pod: python-component-wwsmjt-on-10092940a27972a4fbf1606b9eebc5f2-pod | init container: prepare 2025/12/18 10:12:19 Entrypoint initialization pod: python-component-wwsmjt-on-10092940a27972a4fbf1606b9eebc5f2-pod | init container: place-scripts 2025/12/18 10:12:25 Decoded script /tekton/scripts/script-0-trkwk 2025/12/18 10:12:25 Decoded script /tekton/scripts/script-1-pm5df pod: python-component-wwsmjt-on-10092940a27972a4fbf1606b9eebc5f2-pod | init container: working-dir-initializer pod: python-component-wwsmjt-on-10092940a27972a4fbf1606b9eebc5f2-pod | container step-sast-shell-check: + source /utils.sh ++ OPM_RENDER_CACHE=/tmp/konflux-test-opm-cache ++ DEFAULT_INDEX_IMAGE=registry.redhat.io/redhat/redhat-operator-index + trap 'handle_error /tekton/results/TEST_OUTPUT' EXIT + [[ -z '' ]] + PROJECT_NAME=python-component-wwsmjt + echo 'INFO: The PROJECT_NAME used is: python-component-wwsmjt' + ca_bundle=/mnt/trusted-ca/ca-bundle.crt INFO: The PROJECT_NAME used is: python-component-wwsmjt + '[' -f /mnt/trusted-ca/ca-bundle.crt ']' + echo 'INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt' + cp -vf /mnt/trusted-ca/ca-bundle.crt /etc/pki/ca-trust/source/anchors INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' + update-ca-trust ++ rpm -q --queryformat '%{NAME}-%{VERSION}-%{RELEASE}\n' ShellCheck + PACKAGE_VERSION=ShellCheck-0.10.0-3.el9 + OUTPUT_FILE=shellcheck-results.json + SOURCE_CODE_DIR=/workspace/workspace/source + declare -a ALL_TARGETS + IFS=, + read -ra TARGET_ARRAY + for d in "${TARGET_ARRAY[@]}" + potential_path=/workspace/workspace/source/. ++ realpath -m /workspace/workspace/source/. + resolved_path=/workspace/workspace/source + [[ /workspace/workspace/source == \/\w\o\r\k\s\p\a\c\e\/\w\o\r\k\s\p\a\c\e\/\s\o\u\r\c\e* ]] + ALL_TARGETS+=("$resolved_path") + '[' -z '' ']' + '[' -r /sys/fs/cgroup/cpu.max ']' + read -r quota period + '[' 800000 '!=' max ']' + '[' -n 100000 ']' + '[' 100000 -gt 0 ']' + export SC_JOBS=8 + SC_JOBS=8 + echo 'INFO: Setting SC_JOBS=8 based on cgroups v2 max for run-shellcheck.sh' INFO: Setting SC_JOBS=8 based on cgroups v2 max for run-shellcheck.sh + /usr/share/csmock/scripts/run-shellcheck.sh /workspace/workspace/source Looking for shell scripts................ done + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/applypatch-msg.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/commit-msg.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/post-update.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/prepare-commit-msg.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-applypatch.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-commit.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-merge-commit.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-push.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-rebase.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-receive.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/push-to-checkout.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/sendemail-validate.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/update.sample + CSGREP_OPTS=(--mode=json --strip-path-prefix="$SOURCE_CODE_DIR"/ --remove-duplicates --embed-context=3 --set-scan-prop="ShellCheck:${PACKAGE_VERSION}") + [[ true == \t\r\u\e ]] + CSGREP_EVENT_FILTER='\[SC(1020|1035|1054|1066|1068|1073|1080|1083|1099|1113|1115|1127|1128|1143|2043|2050|' + CSGREP_EVENT_FILTER+='2055|2057|2066|2069|2071|2077|2078|2091|2092|2157|2171|2193|2194|2195|2215|2216|' + CSGREP_EVENT_FILTER+='2218|2224|2225|2242|2256|2258|2261)\]$' + CSGREP_OPTS+=(--event="$CSGREP_EVENT_FILTER") + csgrep --mode=json --strip-path-prefix=/workspace/workspace/source/ --remove-duplicates --embed-context=3 --set-scan-prop=ShellCheck:ShellCheck-0.10.0-3.el9 '--event=\[SC(1020|1035|1054|1066|1068|1073|1080|1083|1099|1113|1115|1127|1128|1143|2043|2050|2055|2057|2066|2069|2071|2077|2078|2091|2092|2157|2171|2193|2194|2195|2215|2216|2218|2224|2225|2242|2256|2258|2261)\]$' ./shellcheck-results/empty.json ./shellcheck-results/sc-102.json ./shellcheck-results/sc-123.json ./shellcheck-results/sc-135.json ./shellcheck-results/sc-137.json ./shellcheck-results/sc-141.json ./shellcheck-results/sc-90.json ./shellcheck-results/sc-93.json ./shellcheck-results/sc-94.json ./shellcheck-results/sc-96.json ./shellcheck-results/sc-99.json + [[ SITE_DEFAULT == \S\I\T\E\_\D\E\F\A\U\L\T ]] + KFP_GIT_URL=https://gitlab.cee.redhat.com/osh/known-false-positives.git + PROBE_URL=https://gitlab.cee.redhat.com/osh/known-false-positives + KFP_DIR=known-false-positives + KFP_CLONED=0 + mkdir known-false-positives + [[ -n https://gitlab.cee.redhat.com/osh/known-false-positives.git ]] + echo -n 'INFO: Probing https://gitlab.cee.redhat.com/osh/known-false-positives... ' + curl --fail --head --max-time 60 --no-progress-meter https://gitlab.cee.redhat.com/osh/known-false-positives ++ head -1 curl: (6) Could not resolve host: gitlab.cee.redhat.com + [[ 0 -eq 0 ]] + echo 'WARN: Failed to clone known-false-positives at https://gitlab.cee.redhat.com/osh/known-false-positives.git, scan results will not be filtered' INFO: Probing https://gitlab.cee.redhat.com/osh/known-false-positives... WARN: Failed to clone known-false-positives at https://gitlab.cee.redhat.com/osh/known-false-positives.git, scan results will not be filtered ShellCheck results have been saved to shellcheck-results.json + echo 'ShellCheck results have been saved to shellcheck-results.json' + csgrep --mode=evtstat shellcheck-results.json + csgrep --mode=sarif shellcheck-results.json + note='Task sast-shell-check completed successfully.' ++ make_result_json -r SUCCESS -t 'Task sast-shell-check completed successfully.' ++ local RESULT= ++ local SUCCESSES=0 ++ local FAILURES=0 ++ local WARNINGS=0 ++ local 'NOTE=For details, check Tekton task log.' ++ local NAMESPACE=default ++ local OUTPUT ++ local OPTIND opt ++ getopts :r:s:f:w:t:n: opt ++ case "${opt}" in ++ RESULT=SUCCESS ++ getopts :r:s:f:w:t:n: opt ++ case "${opt}" in ++ NOTE='Task sast-shell-check completed successfully.' ++ getopts :r:s:f:w:t:n: opt ++ shift 4 ++ '[' -z SUCCESS ']' ++ case "${RESULT}" in ++++ date -u --iso-8601=seconds +++ jq -rce --arg date 2025-12-18T10:12:36+00:00 --arg result SUCCESS --arg note 'Task sast-shell-check completed successfully.' --arg namespace default --arg successes 0 --arg failures 0 --arg warnings 0 --null-input '{ result: $result, timestamp: $date, note: $note, namespace: $namespace, successes: $successes|tonumber, failures: $failures|tonumber, warnings: $warnings|tonumber }' ++ OUTPUT='{"result":"SUCCESS","timestamp":"2025-12-18T10:12:36+00:00","note":"Task sast-shell-check completed successfully.","namespace":"default","successes":0,"failures":0,"warnings":0}' ++ echo '{"result":"SUCCESS","timestamp":"2025-12-18T10:12:36+00:00","note":"Task sast-shell-check completed successfully.","namespace":"default","successes":0,"failures":0,"warnings":0}' + TEST_OUTPUT='{"result":"SUCCESS","timestamp":"2025-12-18T10:12:36+00:00","note":"Task sast-shell-check completed successfully.","namespace":"default","successes":0,"failures":0,"warnings":0}' + echo '{"result":"SUCCESS","timestamp":"2025-12-18T10:12:36+00:00","note":"Task sast-shell-check completed successfully.","namespace":"default","successes":0,"failures":0,"warnings":0}' + tee /tekton/results/TEST_OUTPUT + handle_error /tekton/results/TEST_OUTPUT {"result":"SUCCESS","timestamp":"2025-12-18T10:12:36+00:00","note":"Task sast-shell-check completed successfully.","namespace":"default","successes":0,"failures":0,"warnings":0} + exit_code=0 + '[' 0 -ne 0 ']' + exit 0 pod: python-component-wwsmjt-on-10092940a27972a4fbf1606b9eebc5f2-pod | container step-upload: Selecting auth Using token for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt Attaching to quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 Executing: oras attach --no-tty --registry-config /home/oras/auth.json --artifact-type application/sarif+json quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390@sha256:fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22 shellcheck-results.sarif:application/sarif+json Preparing shellcheck-results.sarif Uploading 3b606a9dd3a1 shellcheck-results.sarif Exists 44136fa355b3 application/vnd.oci.empty.v1+json Uploaded 3b606a9dd3a1 shellcheck-results.sarif Uploading e52ded4111c2 application/vnd.oci.image.manifest.v1+json Uploaded e52ded4111c2 application/vnd.oci.image.manifest.v1+json Attached to [registry] quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390@sha256:fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22 Digest: sha256:e52ded4111c26c23f375df836997f400fe2602f4680669799698a8520ee204d4 No excluded-findings.json exists. Skipping upload. pod: python-component-wwsmjt-on-191c040b36add15b092a11b2ed5b1d89-pod | init container: prepare 2025/12/18 10:12:01 Entrypoint initialization pod: python-component-wwsmjt-on-191c040b36add15b092a11b2ed5b1d89-pod | init container: place-scripts 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-0-d2rnp 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-1-hzmjl pod: python-component-wwsmjt-on-191c040b36add15b092a11b2ed5b1d89-pod | init container: working-dir-initializer pod: python-component-wwsmjt-on-191c040b36add15b092a11b2ed5b1d89-pod | container step-sast-snyk-check: INFO: The PROJECT_NAME used is: python-component-wwsmjt INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' {"result":"SKIPPED","timestamp":"2025-12-18T10:12:13+00:00","note":"Task sast-snyk-check skipped: If you wish to use the Snyk code SAST task, please create a secret name snyk-secret with the key 'snyk_token' containing the Snyk token by following the steps given [here](https://konflux-ci.dev/docs/testing/build/snyk/)","namespace":"default","successes":0,"failures":0,"warnings":0} pod: python-component-wwsmjt-on-191c040b36add15b092a11b2ed5b1d89-pod | container step-upload: No sast_snyk_check_out.sarif exists. Skipping upload. No excluded-findings.json exists. Skipping upload. pod: python-component-wwsmjt-on-1d262064bf374bab466b8ccd76a4812f-pod | init container: prepare 2025/12/18 10:11:49 Entrypoint initialization pod: python-component-wwsmjt-on-1d262064bf374bab466b8ccd76a4812f-pod | init container: place-scripts 2025/12/18 10:11:50 Decoded script /tekton/scripts/script-0-q6prg 2025/12/18 10:11:50 Decoded script /tekton/scripts/script-1-p7mhh 2025/12/18 10:11:50 Decoded script /tekton/scripts/script-2-6vnnh pod: python-component-wwsmjt-on-1d262064bf374bab466b8ccd76a4812f-pod | container step-build: [2025-12-18T10:11:52,306724432+00:00] Update CA trust INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' 996e8f5bf5f9d9d33692bbac45970d547bd61dffd413455ab5362f88ff6e4462 Skipping image index generation. Returning results for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt@sha256:fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22. pod: python-component-wwsmjt-on-1d262064bf374bab466b8ccd76a4812f-pod | container step-create-sbom: The manifest_data.json file does not exist. Skipping the SBOM creation... pod: python-component-wwsmjt-on-1d262064bf374bab466b8ccd76a4812f-pod | container step-upload-sbom: [2025-12-18T10:11:55,532473197+00:00] Update CA trust INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' The index.spdx.json file does not exists. Skipping the SBOM upload... pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | init container: prepare 2025/12/18 10:09:25 Entrypoint initialization pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | init container: place-scripts 2025/12/18 10:09:27 Decoded script /tekton/scripts/script-0-hgrs9 2025/12/18 10:09:28 Decoded script /tekton/scripts/script-1-ft8s5 2025/12/18 10:09:28 Decoded script /tekton/scripts/script-2-rn6qn 2025/12/18 10:09:28 Decoded script /tekton/scripts/script-3-zf6td 2025/12/18 10:09:28 Decoded script /tekton/scripts/script-4-hqdmj pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | init container: working-dir-initializer pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | container step-build: [2025-12-18T10:09:34,029684414+00:00] Validate context path [2025-12-18T10:09:34,033393589+00:00] Update CA trust [2025-12-18T10:09:34,034626770+00:00] Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' [2025-12-18T10:09:36,225729339+00:00] Prepare Dockerfile Checking if /var/workdir/cachi2/output/bom.json exists. Could not find prefetched sbom. No content_sets found for ICM [2025-12-18T10:09:36,233100192+00:00] Prepare system (architecture: x86_64) [2025-12-18T10:09:36,448357920+00:00] Setup prefetched Trying to pull registry.access.redhat.com/ubi9/python-39:1-117.1684741281... Getting image source signatures Checking if image destination supports signatures Copying blob sha256:8a2e9815396eaa57b0dfe27b2dfc442417f06aa70974c358f198980b533c7942 Copying blob sha256:085efe85e9dfb0b3d5d2392e4b78660a3091bf1ded336315117a627fbdd0567d Copying blob sha256:a07d808ddf4404b3885fef6100142a973cc667b2c3c4abcf4db96508795b1efb Copying blob sha256:5465449a2ea5d8a7e05fa498c8ba35f0ce7714b0ad37e716961fca17dfa1ef13 Copying config sha256:45c8f23c11bb64f238236aaf5cbe05595778e1d4fb6c06109c6fcc0a6b57a45b Writing manifest to image destination Storing signatures [2025-12-18T10:09:51,913686949+00:00] Unsetting proxy { "architecture": "x86_64", "build-date": "2025-12-18T10:09:36Z", "com.redhat.component": "python-39-container", "com.redhat.license_terms": "https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI", "description": "Python 3.9 available as container is a base platform for building and running various Python 3.9 applications and frameworks. Python is an easy to learn, powerful programming language. It has efficient high-level data structures and a simple but effective approach to object-oriented programming. Python's elegant syntax and dynamic typing, together with its interpreted nature, make it an ideal language for scripting and rapid application development in many areas on most platforms.", "distribution-scope": "public", "io.buildah.version": "1.41.4", "io.buildpacks.stack.id": "com.redhat.stacks.ubi9-python-39", "io.k8s.description": "Python 3.9 available as container is a base platform for building and running various Python 3.9 applications and frameworks. Python is an easy to learn, powerful programming language. It has efficient high-level data structures and a simple but effective approach to object-oriented programming. Python's elegant syntax and dynamic typing, together with its interpreted nature, make it an ideal language for scripting and rapid application development in many areas on most platforms.", "io.k8s.display-name": "Python 3.9", "io.openshift.expose-services": "8080:http", "io.openshift.s2i.scripts-url": "image:///usr/libexec/s2i", "io.openshift.tags": "builder,python,python39,python-39,rh-python39", "io.s2i.scripts-url": "image:///usr/libexec/s2i", "maintainer": "SoftwareCollections.org ", "name": "ubi9/python-39", "release": "117.1684741281", "summary": "Platform for building and running Python 3.9 applications", "url": "https://access.redhat.com/containers/#/registry.access.redhat.com/ubi9/python-39/images/1-117.1684741281", "usage": "s2i build https://github.com/sclorg/s2i-python-container.git --context-dir=3.9/test/setup-test-app/ ubi9/python-39 python-sample-app", "vcs-ref": "8ba535a3f0f9a16ab8d6755a63b20d9a4b047390", "vcs-type": "git", "vendor": "Red Hat, Inc.", "version": "1", "org.opencontainers.image.revision": "8ba535a3f0f9a16ab8d6755a63b20d9a4b047390", "org.opencontainers.image.source": "https://github.com/redhat-appstudio-qe/sample-multi-component", "quay.expires-after": "5d", "org.opencontainers.image.created": "2025-12-18T10:09:36Z" } [2025-12-18T10:09:51,963851903+00:00] Register sub-man Adding the entitlement to the build [2025-12-18T10:09:51,967595034+00:00] Add secrets [2025-12-18T10:09:52,118311629+00:00] Run buildah build [2025-12-18T10:09:52,119556532+00:00] buildah build --volume /tmp/entitlement:/etc/pki/entitlement --security-opt=unmask=/proc/interrupts --label architecture=x86_64 --label vcs-type=git --label vcs-ref=8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 --label org.opencontainers.image.revision=8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 --label org.opencontainers.image.source=https://github.com/redhat-appstudio-qe/sample-multi-component --label quay.expires-after=5d --label build-date=2025-12-18T10:09:36Z --label org.opencontainers.image.created=2025-12-18T10:09:36Z --annotation org.opencontainers.image.revision=8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 --annotation org.opencontainers.image.source=https://github.com/redhat-appstudio-qe/sample-multi-component --annotation org.opencontainers.image.created=2025-12-18T10:09:36Z --tls-verify=true --no-cache --ulimit nofile=4096:4096 --http-proxy=false -f /tmp/Dockerfile.WudFDn -t quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 . STEP 1/10: FROM registry.access.redhat.com/ubi9/python-39:1-117.1684741281 STEP 2/10: EXPOSE 8081/tcp STEP 3/10: ENV FLASK_PORT=8081 STEP 4/10: WORKDIR /projects STEP 5/10: COPY . . STEP 6/10: RUN if [ -f requirements.txt ]; then pip install -r requirements.txt; elif [ `ls -1q *.txt | wc -l` == 1 ]; then pip install -r *.txt; fi Collecting Flask==2.3.3 Downloading flask-2.3.3-py3-none-any.whl (96 kB) Collecting importlib-metadata>=3.6.0 Downloading importlib_metadata-8.7.0-py3-none-any.whl (27 kB) Collecting Werkzeug>=2.3.7 Downloading werkzeug-3.1.4-py3-none-any.whl (224 kB) Collecting blinker>=1.6.2 Downloading blinker-1.9.0-py3-none-any.whl (8.5 kB) Collecting itsdangerous>=2.1.2 Downloading itsdangerous-2.2.0-py3-none-any.whl (16 kB) Collecting Jinja2>=3.1.2 Downloading jinja2-3.1.6-py3-none-any.whl (134 kB) Collecting click>=8.1.3 Downloading click-8.1.8-py3-none-any.whl (98 kB) Collecting zipp>=3.20 Downloading zipp-3.23.0-py3-none-any.whl (10 kB) Collecting MarkupSafe>=2.0 Downloading markupsafe-3.0.3-cp39-cp39-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl (20 kB) Installing collected packages: zipp, MarkupSafe, Werkzeug, Jinja2, itsdangerous, importlib-metadata, click, blinker, Flask Successfully installed Flask-2.3.3 Jinja2-3.1.6 MarkupSafe-3.0.3 Werkzeug-3.1.4 blinker-1.9.0 click-8.1.8 importlib-metadata-8.7.0 itsdangerous-2.2.0 zipp-3.23.0 WARNING: You are using pip version 21.3.1; however, version 25.3 is available. You should consider upgrading via the '/opt/app-root/bin/python3.9 -m pip install --upgrade pip' command. STEP 7/10: CMD [ "python", "./app.py" ] STEP 8/10: COPY labels.json /usr/share/buildinfo/labels.json STEP 9/10: COPY labels.json /root/buildinfo/labels.json STEP 10/10: LABEL "architecture"="x86_64" "vcs-type"="git" "vcs-ref"="8ba535a3f0f9a16ab8d6755a63b20d9a4b047390" "org.opencontainers.image.revision"="8ba535a3f0f9a16ab8d6755a63b20d9a4b047390" "org.opencontainers.image.source"="https://github.com/redhat-appstudio-qe/sample-multi-component" "quay.expires-after"="5d" "build-date"="2025-12-18T10:09:36Z" "org.opencontainers.image.created"="2025-12-18T10:09:36Z" COMMIT quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 --> 40336f7fb9ec Successfully tagged quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 40336f7fb9ec689e34b2be69c3d4a1e81f28d65b6bdf125d78892a0e8d94db63 [2025-12-18T10:10:20,440337853+00:00] Unsetting proxy [2025-12-18T10:10:20,441712382+00:00] Add metadata Recording base image digests used registry.access.redhat.com/ubi9/python-39:1-117.1684741281 registry.access.redhat.com/ubi9/python-39:1-117.1684741281@sha256:40a58935b9c22664927b22bf256f53a3d744ddb7316f3af18061099e199526ee Getting image source signatures Copying blob sha256:7fbbf68e25a5e5e47b5834b856a744a698c0e0433c0e2f31ef82a4b3d9018354 Copying blob sha256:d93d3cc0bc0c5ed9655bcdcf31183ed0b570076c0e6a13e0d7cb907d0b877b00 Copying blob sha256:629980bfa23ec05ce5acc61ed2866ddf8713f40bb2a61f0850395082f1457220 Copying blob sha256:bc8a0003b3470be53e5cf295daf38c287d3f20ab90e8f5c2b6f17406b158d323 Copying blob sha256:d661a108c347030c3ef626a0e0020e084fba1e1023193824f5395fa90ef40bde Copying config sha256:40336f7fb9ec689e34b2be69c3d4a1e81f28d65b6bdf125d78892a0e8d94db63 Writing manifest to image destination [2025-12-18T10:10:33,219762666+00:00] End build pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | container step-push: [2025-12-18T10:10:34,198649208+00:00] Update CA trust INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' [2025-12-18T10:10:36,976552329+00:00] Convert image [2025-12-18T10:10:36,977781648+00:00] Push image with unique tag Pushing to quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:python-component-wwsmjt-on-pull-request-xl2hp-build-container Executing: buildah push --format=docker --retry 3 --tls-verify=true quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 docker://quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:python-component-wwsmjt-on-pull-request-xl2hp-build-container [2025-12-18T10:11:13,832500506+00:00] Push image with git revision Pushing to quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 Executing: buildah push --format=docker --retry 3 --tls-verify=true --digestfile /workspace/source/image-digest quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 docker://quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 sha256:fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 [2025-12-18T10:11:15,379336352+00:00] End push pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | container step-sbom-syft-generate: [2025-12-18T10:11:16,380102804+00:00] Generate SBOM Running syft on the image Running syft on the source code [0000] WARN no explicit name and version provided for directory source, deriving artifact ID from the given path (which is not ideal) [2025-12-18T10:11:34,645902005+00:00] End sbom-syft-generate pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | container step-prepare-sboms: [2025-12-18T10:11:34,848729915+00:00] Prepare SBOM [2025-12-18T10:11:34,853169577+00:00] Generate SBOM with mobster Skipping SBOM validation 2025-12-18 10:11:36,617 [INFO] mobster.log: Logging level set to 20 2025-12-18 10:11:37,064 [INFO] mobster.oci: Fetching manifest for registry.access.redhat.com/ubi9/python-39@sha256:40a58935b9c22664927b22bf256f53a3d744ddb7316f3af18061099e199526ee 2025-12-18 10:11:43,612 [INFO] mobster.cmd.generate.oci_image.contextual_sbom.contextualize: Contextual mechanism won't be used, there is no parent image SBOM. 2025-12-18 10:11:43,612 [INFO] mobster.cmd.generate.oci_image: Contextual SBOM workflow finished successfully. 2025-12-18 10:11:43,614 [INFO] mobster.log: Contextual workflow completed in 6.67s 2025-12-18 10:11:43,760 [INFO] mobster.main: Exiting with code 0. [2025-12-18T10:11:43,824936585+00:00] End prepare-sboms pod: python-component-wwsmjt-on-55c2713d51dbd803a33ee5f8556e51e4-pod | container step-upload-sbom: [2025-12-18T10:11:44,012935392+00:00] Upload SBOM INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' Using token for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt Pushing sbom to registry Executing: cosign attach sbom --sbom sbom.json --type spdx quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390@sha256:fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22 quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt@sha256:4a8b5a74cd32f30b0d24a9e6b659bebe68ce3d31eb3919a5cf405ae88036756b [2025-12-18T10:11:47,855788798+00:00] End upload-sbom pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | init container: prepare 2025/12/18 10:12:01 Entrypoint initialization pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | init container: place-scripts 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-0-2fkgx 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-1-2lsfp 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-2-2ltk5 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-3-bdw9g 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-4-9qbs5 2025/12/18 10:12:07 Decoded script /tekton/scripts/script-5-dbbp2 pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | container step-introspect: Artifact type will be determined by introspection. Checking the media type of the OCI artifact... Executing: skopeo inspect --raw --retry-times 3 docker://quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 The media type of the OCI artifact is application/vnd.docker.distribution.manifest.v2+json. Looking for image labels that indicate this might be an operator bundle... Executing: skopeo inspect --retry-times 3 docker://quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 Found 0 matching labels. Expecting 3 or more to identify this image as an operator bundle. Introspection concludes that this artifact is of type "application". pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | container step-generate-container-auth: Selecting auth for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 Using token for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt Auth json written to "/auth/auth.json". pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | container step-set-skip-for-bundles: 2025/12/18 10:12:16 INFO Step was skipped due to when expressions were evaluated to false. pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | container step-app-check: time="2025-12-18T10:12:16Z" level=info msg="certification library version" version="1.15.2 " time="2025-12-18T10:12:17Z" level=info msg="running checks for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 for platform amd64" time="2025-12-18T10:12:17Z" level=info msg="target image" image="quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390" time="2025-12-18T10:12:58Z" level=info msg="check completed" check=HasLicense result=FAILED time="2025-12-18T10:12:58Z" level=info msg="check completed" check=HasUniqueTag result=PASSED time="2025-12-18T10:12:58Z" level=info msg="check completed" check=LayerCountAcceptable result=PASSED time="2025-12-18T10:12:58Z" level=info msg="check completed" check=HasNoProhibitedPackages result=PASSED time="2025-12-18T10:12:58Z" level=info msg="check completed" check=HasRequiredLabel result=PASSED time="2025-12-18T10:12:58Z" level=info msg="USER 1001 specified that is non-root" check=RunAsNonRoot time="2025-12-18T10:12:58Z" level=info msg="check completed" check=RunAsNonRoot result=PASSED time="2025-12-18T10:13:21Z" level=info msg="check completed" check=HasModifiedFiles result=PASSED time="2025-12-18T10:13:22Z" level=info msg="check completed" check=BasedOnUbi result=PASSED time="2025-12-18T10:13:22Z" level=info msg="This image's tag on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 will be paired with digest sha256:fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22 once this image has been published in accordance with Red Hat Certification policy. You may then add or remove any supplemental tags through your Red Hat Connect portal as you see fit." { "image": "quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390", "passed": false, "test_library": { "name": "github.com/redhat-openshift-ecosystem/openshift-preflight", "version": "1.15.2", "commit": "6ee1ef78b1e65bdb3042588f9f0b7a4406333209" }, "results": { "passed": [ time="2025-12-18T10:13:23Z" level=info msg="Preflight result: FAILED" { "name": "HasUniqueTag", "elapsed_time": 0, "description": "Checking if container has a tag other than 'latest', so that the image can be uniquely identified." }, { "name": "LayerCountAcceptable", "elapsed_time": 0, "description": "Checking if container has less than 40 layers. Too many layers within the container images can degrade container performance." }, { "name": "HasNoProhibitedPackages", "elapsed_time": 155, "description": "Checks to ensure that the image in use does not include prohibited packages, such as Red Hat Enterprise Linux (RHEL) kernel packages." }, { "name": "HasRequiredLabel", "elapsed_time": 0, "description": "Checking if the required labels (name, vendor, version, release, summary, description, maintainer) are present in the container metadata" }, { "name": "RunAsNonRoot", "elapsed_time": 0, "description": "Checking if container runs as the root user because a container that does not specify a non-root user will fail the automatic certification, and will be subject to a manual review before the container can be approved for publication" }, { "name": "HasModifiedFiles", "elapsed_time": 23077, "description": "Checks that no files installed via RPM in the base Red Hat layer have been modified" }, { "name": "BasedOnUbi", "elapsed_time": 809, "description": "Checking if the container's base image is based upon the Red Hat Universal Base Image (UBI)" } ], "failed": [ { "name": "HasLicense", "elapsed_time": 0, "description": "Checking if terms and conditions applicable to the software including open source licensing information are present. The license must be at /licenses", "help": "Check HasLicense encountered an error. Please review the preflight.log file for more information.", "suggestion": "Create a directory named /licenses and include all relevant licensing and/or terms and conditions as text file(s) in that directory.", "knowledgebase_url": "https://access.redhat.com/documentation/en-us/red_hat_software_certification/2024/html-single/red_hat_openshift_software_certification_policy_guide/index#assembly-requirements-for-container-images_openshift-sw-cert-policy-introduction", "check_url": "https://access.redhat.com/documentation/en-us/red_hat_software_certification/2024/html-single/red_hat_openshift_software_certification_policy_guide/index#assembly-requirements-for-container-images_openshift-sw-cert-policy-introduction" } ], "errors": [] } } pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | container step-app-set-outcome: {"result":"FAILURE","timestamp":"1766052803","note":"Task preflight is a FAILURE: Refer to Tekton task logs for more information","successes":7,"failures":1,"warnings":0} pod: python-component-wwsmjt-on-a481a4512fd798eb0b5bca31ff3d9883-pod | container step-final-outcome: + [[ ! -f /mount/konflux.results.json ]] + tee /tekton/steps/step-final-outcome/results/test-output {"result":"FAILURE","timestamp":"1766052803","note":"Task preflight is a FAILURE: Refer to Tekton task logs for more information","successes":7,"failures":1,"warnings":0} pod: python-component-wwsmjt-on-b4eaf36477bbcdaad8d0a077c4db06ac-pod | init container: prepare 2025/12/18 10:12:15 Entrypoint initialization pod: python-component-wwsmjt-on-b4eaf36477bbcdaad8d0a077c4db06ac-pod | init container: place-scripts 2025/12/18 10:12:18 Decoded script /tekton/scripts/script-0-bjhp8 pod: python-component-wwsmjt-on-b4eaf36477bbcdaad8d0a077c4db06ac-pod | init container: working-dir-initializer pod: python-component-wwsmjt-on-b4eaf36477bbcdaad8d0a077c4db06ac-pod | container step-push: [2025-12-18T10:12:28,634420065+00:00] Validate context path Selecting auth for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:on-pr-8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 Using token for quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt Pushing Dockerfile to registry Executing: oras push --no-tty --format json --registry-config /tmp/tmp.WP28vdy5qu --artifact-type application/vnd.konflux.dockerfile quay.io/redhat-appstudio-qe/build-e2e-yafh/python-component-wwsmjt:sha256-fbb949a7a0ca50c39d87975810a08d2ce07342fbe7660f1feb15c8657c6e8e22.dockerfile Dockerfile pod: python-component-wwsmjt-on-fab08a7f6fc31cb23b3b13b6c02ed47e-pod | init container: prepare 2025/12/18 10:08:43 Entrypoint initialization pod: python-component-wwsmjt-on-fab08a7f6fc31cb23b3b13b6c02ed47e-pod | init container: place-scripts 2025/12/18 10:08:49 Decoded script /tekton/scripts/script-0-jlbkj 2025/12/18 10:08:49 Decoded script /tekton/scripts/script-1-h6r6l pod: python-component-wwsmjt-on-fab08a7f6fc31cb23b3b13b6c02ed47e-pod | container step-clone: INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt {"level":"info","ts":1766052537.8400228,"caller":"git/git.go:384","msg":"Retrying operation (attempt 1)"} {"level":"info","ts":1766052538.3961694,"caller":"git/git.go:218","msg":"Successfully cloned https://github.com/redhat-appstudio-qe/sample-multi-component @ 8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 (grafted, HEAD) in path /workspace/output/source"} {"level":"info","ts":1766052538.3962169,"caller":"git/git.go:384","msg":"Retrying operation (attempt 1)"} {"level":"info","ts":1766052538.4229374,"caller":"git/git.go:267","msg":"Successfully initialized and updated submodules in path /workspace/output/source"} Merge option disabled. Using checked-out revision 8ba535a3f0f9a16ab8d6755a63b20d9a4b047390 directly. pod: python-component-wwsmjt-on-fab08a7f6fc31cb23b3b13b6c02ed47e-pod | container step-symlink-check: Running symlink check pod: python-component-wwsmjt-on-pull-request-xl2hp-apply-tags-pod | init container: prepare 2025/12/18 10:12:21 Entrypoint initialization pod: python-component-wwsmjt-on-pull-request-xl2hp-apply-tags-pod | init container: place-scripts 2025/12/18 10:12:25 Decoded script /tekton/scripts/script-0-ch4nb 2025/12/18 10:12:25 Decoded script /tekton/scripts/script-1-72sv4 pod: python-component-wwsmjt-on-pull-request-xl2hp-apply-tags-pod | container step-apply-additional-tags-from-parameter: No additional tags parameter specified pod: python-component-wwsmjt-on-pull-request-xl2hp-apply-tags-pod | container step-apply-additional-tags-from-image-label: No additional tags specified in the image labels pod: python-component-wwsmjt-on-pull-request-xl2hp-clair-scan-pod | init container: prepare 2025/12/18 10:12:00 Entrypoint initialization pod: python-component-wwsmjt-on-pull-request-xl2hp-clair-scan-pod | init container: place-scripts failed to try resolving symlinks in path "/var/log/pods/build-e2e-yafh_python-component-wwsmjt-on-pull-request-xl2hp-clair-scan-pod_d5fe7069-abec-4090-b6c0-ec170ddffa30/place-scripts/0.log": lstat /var/log/pods/build-e2e-yafh_python-component-wwsmjt-on-pull-request-xl2hp-clair-scan-pod_d5fe7069-abec-4090-b6c0-ec170ddffa30/place-scripts/0.log: no such file or directory pod: python-component-wwsmjt-on-pull-request-xl2hp-clair-scan-pod | container step-get-image-manifests: