Skip to content

Commit

Permalink
Add rpm signature scanning (#231)
Browse files Browse the repository at this point in the history
  • Loading branch information
@ralphbean
ralphbean authored Nov 11, 2024
1 parent 32d79db commit 61b2748
Show file tree
Hide file tree
Showing 4 changed files with 68 additions and 0 deletions.
17 changes: 17 additions & 0 deletions .tekton/sync2jira-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -139,6 +139,23 @@ spec:
name: JAVA_COMMUNITY_DEPENDENCIES
value: $(tasks.build-container.results.JAVA_COMMUNITY_DEPENDENCIES)
tasks:
- name: rpms-signature-scan
params:
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: fail-unsigned
value: true
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.1@sha256:8e3515fdc0bbc0bcac994482a2396a8cd23e6a6fa9efaf3ec715ee312a376777
- name: kind
value: task
resolver: bundles
- name: init
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/sync2jira-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -136,6 +136,23 @@ spec:
name: JAVA_COMMUNITY_DEPENDENCIES
value: $(tasks.build-container.results.JAVA_COMMUNITY_DEPENDENCIES)
tasks:
- name: rpms-signature-scan
params:
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: fail-unsigned
value: true
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.1@sha256:8e3515fdc0bbc0bcac994482a2396a8cd23e6a6fa9efaf3ec715ee312a376777
- name: kind
value: task
resolver: bundles
- name: init
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/sync2jira-sync-page-pull-request.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -139,6 +139,23 @@ spec:
name: JAVA_COMMUNITY_DEPENDENCIES
value: $(tasks.build-container.results.JAVA_COMMUNITY_DEPENDENCIES)
tasks:
- name: rpms-signature-scan
params:
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: fail-unsigned
value: true
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.1@sha256:8e3515fdc0bbc0bcac994482a2396a8cd23e6a6fa9efaf3ec715ee312a376777
- name: kind
value: task
resolver: bundles
- name: init
params:
- name: image-url
Expand Down
17 changes: 17 additions & 0 deletions .tekton/sync2jira-sync-page-push.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -136,6 +136,23 @@ spec:
name: JAVA_COMMUNITY_DEPENDENCIES
value: $(tasks.build-container.results.JAVA_COMMUNITY_DEPENDENCIES)
tasks:
- name: rpms-signature-scan
params:
- name: image-url
value: $(tasks.build-container.results.IMAGE_URL)
- name: image-digest
value: $(tasks.build-container.results.IMAGE_DIGEST)
- name: fail-unsigned
value: true
taskRef:
params:
- name: name
value: rpms-signature-scan
- name: bundle
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.1@sha256:8e3515fdc0bbc0bcac994482a2396a8cd23e6a6fa9efaf3ec715ee312a376777
- name: kind
value: task
resolver: bundles
- name: init
params:
- name: image-url
Expand Down

0 comments on commit 61b2748

Please sign in to comment.