Skip to content

Commit bceacb6

Browse files
red-hat-konflux[bot]red-hat-konflux[bot]
authored
chore(deps): update konflux references
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com>
1 parent 3f654c6 commit bceacb6

4 files changed

Lines changed: 144 additions & 56 deletions

File tree

.tekton/cnf-tests-4-18-pull-request.yaml

Lines changed: 36 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -46,6 +46,10 @@ spec:
4646
value: 'true'
4747
- name: build-source-image
4848
value: 'true'
49+
- name: sast-target-dirs
50+
type: string
51+
default: .
52+
description: Target directories to scan with SAST tools. Multiple values should be separated with commas.
4953
pipelineSpec:
5054
description: |
5155
This pipeline is ideal for building multi-arch container images from a Containerfile while maintaining trust after pipeline customization.
@@ -133,6 +137,14 @@ spec:
133137
default: 'false'
134138
description: Enable cache proxy configuration
135139
type: string
140+
- name: sast-target-dirs
141+
type: string
142+
default: .
143+
description: Target directories to scan with SAST tools. Multiple values should be separated with commas.
144+
- name: enable-package-registry-proxy
145+
default: 'true'
146+
description: Use the package registry proxy when prefetching dependencies
147+
type: string
136148
results:
137149
- description: ''
138150
name: IMAGE_URL
@@ -156,7 +168,7 @@ spec:
156168
- name: name
157169
value: init
158170
- name: bundle
159-
value: quay.io/konflux-ci/tekton-catalog/task-init:0.4@sha256:f2de909151c733da85c7c05de8ecf37c55079c219dcf8db906175ae11fca0142
171+
value: quay.io/konflux-ci/tekton-catalog/task-init:0.4@sha256:90f0e8e134c4bb919956bb095d62365907adeea4fbeb4cebbf5f3f94286bf967
160172
- name: kind
161173
value: task
162174
resolver: bundles
@@ -177,7 +189,7 @@ spec:
177189
- name: name
178190
value: git-clone-oci-ta
179191
- name: bundle
180-
value: quay.io/konflux-ci/tekton-catalog/task-git-clone-oci-ta:0.1@sha256:f3f28a40fb7b4c8a5c1ec935df5576139bb6ba5b80f3531f42da2f1f2448a53b
192+
value: quay.io/konflux-ci/tekton-catalog/task-git-clone-oci-ta:0.1@sha256:13d49df7dc9ae301627e45f95a236011422996152f1bea46cd60217b0f057407
181193
- name: kind
182194
value: task
183195
resolver: bundles
@@ -196,14 +208,16 @@ spec:
196208
value: $(params.output-image).prefetch
197209
- name: ociArtifactExpiresAfter
198210
value: $(params.image-expires-after)
211+
- name: enable-package-registry-proxy
212+
value: $(params.enable-package-registry-proxy)
199213
runAfter:
200214
- clone-repository
201215
taskRef:
202216
params:
203217
- name: name
204218
value: prefetch-dependencies-oci-ta
205219
- name: bundle
206-
value: quay.io/konflux-ci/tekton-catalog/task-prefetch-dependencies-oci-ta:0.3@sha256:dca9728e1ba9eb1bf6419bc800f082d13f054a3db8b345af0b188ce3ee6246dd
220+
value: quay.io/konflux-ci/tekton-catalog/task-prefetch-dependencies-oci-ta:0.3@sha256:a2efbcdcecfa5293a622eb356a18f5c88e5714046b214fe8730b43b1a7dbb77d
207221
- name: kind
208222
value: task
209223
resolver: bundles
@@ -259,7 +273,7 @@ spec:
259273
- name: name
260274
value: buildah-remote-oci-ta
261275
- name: bundle
262-
value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.9@sha256:0bc358b7c16a1ff9a829b6ce327ddb46f5c539b3cf90ade653739ffdf2925176
276+
value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.9@sha256:f667d1146533b1d49829c08097e31faf27db24563da576434a707353de62099f
263277
- name: kind
264278
value: task
265279
resolver: bundles
@@ -281,7 +295,7 @@ spec:
281295
- name: name
282296
value: build-image-index
283297
- name: bundle
284-
value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.3@sha256:b65a1e0961e0e768dda1f118bc5b5cab9c7ca7f4ed094e6a4352e66f82b9fa0b
298+
value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.3@sha256:550afde50349e22ec11191ea0db9a49395ab46fef4e8317d820b6e946677ebeb
285299
- name: kind
286300
value: task
287301
resolver: bundles
@@ -302,7 +316,7 @@ spec:
302316
- name: name
303317
value: source-build-oci-ta
304318
- name: bundle
305-
value: quay.io/konflux-ci/tekton-catalog/task-source-build-oci-ta:0.3@sha256:0201377594e6e0e9d304aa23b2363e4f47e02f3ebb6fe5a410480c1a17c9edfb
319+
value: quay.io/konflux-ci/tekton-catalog/task-source-build-oci-ta:0.3@sha256:0917cfc7772e82cb8e74743c2104f43bcf2596aceafe87eec6fce69a8cac5f06
306320
- name: kind
307321
value: task
308322
resolver: bundles
@@ -324,7 +338,7 @@ spec:
324338
- name: name
325339
value: deprecated-image-check
326340
- name: bundle
327-
value: quay.io/konflux-ci/tekton-catalog/task-deprecated-image-check:0.5@sha256:5ff16b7e6b4a8aa1adb352e74b9f831f77ff97bafd1b89ddb0038d63335f1a67
341+
value: quay.io/konflux-ci/tekton-catalog/task-deprecated-image-check:0.5@sha256:e78d0d3baf3c8cfc1a5ad278196b74032d9568b143a87c7a79ab780fedfb296e
328342
- name: kind
329343
value: task
330344
resolver: bundles
@@ -351,7 +365,7 @@ spec:
351365
- name: name
352366
value: clair-scan
353367
- name: bundle
354-
value: quay.io/konflux-ci/tekton-catalog/task-clair-scan:0.3@sha256:cd49cdea7e5403a87c4774bd8ea10bc4e6aeb83841ff490cbe42b782779513a7
368+
value: quay.io/konflux-ci/tekton-catalog/task-clair-scan:0.3@sha256:8fad4c2e2f470f82ee43d6b2ac72327b4d9c6e9cb514a678911c1c9359c29894
355369
- name: kind
356370
value: task
357371
resolver: bundles
@@ -371,7 +385,7 @@ spec:
371385
- name: name
372386
value: ecosystem-cert-preflight-checks
373387
- name: bundle
374-
value: quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks:0.2@sha256:2d439dce35dc07bec38dcf450bcba949851686141a256d87eb6f42e5a217f6e2
388+
value: quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks:0.2@sha256:e2bcf1174a6dae9969b8f12e94babe2a5881bc77a509f10823b6a9eac6392850
375389
- name: kind
376390
value: task
377391
resolver: bundles
@@ -390,6 +404,8 @@ spec:
390404
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
391405
- name: CACHI2_ARTIFACT
392406
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
407+
- name: TARGET_DIRS
408+
value: $(params.sast-target-dirs)
393409
runAfter:
394410
- build-image-index
395411
taskRef:
@@ -419,7 +435,7 @@ spec:
419435
- name: name
420436
value: clamav-scan
421437
- name: bundle
422-
value: quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.3@sha256:171eca520b545a0c860c6d59249796ffe5db5be1dab87f3a328fc5ef1fd68af2
438+
value: quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.3@sha256:567cb66bd2e1f4b58b9d4d756f3317fc62479e0b40aa0de66094b1f12d296cfc
423439
- name: kind
424440
value: task
425441
resolver: bundles
@@ -462,6 +478,8 @@ spec:
462478
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
463479
- name: CACHI2_ARTIFACT
464480
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
481+
- name: TARGET_DIRS
482+
value: $(params.sast-target-dirs)
465483
runAfter:
466484
- coverity-availability-check
467485
taskRef:
@@ -509,6 +527,8 @@ spec:
509527
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
510528
- name: CACHI2_ARTIFACT
511529
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
530+
- name: TARGET_DIRS
531+
value: $(params.sast-target-dirs)
512532
runAfter:
513533
- build-image-index
514534
taskRef:
@@ -535,14 +555,16 @@ spec:
535555
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
536556
- name: CACHI2_ARTIFACT
537557
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
558+
- name: TARGET_DIRS
559+
value: $(params.sast-target-dirs)
538560
runAfter:
539561
- build-image-index
540562
taskRef:
541563
params:
542564
- name: name
543565
value: sast-unicode-check-oci-ta
544566
- name: bundle
545-
value: quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check-oci-ta:0.4@sha256:0854d9261760b2dc8f092569739685a5ab0a5c620e9cb8c1b78fef9e2d077a29
567+
value: quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check-oci-ta:0.4@sha256:90efa582de7770d55102b74014a765cd16a25a56f2cf644b56a788c70c4dc749
546568
- name: kind
547569
value: task
548570
resolver: bundles
@@ -564,7 +586,7 @@ spec:
564586
- name: name
565587
value: apply-tags
566588
- name: bundle
567-
value: quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.3@sha256:de3722bac1bf5ae8a95319162ce7e23fb33a7e2b7c0ac91535549f31a75aac86
589+
value: quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.3@sha256:a291081de7fb27f832c6fc3c4b078acf7e6162ca4c085db38b118ca87e8b5b66
568590
- name: kind
569591
value: task
570592
resolver: bundles
@@ -587,7 +609,7 @@ spec:
587609
- name: name
588610
value: push-dockerfile-oci-ta
589611
- name: bundle
590-
value: quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.3@sha256:aa0d54cdd04777562599195439186bb9ea28ced4529e9b860867611cca453a39
612+
value: quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.3@sha256:7855471abfe87de080b914f2f3ca27c59e64f6448a7c2435e51435b764494c71
591613
- name: kind
592614
value: task
593615
resolver: bundles
@@ -604,7 +626,7 @@ spec:
604626
- name: name
605627
value: rpms-signature-scan
606628
- name: bundle
607-
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:b2224a0442ac705e20a25b8609e1760321d9d86da7901fd0392a90102688e37d
629+
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:cfdb76c67f27bc498132431f5a24fbc17dac1981d6f6e3da5cf5964ac5abdd20
608630
- name: kind
609631
value: task
610632
resolver: bundles

.tekton/cnf-tests-4-18-push.yaml

Lines changed: 36 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -43,6 +43,10 @@ spec:
4343
value: 'true'
4444
- name: build-source-image
4545
value: 'true'
46+
- name: sast-target-dirs
47+
type: string
48+
default: .
49+
description: Target directories to scan with SAST tools. Multiple values should be separated with commas.
4650
pipelineSpec:
4751
description: |
4852
This pipeline is ideal for building multi-arch container images from a Containerfile while maintaining trust after pipeline customization.
@@ -126,6 +130,14 @@ spec:
126130
default: docker
127131
type: string
128132
description: The format for the resulting image's mediaType. Valid values are oci or docker.
133+
- name: sast-target-dirs
134+
type: string
135+
default: .
136+
description: Target directories to scan with SAST tools. Multiple values should be separated with commas.
137+
- name: enable-package-registry-proxy
138+
default: 'true'
139+
description: Use the package registry proxy when prefetching dependencies
140+
type: string
129141
results:
130142
- description: ''
131143
name: IMAGE_URL
@@ -146,7 +158,7 @@ spec:
146158
- name: name
147159
value: init
148160
- name: bundle
149-
value: quay.io/konflux-ci/tekton-catalog/task-init:0.4@sha256:f2de909151c733da85c7c05de8ecf37c55079c219dcf8db906175ae11fca0142
161+
value: quay.io/konflux-ci/tekton-catalog/task-init:0.4@sha256:90f0e8e134c4bb919956bb095d62365907adeea4fbeb4cebbf5f3f94286bf967
150162
- name: kind
151163
value: task
152164
resolver: bundles
@@ -167,7 +179,7 @@ spec:
167179
- name: name
168180
value: git-clone-oci-ta
169181
- name: bundle
170-
value: quay.io/konflux-ci/tekton-catalog/task-git-clone-oci-ta:0.1@sha256:f3f28a40fb7b4c8a5c1ec935df5576139bb6ba5b80f3531f42da2f1f2448a53b
182+
value: quay.io/konflux-ci/tekton-catalog/task-git-clone-oci-ta:0.1@sha256:13d49df7dc9ae301627e45f95a236011422996152f1bea46cd60217b0f057407
171183
- name: kind
172184
value: task
173185
resolver: bundles
@@ -186,14 +198,16 @@ spec:
186198
value: $(params.output-image).prefetch
187199
- name: ociArtifactExpiresAfter
188200
value: $(params.image-expires-after)
201+
- name: enable-package-registry-proxy
202+
value: $(params.enable-package-registry-proxy)
189203
runAfter:
190204
- clone-repository
191205
taskRef:
192206
params:
193207
- name: name
194208
value: prefetch-dependencies-oci-ta
195209
- name: bundle
196-
value: quay.io/konflux-ci/tekton-catalog/task-prefetch-dependencies-oci-ta:0.3@sha256:dca9728e1ba9eb1bf6419bc800f082d13f054a3db8b345af0b188ce3ee6246dd
210+
value: quay.io/konflux-ci/tekton-catalog/task-prefetch-dependencies-oci-ta:0.3@sha256:a2efbcdcecfa5293a622eb356a18f5c88e5714046b214fe8730b43b1a7dbb77d
197211
- name: kind
198212
value: task
199213
resolver: bundles
@@ -245,7 +259,7 @@ spec:
245259
- name: name
246260
value: buildah-remote-oci-ta
247261
- name: bundle
248-
value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.9@sha256:0bc358b7c16a1ff9a829b6ce327ddb46f5c539b3cf90ade653739ffdf2925176
262+
value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.9@sha256:f667d1146533b1d49829c08097e31faf27db24563da576434a707353de62099f
249263
- name: kind
250264
value: task
251265
resolver: bundles
@@ -267,7 +281,7 @@ spec:
267281
- name: name
268282
value: build-image-index
269283
- name: bundle
270-
value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.3@sha256:b65a1e0961e0e768dda1f118bc5b5cab9c7ca7f4ed094e6a4352e66f82b9fa0b
284+
value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.3@sha256:550afde50349e22ec11191ea0db9a49395ab46fef4e8317d820b6e946677ebeb
271285
- name: kind
272286
value: task
273287
resolver: bundles
@@ -288,7 +302,7 @@ spec:
288302
- name: name
289303
value: source-build-oci-ta
290304
- name: bundle
291-
value: quay.io/konflux-ci/tekton-catalog/task-source-build-oci-ta:0.3@sha256:0201377594e6e0e9d304aa23b2363e4f47e02f3ebb6fe5a410480c1a17c9edfb
305+
value: quay.io/konflux-ci/tekton-catalog/task-source-build-oci-ta:0.3@sha256:0917cfc7772e82cb8e74743c2104f43bcf2596aceafe87eec6fce69a8cac5f06
292306
- name: kind
293307
value: task
294308
resolver: bundles
@@ -310,7 +324,7 @@ spec:
310324
- name: name
311325
value: deprecated-image-check
312326
- name: bundle
313-
value: quay.io/konflux-ci/tekton-catalog/task-deprecated-image-check:0.5@sha256:5ff16b7e6b4a8aa1adb352e74b9f831f77ff97bafd1b89ddb0038d63335f1a67
327+
value: quay.io/konflux-ci/tekton-catalog/task-deprecated-image-check:0.5@sha256:e78d0d3baf3c8cfc1a5ad278196b74032d9568b143a87c7a79ab780fedfb296e
314328
- name: kind
315329
value: task
316330
resolver: bundles
@@ -337,7 +351,7 @@ spec:
337351
- name: name
338352
value: clair-scan
339353
- name: bundle
340-
value: quay.io/konflux-ci/tekton-catalog/task-clair-scan:0.3@sha256:cd49cdea7e5403a87c4774bd8ea10bc4e6aeb83841ff490cbe42b782779513a7
354+
value: quay.io/konflux-ci/tekton-catalog/task-clair-scan:0.3@sha256:8fad4c2e2f470f82ee43d6b2ac72327b4d9c6e9cb514a678911c1c9359c29894
341355
- name: kind
342356
value: task
343357
resolver: bundles
@@ -357,7 +371,7 @@ spec:
357371
- name: name
358372
value: ecosystem-cert-preflight-checks
359373
- name: bundle
360-
value: quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks:0.2@sha256:2d439dce35dc07bec38dcf450bcba949851686141a256d87eb6f42e5a217f6e2
374+
value: quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks:0.2@sha256:e2bcf1174a6dae9969b8f12e94babe2a5881bc77a509f10823b6a9eac6392850
361375
- name: kind
362376
value: task
363377
resolver: bundles
@@ -376,6 +390,8 @@ spec:
376390
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
377391
- name: CACHI2_ARTIFACT
378392
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
393+
- name: TARGET_DIRS
394+
value: $(params.sast-target-dirs)
379395
runAfter:
380396
- build-image-index
381397
taskRef:
@@ -405,7 +421,7 @@ spec:
405421
- name: name
406422
value: clamav-scan
407423
- name: bundle
408-
value: quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.3@sha256:171eca520b545a0c860c6d59249796ffe5db5be1dab87f3a328fc5ef1fd68af2
424+
value: quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.3@sha256:567cb66bd2e1f4b58b9d4d756f3317fc62479e0b40aa0de66094b1f12d296cfc
409425
- name: kind
410426
value: task
411427
resolver: bundles
@@ -448,6 +464,8 @@ spec:
448464
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
449465
- name: CACHI2_ARTIFACT
450466
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
467+
- name: TARGET_DIRS
468+
value: $(params.sast-target-dirs)
451469
runAfter:
452470
- coverity-availability-check
453471
taskRef:
@@ -495,6 +513,8 @@ spec:
495513
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
496514
- name: CACHI2_ARTIFACT
497515
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
516+
- name: TARGET_DIRS
517+
value: $(params.sast-target-dirs)
498518
runAfter:
499519
- build-image-index
500520
taskRef:
@@ -521,14 +541,16 @@ spec:
521541
value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)
522542
- name: CACHI2_ARTIFACT
523543
value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
544+
- name: TARGET_DIRS
545+
value: $(params.sast-target-dirs)
524546
runAfter:
525547
- build-image-index
526548
taskRef:
527549
params:
528550
- name: name
529551
value: sast-unicode-check-oci-ta
530552
- name: bundle
531-
value: quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check-oci-ta:0.4@sha256:0854d9261760b2dc8f092569739685a5ab0a5c620e9cb8c1b78fef9e2d077a29
553+
value: quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check-oci-ta:0.4@sha256:90efa582de7770d55102b74014a765cd16a25a56f2cf644b56a788c70c4dc749
532554
- name: kind
533555
value: task
534556
resolver: bundles
@@ -552,7 +574,7 @@ spec:
552574
- name: name
553575
value: apply-tags
554576
- name: bundle
555-
value: quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.3@sha256:de3722bac1bf5ae8a95319162ce7e23fb33a7e2b7c0ac91535549f31a75aac86
577+
value: quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.3@sha256:a291081de7fb27f832c6fc3c4b078acf7e6162ca4c085db38b118ca87e8b5b66
556578
- name: kind
557579
value: task
558580
resolver: bundles
@@ -575,7 +597,7 @@ spec:
575597
- name: name
576598
value: push-dockerfile-oci-ta
577599
- name: bundle
578-
value: quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.3@sha256:aa0d54cdd04777562599195439186bb9ea28ced4529e9b860867611cca453a39
600+
value: quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.3@sha256:7855471abfe87de080b914f2f3ca27c59e64f6448a7c2435e51435b764494c71
579601
- name: kind
580602
value: task
581603
resolver: bundles
@@ -592,7 +614,7 @@ spec:
592614
- name: name
593615
value: rpms-signature-scan
594616
- name: bundle
595-
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:b2224a0442ac705e20a25b8609e1760321d9d86da7901fd0392a90102688e37d
617+
value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:cfdb76c67f27bc498132431f5a24fbc17dac1981d6f6e3da5cf5964ac5abdd20
596618
- name: kind
597619
value: task
598620
resolver: bundles

0 commit comments

Comments
 (0)