Skip to content

Commit

Permalink
add_rpm_scan (#278)
Browse files Browse the repository at this point in the history 
Co-authored-by: Lance Ball <[email protected]>
  • Loading branch information
@JasonPowr @lance
JasonPowr and lance authored Oct 31, 2024
1 parent a9617da commit 2a8f2a1
Show file tree
Hide file tree
Showing 10 changed files with 170 additions and 0 deletions.
17 changes: 17 additions & 0 deletions .tekton/client-server-cg-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -309,6 +309,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: sast-snyk-check
runAfter:
- build-container
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-cg-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -307,6 +307,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: sast-snyk-check
runAfter:
- build-container
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-f-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -323,6 +323,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: ecosystem-cert-preflight-checks
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-f-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -320,6 +320,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: ecosystem-cert-preflight-checks
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -324,6 +324,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: ecosystem-cert-preflight-checks
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -321,6 +321,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: ecosystem-cert-preflight-checks
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-re-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -309,6 +309,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: sast-snyk-check
runAfter:
- build-container
Expand Down
17 changes: 17 additions & 0 deletions .tekton/client-server-re-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -307,6 +307,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: sast-snyk-check
runAfter:
- build-container
Expand Down
17 changes: 17 additions & 0 deletions .tekton/cosign-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -293,6 +293,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: sast-snyk-check
runAfter:
- build-container
Expand Down
17 changes: 17 additions & 0 deletions .tekton/cosign-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -292,6 +292,23 @@ spec:
operator: in
values:
- "false"
- name: rpms-signature-scan
params:
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
runAfter:
- build-container
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:7aa4d3c95e2b963e82fdda392f7cb3d61e3dab035416cf4a3a34e43cf3c9c9b8
- name: kind
value: task
resolver: bundles
- name: sast-snyk-check
runAfter:
- build-container
Expand Down

0 comments on commit 2a8f2a1

Please sign in to comment.