Currently, OpenShift (the openshift-installer during cluster destroy and cloud-credential-operator when running in Mint mode) uses the Azure Active Directory Graph API for creating/updating/deleting App Registrations and Service Principals.

In June 2022, that API is going away https://techcommunity.microsoft.com/t5/azure-active-directory-identity/update-your-applications-to-use-microsoft-authentication-library/ba-p/1257363

The replacement Microsoft Graph API does not presently have a production-ready Golang SDK (https://docs.microsoft.com/en-us/graph/sdks/create-client?tabs=Go ). Need to migrate off of using the old Azure AD Graph API so that clusters don't enter a degraded state.