You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We should enforce the trusted artifacts result/parameter naming convention. That is:
Any step utilizing the quay.io/redhat-appstudio/build-trusted-artifacts image should have it's positional arguments in the form of $([params|results].*_ARTIFACT)=<any value>.
This rule should be present in the redhat collection.
The text was updated successfully, but these errors were encountered:
@zregvart, this would be policy rules on the task namespace, correct? Since the image value cannot be obtained reliably from a pod executed by cri-o, we cannot rely on this information from the slsa provenance (release namespace policies).
We should enforce the trusted artifacts result/parameter naming convention. That is:
Any step utilizing the
quay.io/redhat-appstudio/build-trusted-artifacts
image should have it's positional arguments in the form of$([params|results].*_ARTIFACT)=<any value>
.This rule should be present in the
redhat
collection.The text was updated successfully, but these errors were encountered: