Enable FIPS compliance enforcement for prometheus-operator build

Explicitly set OPENSHIFT_CI=1 and GO_COMPLIANCE_POLICY
to enable the Go compliance shim in openshift-golang-builder.

This ensures:

- CGO_ENABLED=1 (dynamic linking to OpenSSL)
- GOEXPERIMENT=strictfipsruntime automatically added
- Build fails if FIPS requirements not met

Without OPENSHIFT_CI=1, the shim defaults to "exempt_all" policy and
bypasses all FIPS compliance checks.

Signed-off-by: Daniel Mellado <dmellado@fedoraproject.org>

Author: danielmellado

Dockerfile.prom-op

@@ -5,7 +5,8 @@ WORKDIR /workspace
 COPY obo-prometheus-operator/ .
 
 ENV GOFLAGS='-mod=mod'
-ENV CGO_ENABLED=1
+ENV OPENSHIFT_CI=1
+ENV GO_COMPLIANCE_POLICY="exempt_darwin,exempt_windows,exempt_cross_compile"
 
 RUN GOOS=$TARGETOS GOARCH=$TARGETARCH go build $GOFLAGS -o operator ./cmd/operator/