diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-ddb-streams-source-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-ddb-streams-source-119.yaml new file mode 100755 index 00000000..7d9e71e5 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-ddb-streams-source-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-aws-ddb-streams-source-119 + name: kn-eventing-integrations-aws-ddb-streams-source-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-aws-ddb-streams-source + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-s3-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-s3-sink-119.yaml new file mode 100755 index 00000000..74b64b96 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-s3-sink-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-aws-s3-sink-119 + name: kn-eventing-integrations-aws-s3-sink-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-aws-s3-sink + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-s3-source-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-s3-source-119.yaml new file mode 100755 index 00000000..fe7e027e --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-s3-source-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-aws-s3-source-119 + name: kn-eventing-integrations-aws-s3-source-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-aws-s3-source + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sns-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sns-sink-119.yaml new file mode 100755 index 00000000..a2a758b3 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sns-sink-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-aws-sns-sink-119 + name: kn-eventing-integrations-aws-sns-sink-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-aws-sns-sink + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sqs-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sqs-sink-119.yaml new file mode 100755 index 00000000..9a3acc2f --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sqs-sink-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-aws-sqs-sink-119 + name: kn-eventing-integrations-aws-sqs-sink-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-aws-sqs-sink + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sqs-source-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sqs-source-119.yaml new file mode 100755 index 00000000..dfcf7868 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-aws-sqs-source-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-aws-sqs-source-119 + name: kn-eventing-integrations-aws-sqs-source-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-aws-sqs-source + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-log-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-log-sink-119.yaml new file mode 100755 index 00000000..5306b358 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-log-sink-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-log-sink-119 + name: kn-eventing-integrations-log-sink-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-log-sink + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-timer-source-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-timer-source-119.yaml new file mode 100755 index 00000000..a29442c6 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-timer-source-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-timer-source-119 + name: kn-eventing-integrations-timer-source-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-timer-source + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-transform-jsonata-119.yaml b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-transform-jsonata-119.yaml new file mode 100755 index 00000000..bd6a7904 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/imagerepositories/kn-eventing-integrations-transform-jsonata-119.yaml @@ -0,0 +1,13 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: ImageRepository +metadata: + annotations: + image-controller.appstudio.redhat.com/update-component-image: "true" + labels: + appstudio.redhat.com/application: serverless-operator-139 + appstudio.redhat.com/component: kn-eventing-integrations-transform-jsonata-119 + name: kn-eventing-integrations-transform-jsonata-119 +spec: + image: + name: serverless-operator-139/kn-eventing-integrations-transform-jsonata + visibility: public diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-ddb-streams-source-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-ddb-streams-source-119.yaml new file mode 100755 index 00000000..caac0f13 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-ddb-streams-source-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-aws-ddb-streams-source-119 +spec: + componentName: kn-eventing-integrations-aws-ddb-streams-source-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/aws-ddb-streams-source/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-s3-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-s3-sink-119.yaml new file mode 100755 index 00000000..c0d4ba45 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-s3-sink-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-aws-s3-sink-119 +spec: + componentName: kn-eventing-integrations-aws-s3-sink-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/aws-s3-sink/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-s3-source-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-s3-source-119.yaml new file mode 100755 index 00000000..189bbf54 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-s3-source-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-aws-s3-source-119 +spec: + componentName: kn-eventing-integrations-aws-s3-source-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/aws-s3-source/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sns-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sns-sink-119.yaml new file mode 100755 index 00000000..2b8e78e4 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sns-sink-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-aws-sns-sink-119 +spec: + componentName: kn-eventing-integrations-aws-sns-sink-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/aws-sns-sink/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sqs-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sqs-sink-119.yaml new file mode 100755 index 00000000..e06bc037 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sqs-sink-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-aws-sqs-sink-119 +spec: + componentName: kn-eventing-integrations-aws-sqs-sink-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/aws-sqs-sink/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sqs-source-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sqs-source-119.yaml new file mode 100755 index 00000000..e7d9b5c5 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-aws-sqs-source-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-aws-sqs-source-119 +spec: + componentName: kn-eventing-integrations-aws-sqs-source-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/aws-sqs-source/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-log-sink-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-log-sink-119.yaml new file mode 100755 index 00000000..897afd9d --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-log-sink-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-log-sink-119 +spec: + componentName: kn-eventing-integrations-log-sink-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/log-sink/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-timer-source-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-timer-source-119.yaml new file mode 100755 index 00000000..b5e465b4 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-timer-source-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-timer-source-119 +spec: + componentName: kn-eventing-integrations-timer-source-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/timer-source/hermetic/Dockerfile + revision: release-v1.19 diff --git a/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-transform-jsonata-119.yaml b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-transform-jsonata-119.yaml new file mode 100755 index 00000000..e81fc3d8 --- /dev/null +++ b/.konflux/applications/serverless-operator-139/components/kn-eventing-integrations-transform-jsonata-119.yaml @@ -0,0 +1,17 @@ +apiVersion: appstudio.redhat.com/v1alpha1 +kind: Component +metadata: + annotations: + build.appstudio.openshift.io/pipeline: '{"name":"docker-build","bundle":"latest"}' + build.appstudio.openshift.io/request: configure-pac-no-mr + name: kn-eventing-integrations-transform-jsonata-119 +spec: + componentName: kn-eventing-integrations-transform-jsonata-119 + application: serverless-operator-139 + + source: + git: + url: https://github.com/openshift-knative/eventing-integrations.git + context: + dockerfileUrl: openshift/ci-operator/static-images/transform-jsonata/Dockerfile + revision: release-v1.19 diff --git a/.tekton/docker-build.yaml b/.tekton/docker-build.yaml new file mode 100755 index 00000000..5df7c314 --- /dev/null +++ b/.tekton/docker-build.yaml @@ -0,0 +1,557 @@ +apiVersion: tekton.dev/v1 +kind: Pipeline +metadata: + creationTimestamp: null + labels: + pipelines.openshift.io/runtime: generic + pipelines.openshift.io/strategy: docker + pipelines.openshift.io/used-by: build-cloud + name: docker-build +spec: + description: | + This pipeline is ideal for building multi-arch container images from a Containerfile while maintaining trust after pipeline customization. + + _Uses `buildah` to create a multi-platform container image leveraging [trusted artifacts](https://konflux-ci.dev/architecture/ADR/0036-trusted-artifacts.html). It also optionally creates a source image and runs some build-time tests. This pipeline requires that the [multi platform controller](https://github.com/konflux-ci/multi-platform-controller) is deployed and configured on your Konflux instance. Information is shared between tasks using OCI artifacts instead of PVCs. EC will pass the [`trusted_task.trusted`](https://conforma.dev/docs/policy/packages/release_trusted_task.html#trusted_task__trusted) policy as long as all data used to build the artifact is generated from trusted tasks. + This pipeline is pushed as a Tekton bundle to [quay.io](https://quay.io/repository/konflux-ci/tekton-catalog/pipeline-docker-build-multi-platform-oci-ta?tab=tags)_ + params: + - default: + - linux/x86_64 + - linux/arm64 + - linux/ppc64le + - linux/s390x + description: List of platforms to build the container images on. The available + set of values is determined by the configuration of the multi-platform-controller. + name: build-platforms + type: array + - default: --all-projects --org=3e1a4cca-ebfb-495f-b64c-3cc960d566b4 --exclude=test*,vendor,third_party + description: Append arguments to Snyk code command. + name: snyk-args + type: string + - default: "true" + description: Build a source image. + name: build-source-image + type: string + - default: "false" + description: 'Enable in-development package managers. WARNING: the behavior may + change at any time without notice. Use at your own risk.' + name: prefetch-input-dev-package-managers + - default: [] + description: Additional image tags + name: additional-tags + type: array + - description: Source Repository URL + name: git-url + type: string + - default: "" + description: Revision of the Source Repository + name: revision + type: string + - description: Fully Qualified Output Image + name: output-image + type: string + - default: . + description: Path to the source code of an application's component from where + to build image. + name: path-context + type: string + - default: Dockerfile + description: Path to the Dockerfile inside the context specified by parameter + path-context + name: dockerfile + type: string + - default: "false" + description: Force rebuild image + name: rebuild + type: string + - default: "false" + description: Skip checks against built image + name: skip-checks + type: string + - default: "false" + description: Execute the build with network isolation + name: hermetic + type: string + - default: "" + description: Build dependencies to be prefetched + name: prefetch-input + type: string + - default: "" + description: Image tag expiration time, time values could be something like 1h, + 2d, 3w for hours, days, and weeks, respectively. + name: image-expires-after + type: string + - default: "true" + description: Add built image into an OCI image index + name: build-image-index + type: string + - default: docker + description: The format for the resulting image's mediaType. Valid values are + oci or docker. + name: buildah-format + type: string + - default: [] + description: Array of --build-arg values ("arg=value" strings) for buildah + name: build-args + type: array + - default: "" + description: Path to a file with build arguments for buildah, see https://www.mankier.com/1/buildah-build#--build-arg-file + name: build-args-file + type: string + - default: "false" + description: Whether to enable privileged mode, should be used only with remote + VMs + name: privileged-nested + type: string + results: + - description: "" + name: IMAGE_URL + value: $(tasks.build-image-index.results.IMAGE_URL) + - description: "" + name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - description: "" + name: CHAINS-GIT_URL + value: $(tasks.clone-repository.results.url) + - description: "" + name: CHAINS-GIT_COMMIT + value: $(tasks.clone-repository.results.commit) + tasks: + - name: sast-snyk-check + params: + - name: ARGS + value: $(params.snyk-args) + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: sast-snyk-check-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-sast-snyk-check-oci-ta:0.4@sha256:181d63c126e3119a9d57b8feed4eb66a875b5208c3e90724c22758e65dca8733 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: prefetch-dependencies + params: + - name: dev-package-managers + value: $(params.prefetch-input-dev-package-managers) + - name: input + value: $(params.prefetch-input) + - name: SOURCE_ARTIFACT + value: $(tasks.clone-repository.results.SOURCE_ARTIFACT) + - name: ociStorage + value: $(params.output-image).prefetch + - name: ociArtifactExpiresAfter + value: $(params.image-expires-after) + runAfter: + - clone-repository + taskRef: + params: + - name: name + value: prefetch-dependencies-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-prefetch-dependencies-oci-ta:0.2@sha256:970285e3b0495961199523b566e0dd92ec2e29bedbcf61d8fc67106b06d0f923 + - name: kind + value: task + resolver: bundles + workspaces: + - name: git-basic-auth + workspace: git-auth + - name: netrc + workspace: netrc + - name: apply-tags + params: + - name: ADDITIONAL_TAGS + value: $(params.additional-tags[*]) + - name: IMAGE_URL + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: apply-tags + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.2@sha256:f44be1bf0262471f2f503f5e19da5f0628dcaf968c86272a2ad6b4871e708448 + - name: kind + value: task + resolver: bundles + - name: init + params: + - name: image-url + value: $(params.output-image) + - name: rebuild + value: $(params.rebuild) + - name: skip-checks + value: $(params.skip-checks) + taskRef: + params: + - name: name + value: init + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-init:0.2@sha256:bbf313b09740fb39b3343bc69ee94b2a2c21d16a9304f9b7c111c305558fc346 + - name: kind + value: task + resolver: bundles + - name: clone-repository + params: + - name: url + value: $(params.git-url) + - name: revision + value: $(params.revision) + - name: ociStorage + value: $(params.output-image).git + - name: ociArtifactExpiresAfter + value: $(params.image-expires-after) + runAfter: + - init + taskRef: + params: + - name: name + value: git-clone-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-git-clone-oci-ta:0.1@sha256:3a920a83fc0135aaae2730fe9d446eb2da2ffc9d63a34bceea04afd24653bdee + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + workspaces: + - name: basic-auth + workspace: git-auth + - matrix: + params: + - name: PLATFORM + value: + - $(params.build-platforms) + name: build-images + params: + - name: IMAGE + value: $(params.output-image) + - name: DOCKERFILE + value: $(params.dockerfile) + - name: CONTEXT + value: $(params.path-context) + - name: HERMETIC + value: $(params.hermetic) + - name: PREFETCH_INPUT + value: $(params.prefetch-input) + - name: IMAGE_EXPIRES_AFTER + value: $(params.image-expires-after) + - name: COMMIT_SHA + value: $(tasks.clone-repository.results.commit) + - name: BUILD_ARGS + value: + - $(params.build-args[*]) + - name: BUILD_ARGS_FILE + value: $(params.build-args-file) + - name: PRIVILEGED_NESTED + value: $(params.privileged-nested) + - name: SOURCE_URL + value: $(tasks.clone-repository.results.url) + - name: BUILDAH_FORMAT + value: $(params.buildah-format) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + - name: IMAGE_APPEND_PLATFORM + value: "true" + runAfter: + - prefetch-dependencies + taskRef: + params: + - name: name + value: buildah-remote-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.6@sha256:ac05dabe8b6b446f974cf2b6ef1079cfaa9443d7078c2ebe3ec79aa650e1b5b2 + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - name: build-image-index + params: + - name: IMAGE + value: $(params.output-image) + - name: COMMIT_SHA + value: $(tasks.clone-repository.results.commit) + - name: IMAGE_EXPIRES_AFTER + value: $(params.image-expires-after) + - name: ALWAYS_BUILD_INDEX + value: $(params.build-image-index) + - name: IMAGES + value: + - $(tasks.build-images.results.IMAGE_REF[*]) + - name: BUILDAH_FORMAT + value: $(params.buildah-format) + runAfter: + - build-images + taskRef: + params: + - name: name + value: build-image-index + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.1@sha256:79784d53749584bc5a8de32142ec4e2f01cdbf42c20d94e59280e0b927c8597d + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - name: build-source-image + params: + - name: BINARY_IMAGE + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: BINARY_IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: source-build-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-source-build-oci-ta:0.3@sha256:2a290f91fdccf4c9ef726a1605163bc14904e1dbf9837ac6d2621caddd10f98e + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - input: $(params.build-source-image) + operator: in + values: + - "true" + - name: deprecated-base-image-check + params: + - name: IMAGE_URL + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: deprecated-image-check + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-deprecated-image-check:0.5@sha256:f59175d9a0a60411738228dfe568af4684af4aa5e7e05c832927cb917801d489 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - matrix: + params: + - name: image-platform + value: + - $(params.build-platforms) + name: clair-scan + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: clair-scan + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-clair-scan:0.3@sha256:a7cc183967f89c4ac100d04ab8f81e54733beee60a0528208107c9a22d3c43af + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - matrix: + params: + - name: platform + value: + - $(params.build-platforms) + name: ecosystem-cert-preflight-checks + params: + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: ecosystem-cert-preflight-checks + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks:0.2@sha256:9568c51a5158d534248908b9b561cf67d2826ed4ea164ffd95628bb42380e6ec + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - matrix: + params: + - name: image-arch + value: + - $(params.build-platforms) + name: clamav-scan + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: clamav-scan + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.3@sha256:b0bd59748cda4a7abf311e4f448e6c1d00c6b6d8c0ecc1c2eb33e08dc0e0b802 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: sast-shell-check + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: sast-shell-check-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-sast-shell-check-oci-ta:0.1@sha256:bf7bdde00b7212f730c1356672290af6f38d070da2c8a316987b5c32fd49e0b9 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: sast-unicode-check + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: sast-unicode-check-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check-oci-ta:0.3@sha256:a2bde66f6b4164620298c7d709b8f08515409404000fa1dc2260d2508b135651 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: push-dockerfile + params: + - name: IMAGE + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: DOCKERFILE + value: $(params.dockerfile) + - name: CONTEXT + value: $(params.path-context) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: push-dockerfile-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.1@sha256:14fba04580b236e4206a904b86ee2fd8eeaa4163f7619a9c2602d361e4f74c51 + - name: kind + value: task + resolver: bundles + - name: rpms-signature-scan + params: + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: rpms-signature-scan + - name: bundle + value: quay.io/konflux-ci/konflux-vanguard/task-rpms-signature-scan:0.2@sha256:06977232e67509e5540528ff6c3b081b23fc5bf3e40fb3e2d09a086d5c3243fc + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + workspaces: + - name: git-auth + optional: true + - name: netrc + optional: true diff --git a/.tekton/docker-java-build.yaml b/.tekton/docker-java-build.yaml new file mode 100755 index 00000000..bc58bb9c --- /dev/null +++ b/.tekton/docker-java-build.yaml @@ -0,0 +1,635 @@ +apiVersion: tekton.dev/v1 +kind: Pipeline +metadata: + creationTimestamp: null + labels: + pipelines.openshift.io/runtime: generic + pipelines.openshift.io/strategy: docker + pipelines.openshift.io/used-by: build-cloud + name: docker-java-build +spec: + description: | + This pipeline is ideal for building multi-arch container images from a Containerfile while maintaining trust after pipeline customization. + + _Uses `buildah` to create a multi-platform container image leveraging [trusted artifacts](https://konflux-ci.dev/architecture/ADR/0036-trusted-artifacts.html). It also optionally creates a source image and runs some build-time tests. This pipeline requires that the [multi platform controller](https://github.com/konflux-ci/multi-platform-controller) is deployed and configured on your Konflux instance. Information is shared between tasks using OCI artifacts instead of PVCs. EC will pass the [`trusted_task.trusted`](https://conforma.dev/docs/policy/packages/release_trusted_task.html#trusted_task__trusted) policy as long as all data used to build the artifact is generated from trusted tasks. + This pipeline is pushed as a Tekton bundle to [quay.io](https://quay.io/repository/konflux-ci/tekton-catalog/pipeline-docker-build-multi-platform-oci-ta?tab=tags)_ + params: + - default: + - linux/x86_64 + - linux/arm64 + - linux/ppc64le + - linux/s390x + description: List of platforms to build the container images on. The available + set of values is determined by the configuration of the multi-platform-controller. + name: build-platforms + type: array + - default: --all-projects --org=3e1a4cca-ebfb-495f-b64c-3cc960d566b4 --exclude=test*,vendor,third_party + description: Append arguments to Snyk code command. + name: snyk-args + type: string + - default: "true" + description: Build a source image. + name: build-source-image + type: string + - default: "false" + description: 'Enable in-development package managers. WARNING: the behavior may + change at any time without notice. Use at your own risk.' + name: prefetch-input-dev-package-managers + - default: [] + description: Additional image tags + name: additional-tags + type: array + - description: Source Repository URL + name: git-url + type: string + - default: "" + description: Revision of the Source Repository + name: revision + type: string + - description: Fully Qualified Output Image + name: output-image + type: string + - default: . + description: Path to the source code of an application's component from where + to build image. + name: path-context + type: string + - default: Dockerfile + description: Path to the Dockerfile inside the context specified by parameter + path-context + name: dockerfile + type: string + - default: "false" + description: Force rebuild image + name: rebuild + type: string + - default: "false" + description: Skip checks against built image + name: skip-checks + type: string + - default: "false" + description: Execute the build with network isolation + name: hermetic + type: string + - default: "" + description: Build dependencies to be prefetched + name: prefetch-input + type: string + - default: "" + description: Image tag expiration time, time values could be something like 1h, + 2d, 3w for hours, days, and weeks, respectively. + name: image-expires-after + type: string + - default: "true" + description: Add built image into an OCI image index + name: build-image-index + type: string + - default: docker + description: The format for the resulting image's mediaType. Valid values are + oci or docker. + name: buildah-format + type: string + - default: [] + description: Array of --build-arg values ("arg=value" strings) for buildah + name: build-args + type: array + - default: "" + description: Path to a file with build arguments for buildah, see https://www.mankier.com/1/buildah-build#--build-arg-file + name: build-args-file + type: string + - default: "false" + description: Whether to enable privileged mode, should be used only with remote + VMs + name: privileged-nested + type: string + results: + - description: "" + name: IMAGE_URL + value: $(tasks.build-image-index.results.IMAGE_URL) + - description: "" + name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - description: "" + name: CHAINS-GIT_URL + value: $(tasks.clone-repository.results.url) + - description: "" + name: CHAINS-GIT_COMMIT + value: $(tasks.clone-repository.results.commit) + tasks: + - matrix: + params: + - name: PLATFORM + value: + - $(params.build-platforms) + name: build-images-deps + params: + - name: IMAGE + value: $(params.output-image)-deps + - name: DOCKERFILE + value: $(params.dockerfile).deps + - name: CONTEXT + value: $(params.path-context) + - name: HERMETIC + value: "false" + - name: PREFETCH_INPUT + value: $(params.prefetch-input) + - name: IMAGE_EXPIRES_AFTER + value: $(params.image-expires-after) + - name: COMMIT_SHA + value: $(tasks.clone-repository.results.commit) + - name: BUILD_ARGS + value: + - $(params.build-args[*]) + - name: BUILD_ARGS_FILE + value: $(params.build-args-file) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + - name: IMAGE_APPEND_PLATFORM + value: "true" + runAfter: + - prefetch-dependencies + taskRef: + params: + - name: name + value: buildah-remote-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.6@sha256:ac05dabe8b6b446f974cf2b6ef1079cfaa9443d7078c2ebe3ec79aa650e1b5b2 + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - name: build-image-index-deps + params: + - name: IMAGE + value: $(params.output-image)-deps + - name: COMMIT_SHA + value: $(tasks.clone-repository.results.commit) + - name: IMAGE_EXPIRES_AFTER + value: $(params.image-expires-after) + - name: ALWAYS_BUILD_INDEX + value: $(params.build-image-index) + - name: IMAGES + value: + - $(tasks.build-images-deps.results.IMAGE_REF[*]) + runAfter: + - build-images-deps + taskRef: + params: + - name: name + value: build-image-index + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.1@sha256:79784d53749584bc5a8de32142ec4e2f01cdbf42c20d94e59280e0b927c8597d + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - matrix: + params: + - name: PLATFORM + value: + - $(params.build-platforms) + name: build-images + params: + - name: BUILD_ARGS + value: + - DEPS_IMAGE=$(tasks.build-image-index-deps.results.IMAGE_URL)@$(tasks.build-image-index-deps.results.IMAGE_DIGEST) + - $(params.build-args[*]) + - name: IMAGE + value: $(params.output-image) + - name: DOCKERFILE + value: $(params.dockerfile) + - name: CONTEXT + value: $(params.path-context) + - name: HERMETIC + value: $(params.hermetic) + - name: PREFETCH_INPUT + value: $(params.prefetch-input) + - name: IMAGE_EXPIRES_AFTER + value: $(params.image-expires-after) + - name: COMMIT_SHA + value: $(tasks.clone-repository.results.commit) + - name: BUILD_ARGS_FILE + value: $(params.build-args-file) + - name: PRIVILEGED_NESTED + value: $(params.privileged-nested) + - name: SOURCE_URL + value: $(tasks.clone-repository.results.url) + - name: BUILDAH_FORMAT + value: $(params.buildah-format) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + - name: IMAGE_APPEND_PLATFORM + value: "true" + runAfter: + - build-image-index-deps + taskRef: + params: + - name: name + value: buildah-remote-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-buildah-remote-oci-ta:0.6@sha256:ac05dabe8b6b446f974cf2b6ef1079cfaa9443d7078c2ebe3ec79aa650e1b5b2 + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - name: sast-snyk-check + params: + - name: ARGS + value: $(params.snyk-args) + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: sast-snyk-check-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-sast-snyk-check-oci-ta:0.4@sha256:181d63c126e3119a9d57b8feed4eb66a875b5208c3e90724c22758e65dca8733 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: prefetch-dependencies + params: + - name: dev-package-managers + value: $(params.prefetch-input-dev-package-managers) + - name: input + value: $(params.prefetch-input) + - name: SOURCE_ARTIFACT + value: $(tasks.clone-repository.results.SOURCE_ARTIFACT) + - name: ociStorage + value: $(params.output-image).prefetch + - name: ociArtifactExpiresAfter + value: $(params.image-expires-after) + runAfter: + - clone-repository + taskRef: + params: + - name: name + value: prefetch-dependencies-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-prefetch-dependencies-oci-ta:0.2@sha256:970285e3b0495961199523b566e0dd92ec2e29bedbcf61d8fc67106b06d0f923 + - name: kind + value: task + resolver: bundles + workspaces: + - name: git-basic-auth + workspace: git-auth + - name: netrc + workspace: netrc + - name: apply-tags + params: + - name: ADDITIONAL_TAGS + value: $(params.additional-tags[*]) + - name: IMAGE_URL + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: apply-tags + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.2@sha256:f44be1bf0262471f2f503f5e19da5f0628dcaf968c86272a2ad6b4871e708448 + - name: kind + value: task + resolver: bundles + - name: init + params: + - name: image-url + value: $(params.output-image) + - name: rebuild + value: $(params.rebuild) + - name: skip-checks + value: $(params.skip-checks) + taskRef: + params: + - name: name + value: init + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-init:0.2@sha256:bbf313b09740fb39b3343bc69ee94b2a2c21d16a9304f9b7c111c305558fc346 + - name: kind + value: task + resolver: bundles + - name: clone-repository + params: + - name: url + value: $(params.git-url) + - name: revision + value: $(params.revision) + - name: ociStorage + value: $(params.output-image).git + - name: ociArtifactExpiresAfter + value: $(params.image-expires-after) + runAfter: + - init + taskRef: + params: + - name: name + value: git-clone-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-git-clone-oci-ta:0.1@sha256:3a920a83fc0135aaae2730fe9d446eb2da2ffc9d63a34bceea04afd24653bdee + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + workspaces: + - name: basic-auth + workspace: git-auth + - name: build-image-index + params: + - name: IMAGE + value: $(params.output-image) + - name: COMMIT_SHA + value: $(tasks.clone-repository.results.commit) + - name: IMAGE_EXPIRES_AFTER + value: $(params.image-expires-after) + - name: ALWAYS_BUILD_INDEX + value: $(params.build-image-index) + - name: IMAGES + value: + - $(tasks.build-images.results.IMAGE_REF[*]) + - name: BUILDAH_FORMAT + value: $(params.buildah-format) + runAfter: + - build-images + taskRef: + params: + - name: name + value: build-image-index + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-build-image-index:0.1@sha256:79784d53749584bc5a8de32142ec4e2f01cdbf42c20d94e59280e0b927c8597d + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - name: build-source-image + params: + - name: BINARY_IMAGE + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: BINARY_IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: source-build-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-source-build-oci-ta:0.3@sha256:2a290f91fdccf4c9ef726a1605163bc14904e1dbf9837ac6d2621caddd10f98e + - name: kind + value: task + resolver: bundles + when: + - input: $(tasks.init.results.build) + operator: in + values: + - "true" + - input: $(params.build-source-image) + operator: in + values: + - "true" + - name: deprecated-base-image-check + params: + - name: IMAGE_URL + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: deprecated-image-check + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-deprecated-image-check:0.5@sha256:f59175d9a0a60411738228dfe568af4684af4aa5e7e05c832927cb917801d489 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - matrix: + params: + - name: image-platform + value: + - $(params.build-platforms) + name: clair-scan + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: clair-scan + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-clair-scan:0.3@sha256:a7cc183967f89c4ac100d04ab8f81e54733beee60a0528208107c9a22d3c43af + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - matrix: + params: + - name: platform + value: + - $(params.build-platforms) + name: ecosystem-cert-preflight-checks + params: + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: ecosystem-cert-preflight-checks + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks:0.2@sha256:9568c51a5158d534248908b9b561cf67d2826ed4ea164ffd95628bb42380e6ec + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - matrix: + params: + - name: image-arch + value: + - $(params.build-platforms) + name: clamav-scan + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: clamav-scan + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.3@sha256:b0bd59748cda4a7abf311e4f448e6c1d00c6b6d8c0ecc1c2eb33e08dc0e0b802 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: sast-shell-check + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: sast-shell-check-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-sast-shell-check-oci-ta:0.1@sha256:bf7bdde00b7212f730c1356672290af6f38d070da2c8a316987b5c32fd49e0b9 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: sast-unicode-check + params: + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + - name: CACHI2_ARTIFACT + value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: sast-unicode-check-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check-oci-ta:0.3@sha256:a2bde66f6b4164620298c7d709b8f08515409404000fa1dc2260d2508b135651 + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + - name: push-dockerfile + params: + - name: IMAGE + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: IMAGE_DIGEST + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + - name: DOCKERFILE + value: $(params.dockerfile) + - name: CONTEXT + value: $(params.path-context) + - name: SOURCE_ARTIFACT + value: $(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: push-dockerfile-oci-ta + - name: bundle + value: quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.1@sha256:14fba04580b236e4206a904b86ee2fd8eeaa4163f7619a9c2602d361e4f74c51 + - name: kind + value: task + resolver: bundles + - name: rpms-signature-scan + params: + - name: image-url + value: $(tasks.build-image-index.results.IMAGE_URL) + - name: image-digest + value: $(tasks.build-image-index.results.IMAGE_DIGEST) + runAfter: + - build-image-index + taskRef: + params: + - name: name + value: rpms-signature-scan + - name: bundle + value: quay.io/konflux-ci/konflux-vanguard/task-rpms-signature-scan:0.2@sha256:06977232e67509e5540528ff6c3b081b23fc5bf3e40fb3e2d09a086d5c3243fc + - name: kind + value: task + resolver: bundles + when: + - input: $(params.skip-checks) + operator: in + values: + - "false" + workspaces: + - name: git-auth + optional: true + - name: netrc + optional: true diff --git a/.tekton/kn-eventing-integrations-aws-ddb-streams-source-119-pull-request.yaml b/.tekton/kn-eventing-integrations-aws-ddb-streams-source-119-pull-request.yaml new file mode 100755 index 00000000..f16cf6c9 --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-ddb-streams-source-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-ddb-streams-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-ddb-streams-source-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-ddb-streams-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-ddb-streams-source:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-ddb-streams-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-ddb-streams-source-119-push.yaml b/.tekton/kn-eventing-integrations-aws-ddb-streams-source-119-push.yaml new file mode 100755 index 00000000..1812a653 --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-ddb-streams-source-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-ddb-streams-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-ddb-streams-source-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-ddb-streams-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-ddb-streams-source:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-ddb-streams-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-s3-sink-119-pull-request.yaml b/.tekton/kn-eventing-integrations-aws-s3-sink-119-pull-request.yaml new file mode 100755 index 00000000..d194bddf --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-s3-sink-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-s3-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-s3-sink-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-s3-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-s3-sink:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-s3-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-s3-sink-119-push.yaml b/.tekton/kn-eventing-integrations-aws-s3-sink-119-push.yaml new file mode 100755 index 00000000..1fbe282d --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-s3-sink-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-s3-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-s3-sink-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-s3-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-s3-sink:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-s3-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-s3-source-119-pull-request.yaml b/.tekton/kn-eventing-integrations-aws-s3-source-119-pull-request.yaml new file mode 100755 index 00000000..4d3773f8 --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-s3-source-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-s3-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-s3-source-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-s3-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-s3-source:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-s3-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-s3-source-119-push.yaml b/.tekton/kn-eventing-integrations-aws-s3-source-119-push.yaml new file mode 100755 index 00000000..c01ba40d --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-s3-source-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-s3-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-s3-source-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-s3-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-s3-source:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-s3-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-sns-sink-119-pull-request.yaml b/.tekton/kn-eventing-integrations-aws-sns-sink-119-pull-request.yaml new file mode 100755 index 00000000..f5705451 --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-sns-sink-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-sns-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-sns-sink-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-sns-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-sns-sink:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-sns-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-sns-sink-119-push.yaml b/.tekton/kn-eventing-integrations-aws-sns-sink-119-push.yaml new file mode 100755 index 00000000..a02cb8ce --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-sns-sink-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-sns-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-sns-sink-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-sns-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-sns-sink:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-sns-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-sqs-sink-119-pull-request.yaml b/.tekton/kn-eventing-integrations-aws-sqs-sink-119-pull-request.yaml new file mode 100755 index 00000000..d8bac3b2 --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-sqs-sink-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-sqs-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-sqs-sink-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-sqs-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-sqs-sink:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-sqs-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-sqs-sink-119-push.yaml b/.tekton/kn-eventing-integrations-aws-sqs-sink-119-push.yaml new file mode 100755 index 00000000..3f3bb354 --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-sqs-sink-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-sqs-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-sqs-sink-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-sqs-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-sqs-sink:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-sqs-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-sqs-source-119-pull-request.yaml b/.tekton/kn-eventing-integrations-aws-sqs-source-119-pull-request.yaml new file mode 100755 index 00000000..91a46f0a --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-sqs-source-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-sqs-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-sqs-source-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-sqs-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-sqs-source:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-sqs-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-aws-sqs-source-119-push.yaml b/.tekton/kn-eventing-integrations-aws-sqs-source-119-push.yaml new file mode 100755 index 00000000..a683593b --- /dev/null +++ b/.tekton/kn-eventing-integrations-aws-sqs-source-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-aws-sqs-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-aws-sqs-source-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/aws-sqs-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-aws-sqs-source:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-aws-sqs-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-log-sink-119-pull-request.yaml b/.tekton/kn-eventing-integrations-log-sink-119-pull-request.yaml new file mode 100755 index 00000000..e18b035f --- /dev/null +++ b/.tekton/kn-eventing-integrations-log-sink-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-log-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-log-sink-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/log-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-log-sink:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-log-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-log-sink-119-push.yaml b/.tekton/kn-eventing-integrations-log-sink-119-push.yaml new file mode 100755 index 00000000..d96a72c0 --- /dev/null +++ b/.tekton/kn-eventing-integrations-log-sink-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-log-sink-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-log-sink-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/log-sink/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-log-sink:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-log-sink-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-timer-source-119-pull-request.yaml b/.tekton/kn-eventing-integrations-timer-source-119-pull-request.yaml new file mode 100755 index 00000000..882997fd --- /dev/null +++ b/.tekton/kn-eventing-integrations-timer-source-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-timer-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-timer-source-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/timer-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-timer-source:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-timer-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-timer-source-119-push.yaml b/.tekton/kn-eventing-integrations-timer-source-119-push.yaml new file mode 100755 index 00000000..0e15cf7d --- /dev/null +++ b/.tekton/kn-eventing-integrations-timer-source-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-timer-source-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-timer-source-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/timer-source/hermetic/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-timer-source:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-java-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-timer-source-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-transform-jsonata-119-pull-request.yaml b/.tekton/kn-eventing-integrations-transform-jsonata-119-pull-request.yaml new file mode 100755 index 00000000..39644a8a --- /dev/null +++ b/.tekton/kn-eventing-integrations-transform-jsonata-119-pull-request.yaml @@ -0,0 +1,63 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/pull_request_number: '{{pull_request_number}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "pull_request" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-transform-jsonata-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-transform-jsonata-119-on-pull-request + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/transform-jsonata/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: image-expires-after + value: 5d + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-transform-jsonata:on-pr-{{revision}} + - name: build-platforms + value: + - linux/x86_64 + - name: revision + value: '{{revision}}' + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-transform-jsonata-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}' diff --git a/.tekton/kn-eventing-integrations-transform-jsonata-119-push.yaml b/.tekton/kn-eventing-integrations-transform-jsonata-119-push.yaml new file mode 100755 index 00000000..de6eecb0 --- /dev/null +++ b/.tekton/kn-eventing-integrations-transform-jsonata-119-push.yaml @@ -0,0 +1,62 @@ +apiVersion: tekton.dev/v1 +kind: PipelineRun +metadata: + annotations: + build.appstudio.openshift.io/repo: https://github.com/openshift-knative/eventing-integrations?rev={{revision}} + build.appstudio.redhat.com/commit_sha: '{{revision}}' + build.appstudio.redhat.com/target_branch: '{{target_branch}}' + pipelinesascode.tekton.dev/max-keep-runs: "3" + pipelinesascode.tekton.dev/on-cel-expression: event == "push" && target_branch == "release-v1.19" + creationTimestamp: null + labels: + appstudio.openshift.io/application: serverless-operator-139 + appstudio.openshift.io/component: kn-eventing-integrations-transform-jsonata-119 + pipelines.appstudio.openshift.io/type: build + name: kn-eventing-integrations-transform-jsonata-119-on-push + namespace: ocp-serverless-tenant +spec: + params: + - name: dockerfile + value: openshift/ci-operator/static-images/transform-jsonata/Dockerfile + - name: build-args + value: + - CLI_ARTIFACTS=registry.redhat.io/openshift4/ose-cli-artifacts-rhel9:v4.16 + - GO_BUILDER=brew.registry.redhat.io/rh-osbs/openshift-golang-builder:rhel_9_golang_1.24 + - GO_RUNTIME=registry.access.redhat.com/ubi9/ubi-minimal + - JAVA_BUILDER=registry.access.redhat.com/ubi9/openjdk-21 + - JAVA_RUNTIME=registry.access.redhat.com/ubi9/openjdk-21-runtime + - NODE_BUILDER=registry.access.redhat.com/ubi9/nodejs-20 + - NODE_RUNTIME=registry.access.redhat.com/ubi9/nodejs-20 + - VERSION=1.39.0 + - name: git-url + value: '{{source_url}}' + - name: hermetic + value: "true" + - name: output-image + value: quay.io/redhat-user-workloads/ocp-serverless-tenant/serverless-operator-139/kn-eventing-integrations-transform-jsonata:{{revision}} + - name: revision + value: '{{revision}}' + - name: additional-tags + value: + - $(context.pipelineRun.uid)-{{revision}} + - 1.39.0 + - latest + - name: prefetch-input + value: '[{"path":".","type":"gomod"},{"path":"transform-jsonata","type":"npm"}]' + taskRunSpecs: + - pipelineTaskName: sast-shell-check + stepSpecs: + - name: sast-shell-check + computeResources: + requests: + memory: 4Gi + limits: + memory: 4Gi + pipelineRef: + name: docker-build + taskRunTemplate: + serviceAccountName: build-pipeline-kn-eventing-integrations-transform-jsonata-119 + workspaces: + - name: git-auth + secret: + secretName: '{{ git_auth_secret }}'