
-	// prometheusOperatorConfig is an optional field that can be used to configure the Prometheus Operator component.
-	// Specifically, it can configure how the Prometheus Operator instance is deployed, pod scheduling, and resource allocation.
-	// When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.
-	// +optional
-	PrometheusOperatorConfig PrometheusOperatorConfig `json:"prometheusOperatorConfig,omitempty,omitzero"`
-	// prometheusOperatorAdmissionWebhookConfig is an optional field that can be used to configure the
-	// admission webhook component of Prometheus Operator that runs in the openshift-monitoring namespace.
-	// The admission webhook validates PrometheusRule and AlertmanagerConfig objects to ensure they are
-	// semantically valid, mutates PrometheusRule annotations, and converts AlertmanagerConfig objects
-	// between API versions.
-	// When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.
-	// +optional
-	PrometheusOperatorAdmissionWebhookConfig PrometheusOperatorAdmissionWebhookConfig `json:"prometheusOperatorAdmissionWebhookConfig,omitempty,omitzero"`
 }
 
 // UserDefinedMonitoring config for user-defined projects.
@@ -198,7 +185,6 @@ type AlertmanagerCustomConfig struct {
 	//      limit: null
 	// Maximum length for this list is 10.
 	// Minimum length for this list is 1.
-	// Each resource name must be unique within this list.
 	// +optional
 	// +listType=map
 	// +listMapKey=name
@@ -232,8 +218,8 @@ type AlertmanagerCustomConfig struct {
 	// When omitted, this means the user has no opinion and the platform is left
 	// to choose reasonable defaults. These defaults are subject to change over time.
 	// Defaults are empty/unset.
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
+	// Maximum length for this list is 10
+	// Minimum length for this list is 1
 	// +kubebuilder:validation:MaxItems=10
 	// +kubebuilder:validation:MinItems=1
 	// +listType=atomic
@@ -249,7 +235,7 @@ type AlertmanagerCustomConfig struct {
 	// This field maps directly to the `topologySpreadConstraints` field in the Pod spec.
 	// Default is empty list.
 	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
+	// Minimum length for this list is 1
 	// Entries must have unique topologyKey and whenUnsatisfiable pairs.
 	// +kubebuilder:validation:MaxItems=10
 	// +kubebuilder:validation:MinItems=1
@@ -370,8 +356,8 @@ type MetricsServerConfig struct {
 	// When omitted, this means the user has no opinion and the platform is left
 	// to choose reasonable defaults. These defaults are subject to change over time.
 	// Defaults are empty/unset.
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
+	// Maximum length for this list is 10
+	// Minimum length for this list is 1
 	// +kubebuilder:validation:MaxItems=10
 	// +kubebuilder:validation:MinItems=1
 	// +listType=atomic
@@ -403,7 +389,6 @@ type MetricsServerConfig struct {
 	//      limit: null
 	// Maximum length for this list is 10.
 	// Minimum length for this list is 1.
-	// Each resource name must be unique within this list.
 	// +optional
 	// +listType=map
 	// +listMapKey=name
@@ -420,142 +405,7 @@ type MetricsServerConfig struct {
 	// This field maps directly to the `topologySpreadConstraints` field in the Pod spec.
 	// Default is empty list.
 	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
-	// Entries must have unique topologyKey and whenUnsatisfiable pairs.
-	// +kubebuilder:validation:MaxItems=10
-	// +kubebuilder:validation:MinItems=1
-	// +listType=map
-	// +listMapKey=topologyKey
-	// +listMapKey=whenUnsatisfiable
-	// +optional
-	TopologySpreadConstraints []v1.TopologySpreadConstraint `json:"topologySpreadConstraints,omitempty"`
-}
-
-// PrometheusOperatorConfig provides configuration options for the Prometheus Operator instance
-// Use this configuration to control how the Prometheus Operator instance is deployed, how it logs, and how its pods are scheduled.
-// +kubebuilder:validation:MinProperties=1
-type PrometheusOperatorConfig struct {
-	// logLevel defines the verbosity of logs emitted by Prometheus Operator.
-	// This field allows users to control the amount and severity of logs generated, which can be useful
-	// for debugging issues or reducing noise in production environments.
-	// Allowed values are Error, Warn, Info, and Debug.
-	// When set to Error, only errors will be logged.
-	// When set to Warn, both warnings and errors will be logged.
-	// When set to Info, general information, warnings, and errors will all be logged.
-	// When set to Debug, detailed debugging information will be logged.
-	// When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time.
-	// The current default value is `Info`.
-	// +optional
-	LogLevel LogLevel `json:"logLevel,omitempty"`
-	// nodeSelector defines the nodes on which the Pods are scheduled
-	// nodeSelector is optional.
-	//
-	// When omitted, this means the user has no opinion and the platform is left
-	// to choose reasonable defaults. These defaults are subject to change over time.
-	// The current default value is `kubernetes.io/os: linux`.
-	// When specified, nodeSelector must contain at least 1 entry and must not contain more than 10 entries.
-	// +optional
-	// +kubebuilder:validation:MinProperties=1
-	// +kubebuilder:validation:MaxProperties=10
-	NodeSelector map[string]string `json:"nodeSelector,omitempty"`
-	// resources defines the compute resource requests and limits for the Prometheus Operator container.
-	// This includes CPU, memory and HugePages constraints to help control scheduling and resource usage.
-	// When not specified, defaults are used by the platform. Requests cannot exceed limits.
-	// This field is optional.
-	// More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-	// This is a simplified API that maps to Kubernetes ResourceRequirements.
-	// The current default values are:
-	//   resources:
-	//    - name: cpu
-	//      request: 4m
-	//      limit: null
-	//    - name: memory
-	//      request: 40Mi
-	//      limit: null
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
-	// Each resource name must be unique within this list.
-	// +optional
-	// +listType=map
-	// +listMapKey=name
-	// +kubebuilder:validation:MaxItems=10
-	// +kubebuilder:validation:MinItems=1
-	Resources []ContainerResource `json:"resources,omitempty"`
-	// tolerations defines tolerations for the pods.
-	// tolerations is optional.
-	//
-	// When omitted, this means the user has no opinion and the platform is left
-	// to choose reasonable defaults. These defaults are subject to change over time.
-	// Defaults are empty/unset.
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
-	// +kubebuilder:validation:MaxItems=10
-	// +kubebuilder:validation:MinItems=1
-	// +listType=atomic
-	// +optional
-	Tolerations []v1.Toleration `json:"tolerations,omitempty"`
-	// topologySpreadConstraints defines rules for how Prometheus Operator Pods should be distributed
-	// across topology domains such as zones, nodes, or other user-defined labels.
-	// topologySpreadConstraints is optional.
-	// This helps improve high availability and resource efficiency by avoiding placing
-	// too many replicas in the same failure domain.
-	//
-	// When omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time.
-	// This field maps directly to the `topologySpreadConstraints` field in the Pod spec.
-	// Default is empty list.
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
-	// Entries must have unique topologyKey and whenUnsatisfiable pairs.
-	// +kubebuilder:validation:MaxItems=10
-	// +kubebuilder:validation:MinItems=1
-	// +listType=map
-	// +listMapKey=topologyKey
-	// +listMapKey=whenUnsatisfiable
-	// +optional
-	TopologySpreadConstraints []v1.TopologySpreadConstraint `json:"topologySpreadConstraints,omitempty"`
-}
-
-// PrometheusOperatorAdmissionWebhookConfig provides configuration options for the admission webhook
-// component of Prometheus Operator that runs in the `openshift-monitoring` namespace. The admission
-// webhook validates PrometheusRule and AlertmanagerConfig objects, mutates PrometheusRule annotations,
-// and converts AlertmanagerConfig objects between API versions.
-// +kubebuilder:validation:MinProperties=1
-type PrometheusOperatorAdmissionWebhookConfig struct {
-	// resources defines the compute resource requests and limits for the
-	// prometheus-operator-admission-webhook container.
-	// This includes CPU, memory and HugePages constraints to help control scheduling and resource usage.
-	// When not specified, defaults are used by the platform. Requests cannot exceed limits.
-	// This field is optional.
-	// More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-	// This is a simplified API that maps to Kubernetes ResourceRequirements.
-	// The current default values are:
-	//   resources:
-	//    - name: cpu
-	//      request: 5m
-	//      limit: null
-	//    - name: memory
-	//      request: 30Mi
-	//      limit: null
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
-	// Each resource name must be unique within this list.
-	// +optional
-	// +listType=map
-	// +listMapKey=name
-	// +kubebuilder:validation:MaxItems=10
-	// +kubebuilder:validation:MinItems=1
-	Resources []ContainerResource `json:"resources,omitempty"`
-	// topologySpreadConstraints defines rules for how admission webhook Pods should be distributed
-	// across topology domains such as zones, nodes, or other user-defined labels.
-	// topologySpreadConstraints is optional.
-	// This helps improve high availability and resource efficiency by avoiding placing
-	// too many replicas in the same failure domain.
-	//
-	// When omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time.
-	// This field maps directly to the `topologySpreadConstraints` field in the Pod spec.
-	// Default is empty list.
-	// Maximum length for this list is 10.
-	// Minimum length for this list is 1.
+	// Minimum length for this list is 1
 	// Entries must have unique topologyKey and whenUnsatisfiable pairs.
 	// +kubebuilder:validation:MaxItems=10
 	// +kubebuilder:validation:MinItems=1
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_crio_credential_provider_config.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_crio_credential_provider_config.go
deleted file mode 100644
index 9e2e0d39d..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_crio_credential_provider_config.go
+++ /dev/null
@@ -1,186 +0,0 @@
-package v1alpha1
-
-import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-// +genclient
-// +genclient:nonNamespaced
-// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-
-// CRIOCredentialProviderConfig holds cluster-wide singleton resource configurations for CRI-O credential provider, the name of this instance is "cluster". CRI-O credential provider is a binary shipped with CRI-O that provides a way to obtain container image pull credentials from external sources.
-// For example, it can be used to fetch mirror registry credentials from secrets resources in the cluster within the same namespace the pod will be running in.
-// CRIOCredentialProviderConfig configuration specifies the pod image sources registries that should trigger the CRI-O credential provider execution, which will resolve the CRI-O mirror configurations and obtain the necessary credentials for pod creation.
-// Note: Configuration changes will only take effect after the kubelet restarts, which is automatically managed by the cluster during rollout.
-//
-// The resource is a singleton named "cluster".
-//
-// Compatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.
-// +kubebuilder:object:root=true
-// +kubebuilder:resource:path=criocredentialproviderconfigs,scope=Cluster
-// +kubebuilder:subresource:status
-// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/2557
-// +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=config-operator,operatorOrdering=01
-// +openshift:enable:FeatureGate=CRIOCredentialProviderConfig
-// +openshift:compatibility-gen:level=4
-// +kubebuilder:validation:XValidation:rule="self.metadata.name == 'cluster'",message="criocredentialproviderconfig is a singleton, .metadata.name must be 'cluster'"
-type CRIOCredentialProviderConfig struct {
-	metav1.TypeMeta `json:",inline"`
-
-	// metadata is the standard object's metadata.
-	// More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
-	// +optional
-	metav1.ObjectMeta `json:"metadata,omitzero"`
-
-	// spec defines the desired configuration of the CRI-O Credential Provider.
-	// This field is required and must be provided when creating the resource.
-	// +required
-	Spec *CRIOCredentialProviderConfigSpec `json:"spec,omitempty,omitzero"`
-
-	// status represents the current state of the CRIOCredentialProviderConfig.
-	// When omitted or nil, it indicates that the status has not yet been set by the controller.
-	// The controller will populate this field with validation conditions and operational state.
-	// +optional
-	Status CRIOCredentialProviderConfigStatus `json:"status,omitzero,omitempty"`
-}
-
-// CRIOCredentialProviderConfigSpec defines the desired configuration of the CRI-O Credential Provider.
-// +kubebuilder:validation:MinProperties=0
-type CRIOCredentialProviderConfigSpec struct {
-	// matchImages is a list of string patterns used to determine whether
-	// the CRI-O credential provider should be invoked for a given image. This list is
-	// passed to the kubelet CredentialProviderConfig, and if any pattern matches
-	// the requested image, CRI-O credential provider will be invoked to obtain credentials for pulling
-	// that image or its mirrors.
-	// Depending on the platform, the CRI-O credential provider may be installed alongside an existing platform specific provider.
-	// Conflicts between the existing platform specific provider image match configuration and this list will be handled by
-	// the following precedence rule: credentials from built-in kubelet providers (e.g., ECR, GCR, ACR) take precedence over those
-	// from the CRIOCredentialProviderConfig when both match the same image.
-	// To avoid uncertainty, it is recommended to avoid configuring your private image patterns to overlap with
-	// existing platform specific provider config(e.g., the entries from https://github.com/openshift/machine-config-operator/blob/main/templates/common/aws/files/etc-kubernetes-credential-providers-ecr-credential-provider.yaml).
-	// You can check the resource's Status conditions
-	// to see if any entries were ignored due to exact matches with known built-in provider patterns.
-	//
-	// This field is optional, the items of the list must contain between 1 and 50 entries.
-	// The list is treated as a set, so duplicate entries are not allowed.
-	//
-	// For more details, see:
-	// https://kubernetes.io/docs/tasks/administer-cluster/kubelet-credential-provider/
-	// https://github.com/cri-o/crio-credential-provider#architecture
-	//
-	// Each entry in matchImages is a pattern which can optionally contain a port and a path. Each entry must be no longer than 512 characters.
-	// Wildcards ('*') are supported for full subdomain labels, such as '*.k8s.io' or 'k8s.*.io',
-	// and for top-level domains, such as 'k8s.*' (which matches 'k8s.io' or 'k8s.net').
-	// A global wildcard '*' (matching any domain) is not allowed.
-	// Wildcards may replace an entire hostname label (e.g., *.example.com), but they cannot appear within a label (e.g., f*oo.example.com) and are not allowed in the port or path.
-	// For example, 'example.*.com' is valid, but 'exa*mple.*.com' is not.
-	// Each wildcard matches only a single domain label,
-	// so '*.io' does **not** match '*.k8s.io'.
-	//
-	// A match exists between an image and a matchImage when all of the below are true:
-	// Both contain the same number of domain parts and each part matches.
-	// The URL path of an matchImages must be a prefix of the target image URL path.
-	// If the matchImages contains a port, then the port must match in the image as well.
-	//
-	// Example values of matchImages:
-	// - 123456789.dkr.ecr.us-east-1.amazonaws.com
-	// - *.azurecr.io
-	// - gcr.io
-	// - *.*.registry.io
-	// - registry.io:8080/path
-	//
-	// +kubebuilder:validation:MaxItems=50
-	// +kubebuilder:validation:MinItems=1
-	// +listType=set
-	// +optional
-	MatchImages []MatchImage `json:"matchImages,omitempty"`
-}
-
-// MatchImage is a string pattern used to match container image registry addresses.
-// It must be a valid fully qualified domain name with optional wildcard, port, and path.
-// The maximum length is 512 characters.
-//
-// Wildcards ('*') are supported for full subdomain labels and top-level domains.
-// Each entry can optionally contain a port (e.g., :8080) and a path (e.g., /path).
-// Wildcards are not allowed in the port or path portions.
-//
-// Examples:
-// - "registry.io" - matches exactly registry.io
-// - "*.azurecr.io" - matches any single subdomain of azurecr.io
-// - "registry.io:8080/path" - matches with specific port and path prefix
-//
-// +kubebuilder:validation:MaxLength=512
-// +kubebuilder:validation:MinLength=1
-// +kubebuilder:validation:XValidation:rule="self != '*'",message="global wildcard '*' is not allowed"
-// +kubebuilder:validation:XValidation:rule=`self.matches('^((\\*|[a-z0-9]([a-z0-9-]*[a-z0-9])?)(\\.(\\*|[a-z0-9]([a-z0-9-]*[a-z0-9])?))*)(:[0-9]+)?(/[-a-z0-9._/]*)?$')`,message="invalid matchImages value, must be a valid fully qualified domain name in lowercase with optional wildcard, port, and path"
-type MatchImage string
-
-// +k8s:deepcopy-gen=true
-// CRIOCredentialProviderConfigStatus defines the observed state of CRIOCredentialProviderConfig
-// +kubebuilder:validation:MinProperties=1
-type CRIOCredentialProviderConfigStatus struct {
-	// conditions represent the latest available observations of the configuration state.
-	// When omitted, it indicates that no conditions have been reported yet.
-	// The maximum number of conditions is 16.
-	// Conditions are stored as a map keyed by condition type, ensuring uniqueness.
-	//
-	// Expected condition types include:
-	// "Validated": indicates whether the matchImages configuration is valid
-	// +optional
-	// +kubebuilder:validation:MaxItems=16
-	// +kubebuilder:validation:MinItems=1
-	// +listType=map
-	// +listMapKey=type
-	Conditions []metav1.Condition `json:"conditions,omitempty"`
-}
-
-// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-
-// CRIOCredentialProviderConfigList contains a list of CRIOCredentialProviderConfig resources
-//
-// Compatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.
-// +openshift:compatibility-gen:level=4
-type CRIOCredentialProviderConfigList struct {
-	metav1.TypeMeta `json:",inline"`
-
-	// metadata is the standard list's metadata.
-	// More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
-	metav1.ListMeta `json:"metadata"`
-
-	Items []CRIOCredentialProviderConfig `json:"items"`
-}
-
-const (
-	// ConditionTypeValidated is a condition type that indicates whether the CRIOCredentialProviderConfig
-	// matchImages configuration has been validated successfully.
-	// When True, all matchImage patterns are valid and have been applied.
-	// When False, the configuration contains errors (see Reason for details).
-	// Possible reasons for False status:
-	// - ValidationFailed: matchImages contains invalid patterns
-	// - ConfigurationPartiallyApplied: some matchImage entries were ignored due to conflicts
-	ConditionTypeValidated = "Validated"
-
-	// ReasonValidationFailed is a condition reason used with ConditionTypeValidated=False
-	// to indicate that the matchImages configuration contains one or more invalid registry patterns
-	// that do not conform to the required format (valid FQDN with optional wildcard, port, and path).
-	ReasonValidationFailed = "ValidationFailed"
-
-	// ReasonConfigurationPartiallyApplied is a condition reason used with ConditionTypeValidated=False
-	// to indicate that some matchImage entries were ignored due to conflicts or overlapping patterns.
-	// The condition message will contain details about which entries were ignored and why.
-	ReasonConfigurationPartiallyApplied = "ConfigurationPartiallyApplied"
-
-	// ConditionTypeMachineConfigRendered is a condition type that indicates whether
-	// the CRIOCredentialProviderConfig has been successfully rendered into a
-	// MachineConfig object.
-	// When True, the corresponding MachineConfig is present in the cluster.
-	// When False, rendering failed.
-	ConditionTypeMachineConfigRendered = "MachineConfigRendered"
-
-	// ReasonMachineConfigRenderingSucceeded is a condition reason used with ConditionTypeMachineConfigRendered=True
-	// to indicate that the MachineConfig was successfully created/updated in the API server.
-	ReasonMachineConfigRenderingSucceeded = "MachineConfigRenderingSucceeded"
-
-	// ReasonMachineConfigRenderingFailed is a condition reason used with ConditionTypeMachineConfigRendered=False
-	// to indicate that the MachineConfig creation/update failed.
-	// The condition message will contain details about the failure.
-	ReasonMachineConfigRenderingFailed = "MachineConfigRenderingFailed"
-)
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_insights.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_insights.go
index 43546d03b..46666ae3b 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_insights.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/types_insights.go
@@ -16,7 +16,6 @@ import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 // +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=config-operator,operatorOrdering=01
 // +openshift:enable:FeatureGate=InsightsConfig
 // +openshift:compatibility-gen:level=4
-// +openshift:capability=Insights
 type InsightsDataGather struct {
 	metav1.TypeMeta `json:",inline"`
 
@@ -59,7 +58,6 @@ type GatherConfig struct {
 	// "oc get insightsoperators.operator.openshift.io cluster -o json | jq '.status.gatherStatus.gatherers[].name'"
 	// An example of disabling gatherers looks like this: `disabledGatherers: ["clusterconfig/machine_configs", "workloads/workload_info"]`
 	// +kubebuilder:validation:MaxItems=100
-	// +listType=atomic
 	// +optional
 	DisabledGatherers []DisabledGatherer `json:"disabledGatherers"`
 	// storage is an optional field that allows user to define persistent storage for gathering jobs to store the Insights data archive.
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.deepcopy.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.deepcopy.go
index d648413ab..9ead6aba2 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.deepcopy.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.deepcopy.go
@@ -192,115 +192,6 @@ func (in *BackupStatus) DeepCopy() *BackupStatus {
 	return out
 }
 
-// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
-func (in *CRIOCredentialProviderConfig) DeepCopyInto(out *CRIOCredentialProviderConfig) {
-	*out = *in
-	out.TypeMeta = in.TypeMeta
-	in.ObjectMeta.DeepCopyInto(&out.ObjectMeta)
-	if in.Spec != nil {
-		in, out := &in.Spec, &out.Spec
-		*out = new(CRIOCredentialProviderConfigSpec)
-		(*in).DeepCopyInto(*out)
-	}
-	in.Status.DeepCopyInto(&out.Status)
-	return
-}
-
-// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CRIOCredentialProviderConfig.
-func (in *CRIOCredentialProviderConfig) DeepCopy() *CRIOCredentialProviderConfig {
-	if in == nil {
-		return nil
-	}
-	out := new(CRIOCredentialProviderConfig)
-	in.DeepCopyInto(out)
-	return out
-}
-
-// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
-func (in *CRIOCredentialProviderConfig) DeepCopyObject() runtime.Object {
-	if c := in.DeepCopy(); c != nil {
-		return c
-	}
-	return nil
-}
-
-// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
-func (in *CRIOCredentialProviderConfigList) DeepCopyInto(out *CRIOCredentialProviderConfigList) {
-	*out = *in
-	out.TypeMeta = in.TypeMeta
-	in.ListMeta.DeepCopyInto(&out.ListMeta)
-	if in.Items != nil {
-		in, out := &in.Items, &out.Items
-		*out = make([]CRIOCredentialProviderConfig, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	return
-}
-
-// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CRIOCredentialProviderConfigList.
-func (in *CRIOCredentialProviderConfigList) DeepCopy() *CRIOCredentialProviderConfigList {
-	if in == nil {
-		return nil
-	}
-	out := new(CRIOCredentialProviderConfigList)
-	in.DeepCopyInto(out)
-	return out
-}
-
-// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
-func (in *CRIOCredentialProviderConfigList) DeepCopyObject() runtime.Object {
-	if c := in.DeepCopy(); c != nil {
-		return c
-	}
-	return nil
-}
-
-// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
-func (in *CRIOCredentialProviderConfigSpec) DeepCopyInto(out *CRIOCredentialProviderConfigSpec) {
-	*out = *in
-	if in.MatchImages != nil {
-		in, out := &in.MatchImages, &out.MatchImages
-		*out = make([]MatchImage, len(*in))
-		copy(*out, *in)
-	}
-	return
-}
-
-// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CRIOCredentialProviderConfigSpec.
-func (in *CRIOCredentialProviderConfigSpec) DeepCopy() *CRIOCredentialProviderConfigSpec {
-	if in == nil {
-		return nil
-	}
-	out := new(CRIOCredentialProviderConfigSpec)
-	in.DeepCopyInto(out)
-	return out
-}
-
-// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
-func (in *CRIOCredentialProviderConfigStatus) DeepCopyInto(out *CRIOCredentialProviderConfigStatus) {
-	*out = *in
-	if in.Conditions != nil {
-		in, out := &in.Conditions, &out.Conditions
-		*out = make([]metav1.Condition, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	return
-}
-
-// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CRIOCredentialProviderConfigStatus.
-func (in *CRIOCredentialProviderConfigStatus) DeepCopy() *CRIOCredentialProviderConfigStatus {
-	if in == nil {
-		return nil
-	}
-	out := new(CRIOCredentialProviderConfigStatus)
-	in.DeepCopyInto(out)
-	return out
-}
-
 // DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
 func (in *ClusterImagePolicy) DeepCopyInto(out *ClusterImagePolicy) {
 	*out = *in
@@ -474,8 +365,6 @@ func (in *ClusterMonitoringSpec) DeepCopyInto(out *ClusterMonitoringSpec) {
 	out.UserDefined = in.UserDefined
 	in.AlertmanagerConfig.DeepCopyInto(&out.AlertmanagerConfig)
 	in.MetricsServerConfig.DeepCopyInto(&out.MetricsServerConfig)
-	in.PrometheusOperatorConfig.DeepCopyInto(&out.PrometheusOperatorConfig)
-	in.PrometheusOperatorAdmissionWebhookConfig.DeepCopyInto(&out.PrometheusOperatorAdmissionWebhookConfig)
 	return
 }
 
@@ -1063,80 +952,6 @@ func (in *PolicyRootOfTrust) DeepCopy() *PolicyRootOfTrust {
 	return out
 }
 
-// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
-func (in *PrometheusOperatorAdmissionWebhookConfig) DeepCopyInto(out *PrometheusOperatorAdmissionWebhookConfig) {
-	*out = *in
-	if in.Resources != nil {
-		in, out := &in.Resources, &out.Resources
-		*out = make([]ContainerResource, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	if in.TopologySpreadConstraints != nil {
-		in, out := &in.TopologySpreadConstraints, &out.TopologySpreadConstraints
-		*out = make([]v1.TopologySpreadConstraint, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	return
-}
-
-// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PrometheusOperatorAdmissionWebhookConfig.
-func (in *PrometheusOperatorAdmissionWebhookConfig) DeepCopy() *PrometheusOperatorAdmissionWebhookConfig {
-	if in == nil {
-		return nil
-	}
-	out := new(PrometheusOperatorAdmissionWebhookConfig)
-	in.DeepCopyInto(out)
-	return out
-}
-
-// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
-func (in *PrometheusOperatorConfig) DeepCopyInto(out *PrometheusOperatorConfig) {
-	*out = *in
-	if in.NodeSelector != nil {
-		in, out := &in.NodeSelector, &out.NodeSelector
-		*out = make(map[string]string, len(*in))
-		for key, val := range *in {
-			(*out)[key] = val
-		}
-	}
-	if in.Resources != nil {
-		in, out := &in.Resources, &out.Resources
-		*out = make([]ContainerResource, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	if in.Tolerations != nil {
-		in, out := &in.Tolerations, &out.Tolerations
-		*out = make([]v1.Toleration, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	if in.TopologySpreadConstraints != nil {
-		in, out := &in.TopologySpreadConstraints, &out.TopologySpreadConstraints
-		*out = make([]v1.TopologySpreadConstraint, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
-	}
-	return
-}
-
-// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PrometheusOperatorConfig.
-func (in *PrometheusOperatorConfig) DeepCopy() *PrometheusOperatorConfig {
-	if in == nil {
-		return nil
-	}
-	out := new(PrometheusOperatorConfig)
-	in.DeepCopyInto(out)
-	return out
-}
-
 // DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
 func (in *RetentionNumberConfig) DeepCopyInto(out *RetentionNumberConfig) {
 	*out = *in
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.featuregated-crd-manifests.yaml b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.featuregated-crd-manifests.yaml
index 14091b587..2f79f801d 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.featuregated-crd-manifests.yaml
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.featuregated-crd-manifests.yaml
@@ -21,29 +21,6 @@ backups.config.openshift.io:
   - AutomatedEtcdBackup
   Version: v1alpha1
 
-criocredentialproviderconfigs.config.openshift.io:
-  Annotations: {}
-  ApprovedPRNumber: https://github.com/openshift/api/pull/2557
-  CRDName: criocredentialproviderconfigs.config.openshift.io
-  Capability: ""
-  Category: ""
-  FeatureGates:
-  - CRIOCredentialProviderConfig
-  FilenameOperatorName: config-operator
-  FilenameOperatorOrdering: "01"
-  FilenameRunLevel: "0000_10"
-  GroupName: config.openshift.io
-  HasStatus: true
-  KindName: CRIOCredentialProviderConfig
-  Labels: {}
-  PluralName: criocredentialproviderconfigs
-  PrinterColumns: []
-  Scope: Cluster
-  ShortNames: null
-  TopLevelFeatureGates:
-  - CRIOCredentialProviderConfig
-  Version: v1alpha1
-
 clusterimagepolicies.config.openshift.io:
   Annotations: {}
   ApprovedPRNumber: https://github.com/openshift/api/pull/1457
@@ -120,7 +97,7 @@ insightsdatagathers.config.openshift.io:
   Annotations: {}
   ApprovedPRNumber: https://github.com/openshift/api/pull/1245
   CRDName: insightsdatagathers.config.openshift.io
-  Capability: Insights
+  Capability: ""
   Category: ""
   FeatureGates:
   - InsightsConfig
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go
index 343947f59..59a5b3708 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go
@@ -132,10 +132,10 @@ var map_AlertmanagerCustomConfig = map[string]string{
 	"":                          "AlertmanagerCustomConfig represents the configuration for a custom Alertmanager deployment. alertmanagerCustomConfig provides configuration options for the default Alertmanager instance that runs in the `openshift-monitoring` namespace. Use this configuration to control whether the default Alertmanager is deployed, how it logs, and how its pods are scheduled.",
 	"logLevel":                  "logLevel defines the verbosity of logs emitted by Alertmanager. This field allows users to control the amount and severity of logs generated, which can be useful for debugging issues or reducing noise in production environments. Allowed values are Error, Warn, Info, and Debug. When set to Error, only errors will be logged. When set to Warn, both warnings and errors will be logged. When set to Info, general information, warnings, and errors will all be logged. When set to Debug, detailed debugging information will be logged. When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time. The current default value is `Info`.",
 	"nodeSelector":              "nodeSelector defines the nodes on which the Pods are scheduled nodeSelector is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. The current default value is `kubernetes.io/os: linux`.",
-	"resources":                 "resources defines the compute resource requests and limits for the Alertmanager container. This includes CPU, memory and HugePages constraints to help control scheduling and resource usage. When not specified, defaults are used by the platform. Requests cannot exceed limits. This field is optional. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ This is a simplified API that maps to Kubernetes ResourceRequirements. The current default values are:\n  resources:\n   - name: cpu\n     request: 4m\n     limit: null\n   - name: memory\n     request: 40Mi\n     limit: null\nMaximum length for this list is 10. Minimum length for this list is 1. Each resource name must be unique within this list.",
+	"resources":                 "resources defines the compute resource requests and limits for the Alertmanager container. This includes CPU, memory and HugePages constraints to help control scheduling and resource usage. When not specified, defaults are used by the platform. Requests cannot exceed limits. This field is optional. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ This is a simplified API that maps to Kubernetes ResourceRequirements. The current default values are:\n  resources:\n   - name: cpu\n     request: 4m\n     limit: null\n   - name: memory\n     request: 40Mi\n     limit: null\nMaximum length for this list is 10. Minimum length for this list is 1.",
 	"secrets":                   "secrets defines a list of secrets that need to be mounted into the Alertmanager. The secrets must reside within the same namespace as the Alertmanager object. They will be added as volumes named secret-<secret-name> and mounted at /etc/alertmanager/secrets/<secret-name> within the 'alertmanager' container of the Alertmanager Pods.\n\nThese secrets can be used to authenticate Alertmanager with endpoint receivers. For example, you can use secrets to: - Provide certificates for TLS authentication with receivers that require private CA certificates - Store credentials for Basic HTTP authentication with receivers that require password-based auth - Store any other authentication credentials needed by your alert receivers\n\nThis field is optional. Maximum length for this list is 10. Minimum length for this list is 1. Entries in this list must be unique.",
-	"tolerations":               "tolerations defines tolerations for the pods. tolerations is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. Defaults are empty/unset. Maximum length for this list is 10. Minimum length for this list is 1.",
-	"topologySpreadConstraints": "topologySpreadConstraints defines rules for how Alertmanager Pods should be distributed across topology domains such as zones, nodes, or other user-defined labels. topologySpreadConstraints is optional. This helps improve high availability and resource efficiency by avoiding placing too many replicas in the same failure domain.\n\nWhen omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time. This field maps directly to the `topologySpreadConstraints` field in the Pod spec. Default is empty list. Maximum length for this list is 10. Minimum length for this list is 1. Entries must have unique topologyKey and whenUnsatisfiable pairs.",
+	"tolerations":               "tolerations defines tolerations for the pods. tolerations is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. Defaults are empty/unset. Maximum length for this list is 10 Minimum length for this list is 1",
+	"topologySpreadConstraints": "topologySpreadConstraints defines rules for how Alertmanager Pods should be distributed across topology domains such as zones, nodes, or other user-defined labels. topologySpreadConstraints is optional. This helps improve high availability and resource efficiency by avoiding placing too many replicas in the same failure domain.\n\nWhen omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time. This field maps directly to the `topologySpreadConstraints` field in the Pod spec. Default is empty list. Maximum length for this list is 10. Minimum length for this list is 1 Entries must have unique topologyKey and whenUnsatisfiable pairs.",
 	"volumeClaimTemplate":       "volumeClaimTemplate Defines persistent storage for Alertmanager. Use this setting to configure the persistent volume claim, including storage class, volume size, and name. If omitted, the Pod uses ephemeral storage and alert data will not persist across restarts. This field is optional.",
 }
 
@@ -174,12 +174,10 @@ func (ClusterMonitoringList) SwaggerDoc() map[string]string {
 }
 
 var map_ClusterMonitoringSpec = map[string]string{
-	"":                         "ClusterMonitoringSpec defines the desired state of Cluster Monitoring Operator",
-	"userDefined":              "userDefined set the deployment mode for user-defined monitoring in addition to the default platform monitoring. userDefined is optional. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time. The current default value is `Disabled`.",
-	"alertmanagerConfig":       "alertmanagerConfig allows users to configure how the default Alertmanager instance should be deployed in the `openshift-monitoring` namespace. alertmanagerConfig is optional. When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time. The current default value is `DefaultConfig`.",
-	"metricsServerConfig":      "metricsServerConfig is an optional field that can be used to configure the Kubernetes Metrics Server that runs in the openshift-monitoring namespace. Specifically, it can configure how the Metrics Server instance is deployed, pod scheduling, its audit policy and log verbosity. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.",
-	"prometheusOperatorConfig": "prometheusOperatorConfig is an optional field that can be used to configure the Prometheus Operator component. Specifically, it can configure how the Prometheus Operator instance is deployed, pod scheduling, and resource allocation. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.",
-	"prometheusOperatorAdmissionWebhookConfig": "prometheusOperatorAdmissionWebhookConfig is an optional field that can be used to configure the admission webhook component of Prometheus Operator that runs in the openshift-monitoring namespace. The admission webhook validates PrometheusRule and AlertmanagerConfig objects to ensure they are semantically valid, mutates PrometheusRule annotations, and converts AlertmanagerConfig objects between API versions. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.",
+	"":                    "ClusterMonitoringSpec defines the desired state of Cluster Monitoring Operator",
+	"userDefined":         "userDefined set the deployment mode for user-defined monitoring in addition to the default platform monitoring. userDefined is optional. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time. The current default value is `Disabled`.",
+	"alertmanagerConfig":  "alertmanagerConfig allows users to configure how the default Alertmanager instance should be deployed in the `openshift-monitoring` namespace. alertmanagerConfig is optional. When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time. The current default value is `DefaultConfig`.",
+	"metricsServerConfig": "metricsServerConfig is an optional field that can be used to configure the Kubernetes Metrics Server that runs in the openshift-monitoring namespace. Specifically, it can configure how the Metrics Server instance is deployed, pod scheduling, its audit policy and log verbosity. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.",
 }
 
 func (ClusterMonitoringSpec) SwaggerDoc() map[string]string {
@@ -209,39 +207,16 @@ var map_MetricsServerConfig = map[string]string{
 	"":                          "MetricsServerConfig provides configuration options for the Metrics Server instance that runs in the `openshift-monitoring` namespace. Use this configuration to control how the Metrics Server instance is deployed, how it logs, and how its pods are scheduled.",
 	"audit":                     "audit defines the audit configuration used by the Metrics Server instance. audit is optional. When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time. The current default sets audit.profile to Metadata",
 	"nodeSelector":              "nodeSelector defines the nodes on which the Pods are scheduled nodeSelector is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. The current default value is `kubernetes.io/os: linux`.",
-	"tolerations":               "tolerations defines tolerations for the pods. tolerations is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. Defaults are empty/unset. Maximum length for this list is 10. Minimum length for this list is 1.",
+	"tolerations":               "tolerations defines tolerations for the pods. tolerations is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. Defaults are empty/unset. Maximum length for this list is 10 Minimum length for this list is 1",
 	"verbosity":                 "verbosity defines the verbosity of log messages for Metrics Server. Valid values are Errors, Info, Trace, TraceAll and omitted. When set to Errors, only critical messages and errors are logged. When set to Info, only basic information messages are logged. When set to Trace, information useful for general debugging is logged. When set to TraceAll, detailed information about metric scraping is logged. When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time. The current default value is `Errors`",
-	"resources":                 "resources defines the compute resource requests and limits for the Metrics Server container. This includes CPU, memory and HugePages constraints to help control scheduling and resource usage. When not specified, defaults are used by the platform. Requests cannot exceed limits. This field is optional. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ This is a simplified API that maps to Kubernetes ResourceRequirements. The current default values are:\n  resources:\n   - name: cpu\n     request: 4m\n     limit: null\n   - name: memory\n     request: 40Mi\n     limit: null\nMaximum length for this list is 10. Minimum length for this list is 1. Each resource name must be unique within this list.",
-	"topologySpreadConstraints": "topologySpreadConstraints defines rules for how Metrics Server Pods should be distributed across topology domains such as zones, nodes, or other user-defined labels. topologySpreadConstraints is optional. This helps improve high availability and resource efficiency by avoiding placing too many replicas in the same failure domain.\n\nWhen omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time. This field maps directly to the `topologySpreadConstraints` field in the Pod spec. Default is empty list. Maximum length for this list is 10. Minimum length for this list is 1. Entries must have unique topologyKey and whenUnsatisfiable pairs.",
+	"resources":                 "resources defines the compute resource requests and limits for the Metrics Server container. This includes CPU, memory and HugePages constraints to help control scheduling and resource usage. When not specified, defaults are used by the platform. Requests cannot exceed limits. This field is optional. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ This is a simplified API that maps to Kubernetes ResourceRequirements. The current default values are:\n  resources:\n   - name: cpu\n     request: 4m\n     limit: null\n   - name: memory\n     request: 40Mi\n     limit: null\nMaximum length for this list is 10. Minimum length for this list is 1.",
+	"topologySpreadConstraints": "topologySpreadConstraints defines rules for how Metrics Server Pods should be distributed across topology domains such as zones, nodes, or other user-defined labels. topologySpreadConstraints is optional. This helps improve high availability and resource efficiency by avoiding placing too many replicas in the same failure domain.\n\nWhen omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time. This field maps directly to the `topologySpreadConstraints` field in the Pod spec. Default is empty list. Maximum length for this list is 10. Minimum length for this list is 1 Entries must have unique topologyKey and whenUnsatisfiable pairs.",
 }
 
 func (MetricsServerConfig) SwaggerDoc() map[string]string {
 	return map_MetricsServerConfig
 }
 
-var map_PrometheusOperatorAdmissionWebhookConfig = map[string]string{
-	"":                          "PrometheusOperatorAdmissionWebhookConfig provides configuration options for the admission webhook component of Prometheus Operator that runs in the `openshift-monitoring` namespace. The admission webhook validates PrometheusRule and AlertmanagerConfig objects, mutates PrometheusRule annotations, and converts AlertmanagerConfig objects between API versions.",
-	"resources":                 "resources defines the compute resource requests and limits for the prometheus-operator-admission-webhook container. This includes CPU, memory and HugePages constraints to help control scheduling and resource usage. When not specified, defaults are used by the platform. Requests cannot exceed limits. This field is optional. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ This is a simplified API that maps to Kubernetes ResourceRequirements. The current default values are:\n  resources:\n   - name: cpu\n     request: 5m\n     limit: null\n   - name: memory\n     request: 30Mi\n     limit: null\nMaximum length for this list is 10. Minimum length for this list is 1. Each resource name must be unique within this list.",
-	"topologySpreadConstraints": "topologySpreadConstraints defines rules for how admission webhook Pods should be distributed across topology domains such as zones, nodes, or other user-defined labels. topologySpreadConstraints is optional. This helps improve high availability and resource efficiency by avoiding placing too many replicas in the same failure domain.\n\nWhen omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time. This field maps directly to the `topologySpreadConstraints` field in the Pod spec. Default is empty list. Maximum length for this list is 10. Minimum length for this list is 1. Entries must have unique topologyKey and whenUnsatisfiable pairs.",
-}
-
-func (PrometheusOperatorAdmissionWebhookConfig) SwaggerDoc() map[string]string {
-	return map_PrometheusOperatorAdmissionWebhookConfig
-}
-
-var map_PrometheusOperatorConfig = map[string]string{
-	"":                          "PrometheusOperatorConfig provides configuration options for the Prometheus Operator instance Use this configuration to control how the Prometheus Operator instance is deployed, how it logs, and how its pods are scheduled.",
-	"logLevel":                  "logLevel defines the verbosity of logs emitted by Prometheus Operator. This field allows users to control the amount and severity of logs generated, which can be useful for debugging issues or reducing noise in production environments. Allowed values are Error, Warn, Info, and Debug. When set to Error, only errors will be logged. When set to Warn, both warnings and errors will be logged. When set to Info, general information, warnings, and errors will all be logged. When set to Debug, detailed debugging information will be logged. When omitted, this means no opinion and the platform is left to choose a reasonable default, that is subject to change over time. The current default value is `Info`.",
-	"nodeSelector":              "nodeSelector defines the nodes on which the Pods are scheduled nodeSelector is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. The current default value is `kubernetes.io/os: linux`. When specified, nodeSelector must contain at least 1 entry and must not contain more than 10 entries.",
-	"resources":                 "resources defines the compute resource requests and limits for the Prometheus Operator container. This includes CPU, memory and HugePages constraints to help control scheduling and resource usage. When not specified, defaults are used by the platform. Requests cannot exceed limits. This field is optional. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ This is a simplified API that maps to Kubernetes ResourceRequirements. The current default values are:\n  resources:\n   - name: cpu\n     request: 4m\n     limit: null\n   - name: memory\n     request: 40Mi\n     limit: null\nMaximum length for this list is 10. Minimum length for this list is 1. Each resource name must be unique within this list.",
-	"tolerations":               "tolerations defines tolerations for the pods. tolerations is optional.\n\nWhen omitted, this means the user has no opinion and the platform is left to choose reasonable defaults. These defaults are subject to change over time. Defaults are empty/unset. Maximum length for this list is 10. Minimum length for this list is 1.",
-	"topologySpreadConstraints": "topologySpreadConstraints defines rules for how Prometheus Operator Pods should be distributed across topology domains such as zones, nodes, or other user-defined labels. topologySpreadConstraints is optional. This helps improve high availability and resource efficiency by avoiding placing too many replicas in the same failure domain.\n\nWhen omitted, this means no opinion and the platform is left to choose a default, which is subject to change over time. This field maps directly to the `topologySpreadConstraints` field in the Pod spec. Default is empty list. Maximum length for this list is 10. Minimum length for this list is 1. Entries must have unique topologyKey and whenUnsatisfiable pairs.",
-}
-
-func (PrometheusOperatorConfig) SwaggerDoc() map[string]string {
-	return map_PrometheusOperatorConfig
-}
-
 var map_UserDefinedMonitoring = map[string]string{
 	"":     "UserDefinedMonitoring config for user-defined projects.",
 	"mode": "mode defines the different configurations of UserDefinedMonitoring Valid values are Disabled and NamespaceIsolated Disabled disables monitoring for user-defined projects. This restricts the default monitoring stack, installed in the openshift-monitoring project, to monitor only platform namespaces, which prevents any custom monitoring configurations or resources from being applied to user-defined namespaces. NamespaceIsolated enables monitoring for user-defined projects with namespace-scoped tenancy. This ensures that metrics, alerts, and monitoring data are isolated at the namespace level. The current default value is `Disabled`.",
@@ -251,44 +226,6 @@ func (UserDefinedMonitoring) SwaggerDoc() map[string]string {
 	return map_UserDefinedMonitoring
 }
 
-var map_CRIOCredentialProviderConfig = map[string]string{
-	"":         "CRIOCredentialProviderConfig holds cluster-wide singleton resource configurations for CRI-O credential provider, the name of this instance is \"cluster\". CRI-O credential provider is a binary shipped with CRI-O that provides a way to obtain container image pull credentials from external sources. For example, it can be used to fetch mirror registry credentials from secrets resources in the cluster within the same namespace the pod will be running in. CRIOCredentialProviderConfig configuration specifies the pod image sources registries that should trigger the CRI-O credential provider execution, which will resolve the CRI-O mirror configurations and obtain the necessary credentials for pod creation. Note: Configuration changes will only take effect after the kubelet restarts, which is automatically managed by the cluster during rollout.\n\nThe resource is a singleton named \"cluster\".\n\nCompatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.",
-	"metadata": "metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
-	"spec":     "spec defines the desired configuration of the CRI-O Credential Provider. This field is required and must be provided when creating the resource.",
-	"status":   "status represents the current state of the CRIOCredentialProviderConfig. When omitted or nil, it indicates that the status has not yet been set by the controller. The controller will populate this field with validation conditions and operational state.",
-}
-
-func (CRIOCredentialProviderConfig) SwaggerDoc() map[string]string {
-	return map_CRIOCredentialProviderConfig
-}
-
-var map_CRIOCredentialProviderConfigList = map[string]string{
-	"":         "CRIOCredentialProviderConfigList contains a list of CRIOCredentialProviderConfig resources\n\nCompatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.",
-	"metadata": "metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
-}
-
-func (CRIOCredentialProviderConfigList) SwaggerDoc() map[string]string {
-	return map_CRIOCredentialProviderConfigList
-}
-
-var map_CRIOCredentialProviderConfigSpec = map[string]string{
-	"":            "CRIOCredentialProviderConfigSpec defines the desired configuration of the CRI-O Credential Provider.",
-	"matchImages": "matchImages is a list of string patterns used to determine whether the CRI-O credential provider should be invoked for a given image. This list is passed to the kubelet CredentialProviderConfig, and if any pattern matches the requested image, CRI-O credential provider will be invoked to obtain credentials for pulling that image or its mirrors. Depending on the platform, the CRI-O credential provider may be installed alongside an existing platform specific provider. Conflicts between the existing platform specific provider image match configuration and this list will be handled by the following precedence rule: credentials from built-in kubelet providers (e.g., ECR, GCR, ACR) take precedence over those from the CRIOCredentialProviderConfig when both match the same image. To avoid uncertainty, it is recommended to avoid configuring your private image patterns to overlap with existing platform specific provider config(e.g., the entries from https://github.com/openshift/machine-config-operator/blob/main/templates/common/aws/files/etc-kubernetes-credential-providers-ecr-credential-provider.yaml). You can check the resource's Status conditions to see if any entries were ignored due to exact matches with known built-in provider patterns.\n\nThis field is optional, the items of the list must contain between 1 and 50 entries. The list is treated as a set, so duplicate entries are not allowed.\n\nFor more details, see: https://kubernetes.io/docs/tasks/administer-cluster/kubelet-credential-provider/ https://github.com/cri-o/crio-credential-provider#architecture\n\nEach entry in matchImages is a pattern which can optionally contain a port and a path. Each entry must be no longer than 512 characters. Wildcards ('*') are supported for full subdomain labels, such as '*.k8s.io' or 'k8s.*.io', and for top-level domains, such as 'k8s.*' (which matches 'k8s.io' or 'k8s.net'). A global wildcard '*' (matching any domain) is not allowed. Wildcards may replace an entire hostname label (e.g., *.example.com), but they cannot appear within a label (e.g., f*oo.example.com) and are not allowed in the port or path. For example, 'example.*.com' is valid, but 'exa*mple.*.com' is not. Each wildcard matches only a single domain label, so '*.io' does **not** match '*.k8s.io'.\n\nA match exists between an image and a matchImage when all of the below are true: Both contain the same number of domain parts and each part matches. The URL path of an matchImages must be a prefix of the target image URL path. If the matchImages contains a port, then the port must match in the image as well.\n\nExample values of matchImages: - 123456789.dkr.ecr.us-east-1.amazonaws.com - *.azurecr.io - gcr.io - *.*.registry.io - registry.io:8080/path",
-}
-
-func (CRIOCredentialProviderConfigSpec) SwaggerDoc() map[string]string {
-	return map_CRIOCredentialProviderConfigSpec
-}
-
-var map_CRIOCredentialProviderConfigStatus = map[string]string{
-	"":           "CRIOCredentialProviderConfigStatus defines the observed state of CRIOCredentialProviderConfig",
-	"conditions": "conditions represent the latest available observations of the configuration state. When omitted, it indicates that no conditions have been reported yet. The maximum number of conditions is 16. Conditions are stored as a map keyed by condition type, ensuring uniqueness.\n\nExpected condition types include: \"Validated\": indicates whether the matchImages configuration is valid",
-}
-
-func (CRIOCredentialProviderConfigStatus) SwaggerDoc() map[string]string {
-	return map_CRIOCredentialProviderConfigStatus
-}
-
 var map_ImagePolicy = map[string]string{
 	"":         "ImagePolicy holds namespace-wide configuration for image signature verification\n\nCompatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.",
 	"metadata": "metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/types_insights.go b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/types_insights.go
index fbe666249..d59f5920b 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/types_insights.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/types_insights.go
@@ -16,7 +16,6 @@ import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 // +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=config-operator,operatorOrdering=01
 // +openshift:enable:FeatureGate=InsightsConfig
 // +openshift:compatibility-gen:level=4
-// +openshift:capability=Insights
 type InsightsDataGather struct {
 	metav1.TypeMeta `json:",inline"`
 	// metadata is the standard object's metadata.
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/zz_generated.featuregated-crd-manifests.yaml b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/zz_generated.featuregated-crd-manifests.yaml
index 1f73e723e..99fe308ef 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/zz_generated.featuregated-crd-manifests.yaml
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/config/v1alpha2/zz_generated.featuregated-crd-manifests.yaml
@@ -2,7 +2,7 @@ insightsdatagathers.config.openshift.io:
   Annotations: {}
   ApprovedPRNumber: https://github.com/openshift/api/pull/2195
   CRDName: insightsdatagathers.config.openshift.io
-  Capability: Insights
+  Capability: ""
   Category: ""
   FeatureGates:
   - InsightsConfig
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/features/features.go b/openshift/tests-extension/vendor/github.com/openshift/api/features/features.go
index 2fc3881f1..187edb0e1 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/features/features.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/features/features.go
@@ -1,85 +1,46 @@
 package features
 
 import (
-	configv1 "github.com/openshift/api/config/v1"
-	"k8s.io/apimachinery/pkg/util/sets"
-)
+	"fmt"
 
-// Generating this many versions future proofs us until at least 2040.
-const (
-	minOpenshiftVersion uint64 = 4
-	maxOpenshiftVersion uint64 = 10
+	configv1 "github.com/openshift/api/config/v1"
 )
 
-func FeatureSets(version uint64, clusterProfile ClusterProfileName, featureSet configv1.FeatureSet) *FeatureGateEnabledDisabled {
-	enabledDisabled := &FeatureGateEnabledDisabled{}
-
-	for name, statuses := range allFeatureGates {
-		enabled := false
-
-		for _, status := range statuses {
-			if status.isEnabled(version, clusterProfile, featureSet) {
-				enabled = true
-				break
-			}
-		}
-
-		if enabled {
-			enabledDisabled.Enabled = append(enabledDisabled.Enabled, FeatureGateDescription{
-				FeatureGateAttributes: configv1.FeatureGateAttributes{
-					Name: name,
-				},
-			})
-		} else {
-			enabledDisabled.Disabled = append(enabledDisabled.Disabled, FeatureGateDescription{
-				FeatureGateAttributes: configv1.FeatureGateAttributes{
-					Name: name,
-				},
-			})
-		}
+func FeatureSets(clusterProfile ClusterProfileName, featureSet configv1.FeatureSet) (*FeatureGateEnabledDisabled, error) {
+	byFeatureSet, ok := allFeatureGates[clusterProfile]
+	if !ok {
+		return nil, fmt.Errorf("no information found for ClusterProfile=%q", clusterProfile)
 	}
-
-	return enabledDisabled
-}
-
-func AllFeatureSets() map[uint64]map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled {
-	versions := sets.New[uint64]()
-	for version := minOpenshiftVersion; version <= maxOpenshiftVersion; version++ {
-		versions.Insert(version)
+	featureGates, ok := byFeatureSet[featureSet]
+	if !ok {
+		return nil, fmt.Errorf("no information found for FeatureSet=%q under ClusterProfile=%q", featureSet, clusterProfile)
 	}
+	return featureGates.DeepCopy(), nil
+}
 
-	clusterProfiles := sets.New[ClusterProfileName](AllClusterProfiles...)
-	featureSets := sets.New[configv1.FeatureSet](configv1.AllFixedFeatureSets...)
+func AllFeatureSets() map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled {
+	ret := map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
 
-	// Check for versions explicitly being set among the gates.
-	for _, statuses := range allFeatureGates {
-		for _, status := range statuses {
-			versions.Insert(status.version.UnsortedList()...)
-		}
-	}
+	for clusterProfile, byFeatureSet := range allFeatureGates {
+		newByFeatureSet := map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
 
-	ret := map[uint64]map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
-	for version := range versions {
-		ret[version] = map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
-		for clusterProfile := range clusterProfiles {
-			ret[version][clusterProfile] = map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
-			for featureSet := range featureSets {
-				ret[version][clusterProfile][featureSet] = FeatureSets(version, clusterProfile, featureSet)
-			}
+		for featureSet, enabledDisabled := range byFeatureSet {
+			newByFeatureSet[featureSet] = enabledDisabled.DeepCopy()
 		}
+		ret[clusterProfile] = newByFeatureSet
 	}
 
 	return ret
 }
 
 var (
-	allFeatureGates = map[configv1.FeatureGateName][]featureGateStatus{}
+	allFeatureGates = map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
 
 	FeatureGateConsolePluginCSP = newFeatureGate("ConsolePluginContentSecurityPolicy").
 					reportProblemsToJiraComponent("Management Console").
 					contactPerson("jhadvig").
 					productScope(ocpSpecific).
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1706").
 					mustRegister()
 
@@ -88,7 +49,7 @@ var (
 							contactPerson("ibihim").
 							productScope(kubernetes).
 							enhancementPR("https://github.com/kubernetes/enhancements/issues/4193").
-							enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateMutatingAdmissionPolicy = newFeatureGate("MutatingAdmissionPolicy").
@@ -96,7 +57,7 @@ var (
 						contactPerson("benluddy").
 						productScope(kubernetes).
 						enhancementPR("https://github.com/kubernetes/enhancements/issues/3962").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateGatewayAPI = newFeatureGate("GatewayAPI").
@@ -104,7 +65,7 @@ var (
 				contactPerson("miciah").
 				productScope(ocpSpecific).
 				enhancementPR(legacyFeatureGateWithoutEnhancement).
-				enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateOpenShiftPodSecurityAdmission = newFeatureGate("OpenShiftPodSecurityAdmission").
@@ -112,7 +73,7 @@ var (
 							contactPerson("ibihim").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/899").
-							enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateBuildCSIVolumes = newFeatureGate("BuildCSIVolumes").
@@ -120,7 +81,7 @@ var (
 					contactPerson("adkaplan").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateAzureWorkloadIdentity = newFeatureGate("AzureWorkloadIdentity").
@@ -128,7 +89,7 @@ var (
 						contactPerson("abutcher").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateAzureDedicatedHosts = newFeatureGate("AzureDedicatedHosts").
@@ -136,7 +97,7 @@ var (
 					contactPerson("rvanderp3").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1783").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateMaxUnavailableStatefulSet = newFeatureGate("MaxUnavailableStatefulSet").
@@ -144,7 +105,7 @@ var (
 						contactPerson("atiratree").
 						productScope(kubernetes).
 						enhancementPR("https://github.com/kubernetes/enhancements/issues/961").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateEventedPLEG = newFeatureGate("EventedPLEG").
@@ -159,7 +120,7 @@ var (
 						contactPerson("sgrunert").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 						mustRegister()
 
 	FeatureGateSigstoreImageVerificationPKI = newFeatureGate("SigstoreImageVerificationPKI").
@@ -167,15 +128,7 @@ var (
 						contactPerson("QiWang").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1658").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
-						mustRegister()
-
-	FeatureGateCRIOCredentialProviderConfig = newFeatureGate("CRIOCredentialProviderConfig").
-						reportProblemsToJiraComponent("node").
-						contactPerson("QiWang").
-						productScope(ocpSpecific).
-						enhancementPR("https://github.com/openshift/enhancements/pull/1861").
-						enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 						mustRegister()
 
 	FeatureGateVSphereHostVMGroupZonal = newFeatureGate("VSphereHostVMGroupZonal").
@@ -183,7 +136,7 @@ var (
 						contactPerson("jcpowermac").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1677").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateVSphereMultiDisk = newFeatureGate("VSphereMultiDisk").
@@ -191,7 +144,7 @@ var (
 					contactPerson("vr4manta").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1709").
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateRouteExternalCertificate = newFeatureGate("RouteExternalCertificate").
@@ -199,15 +152,55 @@ var (
 						contactPerson("chiragkyal").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+						mustRegister()
+
+	FeatureGateCPMSMachineNamePrefix = newFeatureGate("CPMSMachineNamePrefix").
+						reportProblemsToJiraComponent("Cloud Compute / ControlPlaneMachineSet").
+						contactPerson("chiragkyal").
+						productScope(ocpSpecific).
+						enhancementPR("https://github.com/openshift/enhancements/pull/1714").
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
+	FeatureGateAdminNetworkPolicy = newFeatureGate("AdminNetworkPolicy").
+					reportProblemsToJiraComponent("Networking/ovn-kubernetes").
+					contactPerson("tssurya").
+					productScope(ocpSpecific).
+					enhancementPR(legacyFeatureGateWithoutEnhancement).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+					mustRegister()
+
+	FeatureGateNetworkSegmentation = newFeatureGate("NetworkSegmentation").
+					reportProblemsToJiraComponent("Networking/ovn-kubernetes").
+					contactPerson("tssurya").
+					productScope(ocpSpecific).
+					enhancementPR("https://github.com/openshift/enhancements/pull/1623").
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+					mustRegister()
+
 	FeatureGateNetworkConnect = newFeatureGate("NetworkConnect").
 					reportProblemsToJiraComponent("Networking/ovn-kubernetes").
 					contactPerson("tssurya").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/ovn-kubernetes/ovn-kubernetes/pull/5246").
-					enable(inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade).
+					mustRegister()
+
+	FeatureGateAdditionalRoutingCapabilities = newFeatureGate("AdditionalRoutingCapabilities").
+							reportProblemsToJiraComponent("Networking/cluster-network-operator").
+							contactPerson("jcaamano").
+							productScope(ocpSpecific).
+							enhancementPR(legacyFeatureGateWithoutEnhancement).
+							enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+							mustRegister()
+
+	FeatureGateRouteAdvertisements = newFeatureGate("RouteAdvertisements").
+					reportProblemsToJiraComponent("Networking/ovn-kubernetes").
+					contactPerson("jcaamano").
+					productScope(ocpSpecific).
+					enhancementPR(legacyFeatureGateWithoutEnhancement).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateEVPN = newFeatureGate("EVPN").
@@ -215,15 +208,31 @@ var (
 			contactPerson("jcaamano").
 			productScope(ocpSpecific).
 			enhancementPR("https://github.com/openshift/enhancements/pull/1862").
-			enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+			enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 			mustRegister()
 
+	FeatureGateNetworkLiveMigration = newFeatureGate("NetworkLiveMigration").
+					reportProblemsToJiraComponent("Networking/ovn-kubernetes").
+					contactPerson("pliu").
+					productScope(ocpSpecific).
+					enhancementPR(legacyFeatureGateWithoutEnhancement).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+					mustRegister()
+
+	FeatureGateNetworkDiagnosticsConfig = newFeatureGate("NetworkDiagnosticsConfig").
+						reportProblemsToJiraComponent("Networking/cluster-network-operator").
+						contactPerson("kyrtapz").
+						productScope(ocpSpecific).
+						enhancementPR(legacyFeatureGateWithoutEnhancement).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+						mustRegister()
+
 	FeatureGateOVNObservability = newFeatureGate("OVNObservability").
 					reportProblemsToJiraComponent("Networking").
 					contactPerson("npinaeva").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateBackendQuotaGiB = newFeatureGate("EtcdBackendQuota").
@@ -231,7 +240,7 @@ var (
 					contactPerson("hasbro17").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateAutomatedEtcdBackup = newFeatureGate("AutomatedEtcdBackup").
@@ -239,7 +248,7 @@ var (
 					contactPerson("hasbro17").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateMachineAPIOperatorDisableMachineHealthCheckController = newFeatureGate("MachineAPIOperatorDisableMachineHealthCheckController").
@@ -254,7 +263,7 @@ var (
 					contactPerson("miciah").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateMachineConfigNodes = newFeatureGate("MachineConfigNodes").
@@ -262,7 +271,7 @@ var (
 					contactPerson("ijanssen").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1765").
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateImageModeStatusReporting = newFeatureGate("ImageModeStatusReporting").
@@ -270,7 +279,7 @@ var (
 						contactPerson("ijanssen").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1809").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateClusterAPIInstall = newFeatureGate("ClusterAPIInstall").
@@ -285,7 +294,7 @@ var (
 					contactPerson("barbacbd").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateAWSClusterHostedDNS = newFeatureGate("AWSClusterHostedDNS").
@@ -293,7 +302,7 @@ var (
 					contactPerson("barbacbd").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateAzureClusterHostedDNSInstall = newFeatureGate("AzureClusterHostedDNSInstall").
@@ -301,7 +310,7 @@ var (
 						contactPerson("sadasu").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1468").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateMixedCPUsAllocation = newFeatureGate("MixedCPUsAllocation").
@@ -309,7 +318,7 @@ var (
 					contactPerson("titzhak").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateManagedBootImages = newFeatureGate("ManagedBootImages").
@@ -317,7 +326,7 @@ var (
 					contactPerson("djoshy").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateManagedBootImagesAWS = newFeatureGate("ManagedBootImagesAWS").
@@ -325,7 +334,7 @@ var (
 					contactPerson("djoshy").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateManagedBootImagesvSphere = newFeatureGate("ManagedBootImagesvSphere").
@@ -333,7 +342,7 @@ var (
 						contactPerson("rsaini").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1496").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateManagedBootImagesAzure = newFeatureGate("ManagedBootImagesAzure").
@@ -341,7 +350,7 @@ var (
 						contactPerson("djoshy").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1761").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateManagedBootImagesCPMS = newFeatureGate("ManagedBootImagesCPMS").
@@ -349,7 +358,7 @@ var (
 						contactPerson("djoshy").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1818").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateBootImageSkewEnforcement = newFeatureGate("BootImageSkewEnforcement").
@@ -357,7 +366,7 @@ var (
 						contactPerson("djoshy").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1761").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateBootcNodeManagement = newFeatureGate("BootcNodeManagement").
@@ -365,7 +374,7 @@ var (
 					contactPerson("inesqyx").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateSignatureStores = newFeatureGate("SignatureStores").
@@ -373,7 +382,7 @@ var (
 					contactPerson("lmohanty").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateKMSv1 = newFeatureGate("KMSv1").
@@ -381,7 +390,7 @@ var (
 				contactPerson("dgrisonnet").
 				productScope(kubernetes).
 				enhancementPR(legacyFeatureGateWithoutEnhancement).
-				enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGatePinnedImages = newFeatureGate("PinnedImages").
@@ -389,7 +398,7 @@ var (
 				contactPerson("RishabhSaini").
 				productScope(ocpSpecific).
 				enhancementPR(legacyFeatureGateWithoutEnhancement).
-				enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateUpgradeStatus = newFeatureGate("UpgradeStatus").
@@ -397,15 +406,23 @@ var (
 					contactPerson("pmuller").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 					mustRegister()
 
+	FeatureGateVolumeAttributesClass = newFeatureGate("VolumeAttributesClass").
+						reportProblemsToJiraComponent("Storage / Kubernetes External Components").
+						contactPerson("dfajmon").
+						productScope(kubernetes).
+						enhancementPR("https://github.com/kubernetes/enhancements/issues/3751").
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+						mustRegister()
+
 	FeatureGateVolumeGroupSnapshot = newFeatureGate("VolumeGroupSnapshot").
 					reportProblemsToJiraComponent("Storage / Kubernetes External Components").
 					contactPerson("fbertina").
 					productScope(kubernetes).
 					enhancementPR("https://github.com/kubernetes/enhancements/issues/3476").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateExternalSnapshotMetadata = newFeatureGate("ExternalSnapshotMetadata").
@@ -413,7 +430,7 @@ var (
 						contactPerson("jdobson").
 						productScope(kubernetes).
 						enhancementPR("https://github.com/kubernetes/enhancements/issues/3314").
-						enable(inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateExternalOIDC = newFeatureGate("ExternalOIDC").
@@ -421,7 +438,7 @@ var (
 				contactPerson("liouk").
 				productScope(ocpSpecific).
 				enhancementPR("https://github.com/openshift/enhancements/pull/1596").
-				enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 				mustRegister()
 
 	FeatureGateExternalOIDCWithAdditionalClaimMappings = newFeatureGate("ExternalOIDCWithUIDAndExtraClaimMappings").
@@ -429,7 +446,7 @@ var (
 								contactPerson("bpalmer").
 								productScope(ocpSpecific).
 								enhancementPR("https://github.com/openshift/enhancements/pull/1777").
-								enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+								enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 								mustRegister()
 
 	FeatureGateExternalOIDCWithUpstreamParity = newFeatureGate("ExternalOIDCWithUpstreamParity").
@@ -437,7 +454,7 @@ var (
 							contactPerson("saldawam").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1763").
-							enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateExample = newFeatureGate("Example").
@@ -445,7 +462,7 @@ var (
 				contactPerson("deads").
 				productScope(ocpSpecific).
 				enhancementPR(legacyFeatureGateWithoutEnhancement).
-				enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateExample2 = newFeatureGate("Example2").
@@ -453,7 +470,7 @@ var (
 				contactPerson("JoelSpeed").
 				productScope(ocpSpecific).
 				enhancementPR(legacyFeatureGateWithoutEnhancement).
-				enable(inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateNewOLM = newFeatureGate("NewOLM").
@@ -461,7 +478,7 @@ var (
 				contactPerson("joe").
 				productScope(ocpSpecific).
 				enhancementPR(legacyFeatureGateWithoutEnhancement).
-				enable(inClusterProfile(SelfManaged), inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableForClusterProfile(SelfManaged, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 				mustRegister()
 
 	FeatureGateNewOLMCatalogdAPIV1Metas = newFeatureGate("NewOLMCatalogdAPIV1Metas").
@@ -469,7 +486,7 @@ var (
 						contactPerson("jordank").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1749").
-						enable(inClusterProfile(SelfManaged), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableForClusterProfile(SelfManaged, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateNewOLMPreflightPermissionChecks = newFeatureGate("NewOLMPreflightPermissionChecks").
@@ -477,7 +494,7 @@ var (
 							contactPerson("tshort").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1768").
-							enable(inClusterProfile(SelfManaged), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableForClusterProfile(SelfManaged, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateNewOLMOwnSingleNamespace = newFeatureGate("NewOLMOwnSingleNamespace").
@@ -485,7 +502,7 @@ var (
 						contactPerson("nschieder").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1849").
-						enable(inClusterProfile(SelfManaged), inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableForClusterProfile(SelfManaged, configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateNewOLMWebhookProviderOpenshiftServiceCA = newFeatureGate("NewOLMWebhookProviderOpenshiftServiceCA").
@@ -493,7 +510,7 @@ var (
 								contactPerson("pegoncal").
 								productScope(ocpSpecific).
 								enhancementPR("https://github.com/openshift/enhancements/pull/1844").
-								enable(inClusterProfile(SelfManaged), inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+								enableForClusterProfile(SelfManaged, configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 								mustRegister()
 
 	FeatureGateNewOLMBoxCutterRuntime = newFeatureGate("NewOLMBoxCutterRuntime").
@@ -501,7 +518,7 @@ var (
 						contactPerson("pegoncal").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1890").
-						enable(inClusterProfile(SelfManaged), inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+						enableForClusterProfile(SelfManaged, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateInsightsOnDemandDataGather = newFeatureGate("InsightsOnDemandDataGather").
@@ -509,7 +526,7 @@ var (
 						contactPerson("tremes").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inDefault(), inOKD(), inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateInsightsConfig = newFeatureGate("InsightsConfig").
@@ -517,7 +534,7 @@ var (
 					contactPerson("tremes").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inDefault(), inOKD(), inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateMetricsCollectionProfiles = newFeatureGate("MetricsCollectionProfiles").
@@ -525,7 +542,7 @@ var (
 						contactPerson("rexagod").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateClusterAPIInstallIBMCloud = newFeatureGate("ClusterAPIInstallIBMCloud").
@@ -533,7 +550,7 @@ var (
 						contactPerson("cjschaef").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateMachineAPIMigration = newFeatureGate("MachineAPIMigration").
@@ -541,7 +558,7 @@ var (
 					contactPerson("jspeed").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateClusterAPIMachineManagement = newFeatureGate("ClusterAPIMachineManagement").
@@ -549,7 +566,7 @@ var (
 						contactPerson("ddonati").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1465").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateClusterAPIMachineManagementVSphere = newFeatureGate("ClusterAPIMachineManagementVSphere").
@@ -557,7 +574,7 @@ var (
 							contactPerson("jcpowermac").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1465").
-							enable(inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateClusterMonitoringConfig = newFeatureGate("ClusterMonitoringConfig").
@@ -565,7 +582,7 @@ var (
 						contactPerson("marioferh").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateMultiArchInstallAzure = newFeatureGate("MultiArchInstallAzure").
@@ -580,7 +597,7 @@ var (
 						contactPerson("psundara").
 						productScope(ocpSpecific).
 						enhancementPR(legacyFeatureGateWithoutEnhancement).
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateUserNamespacesSupport = newFeatureGate("UserNamespacesSupport").
@@ -588,7 +605,7 @@ var (
 						contactPerson("haircommander").
 						productScope(kubernetes).
 						enhancementPR("https://github.com/kubernetes/enhancements/issues/127").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 						mustRegister()
 
 	// Note: this feature is perma-alpha, but it is safe and desireable to enable.
@@ -599,30 +616,38 @@ var (
 							contactPerson("haircommander").
 							productScope(kubernetes).
 							enhancementPR("https://github.com/kubernetes/enhancements/issues/127").
-							enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 							mustRegister()
 
+	FeatureGateProcMountType = newFeatureGate("ProcMountType").
+					reportProblemsToJiraComponent("Node").
+					contactPerson("haircommander").
+					productScope(kubernetes).
+					enhancementPR("https://github.com/kubernetes/enhancements/issues/4265").
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
+					mustRegister()
+
 	FeatureGateVSphereMultiNetworks = newFeatureGate("VSphereMultiNetworks").
 					reportProblemsToJiraComponent("SPLAT").
 					contactPerson("rvanderp").
 					productScope(ocpSpecific).
 					enhancementPR(legacyFeatureGateWithoutEnhancement).
-					enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateIngressControllerDynamicConfigurationManager = newFeatureGate("IngressControllerDynamicConfigurationManager").
 								reportProblemsToJiraComponent("Networking/router").
 								contactPerson("miciah").
 								productScope(ocpSpecific).
-								enhancementPR("https://github.com/openshift/enhancements/pull/1687").
-								enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+								enhancementPR(legacyFeatureGateWithoutEnhancement).
+								enableIn(configv1.DevPreviewNoUpgrade).
 								mustRegister()
 
 	FeatureGateMinimumKubeletVersion = newFeatureGate("MinimumKubeletVersion").
 						reportProblemsToJiraComponent("Node").
 						contactPerson("haircommander").
 						productScope(ocpSpecific).
-						enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1697").
 						mustRegister()
 
@@ -631,7 +656,7 @@ var (
 					contactPerson("yanhli").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1711").
-					enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateKMSEncryptionProvider = newFeatureGate("KMSEncryptionProvider").
@@ -639,7 +664,7 @@ var (
 						contactPerson("swghosh").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1682").
-						enable(inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateKMSEncryption = newFeatureGate("KMSEncryption").
@@ -647,7 +672,7 @@ var (
 					contactPerson("ardaguclu").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1900").
-					enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateHighlyAvailableArbiter = newFeatureGate("HighlyAvailableArbiter").
@@ -655,7 +680,7 @@ var (
 						contactPerson("eggfoobar").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1674").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 						mustRegister()
 
 	FeatureGateCVOConfiguration = newFeatureGate("ClusterVersionOperatorConfiguration").
@@ -663,7 +688,7 @@ var (
 					contactPerson("dhurta").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1492").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateClusterUpdateAcceptRisks = newFeatureGate("ClusterUpdateAcceptRisks").
@@ -671,7 +696,7 @@ var (
 						contactPerson("hongkliu").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1807").
-						enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateGCPCustomAPIEndpoints = newFeatureGate("GCPCustomAPIEndpoints").
@@ -679,7 +704,7 @@ var (
 						contactPerson("barbacbd").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1492").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateDyanmicServiceEndpointIBMCloud = newFeatureGate("DyanmicServiceEndpointIBMCloud").
@@ -687,7 +712,7 @@ var (
 							contactPerson("jared-hayes-dev").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1712").
-							enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateSELinuxMount = newFeatureGate("SELinuxMount").
@@ -695,7 +720,7 @@ var (
 				contactPerson("jsafrane").
 				productScope(kubernetes).
 				enhancementPR("https://github.com/kubernetes/enhancements/issues/1710").
-				enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateDualReplica = newFeatureGate("DualReplica").
@@ -703,7 +728,7 @@ var (
 				contactPerson("jaypoulz").
 				productScope(ocpSpecific).
 				enhancementPR("https://github.com/openshift/enhancements/pull/1675").
-				enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateGatewayAPIController = newFeatureGate("GatewayAPIController").
@@ -716,7 +741,7 @@ var (
 		// A dedicated feature gate now controls the Gateway Controller to distinguish
 		// its production readiness from that of the CRDs.
 		enhancementPR("https://github.com/openshift/enhancements/pull/1756").
-		enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+		enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 		mustRegister()
 
 	FeatureShortCertRotation = newFeatureGate("ShortCertRotation").
@@ -731,7 +756,7 @@ var (
 									contactPerson("rbednar").
 									productScope(ocpSpecific).
 									enhancementPR("https://github.com/openshift/enhancements/pull/1748").
-									enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+									enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 									mustRegister()
 
 	FeatureGateAzureMultiDisk = newFeatureGate("AzureMultiDisk").
@@ -739,7 +764,7 @@ var (
 					contactPerson("jcpowermac").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1779").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateStoragePerformantSecurityPolicy = newFeatureGate("StoragePerformantSecurityPolicy").
@@ -747,7 +772,7 @@ var (
 							contactPerson("hekumar").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1804").
-							enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 							mustRegister()
 
 	FeatureGateMultiDiskSetup = newFeatureGate("MultiDiskSetup").
@@ -755,7 +780,7 @@ var (
 					contactPerson("jcpowermac").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1805").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateAWSDedicatedHosts = newFeatureGate("AWSDedicatedHosts").
@@ -763,7 +788,7 @@ var (
 					contactPerson("rvanderp3").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1781").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateVSphereMixedNodeEnv = newFeatureGate("VSphereMixedNodeEnv").
@@ -771,15 +796,23 @@ var (
 					contactPerson("vr4manta").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1772").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
+	FeatureGatePreconfiguredUDNAddresses = newFeatureGate("PreconfiguredUDNAddresses").
+						reportProblemsToJiraComponent("Networking/ovn-kubernetes").
+						contactPerson("kyrtapz").
+						productScope(ocpSpecific).
+						enhancementPR("https://github.com/openshift/enhancements/pull/1793").
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
+						mustRegister()
+
 	FeatureGateAWSServiceLBNetworkSecurityGroup = newFeatureGate("AWSServiceLBNetworkSecurityGroup").
 							reportProblemsToJiraComponent("Cloud Compute / Cloud Controller Manager").
 							contactPerson("mtulio").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1802").
-							enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateImageVolume = newFeatureGate("ImageVolume").
@@ -787,7 +820,7 @@ var (
 				contactPerson("haircommander").
 				productScope(kubernetes).
 				enhancementPR("https://github.com/openshift/enhancements/pull/1792").
-				enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 				mustRegister()
 
 	FeatureGateNoRegistryClusterInstall = newFeatureGate("NoRegistryClusterInstall").
@@ -795,7 +828,7 @@ var (
 						contactPerson("andfasano").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1821").
-						enable(inClusterProfile(SelfManaged), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableForClusterProfile(SelfManaged, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateGCPClusterHostedDNSInstall = newFeatureGate("GCPClusterHostedDNSInstall").
@@ -803,7 +836,7 @@ var (
 						contactPerson("barbacbd").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1468").
-						enable(inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.Default, configv1.OKD, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateAWSClusterHostedDNSInstall = newFeatureGate("AWSClusterHostedDNSInstall").
@@ -811,7 +844,7 @@ var (
 						contactPerson("barbacbd").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1468").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateGCPCustomAPIEndpointsInstall = newFeatureGate("GCPCustomAPIEndpointsInstall").
@@ -819,7 +852,7 @@ var (
 						contactPerson("barbacbd").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1492").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateIrreconcilableMachineConfig = newFeatureGate("IrreconcilableMachineConfig").
@@ -827,14 +860,14 @@ var (
 						contactPerson("pabrodri").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1785").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 	FeatureGateAWSDualStackInstall = newFeatureGate("AWSDualStackInstall").
 					reportProblemsToJiraComponent("Installer").
 					contactPerson("sadasu").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1806").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateAzureDualStackInstall = newFeatureGate("AzureDualStackInstall").
@@ -842,7 +875,7 @@ var (
 						contactPerson("jhixson74").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1806").
-						enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateGCPDualStackInstall = newFeatureGate("GCPDualStackInstall").
@@ -850,7 +883,7 @@ var (
 					contactPerson("barbacbd").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1806").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureCBORServingAndStorage = newFeatureGate("CBORServingAndStorage").
@@ -858,7 +891,7 @@ var (
 					contactPerson("benluddy").
 					productScope(kubernetes).
 					enhancementPR("https://github.com/kubernetes/enhancements/issues/4222").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureCBORClientsAllowCBOR = newFeatureGate("ClientsAllowCBOR").
@@ -873,7 +906,7 @@ var (
 					contactPerson("benluddy").
 					productScope(kubernetes).
 					enhancementPR("https://github.com/kubernetes/enhancements/issues/4222").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureEventTTL = newFeatureGate("EventTTL").
@@ -881,7 +914,7 @@ var (
 			contactPerson("tjungblu").
 			productScope(ocpSpecific).
 			enhancementPR("https://github.com/openshift/enhancements/pull/1857").
-			enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+			enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 			mustRegister()
 
 	FeatureGateMutableCSINodeAllocatableCount = newFeatureGate("MutableCSINodeAllocatableCount").
@@ -889,14 +922,14 @@ var (
 							contactPerson("jsafrane").
 							productScope(kubernetes).
 							enhancementPR("https://github.com/kubernetes/enhancements/issues/4876").
-							enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade(), inDefault(), inOKD()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 	FeatureGateOSStreams = newFeatureGate("OSStreams").
 				reportProblemsToJiraComponent("MachineConfigOperator").
 				contactPerson("pabrodri").
 				productScope(ocpSpecific).
 				enhancementPR("https://github.com/openshift/enhancements/pull/1874").
-				enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+				enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 				mustRegister()
 
 	FeatureGateCRDCompatibilityRequirementOperator = newFeatureGate("CRDCompatibilityRequirementOperator").
@@ -904,14 +937,14 @@ var (
 							contactPerson("ddonati").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1845").
-							enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 							mustRegister()
 	FeatureGateOnPremDNSRecords = newFeatureGate("OnPremDNSRecords").
 					reportProblemsToJiraComponent("Networking / On-Prem DNS").
 					contactPerson("bnemec").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1803").
-					enable(inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateProvisioningRequestAvailable = newFeatureGate("ProvisioningRequestAvailable").
@@ -919,7 +952,7 @@ var (
 						contactPerson("elmiko").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1752").
-						enable(inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade).
 						mustRegister()
 
 	FeatureGateHyperShiftOnlyDynamicResourceAllocation = newFeatureGate("HyperShiftOnlyDynamicResourceAllocation").
@@ -927,23 +960,15 @@ var (
 								contactPerson("csrwng").
 								productScope(ocpSpecific).
 								enhancementPR("https://github.com/kubernetes/enhancements/issues/4381").
-								enable(inClusterProfile(Hypershift), inDefault(), inOKD(), inTechPreviewNoUpgrade(), inDevPreviewNoUpgrade()).
+								enableForClusterProfile(Hypershift, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default, configv1.OKD).
 								mustRegister()
 
-	FeatureGateDRAPartitionableDevices = newFeatureGate("DRAPartitionableDevices").
-						reportProblemsToJiraComponent("Node").
-						contactPerson("harche").
-						productScope(kubernetes).
-						enhancementPR("https://github.com/kubernetes/enhancements/issues/4815").
-						enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
-						mustRegister()
-
 	FeatureGateConfigurablePKI = newFeatureGate("ConfigurablePKI").
 					reportProblemsToJiraComponent("kube-apiserver").
 					contactPerson("sanchezl").
 					productScope(ocpSpecific).
 					enhancementPR("https://github.com/openshift/enhancements/pull/1882").
-					enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
+					enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
 					mustRegister()
 
 	FeatureGateClusterAPIControlPlaneInstall = newFeatureGate("ClusterAPIControlPlaneInstall").
@@ -951,7 +976,7 @@ var (
 							contactPerson("patrickdillon").
 							productScope(ocpSpecific).
 							enhancementPR("https://github.com/openshift/enhancements/pull/1465").
-							enable(inDevPreviewNoUpgrade()).
+							enableIn(configv1.DevPreviewNoUpgrade).
 							mustRegister()
 
 	FeatureGateClusterAPIComputeInstall = newFeatureGate("ClusterAPIComputeInstall").
@@ -959,14 +984,6 @@ var (
 						contactPerson("patrickdillon").
 						productScope(ocpSpecific).
 						enhancementPR("https://github.com/openshift/enhancements/pull/1465").
-						enable(inDevPreviewNoUpgrade()).
+						enableIn(configv1.DevPreviewNoUpgrade).
 						mustRegister()
-
-	FeatureGateGatewayAPIWithoutOLM = newFeatureGate("GatewayAPIWithoutOLM").
-					reportProblemsToJiraComponent("Routing").
-					contactPerson("miciah").
-					productScope(ocpSpecific).
-					enhancementPR("https://github.com/openshift/enhancements/pull/1933").
-					enable(inDevPreviewNoUpgrade(), inTechPreviewNoUpgrade()).
-					mustRegister()
 )
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/features/legacyfeaturegates.go b/openshift/tests-extension/vendor/github.com/openshift/api/features/legacyfeaturegates.go
index a92c0b9bb..dd11fdf66 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/features/legacyfeaturegates.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/features/legacyfeaturegates.go
@@ -7,6 +7,10 @@ var legacyFeatureGates = sets.New(
 	// never add to this list, if you think you have an exception ask @deads2k
 	"AWSEFSDriverVolumeMetrics",
 	// never add to this list, if you think you have an exception ask @deads2k
+	"AdditionalRoutingCapabilities",
+	// never add to this list, if you think you have an exception ask @deads2k
+	"AdminNetworkPolicy",
+	// never add to this list, if you think you have an exception ask @deads2k
 	"AlibabaPlatform",
 	// never add to this list, if you think you have an exception ask @deads2k
 	"AutomatedEtcdBackup",
@@ -75,6 +79,12 @@ var legacyFeatureGates = sets.New(
 	// never add to this list, if you think you have an exception ask @deads2k
 	"MultiArchInstallGCP",
 	// never add to this list, if you think you have an exception ask @deads2k
+	"NetworkDiagnosticsConfig",
+	// never add to this list, if you think you have an exception ask @deads2k
+	"NetworkLiveMigration",
+	// never add to this list, if you think you have an exception ask @deads2k
+	"NetworkSegmentation",
+	// never add to this list, if you think you have an exception ask @deads2k
 	"NewOLM",
 	// never add to this list, if you think you have an exception ask @deads2k
 	"OVNObservability",
@@ -85,6 +95,8 @@ var legacyFeatureGates = sets.New(
 	// never add to this list, if you think you have an exception ask @deads2k
 	"PrivateHostedZoneAWS",
 	// never add to this list, if you think you have an exception ask @deads2k
+	"RouteAdvertisements",
+	// never add to this list, if you think you have an exception ask @deads2k
 	"RouteExternalCertificate",
 	// never add to this list, if you think you have an exception ask @deads2k
 	"SetEIPForNLBIngressController",
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/features/util.go b/openshift/tests-extension/vendor/github.com/openshift/api/features/util.go
index e2b35d93a..8606b6bef 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/features/util.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/features/util.go
@@ -6,7 +6,6 @@ import (
 	"strings"
 
 	configv1 "github.com/openshift/api/config/v1"
-	"k8s.io/apimachinery/pkg/util/sets"
 )
 
 // FeatureGateDescription is a golang-only interface used to contains details for a feature gate.
@@ -46,77 +45,6 @@ var (
 	kubernetes  = OwningProduct("Kubernetes")
 )
 
-type featureGateEnableOption func(s *featureGateStatus)
-
-type versionOperator string
-
-var (
-	equal              = versionOperator("=")
-	greaterThan        = versionOperator(">")
-	greaterThanOrEqual = versionOperator(">=")
-	lessThan           = versionOperator("<")
-	lessThanOrEqual    = versionOperator("<=")
-)
-
-func inVersion(version uint64, op versionOperator) featureGateEnableOption {
-	return func(s *featureGateStatus) {
-		switch op {
-		case equal:
-			s.version.Insert(version)
-		case greaterThan:
-			for v := version + 1; v <= maxOpenshiftVersion; v++ {
-				s.version.Insert(v)
-			}
-		case greaterThanOrEqual:
-			for v := version; v <= maxOpenshiftVersion; v++ {
-				s.version.Insert(v)
-			}
-		case lessThan:
-			for v := minOpenshiftVersion; v < version; v++ {
-				s.version.Insert(v)
-			}
-		case lessThanOrEqual:
-			for v := minOpenshiftVersion; v <= version; v++ {
-				s.version.Insert(v)
-			}
-		default:
-			panic(fmt.Sprintf("invalid version operator: %s", op))
-		}
-	}
-}
-
-func inClusterProfile(clusterProfile ClusterProfileName) featureGateEnableOption {
-	return func(s *featureGateStatus) {
-		s.clusterProfile.Insert(clusterProfile)
-	}
-}
-
-func withFeatureSet(featureSet configv1.FeatureSet) featureGateEnableOption {
-	return func(s *featureGateStatus) {
-		s.featureSets.Insert(featureSet)
-	}
-}
-
-func inDefault() featureGateEnableOption {
-	return withFeatureSet(configv1.Default)
-}
-
-func inTechPreviewNoUpgrade() featureGateEnableOption {
-	return withFeatureSet(configv1.TechPreviewNoUpgrade)
-}
-
-func inDevPreviewNoUpgrade() featureGateEnableOption {
-	return withFeatureSet(configv1.DevPreviewNoUpgrade)
-}
-
-func inCustomNoUpgrade() featureGateEnableOption {
-	return withFeatureSet(configv1.CustomNoUpgrade)
-}
-
-func inOKD() featureGateEnableOption {
-	return withFeatureSet(configv1.OKD)
-}
-
 type featureGateBuilder struct {
 	name                string
 	owningJiraComponent string
@@ -124,22 +52,7 @@ type featureGateBuilder struct {
 	owningProduct       OwningProduct
 	enhancementPRURL    string
 
-	status []featureGateStatus
-}
-type featureGateStatus struct {
-	version        sets.Set[uint64]
-	clusterProfile sets.Set[ClusterProfileName]
-	featureSets    sets.Set[configv1.FeatureSet]
-}
-
-func (s *featureGateStatus) isEnabled(version uint64, clusterProfile ClusterProfileName, featureSet configv1.FeatureSet) bool {
-	// If either version or clusterprofile are empty, match all.
-	matchesVersion := len(s.version) == 0 || s.version.Has(version)
-	matchesClusterProfile := len(s.clusterProfile) == 0 || s.clusterProfile.Has(clusterProfile)
-
-	matchesFeatureSet := s.featureSets.Has(featureSet)
-
-	return matchesVersion && matchesClusterProfile && matchesFeatureSet
+	statusByClusterProfileByFeatureSet map[ClusterProfileName]map[configv1.FeatureSet]bool
 }
 
 const (
@@ -148,9 +61,18 @@ const (
 
 // newFeatureGate featuregate are disabled in every FeatureSet and selectively enabled
 func newFeatureGate(name string) *featureGateBuilder {
-	return &featureGateBuilder{
-		name: name,
+	b := &featureGateBuilder{
+		name:                               name,
+		statusByClusterProfileByFeatureSet: map[ClusterProfileName]map[configv1.FeatureSet]bool{},
+	}
+	for _, clusterProfile := range AllClusterProfiles {
+		byFeatureSet := map[configv1.FeatureSet]bool{}
+		for _, featureSet := range configv1.AllFixedFeatureSets {
+			byFeatureSet[featureSet] = false
+		}
+		b.statusByClusterProfileByFeatureSet[clusterProfile] = byFeatureSet
 	}
+	return b
 }
 
 func (b *featureGateBuilder) reportProblemsToJiraComponent(owningJiraComponent string) *featureGateBuilder {
@@ -173,19 +95,19 @@ func (b *featureGateBuilder) enhancementPR(url string) *featureGateBuilder {
 	return b
 }
 
-func (b *featureGateBuilder) enable(opts ...featureGateEnableOption) *featureGateBuilder {
-	status := featureGateStatus{
-		version:        sets.New[uint64](),
-		clusterProfile: sets.New[ClusterProfileName](),
-		featureSets:    sets.New[configv1.FeatureSet](),
+func (b *featureGateBuilder) enableIn(featureSets ...configv1.FeatureSet) *featureGateBuilder {
+	for clusterProfile := range b.statusByClusterProfileByFeatureSet {
+		for _, featureSet := range featureSets {
+			b.statusByClusterProfileByFeatureSet[clusterProfile][featureSet] = true
+		}
 	}
+	return b
+}
 
-	for _, opt := range opts {
-		opt(&status)
+func (b *featureGateBuilder) enableForClusterProfile(clusterProfile ClusterProfileName, featureSets ...configv1.FeatureSet) *featureGateBuilder {
+	for _, featureSet := range featureSets {
+		b.statusByClusterProfileByFeatureSet[clusterProfile][featureSet] = true
 	}
-
-	b.status = append(b.status, status)
-
 	return b
 }
 
@@ -222,8 +144,33 @@ func (b *featureGateBuilder) register() (configv1.FeatureGateName, error) {
 	}
 
 	featureGateName := configv1.FeatureGateName(b.name)
+	description := FeatureGateDescription{
+		FeatureGateAttributes: configv1.FeatureGateAttributes{
+			Name: featureGateName,
+		},
+		OwningJiraComponent: b.owningJiraComponent,
+		ResponsiblePerson:   b.responsiblePerson,
+		OwningProduct:       b.owningProduct,
+		EnhancementPR:       b.enhancementPRURL,
+	}
+
+	// statusByClusterProfileByFeatureSet is initialized by constructor to be false for every combination
+	for clusterProfile, byFeatureSet := range b.statusByClusterProfileByFeatureSet {
+		for featureSet, enabled := range byFeatureSet {
+			if _, ok := allFeatureGates[clusterProfile]; !ok {
+				allFeatureGates[clusterProfile] = map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
+			}
+			if _, ok := allFeatureGates[clusterProfile][featureSet]; !ok {
+				allFeatureGates[clusterProfile][featureSet] = &FeatureGateEnabledDisabled{}
+			}
 
-	allFeatureGates[featureGateName] = b.status
+			if enabled {
+				allFeatureGates[clusterProfile][featureSet].Enabled = append(allFeatureGates[clusterProfile][featureSet].Enabled, description)
+			} else {
+				allFeatureGates[clusterProfile][featureSet].Disabled = append(allFeatureGates[clusterProfile][featureSet].Disabled, description)
+			}
+		}
+	}
 
 	return featureGateName, nil
 }
@@ -242,16 +189,12 @@ func (in *FeatureGateEnabledDisabled) DeepCopyInto(out *FeatureGateEnabledDisabl
 	if in.Enabled != nil {
 		in, out := &in.Enabled, &out.Enabled
 		*out = make([]FeatureGateDescription, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
+		copy(*out, *in)
 	}
 	if in.Disabled != nil {
 		in, out := &in.Disabled, &out.Disabled
 		*out = make([]FeatureGateDescription, len(*in))
-		for i := range *in {
-			(*in)[i].DeepCopyInto(&(*out)[i])
-		}
+		copy(*out, *in)
 	}
 	return
 }
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/types_network.go b/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/types_network.go
index 1cf56f549..111240eec 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/types_network.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/types_network.go
@@ -54,7 +54,7 @@ type NetworkList struct {
 
 // NetworkSpec is the top-level network configuration object.
 // +kubebuilder:validation:XValidation:rule="!has(self.defaultNetwork) || !has(self.defaultNetwork.ovnKubernetesConfig) || !has(self.defaultNetwork.ovnKubernetesConfig.gatewayConfig) || !has(self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding) || self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding == oldSelf.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding || self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding == 'Restricted' || self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding == 'Global'",message="invalid value for IPForwarding, valid values are 'Restricted' or 'Global'"
-// +kubebuilder:validation:XValidation:rule="(has(self.additionalRoutingCapabilities) && ('FRR' in self.additionalRoutingCapabilities.providers)) || !has(self.defaultNetwork) || !has(self.defaultNetwork.ovnKubernetesConfig) || !has(self.defaultNetwork.ovnKubernetesConfig.routeAdvertisements) || self.defaultNetwork.ovnKubernetesConfig.routeAdvertisements != 'Enabled'",message="Route advertisements cannot be Enabled if 'FRR' routing capability provider is not available"
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=RouteAdvertisements,rule="(has(self.additionalRoutingCapabilities) && ('FRR' in self.additionalRoutingCapabilities.providers)) || !has(self.defaultNetwork) || !has(self.defaultNetwork.ovnKubernetesConfig) || !has(self.defaultNetwork.ovnKubernetesConfig.routeAdvertisements) || self.defaultNetwork.ovnKubernetesConfig.routeAdvertisements != 'Enabled'",message="Route advertisements cannot be Enabled if 'FRR' routing capability provider is not available"
 type NetworkSpec struct {
 	OperatorSpec `json:",inline"`
 
@@ -136,6 +136,7 @@ type NetworkSpec struct {
 	// capabilities acquired through the enablement of these components but may
 	// require specific configuration on their side to do so; refer to their
 	// respective documentation and configuration options.
+	// +openshift:enable:FeatureGate=AdditionalRoutingCapabilities
 	// +optional
 	AdditionalRoutingCapabilities *AdditionalRoutingCapabilities `json:"additionalRoutingCapabilities,omitempty"`
 }
@@ -156,7 +157,7 @@ const (
 )
 
 // NetworkMigration represents the cluster network migration configuration.
-// +kubebuilder:validation:XValidation:rule="!has(self.mtu) || !has(self.networkType) || self.networkType == \"\" || has(self.mode) && self.mode == 'Live'",message="networkType migration in mode other than 'Live' may not be configured at the same time as mtu migration"
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=NetworkLiveMigration,rule="!has(self.mtu) || !has(self.networkType) || self.networkType == \"\" || has(self.mode) && self.mode == 'Live'",message="networkType migration in mode other than 'Live' may not be configured at the same time as mtu migration"
 type NetworkMigration struct {
 	// mtu contains the MTU migration configuration. Set this to allow changing
 	// the MTU values for the default network. If unset, the operation of
@@ -464,6 +465,7 @@ type OVNKubernetesConfig struct {
 	// means the user has no opinion and the platform is left to choose
 	// reasonable defaults. These defaults are subject to change over time. The
 	// current default is "Disabled".
+	// +openshift:enable:FeatureGate=RouteAdvertisements
 	// +optional
 	RouteAdvertisements RouteAdvertisementsEnablement `json:"routeAdvertisements,omitempty"`
 }
diff --git a/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml b/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
index 51a758804..e7c94e286 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/openshift/tests-extension/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -327,7 +327,10 @@ networks.operator.openshift.io:
   CRDName: networks.operator.openshift.io
   Capability: ""
   Category: ""
-  FeatureGates: []
+  FeatureGates:
+  - AdditionalRoutingCapabilities
+  - NetworkLiveMigration
+  - RouteAdvertisements
   FilenameOperatorName: network
   FilenameOperatorOrdering: "01"
   FilenameRunLevel: "0000_70"
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/acceptrisk.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/acceptrisk.go
deleted file mode 100644
index dba8a77ed..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/acceptrisk.go
+++ /dev/null
@@ -1,23 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1
-
-// AcceptRiskApplyConfiguration represents a declarative configuration of the AcceptRisk type for use
-// with apply.
-type AcceptRiskApplyConfiguration struct {
-	Name *string `json:"name,omitempty"`
-}
-
-// AcceptRiskApplyConfiguration constructs a declarative configuration of the AcceptRisk type for use with
-// apply.
-func AcceptRisk() *AcceptRiskApplyConfiguration {
-	return &AcceptRiskApplyConfiguration{}
-}
-
-// WithName sets the Name field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Name field is set to the value of the last call.
-func (b *AcceptRiskApplyConfiguration) WithName(value string) *AcceptRiskApplyConfiguration {
-	b.Name = &value
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/clusterversionstatus.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/clusterversionstatus.go
index 4d44643d4..e966cf424 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/clusterversionstatus.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/clusterversionstatus.go
@@ -5,15 +5,14 @@ package v1
 // ClusterVersionStatusApplyConfiguration represents a declarative configuration of the ClusterVersionStatus type for use
 // with apply.
 type ClusterVersionStatusApplyConfiguration struct {
-	Desired                *ReleaseApplyConfiguration                          `json:"desired,omitempty"`
-	History                []UpdateHistoryApplyConfiguration                   `json:"history,omitempty"`
-	ObservedGeneration     *int64                                              `json:"observedGeneration,omitempty"`
-	VersionHash            *string                                             `json:"versionHash,omitempty"`
-	Capabilities           *ClusterVersionCapabilitiesStatusApplyConfiguration `json:"capabilities,omitempty"`
-	Conditions             []ClusterOperatorStatusConditionApplyConfiguration  `json:"conditions,omitempty"`
-	AvailableUpdates       []ReleaseApplyConfiguration                         `json:"availableUpdates,omitempty"`
-	ConditionalUpdates     []ConditionalUpdateApplyConfiguration               `json:"conditionalUpdates,omitempty"`
-	ConditionalUpdateRisks []ConditionalUpdateRiskApplyConfiguration           `json:"conditionalUpdateRisks,omitempty"`
+	Desired            *ReleaseApplyConfiguration                          `json:"desired,omitempty"`
+	History            []UpdateHistoryApplyConfiguration                   `json:"history,omitempty"`
+	ObservedGeneration *int64                                              `json:"observedGeneration,omitempty"`
+	VersionHash        *string                                             `json:"versionHash,omitempty"`
+	Capabilities       *ClusterVersionCapabilitiesStatusApplyConfiguration `json:"capabilities,omitempty"`
+	Conditions         []ClusterOperatorStatusConditionApplyConfiguration  `json:"conditions,omitempty"`
+	AvailableUpdates   []ReleaseApplyConfiguration                         `json:"availableUpdates,omitempty"`
+	ConditionalUpdates []ConditionalUpdateApplyConfiguration               `json:"conditionalUpdates,omitempty"`
 }
 
 // ClusterVersionStatusApplyConfiguration constructs a declarative configuration of the ClusterVersionStatus type for use with
@@ -105,16 +104,3 @@ func (b *ClusterVersionStatusApplyConfiguration) WithConditionalUpdates(values .
 	}
 	return b
 }
-
-// WithConditionalUpdateRisks adds the given value to the ConditionalUpdateRisks field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the ConditionalUpdateRisks field.
-func (b *ClusterVersionStatusApplyConfiguration) WithConditionalUpdateRisks(values ...*ConditionalUpdateRiskApplyConfiguration) *ClusterVersionStatusApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithConditionalUpdateRisks")
-		}
-		b.ConditionalUpdateRisks = append(b.ConditionalUpdateRisks, *values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdate.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdate.go
index 8bffb192c..f183fc6e2 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdate.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdate.go
@@ -10,7 +10,6 @@ import (
 // with apply.
 type ConditionalUpdateApplyConfiguration struct {
 	Release    *ReleaseApplyConfiguration                `json:"release,omitempty"`
-	RiskNames  []string                                  `json:"riskNames,omitempty"`
 	Risks      []ConditionalUpdateRiskApplyConfiguration `json:"risks,omitempty"`
 	Conditions []metav1.ConditionApplyConfiguration      `json:"conditions,omitempty"`
 }
@@ -29,16 +28,6 @@ func (b *ConditionalUpdateApplyConfiguration) WithRelease(value *ReleaseApplyCon
 	return b
 }
 
-// WithRiskNames adds the given value to the RiskNames field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the RiskNames field.
-func (b *ConditionalUpdateApplyConfiguration) WithRiskNames(values ...string) *ConditionalUpdateApplyConfiguration {
-	for i := range values {
-		b.RiskNames = append(b.RiskNames, values[i])
-	}
-	return b
-}
-
 // WithRisks adds the given value to the Risks field in the declarative configuration
 // and returns the receiver, so that objects can be build by chaining "With" function invocations.
 // If called multiple times, values provided by each call will be appended to the Risks field.
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdaterisk.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdaterisk.go
index fdfc14ebf..6debb6e62 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdaterisk.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/conditionalupdaterisk.go
@@ -2,14 +2,9 @@
 
 package v1
 
-import (
-	metav1 "k8s.io/client-go/applyconfigurations/meta/v1"
-)
-
 // ConditionalUpdateRiskApplyConfiguration represents a declarative configuration of the ConditionalUpdateRisk type for use
 // with apply.
 type ConditionalUpdateRiskApplyConfiguration struct {
-	Conditions    []metav1.ConditionApplyConfiguration `json:"conditions,omitempty"`
 	URL           *string                              `json:"url,omitempty"`
 	Name          *string                              `json:"name,omitempty"`
 	Message       *string                              `json:"message,omitempty"`
@@ -22,19 +17,6 @@ func ConditionalUpdateRisk() *ConditionalUpdateRiskApplyConfiguration {
 	return &ConditionalUpdateRiskApplyConfiguration{}
 }
 
-// WithConditions adds the given value to the Conditions field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the Conditions field.
-func (b *ConditionalUpdateRiskApplyConfiguration) WithConditions(values ...*metav1.ConditionApplyConfiguration) *ConditionalUpdateRiskApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithConditions")
-		}
-		b.Conditions = append(b.Conditions, *values[i])
-	}
-	return b
-}
-
 // WithURL sets the URL field in the declarative configuration to the given value
 // and returns the receiver, so that objects can be built by chaining "With" function invocations.
 // If called multiple times, the URL field is set to the value of the last call.
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/oidcprovider.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/oidcprovider.go
index 4f5aec3a5..7d9300367 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/oidcprovider.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/oidcprovider.go
@@ -10,7 +10,6 @@ type OIDCProviderApplyConfiguration struct {
 	OIDCClients          []OIDCClientConfigApplyConfiguration         `json:"oidcClients,omitempty"`
 	ClaimMappings        *TokenClaimMappingsApplyConfiguration        `json:"claimMappings,omitempty"`
 	ClaimValidationRules []TokenClaimValidationRuleApplyConfiguration `json:"claimValidationRules,omitempty"`
-	UserValidationRules  []TokenUserValidationRuleApplyConfiguration  `json:"userValidationRules,omitempty"`
 }
 
 // OIDCProviderApplyConfiguration constructs a declarative configuration of the OIDCProvider type for use with
@@ -68,16 +67,3 @@ func (b *OIDCProviderApplyConfiguration) WithClaimValidationRules(values ...*Tok
 	}
 	return b
 }
-
-// WithUserValidationRules adds the given value to the UserValidationRules field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the UserValidationRules field.
-func (b *OIDCProviderApplyConfiguration) WithUserValidationRules(values ...*TokenUserValidationRuleApplyConfiguration) *OIDCProviderApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithUserValidationRules")
-		}
-		b.UserValidationRules = append(b.UserValidationRules, *values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationcelrule.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationcelrule.go
deleted file mode 100644
index 8dda73db1..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationcelrule.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1
-
-// TokenClaimValidationCELRuleApplyConfiguration represents a declarative configuration of the TokenClaimValidationCELRule type for use
-// with apply.
-type TokenClaimValidationCELRuleApplyConfiguration struct {
-	Expression *string `json:"expression,omitempty"`
-	Message    *string `json:"message,omitempty"`
-}
-
-// TokenClaimValidationCELRuleApplyConfiguration constructs a declarative configuration of the TokenClaimValidationCELRule type for use with
-// apply.
-func TokenClaimValidationCELRule() *TokenClaimValidationCELRuleApplyConfiguration {
-	return &TokenClaimValidationCELRuleApplyConfiguration{}
-}
-
-// WithExpression sets the Expression field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Expression field is set to the value of the last call.
-func (b *TokenClaimValidationCELRuleApplyConfiguration) WithExpression(value string) *TokenClaimValidationCELRuleApplyConfiguration {
-	b.Expression = &value
-	return b
-}
-
-// WithMessage sets the Message field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Message field is set to the value of the last call.
-func (b *TokenClaimValidationCELRuleApplyConfiguration) WithMessage(value string) *TokenClaimValidationCELRuleApplyConfiguration {
-	b.Message = &value
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationrule.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationrule.go
index c8b0c6005..74e9f6109 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationrule.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenclaimvalidationrule.go
@@ -9,9 +9,8 @@ import (
 // TokenClaimValidationRuleApplyConfiguration represents a declarative configuration of the TokenClaimValidationRule type for use
 // with apply.
 type TokenClaimValidationRuleApplyConfiguration struct {
-	Type          *configv1.TokenValidationRuleType              `json:"type,omitempty"`
-	RequiredClaim *TokenRequiredClaimApplyConfiguration          `json:"requiredClaim,omitempty"`
-	CEL           *TokenClaimValidationCELRuleApplyConfiguration `json:"cel,omitempty"`
+	Type          *configv1.TokenValidationRuleType     `json:"type,omitempty"`
+	RequiredClaim *TokenRequiredClaimApplyConfiguration `json:"requiredClaim,omitempty"`
 }
 
 // TokenClaimValidationRuleApplyConfiguration constructs a declarative configuration of the TokenClaimValidationRule type for use with
@@ -35,11 +34,3 @@ func (b *TokenClaimValidationRuleApplyConfiguration) WithRequiredClaim(value *To
 	b.RequiredClaim = value
 	return b
 }
-
-// WithCEL sets the CEL field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the CEL field is set to the value of the last call.
-func (b *TokenClaimValidationRuleApplyConfiguration) WithCEL(value *TokenClaimValidationCELRuleApplyConfiguration) *TokenClaimValidationRuleApplyConfiguration {
-	b.CEL = value
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenissuer.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenissuer.go
index 4c971d292..68f590abc 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenissuer.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenissuer.go
@@ -12,7 +12,6 @@ type TokenIssuerApplyConfiguration struct {
 	URL                  *string                                   `json:"issuerURL,omitempty"`
 	Audiences            []configv1.TokenAudience                  `json:"audiences,omitempty"`
 	CertificateAuthority *ConfigMapNameReferenceApplyConfiguration `json:"issuerCertificateAuthority,omitempty"`
-	DiscoveryURL         *string                                   `json:"discoveryURL,omitempty"`
 }
 
 // TokenIssuerApplyConfiguration constructs a declarative configuration of the TokenIssuer type for use with
@@ -46,11 +45,3 @@ func (b *TokenIssuerApplyConfiguration) WithCertificateAuthority(value *ConfigMa
 	b.CertificateAuthority = value
 	return b
 }
-
-// WithDiscoveryURL sets the DiscoveryURL field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the DiscoveryURL field is set to the value of the last call.
-func (b *TokenIssuerApplyConfiguration) WithDiscoveryURL(value string) *TokenIssuerApplyConfiguration {
-	b.DiscoveryURL = &value
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenuservalidationrule.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenuservalidationrule.go
deleted file mode 100644
index 2aae5f3fe..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/tokenuservalidationrule.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1
-
-// TokenUserValidationRuleApplyConfiguration represents a declarative configuration of the TokenUserValidationRule type for use
-// with apply.
-type TokenUserValidationRuleApplyConfiguration struct {
-	Expression *string `json:"expression,omitempty"`
-	Message    *string `json:"message,omitempty"`
-}
-
-// TokenUserValidationRuleApplyConfiguration constructs a declarative configuration of the TokenUserValidationRule type for use with
-// apply.
-func TokenUserValidationRule() *TokenUserValidationRuleApplyConfiguration {
-	return &TokenUserValidationRuleApplyConfiguration{}
-}
-
-// WithExpression sets the Expression field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Expression field is set to the value of the last call.
-func (b *TokenUserValidationRuleApplyConfiguration) WithExpression(value string) *TokenUserValidationRuleApplyConfiguration {
-	b.Expression = &value
-	return b
-}
-
-// WithMessage sets the Message field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Message field is set to the value of the last call.
-func (b *TokenUserValidationRuleApplyConfiguration) WithMessage(value string) *TokenUserValidationRuleApplyConfiguration {
-	b.Message = &value
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/update.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/update.go
index d20e3ca42..004d1bac2 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/update.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/update.go
@@ -13,7 +13,6 @@ type UpdateApplyConfiguration struct {
 	Version      *string                              `json:"version,omitempty"`
 	Image        *string                              `json:"image,omitempty"`
 	Force        *bool                                `json:"force,omitempty"`
-	AcceptRisks  []AcceptRiskApplyConfiguration       `json:"acceptRisks,omitempty"`
 }
 
 // UpdateApplyConfiguration constructs a declarative configuration of the Update type for use with
@@ -53,16 +52,3 @@ func (b *UpdateApplyConfiguration) WithForce(value bool) *UpdateApplyConfigurati
 	b.Force = &value
 	return b
 }
-
-// WithAcceptRisks adds the given value to the AcceptRisks field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the AcceptRisks field.
-func (b *UpdateApplyConfiguration) WithAcceptRisks(values ...*AcceptRiskApplyConfiguration) *UpdateApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithAcceptRisks")
-		}
-		b.AcceptRisks = append(b.AcceptRisks, *values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/clustermonitoringspec.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/clustermonitoringspec.go
index 37a385812..7fcce84b5 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/clustermonitoringspec.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/clustermonitoringspec.go
@@ -5,11 +5,9 @@ package v1alpha1
 // ClusterMonitoringSpecApplyConfiguration represents a declarative configuration of the ClusterMonitoringSpec type for use
 // with apply.
 type ClusterMonitoringSpecApplyConfiguration struct {
-	UserDefined                              *UserDefinedMonitoringApplyConfiguration                    `json:"userDefined,omitempty"`
-	AlertmanagerConfig                       *AlertmanagerConfigApplyConfiguration                       `json:"alertmanagerConfig,omitempty"`
-	MetricsServerConfig                      *MetricsServerConfigApplyConfiguration                      `json:"metricsServerConfig,omitempty"`
-	PrometheusOperatorConfig                 *PrometheusOperatorConfigApplyConfiguration                 `json:"prometheusOperatorConfig,omitempty"`
-	PrometheusOperatorAdmissionWebhookConfig *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration `json:"prometheusOperatorAdmissionWebhookConfig,omitempty"`
+	UserDefined         *UserDefinedMonitoringApplyConfiguration `json:"userDefined,omitempty"`
+	AlertmanagerConfig  *AlertmanagerConfigApplyConfiguration    `json:"alertmanagerConfig,omitempty"`
+	MetricsServerConfig *MetricsServerConfigApplyConfiguration   `json:"metricsServerConfig,omitempty"`
 }
 
 // ClusterMonitoringSpecApplyConfiguration constructs a declarative configuration of the ClusterMonitoringSpec type for use with
@@ -41,19 +39,3 @@ func (b *ClusterMonitoringSpecApplyConfiguration) WithMetricsServerConfig(value
 	b.MetricsServerConfig = value
 	return b
 }
-
-// WithPrometheusOperatorConfig sets the PrometheusOperatorConfig field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the PrometheusOperatorConfig field is set to the value of the last call.
-func (b *ClusterMonitoringSpecApplyConfiguration) WithPrometheusOperatorConfig(value *PrometheusOperatorConfigApplyConfiguration) *ClusterMonitoringSpecApplyConfiguration {
-	b.PrometheusOperatorConfig = value
-	return b
-}
-
-// WithPrometheusOperatorAdmissionWebhookConfig sets the PrometheusOperatorAdmissionWebhookConfig field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the PrometheusOperatorAdmissionWebhookConfig field is set to the value of the last call.
-func (b *ClusterMonitoringSpecApplyConfiguration) WithPrometheusOperatorAdmissionWebhookConfig(value *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration) *ClusterMonitoringSpecApplyConfiguration {
-	b.PrometheusOperatorAdmissionWebhookConfig = value
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfig.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfig.go
deleted file mode 100644
index 221728dca..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfig.go
+++ /dev/null
@@ -1,263 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1alpha1
-
-import (
-	configv1alpha1 "github.com/openshift/api/config/v1alpha1"
-	internal "github.com/openshift/client-go/config/applyconfigurations/internal"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	types "k8s.io/apimachinery/pkg/types"
-	managedfields "k8s.io/apimachinery/pkg/util/managedfields"
-	v1 "k8s.io/client-go/applyconfigurations/meta/v1"
-)
-
-// CRIOCredentialProviderConfigApplyConfiguration represents a declarative configuration of the CRIOCredentialProviderConfig type for use
-// with apply.
-type CRIOCredentialProviderConfigApplyConfiguration struct {
-	v1.TypeMetaApplyConfiguration    `json:",inline"`
-	*v1.ObjectMetaApplyConfiguration `json:"metadata,omitempty"`
-	Spec                             *CRIOCredentialProviderConfigSpecApplyConfiguration   `json:"spec,omitempty"`
-	Status                           *CRIOCredentialProviderConfigStatusApplyConfiguration `json:"status,omitempty"`
-}
-
-// CRIOCredentialProviderConfig constructs a declarative configuration of the CRIOCredentialProviderConfig type for use with
-// apply.
-func CRIOCredentialProviderConfig(name string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b := &CRIOCredentialProviderConfigApplyConfiguration{}
-	b.WithName(name)
-	b.WithKind("CRIOCredentialProviderConfig")
-	b.WithAPIVersion("config.openshift.io/v1alpha1")
-	return b
-}
-
-// ExtractCRIOCredentialProviderConfig extracts the applied configuration owned by fieldManager from
-// cRIOCredentialProviderConfig. If no managedFields are found in cRIOCredentialProviderConfig for fieldManager, a
-// CRIOCredentialProviderConfigApplyConfiguration is returned with only the Name, Namespace (if applicable),
-// APIVersion and Kind populated. It is possible that no managed fields were found for because other
-// field managers have taken ownership of all the fields previously owned by fieldManager, or because
-// the fieldManager never owned fields any fields.
-// cRIOCredentialProviderConfig must be a unmodified CRIOCredentialProviderConfig API object that was retrieved from the Kubernetes API.
-// ExtractCRIOCredentialProviderConfig provides a way to perform a extract/modify-in-place/apply workflow.
-// Note that an extracted apply configuration will contain fewer fields than what the fieldManager previously
-// applied if another fieldManager has updated or force applied any of the previously applied fields.
-// Experimental!
-func ExtractCRIOCredentialProviderConfig(cRIOCredentialProviderConfig *configv1alpha1.CRIOCredentialProviderConfig, fieldManager string) (*CRIOCredentialProviderConfigApplyConfiguration, error) {
-	return extractCRIOCredentialProviderConfig(cRIOCredentialProviderConfig, fieldManager, "")
-}
-
-// ExtractCRIOCredentialProviderConfigStatus is the same as ExtractCRIOCredentialProviderConfig except
-// that it extracts the status subresource applied configuration.
-// Experimental!
-func ExtractCRIOCredentialProviderConfigStatus(cRIOCredentialProviderConfig *configv1alpha1.CRIOCredentialProviderConfig, fieldManager string) (*CRIOCredentialProviderConfigApplyConfiguration, error) {
-	return extractCRIOCredentialProviderConfig(cRIOCredentialProviderConfig, fieldManager, "status")
-}
-
-func extractCRIOCredentialProviderConfig(cRIOCredentialProviderConfig *configv1alpha1.CRIOCredentialProviderConfig, fieldManager string, subresource string) (*CRIOCredentialProviderConfigApplyConfiguration, error) {
-	b := &CRIOCredentialProviderConfigApplyConfiguration{}
-	err := managedfields.ExtractInto(cRIOCredentialProviderConfig, internal.Parser().Type("com.github.openshift.api.config.v1alpha1.CRIOCredentialProviderConfig"), fieldManager, b, subresource)
-	if err != nil {
-		return nil, err
-	}
-	b.WithName(cRIOCredentialProviderConfig.Name)
-
-	b.WithKind("CRIOCredentialProviderConfig")
-	b.WithAPIVersion("config.openshift.io/v1alpha1")
-	return b, nil
-}
-func (b CRIOCredentialProviderConfigApplyConfiguration) IsApplyConfiguration() {}
-
-// WithKind sets the Kind field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Kind field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithKind(value string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.TypeMetaApplyConfiguration.Kind = &value
-	return b
-}
-
-// WithAPIVersion sets the APIVersion field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the APIVersion field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithAPIVersion(value string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.TypeMetaApplyConfiguration.APIVersion = &value
-	return b
-}
-
-// WithName sets the Name field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Name field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithName(value string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.Name = &value
-	return b
-}
-
-// WithGenerateName sets the GenerateName field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the GenerateName field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithGenerateName(value string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.GenerateName = &value
-	return b
-}
-
-// WithNamespace sets the Namespace field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Namespace field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithNamespace(value string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.Namespace = &value
-	return b
-}
-
-// WithUID sets the UID field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the UID field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithUID(value types.UID) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.UID = &value
-	return b
-}
-
-// WithResourceVersion sets the ResourceVersion field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the ResourceVersion field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithResourceVersion(value string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.ResourceVersion = &value
-	return b
-}
-
-// WithGeneration sets the Generation field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Generation field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithGeneration(value int64) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.Generation = &value
-	return b
-}
-
-// WithCreationTimestamp sets the CreationTimestamp field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the CreationTimestamp field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithCreationTimestamp(value metav1.Time) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.CreationTimestamp = &value
-	return b
-}
-
-// WithDeletionTimestamp sets the DeletionTimestamp field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the DeletionTimestamp field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithDeletionTimestamp(value metav1.Time) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.DeletionTimestamp = &value
-	return b
-}
-
-// WithDeletionGracePeriodSeconds sets the DeletionGracePeriodSeconds field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the DeletionGracePeriodSeconds field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithDeletionGracePeriodSeconds(value int64) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	b.ObjectMetaApplyConfiguration.DeletionGracePeriodSeconds = &value
-	return b
-}
-
-// WithLabels puts the entries into the Labels field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, the entries provided by each call will be put on the Labels field,
-// overwriting an existing map entries in Labels field with the same key.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithLabels(entries map[string]string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	if b.ObjectMetaApplyConfiguration.Labels == nil && len(entries) > 0 {
-		b.ObjectMetaApplyConfiguration.Labels = make(map[string]string, len(entries))
-	}
-	for k, v := range entries {
-		b.ObjectMetaApplyConfiguration.Labels[k] = v
-	}
-	return b
-}
-
-// WithAnnotations puts the entries into the Annotations field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, the entries provided by each call will be put on the Annotations field,
-// overwriting an existing map entries in Annotations field with the same key.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithAnnotations(entries map[string]string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	if b.ObjectMetaApplyConfiguration.Annotations == nil && len(entries) > 0 {
-		b.ObjectMetaApplyConfiguration.Annotations = make(map[string]string, len(entries))
-	}
-	for k, v := range entries {
-		b.ObjectMetaApplyConfiguration.Annotations[k] = v
-	}
-	return b
-}
-
-// WithOwnerReferences adds the given value to the OwnerReferences field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the OwnerReferences field.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithOwnerReferences(values ...*v1.OwnerReferenceApplyConfiguration) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithOwnerReferences")
-		}
-		b.ObjectMetaApplyConfiguration.OwnerReferences = append(b.ObjectMetaApplyConfiguration.OwnerReferences, *values[i])
-	}
-	return b
-}
-
-// WithFinalizers adds the given value to the Finalizers field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the Finalizers field.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithFinalizers(values ...string) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.ensureObjectMetaApplyConfigurationExists()
-	for i := range values {
-		b.ObjectMetaApplyConfiguration.Finalizers = append(b.ObjectMetaApplyConfiguration.Finalizers, values[i])
-	}
-	return b
-}
-
-func (b *CRIOCredentialProviderConfigApplyConfiguration) ensureObjectMetaApplyConfigurationExists() {
-	if b.ObjectMetaApplyConfiguration == nil {
-		b.ObjectMetaApplyConfiguration = &v1.ObjectMetaApplyConfiguration{}
-	}
-}
-
-// WithSpec sets the Spec field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Spec field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithSpec(value *CRIOCredentialProviderConfigSpecApplyConfiguration) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.Spec = value
-	return b
-}
-
-// WithStatus sets the Status field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the Status field is set to the value of the last call.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) WithStatus(value *CRIOCredentialProviderConfigStatusApplyConfiguration) *CRIOCredentialProviderConfigApplyConfiguration {
-	b.Status = value
-	return b
-}
-
-// GetKind retrieves the value of the Kind field in the declarative configuration.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) GetKind() *string {
-	return b.TypeMetaApplyConfiguration.Kind
-}
-
-// GetAPIVersion retrieves the value of the APIVersion field in the declarative configuration.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) GetAPIVersion() *string {
-	return b.TypeMetaApplyConfiguration.APIVersion
-}
-
-// GetName retrieves the value of the Name field in the declarative configuration.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) GetName() *string {
-	b.ensureObjectMetaApplyConfigurationExists()
-	return b.ObjectMetaApplyConfiguration.Name
-}
-
-// GetNamespace retrieves the value of the Namespace field in the declarative configuration.
-func (b *CRIOCredentialProviderConfigApplyConfiguration) GetNamespace() *string {
-	b.ensureObjectMetaApplyConfigurationExists()
-	return b.ObjectMetaApplyConfiguration.Namespace
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfigspec.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfigspec.go
deleted file mode 100644
index e6588c608..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfigspec.go
+++ /dev/null
@@ -1,29 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1alpha1
-
-import (
-	configv1alpha1 "github.com/openshift/api/config/v1alpha1"
-)
-
-// CRIOCredentialProviderConfigSpecApplyConfiguration represents a declarative configuration of the CRIOCredentialProviderConfigSpec type for use
-// with apply.
-type CRIOCredentialProviderConfigSpecApplyConfiguration struct {
-	MatchImages []configv1alpha1.MatchImage `json:"matchImages,omitempty"`
-}
-
-// CRIOCredentialProviderConfigSpecApplyConfiguration constructs a declarative configuration of the CRIOCredentialProviderConfigSpec type for use with
-// apply.
-func CRIOCredentialProviderConfigSpec() *CRIOCredentialProviderConfigSpecApplyConfiguration {
-	return &CRIOCredentialProviderConfigSpecApplyConfiguration{}
-}
-
-// WithMatchImages adds the given value to the MatchImages field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the MatchImages field.
-func (b *CRIOCredentialProviderConfigSpecApplyConfiguration) WithMatchImages(values ...configv1alpha1.MatchImage) *CRIOCredentialProviderConfigSpecApplyConfiguration {
-	for i := range values {
-		b.MatchImages = append(b.MatchImages, values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfigstatus.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfigstatus.go
deleted file mode 100644
index a243b281d..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/criocredentialproviderconfigstatus.go
+++ /dev/null
@@ -1,32 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1alpha1
-
-import (
-	v1 "k8s.io/client-go/applyconfigurations/meta/v1"
-)
-
-// CRIOCredentialProviderConfigStatusApplyConfiguration represents a declarative configuration of the CRIOCredentialProviderConfigStatus type for use
-// with apply.
-type CRIOCredentialProviderConfigStatusApplyConfiguration struct {
-	Conditions []v1.ConditionApplyConfiguration `json:"conditions,omitempty"`
-}
-
-// CRIOCredentialProviderConfigStatusApplyConfiguration constructs a declarative configuration of the CRIOCredentialProviderConfigStatus type for use with
-// apply.
-func CRIOCredentialProviderConfigStatus() *CRIOCredentialProviderConfigStatusApplyConfiguration {
-	return &CRIOCredentialProviderConfigStatusApplyConfiguration{}
-}
-
-// WithConditions adds the given value to the Conditions field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the Conditions field.
-func (b *CRIOCredentialProviderConfigStatusApplyConfiguration) WithConditions(values ...*v1.ConditionApplyConfiguration) *CRIOCredentialProviderConfigStatusApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithConditions")
-		}
-		b.Conditions = append(b.Conditions, *values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/prometheusoperatoradmissionwebhookconfig.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/prometheusoperatoradmissionwebhookconfig.go
deleted file mode 100644
index 4ec494d17..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/prometheusoperatoradmissionwebhookconfig.go
+++ /dev/null
@@ -1,43 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1alpha1
-
-import (
-	v1 "k8s.io/api/core/v1"
-)
-
-// PrometheusOperatorAdmissionWebhookConfigApplyConfiguration represents a declarative configuration of the PrometheusOperatorAdmissionWebhookConfig type for use
-// with apply.
-type PrometheusOperatorAdmissionWebhookConfigApplyConfiguration struct {
-	Resources                 []ContainerResourceApplyConfiguration `json:"resources,omitempty"`
-	TopologySpreadConstraints []v1.TopologySpreadConstraint         `json:"topologySpreadConstraints,omitempty"`
-}
-
-// PrometheusOperatorAdmissionWebhookConfigApplyConfiguration constructs a declarative configuration of the PrometheusOperatorAdmissionWebhookConfig type for use with
-// apply.
-func PrometheusOperatorAdmissionWebhookConfig() *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration {
-	return &PrometheusOperatorAdmissionWebhookConfigApplyConfiguration{}
-}
-
-// WithResources adds the given value to the Resources field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the Resources field.
-func (b *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration) WithResources(values ...*ContainerResourceApplyConfiguration) *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithResources")
-		}
-		b.Resources = append(b.Resources, *values[i])
-	}
-	return b
-}
-
-// WithTopologySpreadConstraints adds the given value to the TopologySpreadConstraints field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the TopologySpreadConstraints field.
-func (b *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration) WithTopologySpreadConstraints(values ...v1.TopologySpreadConstraint) *PrometheusOperatorAdmissionWebhookConfigApplyConfiguration {
-	for i := range values {
-		b.TopologySpreadConstraints = append(b.TopologySpreadConstraints, values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/prometheusoperatorconfig.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/prometheusoperatorconfig.go
deleted file mode 100644
index 3276097b3..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1/prometheusoperatorconfig.go
+++ /dev/null
@@ -1,79 +0,0 @@
-// Code generated by applyconfiguration-gen. DO NOT EDIT.
-
-package v1alpha1
-
-import (
-	configv1alpha1 "github.com/openshift/api/config/v1alpha1"
-	v1 "k8s.io/api/core/v1"
-)
-
-// PrometheusOperatorConfigApplyConfiguration represents a declarative configuration of the PrometheusOperatorConfig type for use
-// with apply.
-type PrometheusOperatorConfigApplyConfiguration struct {
-	LogLevel                  *configv1alpha1.LogLevel              `json:"logLevel,omitempty"`
-	NodeSelector              map[string]string                     `json:"nodeSelector,omitempty"`
-	Resources                 []ContainerResourceApplyConfiguration `json:"resources,omitempty"`
-	Tolerations               []v1.Toleration                       `json:"tolerations,omitempty"`
-	TopologySpreadConstraints []v1.TopologySpreadConstraint         `json:"topologySpreadConstraints,omitempty"`
-}
-
-// PrometheusOperatorConfigApplyConfiguration constructs a declarative configuration of the PrometheusOperatorConfig type for use with
-// apply.
-func PrometheusOperatorConfig() *PrometheusOperatorConfigApplyConfiguration {
-	return &PrometheusOperatorConfigApplyConfiguration{}
-}
-
-// WithLogLevel sets the LogLevel field in the declarative configuration to the given value
-// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the LogLevel field is set to the value of the last call.
-func (b *PrometheusOperatorConfigApplyConfiguration) WithLogLevel(value configv1alpha1.LogLevel) *PrometheusOperatorConfigApplyConfiguration {
-	b.LogLevel = &value
-	return b
-}
-
-// WithNodeSelector puts the entries into the NodeSelector field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, the entries provided by each call will be put on the NodeSelector field,
-// overwriting an existing map entries in NodeSelector field with the same key.
-func (b *PrometheusOperatorConfigApplyConfiguration) WithNodeSelector(entries map[string]string) *PrometheusOperatorConfigApplyConfiguration {
-	if b.NodeSelector == nil && len(entries) > 0 {
-		b.NodeSelector = make(map[string]string, len(entries))
-	}
-	for k, v := range entries {
-		b.NodeSelector[k] = v
-	}
-	return b
-}
-
-// WithResources adds the given value to the Resources field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the Resources field.
-func (b *PrometheusOperatorConfigApplyConfiguration) WithResources(values ...*ContainerResourceApplyConfiguration) *PrometheusOperatorConfigApplyConfiguration {
-	for i := range values {
-		if values[i] == nil {
-			panic("nil value passed to WithResources")
-		}
-		b.Resources = append(b.Resources, *values[i])
-	}
-	return b
-}
-
-// WithTolerations adds the given value to the Tolerations field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the Tolerations field.
-func (b *PrometheusOperatorConfigApplyConfiguration) WithTolerations(values ...v1.Toleration) *PrometheusOperatorConfigApplyConfiguration {
-	for i := range values {
-		b.Tolerations = append(b.Tolerations, values[i])
-	}
-	return b
-}
-
-// WithTopologySpreadConstraints adds the given value to the TopologySpreadConstraints field in the declarative configuration
-// and returns the receiver, so that objects can be build by chaining "With" function invocations.
-// If called multiple times, values provided by each call will be appended to the TopologySpreadConstraints field.
-func (b *PrometheusOperatorConfigApplyConfiguration) WithTopologySpreadConstraints(values ...v1.TopologySpreadConstraint) *PrometheusOperatorConfigApplyConfiguration {
-	for i := range values {
-		b.TopologySpreadConstraints = append(b.TopologySpreadConstraints, values[i])
-	}
-	return b
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go
index 65906b80c..f00417a5c 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go
@@ -206,12 +206,6 @@ var schemaYAML = typed.YAMLObject(`types:
       type:
         scalar: string
       default: ""
-- name: com.github.openshift.api.config.v1.AcceptRisk
-  map:
-    fields:
-    - name: name
-      type:
-        scalar: string
 - name: com.github.openshift.api.config.v1.AlibabaCloudPlatformSpec
   map:
     elementType:
@@ -854,14 +848,6 @@ var schemaYAML = typed.YAMLObject(`types:
       type:
         namedType: com.github.openshift.api.config.v1.ClusterVersionCapabilitiesStatus
       default: {}
-    - name: conditionalUpdateRisks
-      type:
-        list:
-          elementType:
-            namedType: com.github.openshift.api.config.v1.ConditionalUpdateRisk
-          elementRelationship: associative
-          keys:
-          - name
     - name: conditionalUpdates
       type:
         list:
@@ -992,12 +978,6 @@ var schemaYAML = typed.YAMLObject(`types:
       type:
         namedType: com.github.openshift.api.config.v1.Release
       default: {}
-    - name: riskNames
-      type:
-        list:
-          elementType:
-            scalar: string
-          elementRelationship: associative
     - name: risks
       type:
         list:
@@ -1009,14 +989,6 @@ var schemaYAML = typed.YAMLObject(`types:
 - name: com.github.openshift.api.config.v1.ConditionalUpdateRisk
   map:
     fields:
-    - name: conditions
-      type:
-        list:
-          elementType:
-            namedType: io.k8s.apimachinery.pkg.apis.meta.v1.Condition
-          elementRelationship: associative
-          keys:
-          - type
     - name: matchingRules
       type:
         list:
@@ -2779,14 +2751,6 @@ var schemaYAML = typed.YAMLObject(`types:
           keys:
           - componentNamespace
           - componentName
-    - name: userValidationRules
-      type:
-        list:
-          elementType:
-            namedType: com.github.openshift.api.config.v1.TokenUserValidationRule
-          elementRelationship: associative
-          keys:
-          - expression
 - name: com.github.openshift.api.config.v1.ObjectReference
   map:
     fields:
@@ -3725,22 +3689,9 @@ var schemaYAML = typed.YAMLObject(`types:
     - name: expression
       type:
         scalar: string
-- name: com.github.openshift.api.config.v1.TokenClaimValidationCELRule
-  map:
-    fields:
-    - name: expression
-      type:
-        scalar: string
-    - name: message
-      type:
-        scalar: string
 - name: com.github.openshift.api.config.v1.TokenClaimValidationRule
   map:
     fields:
-    - name: cel
-      type:
-        namedType: com.github.openshift.api.config.v1.TokenClaimValidationCELRule
-      default: {}
     - name: requiredClaim
       type:
         namedType: com.github.openshift.api.config.v1.TokenRequiredClaim
@@ -3769,9 +3720,6 @@ var schemaYAML = typed.YAMLObject(`types:
           elementType:
             scalar: string
           elementRelationship: associative
-    - name: discoveryURL
-      type:
-        scalar: string
     - name: issuerCertificateAuthority
       type:
         namedType: com.github.openshift.api.config.v1.ConfigMapNameReference
@@ -3791,26 +3739,9 @@ var schemaYAML = typed.YAMLObject(`types:
       type:
         scalar: string
       default: ""
-- name: com.github.openshift.api.config.v1.TokenUserValidationRule
-  map:
-    fields:
-    - name: expression
-      type:
-        scalar: string
-    - name: message
-      type:
-        scalar: string
 - name: com.github.openshift.api.config.v1.Update
   map:
     fields:
-    - name: acceptRisks
-      type:
-        list:
-          elementType:
-            namedType: com.github.openshift.api.config.v1.AcceptRisk
-          elementRelationship: associative
-          keys:
-          - name
     - name: architecture
       type:
         scalar: string
@@ -4218,46 +4149,6 @@ var schemaYAML = typed.YAMLObject(`types:
         elementType:
           namedType: __untyped_deduced_
         elementRelationship: separable
-- name: com.github.openshift.api.config.v1alpha1.CRIOCredentialProviderConfig
-  map:
-    fields:
-    - name: apiVersion
-      type:
-        scalar: string
-    - name: kind
-      type:
-        scalar: string
-    - name: metadata
-      type:
-        namedType: io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta
-      default: {}
-    - name: spec
-      type:
-        namedType: com.github.openshift.api.config.v1alpha1.CRIOCredentialProviderConfigSpec
-    - name: status
-      type:
-        namedType: com.github.openshift.api.config.v1alpha1.CRIOCredentialProviderConfigStatus
-      default: {}
-- name: com.github.openshift.api.config.v1alpha1.CRIOCredentialProviderConfigSpec
-  map:
-    fields:
-    - name: matchImages
-      type:
-        list:
-          elementType:
-            scalar: string
-          elementRelationship: associative
-- name: com.github.openshift.api.config.v1alpha1.CRIOCredentialProviderConfigStatus
-  map:
-    fields:
-    - name: conditions
-      type:
-        list:
-          elementType:
-            namedType: io.k8s.apimachinery.pkg.apis.meta.v1.Condition
-          elementRelationship: associative
-          keys:
-          - type
 - name: com.github.openshift.api.config.v1alpha1.ClusterImagePolicy
   map:
     fields:
@@ -4335,10 +4226,6 @@ var schemaYAML = typed.YAMLObject(`types:
       type:
         namedType: com.github.openshift.api.config.v1alpha1.MetricsServerConfig
       default: {}
-    - name: prometheusOperatorConfig
-      type:
-        namedType: com.github.openshift.api.config.v1alpha1.PrometheusOperatorConfig
-      default: {}
     - name: userDefined
       type:
         namedType: com.github.openshift.api.config.v1alpha1.UserDefinedMonitoring
@@ -4670,40 +4557,6 @@ var schemaYAML = typed.YAMLObject(`types:
         discriminatorValue: PKI
       - fieldName: publicKey
         discriminatorValue: PublicKey
-- name: com.github.openshift.api.config.v1alpha1.PrometheusOperatorConfig
-  map:
-    fields:
-    - name: logLevel
-      type:
-        scalar: string
-    - name: nodeSelector
-      type:
-        map:
-          elementType:
-            scalar: string
-    - name: resources
-      type:
-        list:
-          elementType:
-            namedType: com.github.openshift.api.config.v1alpha1.ContainerResource
-          elementRelationship: associative
-          keys:
-          - name
-    - name: tolerations
-      type:
-        list:
-          elementType:
-            namedType: io.k8s.api.core.v1.Toleration
-          elementRelationship: atomic
-    - name: topologySpreadConstraints
-      type:
-        list:
-          elementType:
-            namedType: io.k8s.api.core.v1.TopologySpreadConstraint
-          elementRelationship: associative
-          keys:
-          - topologyKey
-          - whenUnsatisfiable
 - name: com.github.openshift.api.config.v1alpha1.RetentionNumberConfig
   map:
     fields:
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/config_client.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/config_client.go
index 58cf671dc..2530a4a64 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/config_client.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/config_client.go
@@ -13,7 +13,6 @@ import (
 type ConfigV1alpha1Interface interface {
 	RESTClient() rest.Interface
 	BackupsGetter
-	CRIOCredentialProviderConfigsGetter
 	ClusterImagePoliciesGetter
 	ClusterMonitoringsGetter
 	ImagePoliciesGetter
@@ -29,10 +28,6 @@ func (c *ConfigV1alpha1Client) Backups() BackupInterface {
 	return newBackups(c)
 }
 
-func (c *ConfigV1alpha1Client) CRIOCredentialProviderConfigs() CRIOCredentialProviderConfigInterface {
-	return newCRIOCredentialProviderConfigs(c)
-}
-
 func (c *ConfigV1alpha1Client) ClusterImagePolicies() ClusterImagePolicyInterface {
 	return newClusterImagePolicies(c)
 }
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/criocredentialproviderconfig.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/criocredentialproviderconfig.go
deleted file mode 100644
index 3c4962155..000000000
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/criocredentialproviderconfig.go
+++ /dev/null
@@ -1,62 +0,0 @@
-// Code generated by client-gen. DO NOT EDIT.
-
-package v1alpha1
-
-import (
-	context "context"
-
-	configv1alpha1 "github.com/openshift/api/config/v1alpha1"
-	applyconfigurationsconfigv1alpha1 "github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1"
-	scheme "github.com/openshift/client-go/config/clientset/versioned/scheme"
-	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	types "k8s.io/apimachinery/pkg/types"
-	watch "k8s.io/apimachinery/pkg/watch"
-	gentype "k8s.io/client-go/gentype"
-)
-
-// CRIOCredentialProviderConfigsGetter has a method to return a CRIOCredentialProviderConfigInterface.
-// A group's client should implement this interface.
-type CRIOCredentialProviderConfigsGetter interface {
-	CRIOCredentialProviderConfigs() CRIOCredentialProviderConfigInterface
-}
-
-// CRIOCredentialProviderConfigInterface has methods to work with CRIOCredentialProviderConfig resources.
-type CRIOCredentialProviderConfigInterface interface {
-	Create(ctx context.Context, cRIOCredentialProviderConfig *configv1alpha1.CRIOCredentialProviderConfig, opts v1.CreateOptions) (*configv1alpha1.CRIOCredentialProviderConfig, error)
-	Update(ctx context.Context, cRIOCredentialProviderConfig *configv1alpha1.CRIOCredentialProviderConfig, opts v1.UpdateOptions) (*configv1alpha1.CRIOCredentialProviderConfig, error)
-	// Add a +genclient:noStatus comment above the type to avoid generating UpdateStatus().
-	UpdateStatus(ctx context.Context, cRIOCredentialProviderConfig *configv1alpha1.CRIOCredentialProviderConfig, opts v1.UpdateOptions) (*configv1alpha1.CRIOCredentialProviderConfig, error)
-	Delete(ctx context.Context, name string, opts v1.DeleteOptions) error
-	DeleteCollection(ctx context.Context, opts v1.DeleteOptions, listOpts v1.ListOptions) error
-	Get(ctx context.Context, name string, opts v1.GetOptions) (*configv1alpha1.CRIOCredentialProviderConfig, error)
-	List(ctx context.Context, opts v1.ListOptions) (*configv1alpha1.CRIOCredentialProviderConfigList, error)
-	Watch(ctx context.Context, opts v1.ListOptions) (watch.Interface, error)
-	Patch(ctx context.Context, name string, pt types.PatchType, data []byte, opts v1.PatchOptions, subresources ...string) (result *configv1alpha1.CRIOCredentialProviderConfig, err error)
-	Apply(ctx context.Context, cRIOCredentialProviderConfig *applyconfigurationsconfigv1alpha1.CRIOCredentialProviderConfigApplyConfiguration, opts v1.ApplyOptions) (result *configv1alpha1.CRIOCredentialProviderConfig, err error)
-	// Add a +genclient:noStatus comment above the type to avoid generating ApplyStatus().
-	ApplyStatus(ctx context.Context, cRIOCredentialProviderConfig *applyconfigurationsconfigv1alpha1.CRIOCredentialProviderConfigApplyConfiguration, opts v1.ApplyOptions) (result *configv1alpha1.CRIOCredentialProviderConfig, err error)
-	CRIOCredentialProviderConfigExpansion
-}
-
-// cRIOCredentialProviderConfigs implements CRIOCredentialProviderConfigInterface
-type cRIOCredentialProviderConfigs struct {
-	*gentype.ClientWithListAndApply[*configv1alpha1.CRIOCredentialProviderConfig, *configv1alpha1.CRIOCredentialProviderConfigList, *applyconfigurationsconfigv1alpha1.CRIOCredentialProviderConfigApplyConfiguration]
-}
-
-// newCRIOCredentialProviderConfigs returns a CRIOCredentialProviderConfigs
-func newCRIOCredentialProviderConfigs(c *ConfigV1alpha1Client) *cRIOCredentialProviderConfigs {
-	return &cRIOCredentialProviderConfigs{
-		gentype.NewClientWithListAndApply[*configv1alpha1.CRIOCredentialProviderConfig, *configv1alpha1.CRIOCredentialProviderConfigList, *applyconfigurationsconfigv1alpha1.CRIOCredentialProviderConfigApplyConfiguration](
-			"criocredentialproviderconfigs",
-			c.RESTClient(),
-			scheme.ParameterCodec,
-			"",
-			func() *configv1alpha1.CRIOCredentialProviderConfig {
-				return &configv1alpha1.CRIOCredentialProviderConfig{}
-			},
-			func() *configv1alpha1.CRIOCredentialProviderConfigList {
-				return &configv1alpha1.CRIOCredentialProviderConfigList{}
-			},
-		),
-	}
-}
diff --git a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/generated_expansion.go b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/generated_expansion.go
index 9f530ae22..ab5198cce 100644
--- a/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/generated_expansion.go
+++ b/openshift/tests-extension/vendor/github.com/openshift/client-go/config/clientset/versioned/typed/config/v1alpha1/generated_expansion.go
@@ -4,8 +4,6 @@ package v1alpha1
 
 type BackupExpansion interface{}
 
-type CRIOCredentialProviderConfigExpansion interface{}
-
 type ClusterImagePolicyExpansion interface{}
 
 type ClusterMonitoringExpansion interface{}
diff --git a/openshift/tests-extension/vendor/github.com/tidwall/match/README.md b/openshift/tests-extension/vendor/github.com/tidwall/match/README.md
index 9134079ed..5fdd4cf63 100644
--- a/openshift/tests-extension/vendor/github.com/tidwall/match/README.md
+++ b/openshift/tests-extension/vendor/github.com/tidwall/match/README.md
@@ -26,4 +26,4 @@ Josh Baker [@tidwall](http://twitter.com/tidwall)
 
 ## License
 
-Match source code is available under the MIT [License](/LICENSE).
+Redcon source code is available under the MIT [License](/LICENSE).
diff --git a/openshift/tests-extension/vendor/github.com/tidwall/match/match.go b/openshift/tests-extension/vendor/github.com/tidwall/match/match.go
index d855a03fc..11da28f1b 100644
--- a/openshift/tests-extension/vendor/github.com/tidwall/match/match.go
+++ b/openshift/tests-extension/vendor/github.com/tidwall/match/match.go
@@ -10,30 +10,18 @@ import (
 // and '?' matches on any one character.
 //
 // pattern:
-//
-//	{ term }
-//
+// 	{ term }
 // term:
+// 	'*'         matches any sequence of non-Separator characters
+// 	'?'         matches any single non-Separator character
+// 	c           matches character c (c != '*', '?', '\\')
+// 	'\\' c      matches character c
 //
-//	'*'         matches any sequence of non-Separator characters
-//	'?'         matches any single non-Separator character
-//	c           matches character c (c != '*', '?', '\\')
-//	'\\' c      matches character c
 func Match(str, pattern string) bool {
-	return match0(str, pattern, false)
-}
-
-// MatchNoCase is the same as Match but performs a case-insensitive match.
-// Such that string "Hello World" with match with lower case pattern "hello*"
-func MatchNoCase(str, pattern string) bool {
-	return match0(str, pattern, true)
-}
-
-func match0(str, pattern string, nocase bool) bool {
 	if pattern == "*" {
 		return true
 	}
-	return match(str, pattern, 0, nil, -1, nocase) == rMatch
+	return match(str, pattern, 0, nil, -1) == rMatch
 }
 
 // MatchLimit is the same as Match but will limit the complexity of the match
@@ -46,21 +34,11 @@ func match0(str, pattern string, nocase bool) bool {
 // Everytime it calls itself a counter is incremented.
 // The operation is stopped when counter > maxcomp*len(str).
 func MatchLimit(str, pattern string, maxcomp int) (matched, stopped bool) {
-	return matchLimit0(str, pattern, maxcomp, false)
-}
-
-func MatchLimitNoCase(str, pattern string, maxcomp int,
-) (matched, stopped bool) {
-	return matchLimit0(str, pattern, maxcomp, true)
-}
-
-func matchLimit0(str, pattern string, maxcomp int, nocase bool,
-) (matched, stopped bool) {
 	if pattern == "*" {
 		return true, false
 	}
 	counter := 0
-	r := match(str, pattern, len(str), &counter, maxcomp, nocase)
+	r := match(str, pattern, len(str), &counter, maxcomp)
 	if r == rStop {
 		return false, true
 	}
@@ -75,15 +53,7 @@ const (
 	rStop
 )
 
-func tolower(r rune) rune {
-	if r >= 'A' && r <= 'Z' {
-		return r + 32
-	}
-	return r
-}
-
-func match(str, pat string, slen int, counter *int, maxcomp int, nocase bool,
-) result {
+func match(str, pat string, slen int, counter *int, maxcomp int) result {
 	// check complexity limit
 	if maxcomp > -1 {
 		if *counter > slen*maxcomp {
@@ -124,7 +94,7 @@ func match(str, pat string, slen int, counter *int, maxcomp int, nocase bool,
 
 			// Match and trim any non-wildcard suffix characters.
 			var ok bool
-			str, pat, ok = matchTrimSuffix(str, pat, nocase)
+			str, pat, ok = matchTrimSuffix(str, pat)
 			if !ok {
 				return rNoMatch
 			}
@@ -135,7 +105,7 @@ func match(str, pat string, slen int, counter *int, maxcomp int, nocase bool,
 			}
 
 			// Perform recursive wildcard search.
-			r := match(str, pat[1:], slen, counter, maxcomp, nocase)
+			r := match(str, pat[1:], slen, counter, maxcomp)
 			if r != rNoMatch {
 				return r
 			}
@@ -154,9 +124,6 @@ func match(str, pat string, slen int, counter *int, maxcomp int, nocase bool,
 					return rNoMatch
 				}
 			}
-			if nocase {
-				sc, pc = tolower(sc), tolower(pc)
-			}
 			if sc != pc {
 				return rNoMatch
 			}
@@ -183,7 +150,7 @@ func match(str, pat string, slen int, counter *int, maxcomp int, nocase bool,
 //
 // Any matched characters will be trimmed from both the target
 // string and the pattern.
-func matchTrimSuffix(str, pat string, nocase bool) (string, string, bool) {
+func matchTrimSuffix(str, pat string) (string, string, bool) {
 	// It's expected that the pattern has at least two bytes and the first byte
 	// is a wildcard star '*'
 	match := true
@@ -204,9 +171,6 @@ func matchTrimSuffix(str, pat string, nocase bool) (string, string, bool) {
 			break
 		}
 		sc, ss := utf8.DecodeLastRuneInString(str)
-		if nocase {
-			pc, sc = tolower(pc), tolower(sc)
-		}
 		if !((pc == '?' && !esc) || pc == sc) {
 			match = false
 			break
diff --git a/openshift/tests-extension/vendor/golang.org/x/net/html/iter.go b/openshift/tests-extension/vendor/golang.org/x/net/html/iter.go
index 349ef73e6..54be8fd30 100644
--- a/openshift/tests-extension/vendor/golang.org/x/net/html/iter.go
+++ b/openshift/tests-extension/vendor/golang.org/x/net/html/iter.go
@@ -2,6 +2,8 @@
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 
+//go:build go1.23
+
 package html
 
 import "iter"
diff --git a/openshift/tests-extension/vendor/golang.org/x/net/http2/frame.go b/openshift/tests-extension/vendor/golang.org/x/net/http2/frame.go
index be75badcc..a26039c13 100644
--- a/openshift/tests-extension/vendor/golang.org/x/net/http2/frame.go
+++ b/openshift/tests-extension/vendor/golang.org/x/net/http2/frame.go
@@ -145,9 +145,7 @@ var frameParsers = [...]frameParser{
 
 func typeFrameParser(t FrameType) frameParser {
 	if int(t) < len(frameParsers) {
-		if f := frameParsers[t]; f != nil {
-			return f
-		}
+		return frameParsers[t]
 	}
 	return parseUnknownFrame
 }
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/balancer.go b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/balancer.go
index d08b7ad63..b1264017d 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/balancer.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/balancer.go
@@ -75,6 +75,8 @@ func unregisterForTesting(name string) {
 
 func init() {
 	internal.BalancerUnregister = unregisterForTesting
+	internal.ConnectedAddress = connectedAddress
+	internal.SetConnectedAddress = setConnectedAddress
 }
 
 // Get returns the resolver builder registered with the given name.
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/internal/internal.go b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/internal/internal.go
index cc902a4de..7d66cb491 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/internal/internal.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/internal/internal.go
@@ -26,8 +26,6 @@ import (
 var (
 	// RandShuffle pseudo-randomizes the order of addresses.
 	RandShuffle = rand.Shuffle
-	// RandFloat64 returns, as a float64, a pseudo-random number in [0.0,1.0).
-	RandFloat64 = rand.Float64
 	// TimeAfterFunc allows mocking the timer for testing connection delay
 	// related functionality.
 	TimeAfterFunc = func(d time.Duration, f func()) func() {
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/pickfirst.go b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/pickfirst.go
index dccd9f0bf..b4bc3a2bf 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/pickfirst.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/pickfirst/pickfirst.go
@@ -21,14 +21,11 @@
 package pickfirst
 
 import (
-	"cmp"
 	"encoding/json"
 	"errors"
 	"fmt"
-	"math"
 	"net"
 	"net/netip"
-	"slices"
 	"sync"
 	"time"
 
@@ -37,8 +34,6 @@ import (
 	"google.golang.org/grpc/connectivity"
 	expstats "google.golang.org/grpc/experimental/stats"
 	"google.golang.org/grpc/grpclog"
-	"google.golang.org/grpc/internal/balancer/weight"
-	"google.golang.org/grpc/internal/envconfig"
 	internalgrpclog "google.golang.org/grpc/internal/grpclog"
 	"google.golang.org/grpc/internal/pretty"
 	"google.golang.org/grpc/resolver"
@@ -263,42 +258,8 @@ func (b *pickfirstBalancer) UpdateClientConnState(state balancer.ClientConnState
 		// will change the order of endpoints but not touch the order of the
 		// addresses within each endpoint. - A61
 		if cfg.ShuffleAddressList {
-			if envconfig.PickFirstWeightedShuffling {
-				type weightedEndpoint struct {
-					endpoint resolver.Endpoint
-					weight   float64
-				}
-
-				// For each endpoint, compute a key as described in A113 and
-				// https://utopia.duth.gr/~pefraimi/research/data/2007EncOfAlg.pdf:
-				var weightedEndpoints []weightedEndpoint
-				for _, endpoint := range endpoints {
-					u := internal.RandFloat64() // Random number in [0.0, 1.0)
-					weight := weightAttribute(endpoint)
-					weightedEndpoints = append(weightedEndpoints, weightedEndpoint{
-						endpoint: endpoint,
-						weight:   math.Pow(u, 1.0/float64(weight)),
-					})
-				}
-				// Sort endpoints by key in descending order and reconstruct the
-				// endpoints slice.
-				slices.SortFunc(weightedEndpoints, func(a, b weightedEndpoint) int {
-					return cmp.Compare(b.weight, a.weight)
-				})
-
-				// Here, and in the "else" block below, we clone the endpoints
-				// slice to avoid mutating the resolver state. Doing the latter
-				// would lead to data races if the caller is accessing the same
-				// slice concurrently.
-				sortedEndpoints := make([]resolver.Endpoint, len(endpoints))
-				for i, we := range weightedEndpoints {
-					sortedEndpoints[i] = we.endpoint
-				}
-				endpoints = sortedEndpoints
-			} else {
-				endpoints = slices.Clone(endpoints)
-				internal.RandShuffle(len(endpoints), func(i, j int) { endpoints[i], endpoints[j] = endpoints[j], endpoints[i] })
-			}
+			endpoints = append([]resolver.Endpoint{}, endpoints...)
+			internal.RandShuffle(len(endpoints), func(i, j int) { endpoints[i], endpoints[j] = endpoints[j], endpoints[i] })
 		}
 
 		// "Flatten the list by concatenating the ordered list of addresses for
@@ -945,17 +906,3 @@ func equalAddressIgnoringBalAttributes(a, b *resolver.Address) bool {
 	return a.Addr == b.Addr && a.ServerName == b.ServerName &&
 		a.Attributes.Equal(b.Attributes)
 }
-
-// weightAttribute is a convenience function which returns the value of the
-// weight endpoint Attribute.
-//
-// When used in the xDS context, the weight attribute is guaranteed to be
-// non-zero. But, when used in a non-xDS context, the weight attribute could be
-// unset. A Default of 1 is used in the latter case.
-func weightAttribute(e resolver.Endpoint) uint32 {
-	w := weight.FromEndpoint(e).Weight
-	if w == 0 {
-		return 1
-	}
-	return w
-}
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/subconn.go b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/subconn.go
index c1ca7c92e..9ee44d4af 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/subconn.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer/subconn.go
@@ -111,6 +111,20 @@ type SubConnState struct {
 	// ConnectionError is set if the ConnectivityState is TransientFailure,
 	// describing the reason the SubConn failed.  Otherwise, it is nil.
 	ConnectionError error
+	// connectedAddr contains the connected address when ConnectivityState is
+	// Ready. Otherwise, it is indeterminate.
+	connectedAddress resolver.Address
+}
+
+// connectedAddress returns the connected address for a SubConnState. The
+// address is only valid if the state is READY.
+func connectedAddress(scs SubConnState) resolver.Address {
+	return scs.connectedAddress
+}
+
+// setConnectedAddress sets the connected address for a SubConnState.
+func setConnectedAddress(scs *SubConnState, addr resolver.Address) {
+	scs.connectedAddress = addr
 }
 
 // A Producer is a type shared among potentially many consumers.  It is
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer_wrapper.go b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer_wrapper.go
index a1e56a389..2c760e623 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/balancer_wrapper.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/balancer_wrapper.go
@@ -36,6 +36,7 @@ import (
 )
 
 var (
+	setConnectedAddress = internal.SetConnectedAddress.(func(*balancer.SubConnState, resolver.Address))
 	// noOpRegisterHealthListenerFn is used when client side health checking is
 	// disabled. It sends a single READY update on the registered listener.
 	noOpRegisterHealthListenerFn = func(_ context.Context, listener func(balancer.SubConnState)) func() {
@@ -304,7 +305,7 @@ func newHealthData(s connectivity.State) *healthData {
 
 // updateState is invoked by grpc to push a subConn state update to the
 // underlying balancer.
-func (acbw *acBalancerWrapper) updateState(s connectivity.State, err error) {
+func (acbw *acBalancerWrapper) updateState(s connectivity.State, curAddr resolver.Address, err error) {
 	acbw.ccb.serializer.TrySchedule(func(ctx context.Context) {
 		if ctx.Err() != nil || acbw.ccb.balancer == nil {
 			return
@@ -316,6 +317,9 @@ func (acbw *acBalancerWrapper) updateState(s connectivity.State, err error) {
 		// opts.StateListener is set, so this cannot ever be nil.
 		// TODO: delete this comment when UpdateSubConnState is removed.
 		scs := balancer.SubConnState{ConnectivityState: s, ConnectionError: err}
+		if s == connectivity.Ready {
+			setConnectedAddress(&scs, curAddr)
+		}
 		// Invalidate the health listener by updating the healthData.
 		acbw.healthMu.Lock()
 		// A race may occur if a health listener is registered soon after the
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/clientconn.go b/openshift/tests-extension/vendor/google.golang.org/grpc/clientconn.go
index 5dec2dacc..b767d3e33 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/clientconn.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/clientconn.go
@@ -977,24 +977,25 @@ func (cc *ClientConn) incrCallsFailed() {
 // connect starts creating a transport.
 // It does nothing if the ac is not IDLE.
 // TODO(bar) Move this to the addrConn section.
-func (ac *addrConn) connect() {
+func (ac *addrConn) connect() error {
 	ac.mu.Lock()
 	if ac.state == connectivity.Shutdown {
 		if logger.V(2) {
 			logger.Infof("connect called on shutdown addrConn; ignoring.")
 		}
 		ac.mu.Unlock()
-		return
+		return errConnClosing
 	}
 	if ac.state != connectivity.Idle {
 		if logger.V(2) {
 			logger.Infof("connect called on addrConn in non-idle state (%v); ignoring.", ac.state)
 		}
 		ac.mu.Unlock()
-		return
+		return nil
 	}
 
 	ac.resetTransportAndUnlock()
+	return nil
 }
 
 // equalAddressIgnoringBalAttributes returns true is a and b are considered equal.
@@ -1296,7 +1297,7 @@ func (ac *addrConn) updateConnectivityState(s connectivity.State, lastErr error)
 	} else {
 		channelz.Infof(logger, ac.channelz, "Subchannel Connectivity change to %v, last error: %s", s, lastErr)
 	}
-	ac.acbw.updateState(s, lastErr)
+	ac.acbw.updateState(s, ac.curAddr, lastErr)
 }
 
 // adjustParams updates parameters used to create transports upon
@@ -1527,26 +1528,25 @@ func (ac *addrConn) createTransport(ctx context.Context, addr resolver.Address,
 	}
 
 	ac.mu.Lock()
+	defer ac.mu.Unlock()
 	if ctx.Err() != nil {
 		// This can happen if the subConn was removed while in `Connecting`
 		// state. tearDown() would have set the state to `Shutdown`, but
 		// would not have closed the transport since ac.transport would not
 		// have been set at that point.
-
-		// We unlock ac.mu because newTr.Close() calls onClose()
+		//
+		// We run this in a goroutine because newTr.Close() calls onClose()
 		// inline, which requires locking ac.mu.
-		ac.mu.Unlock()
-
+		//
 		// The error we pass to Close() is immaterial since there are no open
 		// streams at this point, so no trailers with error details will be sent
 		// out. We just need to pass a non-nil error.
 		//
 		// This can also happen when updateAddrs is called during a connection
 		// attempt.
-		newTr.Close(transport.ErrConnClosing)
+		go newTr.Close(transport.ErrConnClosing)
 		return nil
 	}
-	defer ac.mu.Unlock()
 	if hctx.Err() != nil {
 		// onClose was already called for this connection, but the connection
 		// was successfully established first.  Consider it a success and set
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/credentials/tls.go b/openshift/tests-extension/vendor/google.golang.org/grpc/credentials/tls.go
index 0bcd16dbb..8277be7d6 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/credentials/tls.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/credentials/tls.go
@@ -56,13 +56,9 @@ func (t TLSInfo) AuthType() string {
 // non-nil error if the validation fails.
 func (t TLSInfo) ValidateAuthority(authority string) error {
 	var errs []error
-	host, _, err := net.SplitHostPort(authority)
-	if err != nil {
-		host = authority
-	}
 	for _, cert := range t.State.PeerCertificates {
 		var err error
-		if err = cert.VerifyHostname(host); err == nil {
+		if err = cert.VerifyHostname(authority); err == nil {
 			return nil
 		}
 		errs = append(errs, err)
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/encoding.go b/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/encoding.go
index 296f38c3a..dadd21e40 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/encoding.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/encoding.go
@@ -58,6 +58,10 @@ func init() {
 
 // Compressor is used for compressing and decompressing when sending or
 // receiving messages.
+//
+// If a Compressor implements `DecompressedSize(compressedBytes []byte) int`,
+// gRPC will invoke it to determine the size of the buffer allocated for the
+// result of decompression.  A return value of -1 indicates unknown size.
 type Compressor interface {
 	// Compress writes the data written to wc to w after compressing it.  If an
 	// error occurs while initializing the compressor, that error is returned
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/gzip/gzip.go b/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/gzip/gzip.go
index 153e4dbfb..6306e8bb0 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/gzip/gzip.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/encoding/gzip/gzip.go
@@ -27,6 +27,7 @@ package gzip
 
 import (
 	"compress/gzip"
+	"encoding/binary"
 	"fmt"
 	"io"
 	"sync"
@@ -110,6 +111,17 @@ func (z *reader) Read(p []byte) (n int, err error) {
 	return n, err
 }
 
+// RFC1952 specifies that the last four bytes "contains the size of
+// the original (uncompressed) input data modulo 2^32."
+// gRPC has a max message size of 2GB so we don't need to worry about wraparound.
+func (c *compressor) DecompressedSize(buf []byte) int {
+	last := len(buf)
+	if last < 4 {
+		return -1
+	}
+	return int(binary.LittleEndian.Uint32(buf[last-4 : last]))
+}
+
 func (c *compressor) Name() string {
 	return Name
 }
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/experimental/stats/metrics.go b/openshift/tests-extension/vendor/google.golang.org/grpc/experimental/stats/metrics.go
index 88742724a..d7d404cbe 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/experimental/stats/metrics.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/experimental/stats/metrics.go
@@ -19,13 +19,9 @@
 // Package stats contains experimental metrics/stats API's.
 package stats
 
-import (
-	"google.golang.org/grpc/internal"
-	"google.golang.org/grpc/stats"
-)
+import "google.golang.org/grpc/stats"
 
 // MetricsRecorder records on metrics derived from metric registry.
-// Implementors must embed UnimplementedMetricsRecorder.
 type MetricsRecorder interface {
 	// RecordInt64Count records the measurement alongside labels on the int
 	// count associated with the provided handle.
@@ -45,39 +41,6 @@ type MetricsRecorder interface {
 	// RecordInt64UpDownCounter records the measurement alongside labels on the int
 	// count associated with the provided handle.
 	RecordInt64UpDownCount(handle *Int64UpDownCountHandle, incr int64, labels ...string)
-	// RegisterAsyncReporter registers a reporter to produce metric values for
-	// only the listed descriptors. The returned function must be called when
-	// the metrics are no longer needed, which will remove the reporter. The
-	// returned method needs to be idempotent and concurrent safe.
-	RegisterAsyncReporter(reporter AsyncMetricReporter, descriptors ...AsyncMetric) func()
-
-	// EnforceMetricsRecorderEmbedding is included to force implementers to embed
-	// another implementation of this interface, allowing gRPC to add methods
-	// without breaking users.
-	internal.EnforceMetricsRecorderEmbedding
-}
-
-// AsyncMetricReporter is an interface for types that record metrics asynchronously
-// for the set of descriptors they are registered with. The AsyncMetricsRecorder
-// parameter is used to record values for these metrics.
-//
-// Implementations must make unique recordings across all registered
-// AsyncMetricReporters. Meaning, they should not report values for a metric with
-// the same attributes as another AsyncMetricReporter will report.
-//
-// Implementations must be concurrent-safe.
-type AsyncMetricReporter interface {
-	// Report records metric values using the provided recorder.
-	Report(AsyncMetricsRecorder) error
-}
-
-// AsyncMetricReporterFunc is an adapter to allow the use of ordinary functions as
-// AsyncMetricReporters.
-type AsyncMetricReporterFunc func(AsyncMetricsRecorder) error
-
-// Report calls f(r).
-func (f AsyncMetricReporterFunc) Report(r AsyncMetricsRecorder) error {
-	return f(r)
 }
 
 // AsyncMetricsRecorder records on asynchronous metrics derived from metric registry.
@@ -99,33 +62,3 @@ type Metric = string
 func NewMetrics(metrics ...Metric) *Metrics {
 	return stats.NewMetricSet(metrics...)
 }
-
-// UnimplementedMetricsRecorder must be embedded to have forward compatible implementations.
-type UnimplementedMetricsRecorder struct {
-	internal.EnforceMetricsRecorderEmbedding
-}
-
-// RecordInt64Count provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RecordInt64Count(*Int64CountHandle, int64, ...string) {}
-
-// RecordFloat64Count provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RecordFloat64Count(*Float64CountHandle, float64, ...string) {}
-
-// RecordInt64Histo provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RecordInt64Histo(*Int64HistoHandle, int64, ...string) {}
-
-// RecordFloat64Histo provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RecordFloat64Histo(*Float64HistoHandle, float64, ...string) {}
-
-// RecordInt64Gauge provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RecordInt64Gauge(*Int64GaugeHandle, int64, ...string) {}
-
-// RecordInt64UpDownCount provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RecordInt64UpDownCount(*Int64UpDownCountHandle, int64, ...string) {
-}
-
-// RegisterAsyncReporter provides a no-op implementation.
-func (UnimplementedMetricsRecorder) RegisterAsyncReporter(AsyncMetricReporter, ...AsyncMetric) func() {
-	// No-op: Return an empty function to ensure caller doesn't panic on nil function call
-	return func() {}
-}
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/interceptor.go b/openshift/tests-extension/vendor/google.golang.org/grpc/interceptor.go
index 099e3d093..877d78fc3 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/interceptor.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/interceptor.go
@@ -97,12 +97,8 @@ type StreamServerInfo struct {
 	IsServerStream bool
 }
 
-// StreamServerInterceptor provides a hook to intercept the execution of a
-// streaming RPC on the server.
-//
-// srv is the service implementation on which the RPC was invoked, and needs to
-// be passed to handler, and not used otherwise. ss is the server side of the
-// stream. info contains all the information of this RPC the interceptor can
-// operate on. And handler is the service method implementation. It is the
-// responsibility of the interceptor to invoke handler to complete the RPC.
+// StreamServerInterceptor provides a hook to intercept the execution of a streaming RPC on the server.
+// info contains all the information of this RPC the interceptor can operate on. And handler is the
+// service method implementation. It is the responsibility of the interceptor to invoke handler to
+// complete the RPC.
 type StreamServerInterceptor func(srv any, ss ServerStream, info *StreamServerInfo, handler StreamHandler) error
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/balancer/weight/weight.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/balancer/weight/weight.go
deleted file mode 100644
index 11beb07d1..000000000
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/balancer/weight/weight.go
+++ /dev/null
@@ -1,66 +0,0 @@
-/*
- *
- * Copyright 2025 gRPC authors.
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- *     http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- */
-
-// Package weight contains utilities to manage endpoint weights. Weights are
-// used by LB policies such as ringhash to distribute load across multiple
-// endpoints.
-package weight
-
-import (
-	"fmt"
-
-	"google.golang.org/grpc/resolver"
-)
-
-// attributeKey is the type used as the key to store EndpointInfo in the
-// Attributes field of resolver.Endpoint.
-type attributeKey struct{}
-
-// EndpointInfo will be stored in the Attributes field of Endpoints in order to
-// use the ringhash balancer.
-type EndpointInfo struct {
-	Weight uint32
-}
-
-// Equal allows the values to be compared by Attributes.Equal.
-func (a EndpointInfo) Equal(o any) bool {
-	oa, ok := o.(EndpointInfo)
-	return ok && oa.Weight == a.Weight
-}
-
-// Set returns a copy of endpoint in which the Attributes field is updated with
-// EndpointInfo.
-func Set(endpoint resolver.Endpoint, epInfo EndpointInfo) resolver.Endpoint {
-	endpoint.Attributes = endpoint.Attributes.WithValue(attributeKey{}, epInfo)
-	return endpoint
-}
-
-// String returns a human-readable representation of EndpointInfo.
-// This method is intended for logging, testing, and debugging purposes only.
-// Do not rely on the output format, as it is not guaranteed to remain stable.
-func (a EndpointInfo) String() string {
-	return fmt.Sprintf("Weight: %d", a.Weight)
-}
-
-// FromEndpoint returns the EndpointInfo stored in the Attributes field of an
-// endpoint. It returns an empty EndpointInfo if attribute is not found.
-func FromEndpoint(endpoint resolver.Endpoint) EndpointInfo {
-	v := endpoint.Attributes.Value(attributeKey{})
-	ei, _ := v.(EndpointInfo)
-	return ei
-}
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go
index e8dc79129..6414ee4bb 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go
@@ -82,12 +82,6 @@ var (
 	// This feature is defined in gRFC A81 and is enabled by setting the
 	// environment variable GRPC_EXPERIMENTAL_XDS_AUTHORITY_REWRITE to "true".
 	XDSAuthorityRewrite = boolFromEnv("GRPC_EXPERIMENTAL_XDS_AUTHORITY_REWRITE", false)
-
-	// PickFirstWeightedShuffling indicates whether weighted endpoint shuffling
-	// is enabled in the pick_first LB policy, as defined in gRFC A113. This
-	// feature can be disabled by setting the environment variable
-	// GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING to "false".
-	PickFirstWeightedShuffling = boolFromEnv("GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING", true)
 )
 
 func boolFromEnv(envVar string, def bool) bool {
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/experimental.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/experimental.go
index 8a999917d..c90cc51bd 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/experimental.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/experimental.go
@@ -26,9 +26,6 @@ var (
 	// option to configure a shared buffer pool for a grpc.Server.
 	BufferPool any // func (grpc.SharedBufferPool) grpc.ServerOption
 
-	// SetDefaultBufferPool updates the default buffer pool.
-	SetDefaultBufferPool any // func(mem.BufferPool)
-
 	// AcceptCompressors is implemented by the grpc package and returns
 	// a call option that restricts the grpc-accept-encoding header for a call.
 	AcceptCompressors any // func(...string) grpc.CallOption
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/internal.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/internal.go
index 4b3d563f8..27bef83d9 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/internal.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/internal.go
@@ -211,11 +211,22 @@ var (
 	// default resolver scheme.
 	UserSetDefaultScheme = false
 
+	// ConnectedAddress returns the connected address for a SubConnState. The
+	// address is only valid if the state is READY.
+	ConnectedAddress any // func (scs SubConnState) resolver.Address
+
+	// SetConnectedAddress sets the connected address for a SubConnState.
+	SetConnectedAddress any // func(scs *SubConnState, addr resolver.Address)
+
 	// SnapshotMetricRegistryForTesting snapshots the global data of the metric
 	// registry. Returns a cleanup function that sets the metric registry to its
 	// original state. Only called in testing functions.
 	SnapshotMetricRegistryForTesting func() func()
 
+	// SetDefaultBufferPoolForTesting updates the default buffer pool, for
+	// testing purposes.
+	SetDefaultBufferPoolForTesting any // func(mem.BufferPool)
+
 	// SetBufferPoolingThresholdForTesting updates the buffer pooling threshold, for
 	// testing purposes.
 	SetBufferPoolingThresholdForTesting any // func(int)
@@ -237,14 +248,6 @@ var (
 	// AddressToTelemetryLabels is an xDS-provided function to extract telemetry
 	// labels from a resolver.Address. Callers must assert its type before calling.
 	AddressToTelemetryLabels any // func(addr resolver.Address) map[string]string
-
-	// AsyncReporterCleanupDelegate is initialized to a pass-through function by
-	// default (production behavior), allowing tests to swap it with an
-	// implementation which tracks registration of async reporter and its
-	// corresponding cleanup.
-	AsyncReporterCleanupDelegate = func(cleanup func()) func() {
-		return cleanup
-	}
 )
 
 // HealthChecker defines the signature of the client-side LB channel health
@@ -292,9 +295,3 @@ type EnforceClientConnEmbedding interface {
 type Timer interface {
 	Stop() bool
 }
-
-// EnforceMetricsRecorderEmbedding is used to enforce proper MetricsRecorder
-// implementation embedding.
-type EnforceMetricsRecorderEmbedding interface {
-	enforceMetricsRecorderEmbedding()
-}
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/resolver/dns/dns_resolver.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/resolver/dns/dns_resolver.go
index 70b89e4d7..ada5251cf 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/resolver/dns/dns_resolver.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/resolver/dns/dns_resolver.go
@@ -125,10 +125,7 @@ func (b *dnsBuilder) Build(target resolver.Target, cc resolver.ClientConn, opts
 	// IP address.
 	if ipAddr, err := formatIP(host); err == nil {
 		addr := []resolver.Address{{Addr: ipAddr + ":" + port}}
-		cc.UpdateState(resolver.State{
-			Addresses: addr,
-			Endpoints: []resolver.Endpoint{{Addresses: addr}},
-		})
+		cc.UpdateState(resolver.State{Addresses: addr})
 		return deadResolver{}, nil
 	}
 
@@ -345,15 +342,7 @@ func (d *dnsResolver) lookup() (*resolver.State, error) {
 		return nil, hostErr
 	}
 
-	eps := make([]resolver.Endpoint, 0, len(addrs))
-	for _, addr := range addrs {
-		eps = append(eps, resolver.Endpoint{Addresses: []resolver.Address{addr}})
-	}
-
-	state := resolver.State{
-		Addresses: addrs,
-		Endpoints: eps,
-	}
+	state := resolver.State{Addresses: addrs}
 	if len(srv) > 0 {
 		state = grpclbstate.Set(state, &grpclbstate.State{BalancerAddresses: srv})
 	}
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/stats/metrics_recorder_list.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/stats/metrics_recorder_list.go
index 1c8c2ab30..d5f7e4d62 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/stats/metrics_recorder_list.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/stats/metrics_recorder_list.go
@@ -20,7 +20,6 @@ import (
 	"fmt"
 
 	estats "google.golang.org/grpc/experimental/stats"
-	"google.golang.org/grpc/internal"
 	"google.golang.org/grpc/stats"
 )
 
@@ -29,7 +28,6 @@ import (
 // It eats any record calls where the label values provided do not match the
 // number of label keys.
 type MetricsRecorderList struct {
-	internal.EnforceMetricsRecorderEmbedding
 	// metricsRecorders are the metrics recorders this list will forward to.
 	metricsRecorders []estats.MetricsRecorder
 }
@@ -115,61 +113,3 @@ func (l *MetricsRecorderList) RecordInt64Gauge(handle *estats.Int64GaugeHandle,
 		metricRecorder.RecordInt64Gauge(handle, incr, labels...)
 	}
 }
-
-// RegisterAsyncReporter forwards the registration to all underlying metrics
-// recorders.
-//
-// It returns a cleanup function that, when called, invokes the cleanup function
-// returned by each underlying recorder, ensuring the reporter is unregistered
-// from all of them.
-func (l *MetricsRecorderList) RegisterAsyncReporter(reporter estats.AsyncMetricReporter, metrics ...estats.AsyncMetric) func() {
-	descriptorsMap := make(map[*estats.MetricDescriptor]bool, len(metrics))
-	for _, m := range metrics {
-		descriptorsMap[m.Descriptor()] = true
-	}
-	unregisterFns := make([]func(), 0, len(l.metricsRecorders))
-	for _, mr := range l.metricsRecorders {
-		// Wrap the AsyncMetricsRecorder to intercept calls to RecordInt64Gauge
-		// and validate the labels.
-		wrappedCallback := func(recorder estats.AsyncMetricsRecorder) error {
-			wrappedRecorder := &asyncRecorderWrapper{
-				delegate:    recorder,
-				descriptors: descriptorsMap,
-			}
-			return reporter.Report(wrappedRecorder)
-		}
-		unregisterFns = append(unregisterFns, mr.RegisterAsyncReporter(estats.AsyncMetricReporterFunc(wrappedCallback), metrics...))
-	}
-
-	// Wrap the cleanup function using the internal delegate.
-	// In production, this returns realCleanup as-is.
-	// In tests, the leak checker can swap this to track the registration lifetime.
-	return internal.AsyncReporterCleanupDelegate(defaultCleanUp(unregisterFns))
-}
-
-func defaultCleanUp(unregisterFns []func()) func() {
-	return func() {
-		for _, unregister := range unregisterFns {
-			unregister()
-		}
-	}
-}
-
-type asyncRecorderWrapper struct {
-	delegate    estats.AsyncMetricsRecorder
-	descriptors map[*estats.MetricDescriptor]bool
-}
-
-// RecordIntAsync64Gauge records the measurement alongside labels on the int
-// gauge associated with the provided handle.
-func (w *asyncRecorderWrapper) RecordInt64AsyncGauge(handle *estats.Int64AsyncGaugeHandle, value int64, labels ...string) {
-	// Ensure only metrics for descriptors passed during callback registration
-	// are emitted.
-	d := handle.Descriptor()
-	if _, ok := w.descriptors[d]; !ok {
-		return
-	}
-	// Validate labels and delegate.
-	verifyLabels(d, labels...)
-	w.delegate.RecordInt64AsyncGauge(handle, value, labels...)
-}
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/controlbuf.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/controlbuf.go
index 7efa52478..2dcd1e63b 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/controlbuf.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/controlbuf.go
@@ -24,13 +24,16 @@ import (
 	"fmt"
 	"net"
 	"runtime"
+	"strconv"
 	"sync"
 	"sync/atomic"
 
 	"golang.org/x/net/http2"
 	"golang.org/x/net/http2/hpack"
 	"google.golang.org/grpc/internal/grpclog"
+	"google.golang.org/grpc/internal/grpcutil"
 	"google.golang.org/grpc/mem"
+	"google.golang.org/grpc/status"
 )
 
 var updateHeaderTblSize = func(e *hpack.Encoder, v uint32) {
@@ -144,9 +147,11 @@ type cleanupStream struct {
 func (c *cleanupStream) isTransportResponseFrame() bool { return c.rst } // Results in a RST_STREAM
 
 type earlyAbortStream struct {
-	streamID uint32
-	rst      bool
-	hf       []hpack.HeaderField // Pre-built header fields
+	httpStatus     uint32
+	streamID       uint32
+	contentSubtype string
+	status         *status.Status
+	rst            bool
 }
 
 func (*earlyAbortStream) isTransportResponseFrame() bool { return false }
@@ -838,7 +843,18 @@ func (l *loopyWriter) earlyAbortStreamHandler(eas *earlyAbortStream) error {
 	if l.side == clientSide {
 		return errors.New("earlyAbortStream not handled on client")
 	}
-	if err := l.writeHeader(eas.streamID, true, eas.hf, nil); err != nil {
+	// In case the caller forgets to set the http status, default to 200.
+	if eas.httpStatus == 0 {
+		eas.httpStatus = 200
+	}
+	headerFields := []hpack.HeaderField{
+		{Name: ":status", Value: strconv.Itoa(int(eas.httpStatus))},
+		{Name: "content-type", Value: grpcutil.ContentType(eas.contentSubtype)},
+		{Name: "grpc-status", Value: strconv.Itoa(int(eas.status.Code()))},
+		{Name: "grpc-message", Value: encodeGrpcMessage(eas.status.Message())},
+	}
+
+	if err := l.writeHeader(eas.streamID, true, headerFields, nil); err != nil {
 		return err
 	}
 	if eas.rst {
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/http2_server.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/http2_server.go
index a1a14e14f..6f78a6b0c 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/http2_server.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/http2_server.go
@@ -479,7 +479,13 @@ func (t *http2Server) operateHeaders(ctx context.Context, frame *http2.MetaHeade
 		if t.logger.V(logLevel) {
 			t.logger.Infof("Aborting the stream early: %v", errMsg)
 		}
-		t.writeEarlyAbort(streamID, s.contentSubtype, status.New(codes.Internal, errMsg), http.StatusBadRequest, !frame.StreamEnded())
+		t.controlBuf.put(&earlyAbortStream{
+			httpStatus:     http.StatusBadRequest,
+			streamID:       streamID,
+			contentSubtype: s.contentSubtype,
+			status:         status.New(codes.Internal, errMsg),
+			rst:            !frame.StreamEnded(),
+		})
 		return nil
 	}
 
@@ -493,11 +499,23 @@ func (t *http2Server) operateHeaders(ctx context.Context, frame *http2.MetaHeade
 		return nil
 	}
 	if !isGRPC {
-		t.writeEarlyAbort(streamID, s.contentSubtype, status.Newf(codes.InvalidArgument, "invalid gRPC request content-type %q", contentType), http.StatusUnsupportedMediaType, !frame.StreamEnded())
+		t.controlBuf.put(&earlyAbortStream{
+			httpStatus:     http.StatusUnsupportedMediaType,
+			streamID:       streamID,
+			contentSubtype: s.contentSubtype,
+			status:         status.Newf(codes.InvalidArgument, "invalid gRPC request content-type %q", contentType),
+			rst:            !frame.StreamEnded(),
+		})
 		return nil
 	}
 	if headerError != nil {
-		t.writeEarlyAbort(streamID, s.contentSubtype, headerError, http.StatusBadRequest, !frame.StreamEnded())
+		t.controlBuf.put(&earlyAbortStream{
+			httpStatus:     http.StatusBadRequest,
+			streamID:       streamID,
+			contentSubtype: s.contentSubtype,
+			status:         headerError,
+			rst:            !frame.StreamEnded(),
+		})
 		return nil
 	}
 
@@ -551,7 +569,13 @@ func (t *http2Server) operateHeaders(ctx context.Context, frame *http2.MetaHeade
 		if t.logger.V(logLevel) {
 			t.logger.Infof("Aborting the stream early: %v", errMsg)
 		}
-		t.writeEarlyAbort(streamID, s.contentSubtype, status.New(codes.Internal, errMsg), http.StatusMethodNotAllowed, !frame.StreamEnded())
+		t.controlBuf.put(&earlyAbortStream{
+			httpStatus:     http.StatusMethodNotAllowed,
+			streamID:       streamID,
+			contentSubtype: s.contentSubtype,
+			status:         status.New(codes.Internal, errMsg),
+			rst:            !frame.StreamEnded(),
+		})
 		s.cancel()
 		return nil
 	}
@@ -566,16 +590,27 @@ func (t *http2Server) operateHeaders(ctx context.Context, frame *http2.MetaHeade
 			if !ok {
 				stat = status.New(codes.PermissionDenied, err.Error())
 			}
-			t.writeEarlyAbort(s.id, s.contentSubtype, stat, http.StatusOK, !frame.StreamEnded())
+			t.controlBuf.put(&earlyAbortStream{
+				httpStatus:     http.StatusOK,
+				streamID:       s.id,
+				contentSubtype: s.contentSubtype,
+				status:         stat,
+				rst:            !frame.StreamEnded(),
+			})
 			return nil
 		}
 	}
 
 	if s.ctx.Err() != nil {
 		t.mu.Unlock()
-		st := status.New(codes.DeadlineExceeded, context.DeadlineExceeded.Error())
 		// Early abort in case the timeout was zero or so low it already fired.
-		t.writeEarlyAbort(s.id, s.contentSubtype, st, http.StatusOK, !frame.StreamEnded())
+		t.controlBuf.put(&earlyAbortStream{
+			httpStatus:     http.StatusOK,
+			streamID:       s.id,
+			contentSubtype: s.contentSubtype,
+			status:         status.New(codes.DeadlineExceeded, context.DeadlineExceeded.Error()),
+			rst:            !frame.StreamEnded(),
+		})
 		return nil
 	}
 
@@ -934,12 +969,13 @@ func appendHeaderFieldsFromMD(headerFields []hpack.HeaderField, md metadata.MD)
 	return headerFields
 }
 
-func (t *http2Server) checkForHeaderListSize(hf []hpack.HeaderField) bool {
+func (t *http2Server) checkForHeaderListSize(it any) bool {
 	if t.maxSendHeaderListSize == nil {
 		return true
 	}
+	hdrFrame := it.(*headerFrame)
 	var sz int64
-	for _, f := range hf {
+	for _, f := range hdrFrame.hf {
 		if sz += int64(f.Size()); sz > int64(*t.maxSendHeaderListSize) {
 			if t.logger.V(logLevel) {
 				t.logger.Infof("Header list size to send violates the maximum size (%d bytes) set by client", *t.maxSendHeaderListSize)
@@ -950,42 +986,6 @@ func (t *http2Server) checkForHeaderListSize(hf []hpack.HeaderField) bool {
 	return true
 }
 
-// writeEarlyAbort sends an early abort response with the given HTTP status and
-// gRPC status. If the header list size exceeds the peer's limit, it sends a
-// RST_STREAM instead.
-func (t *http2Server) writeEarlyAbort(streamID uint32, contentSubtype string, stat *status.Status, httpStatus uint32, rst bool) {
-	hf := []hpack.HeaderField{
-		{Name: ":status", Value: strconv.Itoa(int(httpStatus))},
-		{Name: "content-type", Value: grpcutil.ContentType(contentSubtype)},
-		{Name: "grpc-status", Value: strconv.Itoa(int(stat.Code()))},
-		{Name: "grpc-message", Value: encodeGrpcMessage(stat.Message())},
-	}
-	if p := istatus.RawStatusProto(stat); len(p.GetDetails()) > 0 {
-		stBytes, err := proto.Marshal(p)
-		if err != nil {
-			t.logger.Errorf("Failed to marshal rpc status: %s, error: %v", pretty.ToJSON(p), err)
-		}
-		if err == nil {
-			hf = append(hf, hpack.HeaderField{Name: grpcStatusDetailsBinHeader, Value: encodeBinHeader(stBytes)})
-		}
-	}
-	success, _ := t.controlBuf.executeAndPut(func() bool {
-		return t.checkForHeaderListSize(hf)
-	}, &earlyAbortStream{
-		streamID: streamID,
-		rst:      rst,
-		hf:       hf,
-	})
-	if !success {
-		t.controlBuf.put(&cleanupStream{
-			streamID: streamID,
-			rst:      true,
-			rstCode:  http2.ErrCodeInternal,
-			onWrite:  func() {},
-		})
-	}
-}
-
 func (t *http2Server) streamContextErr(s *ServerStream) error {
 	select {
 	case <-t.done:
@@ -1041,7 +1041,7 @@ func (t *http2Server) writeHeaderLocked(s *ServerStream) error {
 		endStream: false,
 		onWrite:   t.setResetPingStrikes,
 	}
-	success, err := t.controlBuf.executeAndPut(func() bool { return t.checkForHeaderListSize(hf.hf) }, hf)
+	success, err := t.controlBuf.executeAndPut(func() bool { return t.checkForHeaderListSize(hf) }, hf)
 	if !success {
 		if err != nil {
 			return err
@@ -1111,7 +1111,7 @@ func (t *http2Server) writeStatus(s *ServerStream, st *status.Status) error {
 	}
 
 	success, err := t.controlBuf.executeAndPut(func() bool {
-		return t.checkForHeaderListSize(trailingHeader.hf)
+		return t.checkForHeaderListSize(trailingHeader)
 	}, nil)
 	if !success {
 		if err != nil {
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/transport.go b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/transport.go
index 10b9155f0..6daf1e002 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/transport.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/internal/transport/transport.go
@@ -378,28 +378,12 @@ func (s *Stream) ReadMessageHeader(header []byte) (err error) {
 	return nil
 }
 
-// ceil returns the ceil after dividing the numerator and denominator while
-// avoiding integer overflows.
-func ceil(numerator, denominator int) int {
-	if numerator == 0 {
-		return 0
-	}
-	return (numerator-1)/denominator + 1
-}
-
 // Read reads n bytes from the wire for this stream.
 func (s *Stream) read(n int) (data mem.BufferSlice, err error) {
 	// Don't request a read if there was an error earlier
 	if er := s.trReader.er; er != nil {
 		return nil, er
 	}
-	// gRPC Go accepts data frames with a maximum length of 16KB. Larger
-	// messages must be split into multiple frames. We pre-allocate the
-	// buffer to avoid resizing during the read loop, but cap the initial
-	// capacity to 128 frames (2MB) to prevent over-allocation or panics
-	// when reading extremely large streams.
-	allocCap := min(ceil(n, http2MaxFrameLen), 128)
-	data = make(mem.BufferSlice, 0, allocCap)
 	s.readRequester.requestRead(n)
 	for n != 0 {
 		buf, err := s.trReader.Read(n)
@@ -590,14 +574,9 @@ type CallHdr struct {
 
 	DoneFunc func() // called when the stream is finished
 
-	// Authority is used to explicitly override the `:authority` header.
-	//
-	// This value comes from one of two sources:
-	// 1. The `CallAuthority` call option, if specified by the user.
-	// 2. An override provided by the LB picker (e.g. xDS authority rewriting).
-	//
-	// The `CallAuthority` call option always takes precedence over the LB
-	// picker override.
+	// Authority is used to explicitly override the `:authority` header. If set,
+	// this value takes precedence over the Host field and will be used as the
+	// value for the `:authority` header.
 	Authority string
 }
 
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffer_pool.go b/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffer_pool.go
index 2ea763a49..e37afdd19 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffer_pool.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffer_pool.go
@@ -53,7 +53,7 @@ var defaultBufferPool BufferPool
 func init() {
 	defaultBufferPool = NewTieredBufferPool(defaultBufferPoolSizes...)
 
-	internal.SetDefaultBufferPool = func(pool BufferPool) {
+	internal.SetDefaultBufferPoolForTesting = func(pool BufferPool) {
 		defaultBufferPool = pool
 	}
 
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffers.go b/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffers.go
index db1620e6a..ecbf0b9a7 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffers.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/mem/buffers.go
@@ -62,6 +62,7 @@ var (
 	bufferPoolingThreshold = 1 << 10
 
 	bufferObjectPool = sync.Pool{New: func() any { return new(buffer) }}
+	refObjectPool    = sync.Pool{New: func() any { return new(atomic.Int32) }}
 )
 
 // IsBelowBufferPoolingThreshold returns true if the given size is less than or
@@ -72,19 +73,9 @@ func IsBelowBufferPoolingThreshold(size int) bool {
 }
 
 type buffer struct {
-	refs atomic.Int32
-	data []byte
-
-	// rootBuf is the buffer responsible for returning origData to the pool
-	// once the reference count drops to 0.
-	//
-	// When a buffer is split, the new buffer inherits the rootBuf of the
-	// original and increments the root's reference count. For the
-	// initial buffer (the root), this field points to itself.
-	rootBuf *buffer
-
-	// The following fields are only set for root buffers.
 	origData *[]byte
+	data     []byte
+	refs     *atomic.Int32
 	pool     BufferPool
 }
 
@@ -112,8 +103,8 @@ func NewBuffer(data *[]byte, pool BufferPool) Buffer {
 	b.origData = data
 	b.data = *data
 	b.pool = pool
-	b.rootBuf = b
-	b.refs.Store(1)
+	b.refs = refObjectPool.Get().(*atomic.Int32)
+	b.refs.Add(1)
 	return b
 }
 
@@ -136,44 +127,42 @@ func Copy(data []byte, pool BufferPool) Buffer {
 }
 
 func (b *buffer) ReadOnlyData() []byte {
-	if b.rootBuf == nil {
+	if b.refs == nil {
 		panic("Cannot read freed buffer")
 	}
 	return b.data
 }
 
 func (b *buffer) Ref() {
-	if b.refs.Add(1) <= 1 {
+	if b.refs == nil {
 		panic("Cannot ref freed buffer")
 	}
+	b.refs.Add(1)
 }
 
 func (b *buffer) Free() {
-	refs := b.refs.Add(-1)
-	if refs < 0 {
+	if b.refs == nil {
 		panic("Cannot free freed buffer")
 	}
-	if refs > 0 {
-		return
-	}
 
-	b.data = nil
-	if b.rootBuf == b {
-		// This buffer is the owner of the data slice and its ref count reached
-		// 0, free the slice.
+	refs := b.refs.Add(-1)
+	switch {
+	case refs > 0:
+		return
+	case refs == 0:
 		if b.pool != nil {
 			b.pool.Put(b.origData)
-			b.pool = nil
 		}
+
+		refObjectPool.Put(b.refs)
 		b.origData = nil
-	} else {
-		// This buffer doesn't own the data slice, decrement a ref on the root
-		// buffer.
-		b.rootBuf.Free()
+		b.data = nil
+		b.refs = nil
+		b.pool = nil
+		bufferObjectPool.Put(b)
+	default:
+		panic("Cannot free freed buffer")
 	}
-
-	b.rootBuf = nil
-	bufferObjectPool.Put(b)
 }
 
 func (b *buffer) Len() int {
@@ -181,14 +170,16 @@ func (b *buffer) Len() int {
 }
 
 func (b *buffer) split(n int) (Buffer, Buffer) {
-	if b.rootBuf == nil || b.rootBuf.refs.Add(1) <= 1 {
+	if b.refs == nil {
 		panic("Cannot split freed buffer")
 	}
 
+	b.refs.Add(1)
 	split := newBuffer()
+	split.origData = b.origData
 	split.data = b.data[n:]
-	split.rootBuf = b.rootBuf
-	split.refs.Store(1)
+	split.refs = b.refs
+	split.pool = b.pool
 
 	b.data = b.data[:n]
 
@@ -196,7 +187,7 @@ func (b *buffer) split(n int) (Buffer, Buffer) {
 }
 
 func (b *buffer) read(buf []byte) (int, Buffer) {
-	if b.rootBuf == nil {
+	if b.refs == nil {
 		panic("Cannot read freed buffer")
 	}
 
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/resolver/resolver.go b/openshift/tests-extension/vendor/google.golang.org/grpc/resolver/resolver.go
index 598ed21a2..8e6af9514 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/resolver/resolver.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/resolver/resolver.go
@@ -182,7 +182,6 @@ type BuildOptions struct {
 
 // An Endpoint is one network endpoint, or server, which may have multiple
 // addresses with which it can be accessed.
-// TODO(i/8773) : make resolver.Endpoint and resolver.Address immutable
 type Endpoint struct {
 	// Addresses contains a list of addresses used to access this endpoint.
 	Addresses []Address
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/server.go b/openshift/tests-extension/vendor/google.golang.org/grpc/server.go
index 1b5cefe81..ddd377341 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/server.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/server.go
@@ -923,7 +923,9 @@ func (s *Server) Serve(lis net.Listener) error {
 					tempDelay = 5 * time.Millisecond
 				} else {
 					tempDelay *= 2
-					tempDelay = min(tempDelay, 1*time.Second)
+				}
+				if max := 1 * time.Second; tempDelay > max {
+					tempDelay = max
 				}
 				s.mu.Lock()
 				s.printf("Accept error: %v; retrying in %v", err, tempDelay)
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/stream.go b/openshift/tests-extension/vendor/google.golang.org/grpc/stream.go
index f92102fb4..ec9577b27 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/stream.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/stream.go
@@ -52,8 +52,7 @@ import (
 var metadataFromOutgoingContextRaw = internal.FromOutgoingContextRaw.(func(context.Context) (metadata.MD, [][]string, bool))
 
 // StreamHandler defines the handler called by gRPC server to complete the
-// execution of a streaming RPC. srv is the service implementation on which the
-// RPC was invoked.
+// execution of a streaming RPC.
 //
 // If a StreamHandler returns an error, it should either be produced by the
 // status package, or be one of the context errors. Otherwise, gRPC will use
@@ -538,16 +537,8 @@ func (a *csAttempt) newStream() error {
 		md, _ := metadata.FromOutgoingContext(a.ctx)
 		md = metadata.Join(md, a.pickResult.Metadata)
 		a.ctx = metadata.NewOutgoingContext(a.ctx, md)
-
-		// If the `CallAuthority` CallOption is not set, check if the LB picker
-		// has provided an authority override in the PickResult metadata and
-		// apply it, as specified in gRFC A81.
-		if cs.callInfo.authority == "" {
-			if authMD := a.pickResult.Metadata.Get(":authority"); len(authMD) > 0 {
-				cs.callHdr.Authority = authMD[0]
-			}
-		}
 	}
+
 	s, err := a.transport.NewStream(a.ctx, cs.callHdr)
 	if err != nil {
 		nse, ok := err.(*transport.NewStreamError)
@@ -1350,7 +1341,6 @@ func newNonRetryClientStream(ctx context.Context, desc *StreamDesc, method strin
 		codec:            c.codec,
 		sendCompressorV0: cp,
 		sendCompressorV1: comp,
-		decompressorV0:   ac.cc.dopts.dc,
 		transport:        t,
 	}
 
diff --git a/openshift/tests-extension/vendor/google.golang.org/grpc/version.go b/openshift/tests-extension/vendor/google.golang.org/grpc/version.go
index c1225b910..ff7840fd8 100644
--- a/openshift/tests-extension/vendor/google.golang.org/grpc/version.go
+++ b/openshift/tests-extension/vendor/google.golang.org/grpc/version.go
@@ -19,4 +19,4 @@
 package grpc
 
 // Version is the current grpc version.
-const Version = "1.79.1"
+const Version = "1.78.0"
diff --git a/openshift/tests-extension/vendor/modules.txt b/openshift/tests-extension/vendor/modules.txt
index 794524a27..7c331a3b8 100644
--- a/openshift/tests-extension/vendor/modules.txt
+++ b/openshift/tests-extension/vendor/modules.txt
@@ -138,7 +138,7 @@ github.com/google/go-cmp/cmp/internal/diff
 github.com/google/go-cmp/cmp/internal/flags
 github.com/google/go-cmp/cmp/internal/function
 github.com/google/go-cmp/cmp/internal/value
-# github.com/google/pprof v0.0.0-20260202012954-cb029daf43ef
+# github.com/google/pprof v0.0.0-20260115054156-294ebfa9ad83
 ## explicit; go 1.24.0
 github.com/google/pprof/profile
 # github.com/google/uuid v1.6.0
@@ -147,7 +147,7 @@ github.com/google/uuid
 # github.com/gorilla/websocket v1.5.4-0.20250319132907-e064f32e3674
 ## explicit; go 1.20
 github.com/gorilla/websocket
-# github.com/grpc-ecosystem/grpc-gateway/v2 v2.28.0
+# github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.7
 ## explicit; go 1.24.0
 github.com/grpc-ecosystem/grpc-gateway/v2/internal/httprule
 github.com/grpc-ecosystem/grpc-gateway/v2/runtime
@@ -177,7 +177,7 @@ github.com/munnerz/goautoneg
 # github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f
 ## explicit
 github.com/mxk/go-flowrate/flowrate
-# github.com/onsi/ginkgo/v2 v2.28.1 => github.com/openshift/onsi-ginkgo/v2 v2.6.1-0.20250416174521-4eb003743b54
+# github.com/onsi/ginkgo/v2 v2.28.0 => github.com/openshift/onsi-ginkgo/v2 v2.6.1-0.20250416174521-4eb003743b54
 ## explicit; go 1.22.0
 github.com/onsi/ginkgo/v2
 github.com/onsi/ginkgo/v2/config
@@ -216,7 +216,7 @@ github.com/onsi/gomega/types
 # github.com/opencontainers/go-digest v1.0.0
 ## explicit; go 1.13
 github.com/opencontainers/go-digest
-# github.com/openshift-eng/openshift-tests-extension v0.0.0-20260127124016-0fed2b824818
+# github.com/openshift-eng/openshift-tests-extension v0.0.0-20251105193959-75a0be5d9bd7
 ## explicit; go 1.23.0
 github.com/openshift-eng/openshift-tests-extension/pkg/cmd
 github.com/openshift-eng/openshift-tests-extension/pkg/cmd/cmdimages
@@ -232,7 +232,7 @@ github.com/openshift-eng/openshift-tests-extension/pkg/ginkgo
 github.com/openshift-eng/openshift-tests-extension/pkg/junit
 github.com/openshift-eng/openshift-tests-extension/pkg/util/sets
 github.com/openshift-eng/openshift-tests-extension/pkg/version
-# github.com/openshift/api v0.0.0-20260226164249-f733385bc39e
+# github.com/openshift/api v0.0.0-20260128000234-c16ec2bcf089
 ## explicit; go 1.24.0
 github.com/openshift/api/build/v1
 github.com/openshift/api/config/v1
@@ -247,7 +247,7 @@ github.com/openshift/api/operator/v1
 github.com/openshift/api/project/v1
 github.com/openshift/api/security/v1
 github.com/openshift/api/user/v1
-# github.com/openshift/client-go v0.0.0-20260226152647-d8b2196ff0d9
+# github.com/openshift/client-go v0.0.0-20260108185524-48f4ccfc4e13
 ## explicit; go 1.24.0
 github.com/openshift/client-go/config/applyconfigurations/config/v1
 github.com/openshift/client-go/config/applyconfigurations/config/v1alpha1
@@ -326,7 +326,7 @@ github.com/spf13/pflag
 # github.com/tidwall/gjson v1.18.0
 ## explicit; go 1.12
 github.com/tidwall/gjson
-# github.com/tidwall/match v1.2.0
+# github.com/tidwall/match v1.1.1
 ## explicit; go 1.15
 github.com/tidwall/match
 # github.com/tidwall/pretty v1.2.1
@@ -415,11 +415,11 @@ golang.org/x/crypto/internal/alias
 golang.org/x/crypto/internal/poly1305
 golang.org/x/crypto/ssh
 golang.org/x/crypto/ssh/internal/bcrypt_pbkdf
-# golang.org/x/exp v0.0.0-20260218203240-3dfff04db8fa
-## explicit; go 1.25.0
+# golang.org/x/exp v0.0.0-20260209203927-2842357ff358
+## explicit; go 1.24.0
 golang.org/x/exp/slices
-# golang.org/x/net v0.51.0
-## explicit; go 1.25.0
+# golang.org/x/net v0.50.0
+## explicit; go 1.24.0
 golang.org/x/net/context
 golang.org/x/net/html
 golang.org/x/net/html/atom
@@ -490,15 +490,15 @@ golang.org/x/time/rate
 golang.org/x/tools/cover
 golang.org/x/tools/go/ast/edge
 golang.org/x/tools/go/ast/inspector
-# google.golang.org/genproto/googleapis/api v0.0.0-20260223185530-2f722ef697dc
-## explicit; go 1.25.0
+# google.golang.org/genproto/googleapis/api v0.0.0-20260209200024-4cfbd4190f57
+## explicit; go 1.24.0
 google.golang.org/genproto/googleapis/api/expr/v1alpha1
 google.golang.org/genproto/googleapis/api/httpbody
-# google.golang.org/genproto/googleapis/rpc v0.0.0-20260223185530-2f722ef697dc
-## explicit; go 1.25.0
+# google.golang.org/genproto/googleapis/rpc v0.0.0-20260209200024-4cfbd4190f57
+## explicit; go 1.24.0
 google.golang.org/genproto/googleapis/rpc/errdetails
 google.golang.org/genproto/googleapis/rpc/status
-# google.golang.org/grpc v1.79.1
+# google.golang.org/grpc v1.78.0
 ## explicit; go 1.24.0
 google.golang.org/grpc
 google.golang.org/grpc/attributes
@@ -527,7 +527,6 @@ google.golang.org/grpc/health/grpc_health_v1
 google.golang.org/grpc/internal
 google.golang.org/grpc/internal/backoff
 google.golang.org/grpc/internal/balancer/gracefulswitch
-google.golang.org/grpc/internal/balancer/weight
 google.golang.org/grpc/internal/balancerload
 google.golang.org/grpc/internal/binarylog
 google.golang.org/grpc/internal/buffer
@@ -620,7 +619,7 @@ gopkg.in/yaml.v2
 # gopkg.in/yaml.v3 v3.0.1
 ## explicit
 gopkg.in/yaml.v3
-# k8s.io/api v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/api v0.0.0-20251108023427-891f5bb03061
+# k8s.io/api v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/api v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/api/admission/v1
 k8s.io/api/admission/v1beta1
@@ -681,7 +680,7 @@ k8s.io/api/storage/v1
 k8s.io/api/storage/v1alpha1
 k8s.io/api/storage/v1beta1
 k8s.io/api/storagemigration/v1alpha1
-# k8s.io/apiextensions-apiserver v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/apiextensions-apiserver v0.0.0-20251108023427-891f5bb03061
+# k8s.io/apiextensions-apiserver v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/apiextensions-apiserver v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/apiextensions-apiserver/pkg/apis/apiextensions
 k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1
@@ -693,7 +692,7 @@ k8s.io/apiextensions-apiserver/pkg/client/clientset/clientset/scheme
 k8s.io/apiextensions-apiserver/pkg/client/clientset/clientset/typed/apiextensions/v1
 k8s.io/apiextensions-apiserver/pkg/client/clientset/clientset/typed/apiextensions/v1beta1
 k8s.io/apiextensions-apiserver/pkg/features
-# k8s.io/apimachinery v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/apimachinery v0.0.0-20251108023427-891f5bb03061
+# k8s.io/apimachinery v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/apimachinery v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/apimachinery/pkg/api/equality
 k8s.io/apimachinery/pkg/api/errors
@@ -763,7 +762,7 @@ k8s.io/apimachinery/pkg/watch
 k8s.io/apimachinery/third_party/forked/golang/json
 k8s.io/apimachinery/third_party/forked/golang/netutil
 k8s.io/apimachinery/third_party/forked/golang/reflect
-# k8s.io/apiserver v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/apiserver v0.0.0-20251108023427-891f5bb03061
+# k8s.io/apiserver v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/apiserver v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/apiserver/pkg/admission
 k8s.io/apiserver/pkg/admission/configuration
@@ -815,7 +814,7 @@ k8s.io/apiserver/pkg/util/feature
 k8s.io/apiserver/pkg/util/webhook
 k8s.io/apiserver/pkg/util/x509metrics
 k8s.io/apiserver/pkg/warning
-# k8s.io/client-go v1.5.2 => github.com/openshift/kubernetes/staging/src/k8s.io/client-go v0.0.0-20251108023427-891f5bb03061
+# k8s.io/client-go v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/client-go v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/client-go/applyconfigurations/admissionregistration/v1
 k8s.io/client-go/applyconfigurations/admissionregistration/v1alpha1
@@ -1105,7 +1104,7 @@ k8s.io/client-go/util/homedir
 k8s.io/client-go/util/keyutil
 k8s.io/client-go/util/retry
 k8s.io/client-go/util/workqueue
-# k8s.io/component-base v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/component-base v0.0.0-20251108023427-891f5bb03061
+# k8s.io/component-base v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/component-base v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/component-base/cli/flag
 k8s.io/component-base/compatibility
@@ -1125,13 +1124,13 @@ k8s.io/component-base/tracing
 k8s.io/component-base/tracing/api/v1
 k8s.io/component-base/version
 k8s.io/component-base/zpages/features
-# k8s.io/component-helpers v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/component-helpers v0.0.0-20251108023427-891f5bb03061
+# k8s.io/component-helpers v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/component-helpers v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/component-helpers/node/util/sysctl
 k8s.io/component-helpers/resource
 k8s.io/component-helpers/scheduling/corev1
 k8s.io/component-helpers/scheduling/corev1/nodeaffinity
-# k8s.io/controller-manager v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/controller-manager v0.0.0-20251108023427-891f5bb03061
+# k8s.io/controller-manager v0.33.2 => github.com/openshift/kubernetes/staging/src/k8s.io/controller-manager v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/controller-manager/pkg/features
 # k8s.io/klog/v2 v2.130.1
@@ -1161,15 +1160,15 @@ k8s.io/kube-openapi/pkg/validation/errors
 k8s.io/kube-openapi/pkg/validation/spec
 k8s.io/kube-openapi/pkg/validation/strfmt
 k8s.io/kube-openapi/pkg/validation/strfmt/bson
-# k8s.io/kubectl v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/kubectl v0.0.0-20251108023427-891f5bb03061
+# k8s.io/kubectl v0.35.0 => github.com/openshift/kubernetes/staging/src/k8s.io/kubectl v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/kubectl/pkg/scale
 k8s.io/kubectl/pkg/util/podutils
-# k8s.io/kubelet v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/kubelet v0.0.0-20251108023427-891f5bb03061
+# k8s.io/kubelet v0.31.1 => github.com/openshift/kubernetes/staging/src/k8s.io/kubelet v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/kubelet/pkg/apis
 k8s.io/kubelet/pkg/apis/stats/v1alpha1
-# k8s.io/kubernetes v1.35.1 => github.com/openshift/kubernetes v0.0.0-20251108023427-891f5bb03061
+# k8s.io/kubernetes v1.35.0 => github.com/openshift/kubernetes v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/kubernetes/pkg/api/legacyscheme
 k8s.io/kubernetes/pkg/api/service
@@ -1215,11 +1214,11 @@ k8s.io/kubernetes/test/utils
 k8s.io/kubernetes/test/utils/format
 k8s.io/kubernetes/test/utils/image
 k8s.io/kubernetes/test/utils/kubeconfig
-# k8s.io/pod-security-admission v0.35.1 => github.com/openshift/kubernetes/staging/src/k8s.io/pod-security-admission v0.0.0-20251108023427-891f5bb03061
+# k8s.io/pod-security-admission v0.33.4 => github.com/openshift/kubernetes/staging/src/k8s.io/pod-security-admission v0.0.0-20251108023427-891f5bb03061
 ## explicit; go 1.24.0
 k8s.io/pod-security-admission/api
 k8s.io/pod-security-admission/policy
-# k8s.io/utils v0.0.0-20260210185600-b8788abfbbc2
+# k8s.io/utils v0.0.0-20260108192941-914a6e750570
 ## explicit; go 1.23
 k8s.io/utils/buffer
 k8s.io/utils/clock
diff --git a/requirements.txt b/requirements.txt
index b8191c0f2..f7a68721b 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -19,7 +19,7 @@ mkdocs-material-extensions==1.3.1
 packaging==26.0
 paginate==0.5.7
 pathspec==1.0.4
-platformdirs==4.6.0
+platformdirs==4.7.0
 Pygments==2.19.2
 pymdown-extensions==10.20.1
 pyquery==2.0.1