Update Go version from 1.25.7 to 1.26.1 to address CVEs

[Preethi-Ps]

This PR closes issues:

CVE-2026-25679,
CVE-2026-27139,
CVE-2026-27142

Description of the change:
Updated the Go version from 1.25.7 to 1.26.1 in go.mod to use a more recent and secure Go toolchain.

Motivation for the change:
Fix multiple CVEs linked in the above issues

/cc @chiragkyal
/cc @acornett21

[Preethi-Ps]

@acornett21 - just a gentle nudge on this PR — would appreciate your review when you have time. Thanks!

[acornett21]

Hi @Preethi-Ps, Currently there are no downstream builder images for 1.26, or anything higher then 1.25.7. When there is projects in OperatorFramework will update to higher go versions.

[darrentma]

@Preethi-Ps I know we are still waiting on other things (as per the comment from Adam above), but since you have this PR open, I was wondering if it would possible to change the go version to 1.26.2 (or 1.25.9). Several high sev CVEs were published on April 8 that are fixed in 1.26.2 / 1.25.9. (eg. CVE-2026-32281, CVE-2026-25679) . Thanks!

[Preethi-Ps]

@darrentma Thanks for highlighting this. I’ve updated the Go version to 1.26.2 in this PR to incorporate the fixes for the recently published high severity CVEs. Please let me know if any further changes are needed.