⭐️ Improve Helm chart management and cleanup

[chris-rock]

Summary

This PR addresses #849 and #821 by improving Helm chart management and adding proper cleanup on uninstall.

Changes

• Pre-delete hook: Cleans up MondooAuditConfig resources before uninstall, allowing finalizers to run properly
• Cleanup subcommand: Added mondoo-operator cleanup CLI command (replaces external kubectl image dependency)
• Hand-maintained templates: Replaced helmify-based generation with hand-maintained Helm templates
• CRD update script: Added hack/update-helm-crds.sh to update only CRDs from generated sources
• Chart-testing in CI: Added ct lint to CI pipeline and Makefile
• Helm integration tests: Added test suite for Helm chart validation
• Chart icon: Added Mondoo logo to Helm chart
• Lint integration: helm/lint is now included in the default make lint target

Why

1. Supply chain security: The cleanup hook now uses the operator's own image instead of a third-party bitnami/kubectl image
2. Maintainability: Hand-maintained templates are easier to modify and don't require post-processing hacks
3. Reliability: Pre-delete hook ensures proper cleanup when running helm uninstall

New Make Targets

make helm/crds              # Update CRDs from generated sources
make helm/lint              # Lint with chart-testing (ct)
make helm/template          # Render templates for debugging
make test/integration/helm  # Run Helm integration tests

Test plan

• make helm/lint passes
• helm template renders correctly
• Code compiles (go build ./...)
• Integration tests pass
• Manual test: helm install / helm uninstall cycle

Fixes #849, Fixes #821

[github-actions]

Test Results

  5 files  ± 0   43 suites  +1   39m 30s ⏱️ + 1m 23s
354 tests + 6  354 ✅ + 6  0 💤 ±0  0 ❌ ±0 
394 runs  +24  392 ✅ +24  2 💤 ±0  0 ❌ ±0 

Results for commit 71f1621. ± Comparison against base commit 784a806.

♻️ This comment has been updated with latest results.