hub registry: migrate tikv/pd images to cloud-accessible registry

[Copilot]

Removes all hub.pingcap.net image references from tikv/pd pipelines and prow-jobs, replacing with publicly accessible ghcr.io equivalents.

Image replacements

Old	New
hub.pingcap.net/jenkins/rocky8_golang-1.23:latest	ghcr.io/pingcap-qe/ci/jenkins:v2026.1.18-8-gbb5ada9-go1.23
hub.pingcap.net/jenkins/centos7_golang-1.19:latest	ghcr.io/pingcap-qe/cd/builders/pd:v2024.10.8-91-g6221afa-centos7-go1.19
hub.pingcap.net/jenkins/centos7_golang-1.20:latest	ghcr.io/pingcap-qe/cd/builders/pd:v2024.10.8-91-g6221afa-centos7-go1.20
hub.pingcap.net/jenkins/centos7_golang-1.21:latest	ghcr.io/pingcap-qe/cd/builders/pd:v2024.10.8-91-g6221afa-centos7-go1.21
hub.pingcap.net/jenkins/centos7_golang-1.23:latest	ghcr.io/pingcap-qe/cd/builders/pd:v2025.5.11-8-g6a5de16-centos7-go1.23
hub.pingcap.net/jenkins/network-multitool	wbitt/network-multitool
hub.pingcap.net/jenkins/python3-requests:latest	python:3.11.10-bullseye
hub.pingcap.net/wangweizhen/tidb_image:go12320241009	ghcr.io/pingcap-qe/cd/builders/tidb:v2025.8.10-8-g63921ca-centos7-go1.23
hub.pingcap.net/ee/ci/base:v20230803-go1.19.12	ghcr.io/pingcap-qe/cd/builders/pd:v2024.10.8-91-g6221afa-centos7-go1.19

Other changes

• Removed status-updater (hub.pingcap.net/pingcap/github-status-updater) container from latest and release-7.1 copr test pods — it was defined in the pod template but never referenced in the pipeline Groovy scripts.
• cd/builders/pd image tags chosen to match the versions already in use by the corresponding branch's prow-job presubmits, ensuring consistency across Prow and Jenkins execution paths.

Original prompt

---

This section details on the original issue you should resolve

<issue_title>hub registry: migrate images for tikv/pd</issue_title>
<issue_description>Replace hub.pingcap.net image pulls/pushes for tikv/pd with a cloud-accessible registry.

Acceptance criteria:

• No hub.pingcap.net references in jobs/pipelines for tikv/pd
• Image registry endpoints documented and validated
  </issue_description>

Comments on the Issue (you are @copilot in this section)

• Fixes hub registry: migrate images for tikv/pd #4225

---

🔒 GitHub Advanced Security automatically protects Copilot coding agent pull requests. You can protect all pull requests by enabling Advanced Security for your repositories. Learn more about Advanced Security.

[ti-chi-bot]

Hi @Copilot. Thanks for your PR.

I'm waiting for a PingCAP-QE member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[ti-chi-bot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please ask for approval from wuhuizuo. For more information see the Code Review Process.
Please ensure that each of them provides their approval before proceeding.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• pipelines/OWNERS
• prow-jobs/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment