Implement a simple pre-uninstall check command

[charlieegan3]

This PR is part of working on the flow defined in https://docs.google.com/document/d/1AxUss0piE9gb_r31_jBS6mv7zWALDqI0ZIfBUiJj3p0/edit?usp=sharing

Example output in a cluster that has cert-manager-csi-driver, cert-manager-csi-driver-spiffe, cert-manager-istio-csr, a Secret with Certificate owner ref, a Certificate that will be renewed and will expire soon:

irbe@jsctl$ go run main.go x clusters uninstall verify
Running checks against cluster Secrets:
        * Checking that issued certificates are safe from garbage collection...
Running checks against cluster Certificates:
        * Checking for upcoming renewals
        * Checking for upcoming expiries
        * Checking for currently failing issuances
        * Checking for unready Certificates
Running checks against cert-manager integrations installed in cluster:
        * Checking for cert-manager-istio-csr
        * Checking for cert-manager-csi-driver
        * Checking for cert-manager-csi-driver-spiffe

Results:
Secrets with Certificate owner refs were found. These Secrets will be garbage collected when Certificate CRD is uninstalled.
You can run 'jsctl experimental clusters cleanup secrets remove-certificate-owner-refs' command to remove the owner references.
        * istio-system/ca-secret secret has certificate owner ref
        * istio-system/istiod-tls secret has certificate owner ref
        * jetstack-secure/foo secret has certificate owner ref
        * jetstack-secure/spiffe-ca secret has certificate owner ref
Some certificates will be renewed soon. You might want to ensure that uninstall is completed before any renewals kick in. Or use 'cmctl renew' command to renew the certificates now.
        * istio-system/istiod certificate will be renewed soon (2023-02-07 08:41:28 +0000 GMT)
        * jetstack-secure/foo certificate will be renewed soon (2023-02-07 08:43:12 +0000 GMT)
Some certificates will expire soon. Ensure that enough time is allocated for re-installation to prevent outages. You can use 'cmctl renew' command to manually renew certs now.
        * istio-system/istiod certificate will expire soon (2023-02-07 09:11:28 +0000 GMT)
        * jetstack-secure/foo certificate will expire soon (2023-02-07 09:33:12 +0000 GMT)
A cert-manager integration that creates certificate requests was found in cluster. You might want to ensure that uninstalling Jetstack Secure software will not cause downtime.
        * cert-manager-csi-driver-spiffe found in cluster
        * cert-manager-csi-driver found in cluster
        * cert-manager-istio-csr found in cluster

[irbekrm]

Thanks Charlie, this looks good already!

I've not ran the command yet, but have left a bunch of comments, let me know if it makes sense.

[irbekrm]

There is probably more that could be done here- if we get someone to actualy use it we can iterate and add more checks.
For now I am in favour of doing as little as possible to avoid having to maintain lots of code that is never used.

[inteon]

Thank you for the PR, I added some remarks wrt improvements that I think can be made still.

[inteon]

@irbekrm I made some additional changes to fix some code style issues and a remaining bug.
Could you take a look at the latest version and also leave a review?

[irbekrm]

/lgtm