Bump dependency versions from dependabot warnings

[gmlewis]

Closes: #3427.
Closes: #3457.
Closes: #3484.
Closes: #3509.
Closes: #3510.

[codecov]

Codecov Report

Attention: Patch coverage is 0% with 2 lines in your changes missing coverage. Please review.

Project coverage is 91.21%. Comparing base (76d1d46) to head (2a433a9).
Report is 1 commits behind head on master.

Files with missing lines	Patch %	Lines
example/verifyartifact/main.go	0.00%	2 Missing ⚠️

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #3512   +/-   ##
=======================================
  Coverage   91.21%   91.21%           
=======================================
  Files         182      182           
  Lines       15930    15930           
=======================================
  Hits        14531    14531           
  Misses       1225     1225           
  Partials      174      174           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[gmlewis]

@dnwe - @stevehipwell - are you OK with these changes?
The bump to Go 1.23 is required in the examples, tools, and scrape directories due to dependencies with dependabot warnings. I've left the main go.mod alone.

[dnwe]

@gmlewis as per IBM/sarama#3113, since the Go team started immediately bumping the golang.org/x tree to have go.mod directives of N-1 as soon as a new release is made, I feel it is no longer possible for any of us library authors to maintain support for anything older than N-1.

As such, I'd recommend you keep all the go.mod files in-sync and bump to 1.23.0

[stevehipwell]

Sorry for the slow reply @gmlewis, I agree with the above comment.