pod: gh-test-custom-branch-ayrqfx-on-pull-request-9jbbb-init-pod | init container: prepare 2026/03/31 14:44:37 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-pull-request-9jbbb-init-pod | container step-init: time="2026-03-31T14:44:40Z" level=info msg="Using in-cluster config" logger=KubeClient time="2026-03-31T14:44:40Z" level=info msg="[param] ENABLE: false" time="2026-03-31T14:44:40Z" level=info msg="[param] DEFAULT HTTP PROXY: squid.caching.svc.cluster.local:3128" time="2026-03-31T14:44:40Z" level=info msg="[param] DEFAULT NO PROXY: brew.registry.redhat.io,docker.io,gcr.io,ghcr.io,images.paas.redhat.com,mirror.gcr.io,nvcr.io,quay.io,registry-proxy.engineering.redhat.com,registry.access.redhat.com,registry.ci.openshift.org,registry.fedoraproject.org,registry.redhat.io,registry.stage.redhat.io,vault.habana.ai" time="2026-03-31T14:44:40Z" level=info msg="[param] HTTP PROXY RESULT PATH: /tekton/results/http-proxy" time="2026-03-31T14:44:40Z" level=info msg="[param] NO PROXY RESULT PATH: /tekton/results/no-proxy" time="2026-03-31T14:44:40Z" level=info msg="Cache proxy is disabled in param or in backend" time="2026-03-31T14:44:40Z" level=info msg="[result] HTTP PROXY: " time="2026-03-31T14:44:40Z" level=info msg="[result] NO PROXY: " pod: gh-test-custom-branch-ayrqfx-on-pull-request-q7whx-init-pod | init container: prepare 2026/03/31 14:47:07 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-pull-request-q7whx-init-pod | container step-init: time="2026-03-31T14:47:10Z" level=info msg="Using in-cluster config" logger=KubeClient time="2026-03-31T14:47:10Z" level=info msg="[param] ENABLE: false" time="2026-03-31T14:47:10Z" level=info msg="[param] DEFAULT HTTP PROXY: squid.caching.svc.cluster.local:3128" time="2026-03-31T14:47:10Z" level=info msg="[param] DEFAULT NO PROXY: brew.registry.redhat.io,docker.io,gcr.io,ghcr.io,images.paas.redhat.com,mirror.gcr.io,nvcr.io,quay.io,registry-proxy.engineering.redhat.com,registry.access.redhat.com,registry.ci.openshift.org,registry.fedoraproject.org,registry.redhat.io,registry.stage.redhat.io,vault.habana.ai" time="2026-03-31T14:47:10Z" level=info msg="[param] HTTP PROXY RESULT PATH: /tekton/results/http-proxy" time="2026-03-31T14:47:10Z" level=info msg="[param] NO PROXY RESULT PATH: /tekton/results/no-proxy" time="2026-03-31T14:47:10Z" level=info msg="Cache proxy is disabled in param or in backend" time="2026-03-31T14:47:10Z" level=info msg="[result] HTTP PROXY: " time="2026-03-31T14:47:10Z" level=info msg="[result] NO PROXY: " pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-apply-tags-pod | init container: prepare 2026/03/31 14:51:05 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-apply-tags-pod | container step-apply-additional-tags: time="2026-03-31T14:51:09Z" level=info msg="[param] image-url: quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204" time="2026-03-31T14:51:09Z" level=info msg="[param] digest: sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534" time="2026-03-31T14:51:09Z" level=info msg="[param] tags-from-image-label: konflux.additional-tags" time="2026-03-31T14:51:12Z" level=info msg="Additional tags from 'konflux.additional-tags' image label: test-tag1, test-tag2" {"tags":["test-tag1","test-tag2"]} pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | init container: prepare 2026/03/31 14:49:59 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | init container: place-scripts 2026/03/31 14:50:00 Decoded script /tekton/scripts/script-0-tvfq6 2026/03/31 14:50:00 Decoded script /tekton/scripts/script-1-5bmgj 2026/03/31 14:50:00 Decoded script /tekton/scripts/script-2-kjfwm 2026/03/31 14:50:00 Decoded script /tekton/scripts/script-3-gk99n 2026/03/31 14:50:00 Decoded script /tekton/scripts/script-4-kbxlb pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | init container: working-dir-initializer pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | container step-build: [2026-03-31T14:50:04,708348288+00:00] Validate context path [2026-03-31T14:50:04,714307995+00:00] Update CA trust [2026-03-31T14:50:04,716309584+00:00] Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' [2026-03-31T14:50:08,759912043+00:00] Prepare Dockerfile Checking if /var/workdir/cachi2/output/bom.json exists. Could not find prefetched sbom. No content_sets found for ICM [2026-03-31T14:50:08,772685685+00:00] Prepare system (architecture: x86_64) [2026-03-31T14:50:08,813133167+00:00] Setup prefetched Trying to pull quay.io/jitesoft/nginx:latest... Getting image source signatures Copying blob sha256:4f4fb700ef54461cfa02571ae0db9a0dc1e0cdb5577484a6d75e68dc38e8acc1 Copying blob sha256:589002ba0eaed121a1dbf42f6648f29e5be55d5c8a6ee0f8eaa0285cc21ac153 Copying blob sha256:3478266b4865f4efc58d163e64670ca678ab1de9918b00b890093f6426681f7b Copying blob sha256:288db63402825620e469aa2029b43d571b621eb38cfbf8bf07846e18c41c23eb Copying config sha256:706974d0abb10eb40ea6e819ce6b81d95bb090d79148838861fcddebb223942c Writing manifest to image destination [2026-03-31T14:50:11,366312384+00:00] Unsetting proxy { "com.jitesoft.app.alpine.version": "3.23.3", "com.jitesoft.app.nginx.version": "1.29.7", "com.jitesoft.build.arch": "amd64", "com.jitesoft.build.platform": "linux/amd64", "com.jitesoft.project.registry.uri": "registry.gitlab.com/jitesoft/dockerfiles/nginx", "com.jitesoft.project.repo.issues": "https://gitlab.com/jitesoft/dockerfiles/nginx/issues", "com.jitesoft.project.repo.type": "git", "com.jitesoft.project.repo.uri": "https://gitlab.com/jitesoft/dockerfiles/nginx", "io.artifacthub.package.alternative-locations": "oci://index.docker.io/jitesoft/nginx,oci://ghcr.io/jitesoft/nginx,oci://registry.gitlab.com/jitesoft/dockerfiles/nginx", "io.artifacthub.package.logo-url": "https://jitesoft.com/favicon-96x96.png", "io.artifacthub.package.readme-url": "https://gitlab.com/jitesoft/dockerfiles/nginx/-/raw/master/README.md", "maintainer": "Johannes Tegnér ", "maintainer.org": "Jitesoft", "maintainer.org.uri": "https://jitesoft.com", "org.opencontainers.image.created": "2026-03-31T14:50:08Z", "org.opencontainers.image.description": "Nginx on Alpine linux", "org.opencontainers.image.source": "https://github.com/redhat-appstudio-qe/devfile-sample-hello-world-blxdhm", "org.opencontainers.image.vendor": "Jitesoft", "org.opencontainers.image.version": "1.29.7", "architecture": "x86_64", "vcs-type": "git", "vcs-ref": "79f973f5d4ea8135a6210741db6c46de69f2a204", "org.opencontainers.image.revision": "79f973f5d4ea8135a6210741db6c46de69f2a204", "build-date": "2026-03-31T14:50:08Z", "io.buildah.version": "1.42.2", "konflux.additional-tags": "test-tag1, test-tag2" } [2026-03-31T14:50:11,437902791+00:00] Register sub-man Adding the entitlement to the build [2026-03-31T14:50:11,443995394+00:00] Add secrets [2026-03-31T14:50:11,466683210+00:00] Run buildah build [2026-03-31T14:50:11,468724101+00:00] buildah build --volume /tmp/entitlement:/etc/pki/entitlement --security-opt=unmask=/proc/interrupts --label architecture=x86_64 --label vcs-type=git --label vcs-ref=79f973f5d4ea8135a6210741db6c46de69f2a204 --label org.opencontainers.image.revision=79f973f5d4ea8135a6210741db6c46de69f2a204 --label org.opencontainers.image.source=https://github.com/redhat-appstudio-qe/devfile-sample-hello-world-blxdhm --label build-date=2026-03-31T14:50:08Z --label org.opencontainers.image.created=2026-03-31T14:50:08Z --annotation org.opencontainers.image.revision=79f973f5d4ea8135a6210741db6c46de69f2a204 --annotation org.opencontainers.image.source=https://github.com/redhat-appstudio-qe/devfile-sample-hello-world-blxdhm --annotation org.opencontainers.image.created=2026-03-31T14:50:08Z --tls-verify=true --no-cache --ulimit nofile=4096:4096 --http-proxy=false -f /tmp/Dockerfile.kEcLjS -t quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 . STEP 1/6: FROM quay.io/jitesoft/nginx:latest STEP 2/6: ENV PORT="8080" STEP 3/6: LABEL konflux.additional-tags="test-tag1, test-tag2" STEP 4/6: COPY labels.json /usr/share/buildinfo/labels.json STEP 5/6: COPY labels.json /root/buildinfo/labels.json STEP 6/6: LABEL "architecture"="x86_64" "vcs-type"="git" "vcs-ref"="79f973f5d4ea8135a6210741db6c46de69f2a204" "org.opencontainers.image.revision"="79f973f5d4ea8135a6210741db6c46de69f2a204" "org.opencontainers.image.source"="https://github.com/redhat-appstudio-qe/devfile-sample-hello-world-blxdhm" "build-date"="2026-03-31T14:50:08Z" "org.opencontainers.image.created"="2026-03-31T14:50:08Z" COMMIT quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 time="2026-03-31T14:50:11Z" level=warning msg="HEALTHCHECK is not supported for OCI image format and will be ignored. Must use `docker` format" --> 139e3a1f5a0b Successfully tagged quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 139e3a1f5a0bc573ae7df636acfff08cb199f7b964cf8d3fbe2c245257f2556a [2026-03-31T14:50:12,258795662+00:00] Unsetting proxy [2026-03-31T14:50:12,261108465+00:00] Add metadata Recording base image digests used quay.io/jitesoft/nginx:latest quay.io/jitesoft/nginx:latest@sha256:18c441c61111727a3e41fabd73745c778b208818f84b5d55d928ec3c94b8bfa1 Getting image source signatures Copying blob sha256:e9e585c4a82cfce0ab171b077a4e5dc1a087c21800db56adc9d79a78dcac9f0f Copying blob sha256:23d0871c64c163c2c24ff164be468b4bd7af07afd2e22811be368693ce89cb74 Copying blob sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e Copying blob sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef Copying blob sha256:b431ed29c213c3983481ebac7a73e46bc4c57aa8a883d602b321fe3da5d3e187 Copying config sha256:139e3a1f5a0bc573ae7df636acfff08cb199f7b964cf8d3fbe2c245257f2556a Writing manifest to image destination [2026-03-31T14:50:12,948665834+00:00] End build pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | container step-push: [2026-03-31T14:50:13,903556307+00:00] Update CA trust INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' [2026-03-31T14:50:17,513734980+00:00] Convert image [2026-03-31T14:50:17,515706529+00:00] Push image with unique tag Pushing to quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container [retry] executing: buildah push --format=docker --retry 3 --tls-verify=true quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 docker://quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container Getting image source signatures Copying blob sha256:e9e585c4a82cfce0ab171b077a4e5dc1a087c21800db56adc9d79a78dcac9f0f Copying blob sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e Copying blob sha256:23d0871c64c163c2c24ff164be468b4bd7af07afd2e22811be368693ce89cb74 Copying blob sha256:b431ed29c213c3983481ebac7a73e46bc4c57aa8a883d602b321fe3da5d3e187 Copying blob sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef Copying config sha256:139e3a1f5a0bc573ae7df636acfff08cb199f7b964cf8d3fbe2c245257f2556a Writing manifest to image destination [2026-03-31T14:50:22,081176033+00:00] Push image with git revision Pushing to quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 [retry] executing: buildah push --format=docker --retry 3 --tls-verify=true --digestfile /workspace/source/image-digest quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 docker://quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 Getting image source signatures Copying blob sha256:e9e585c4a82cfce0ab171b077a4e5dc1a087c21800db56adc9d79a78dcac9f0f Copying blob sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e Copying blob sha256:23d0871c64c163c2c24ff164be468b4bd7af07afd2e22811be368693ce89cb74 Copying blob sha256:b431ed29c213c3983481ebac7a73e46bc4c57aa8a883d602b321fe3da5d3e187 Copying blob sha256:5f70bf18a086007016e948b04aed3b82103a36bea41755b6cddfaf10ace3c6ef Copying config sha256:139e3a1f5a0bc573ae7df636acfff08cb199f7b964cf8d3fbe2c245257f2556a Writing manifest to image destination sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 [retry] executing: kubectl get configmap cluster-config -n konflux-info -o json Keyless signing is disabled (none of rekorInternalUrl, fulcioInternalUrl, defaultOIDCIssuer, tufInternalUrl are configured in the konflux-info/cluster-config configmap) [2026-03-31T14:50:23,610483056+00:00] End push pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | container step-sbom-syft-generate: [2026-03-31T14:50:24,114659370+00:00] Generate SBOM Running syft on the image Running syft on the source code [0000] WARN no explicit name and version provided for directory source, deriving artifact ID from the given path (which is not ideal) [2026-03-31T14:50:28,126076397+00:00] End sbom-syft-generate pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | container step-prepare-sboms: [2026-03-31T14:50:28,317385017+00:00] Prepare SBOM [2026-03-31T14:50:28,324415521+00:00] Generate SBOM with mobster Skipping SBOM validation 2026-03-31 14:50:30,214 [INFO] mobster.log: Logging level set to 20 2026-03-31 14:50:30,275 [INFO] mobster.oci: Fetching manifest for quay.io/jitesoft/nginx@sha256:18c441c61111727a3e41fabd73745c778b208818f84b5d55d928ec3c94b8bfa1 2026-03-31 14:50:31,843 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type spdxjson failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:32,396 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type cyclonedx failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:33,613 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type spdxjson failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:34,205 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type cyclonedx failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:35,550 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type spdxjson failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:36,172 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type cyclonedx failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:37,385 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type spdxjson failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:37,927 [WARNING] mobster.oci.cosign.anonymous_fetcher: Cosign fetching attestation of type cyclonedx failed for quay.io/jitesoft/nginx@sha256:b4d728ce1726b1abfb0220efedc0762c9292e9dfca9c463d6e7919335dff540f with output b'Error: found no attestations\nerror during command execution: found no attestations\n' 2026-03-31 14:50:37,928 [INFO] mobster.cmd.generate.oci_image.contextual_sbom.contextualize: Contextual mechanism won't be used, there is no parent image SBOM. 2026-03-31 14:50:37,928 [INFO] mobster.cmd.generate.oci_image: Contextual SBOM workflow finished successfully. 2026-03-31 14:50:37,928 [INFO] mobster.log: Contextual workflow completed in 7.66s 2026-03-31 14:50:37,942 [INFO] mobster.main: Exiting with code 0. [2026-03-31T14:50:38,038455364+00:00] End prepare-sboms pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-build-container-pod | container step-upload-sbom: [2026-03-31T14:50:38,496970233+00:00] Upload SBOM INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' Using token for quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx Pushing sbom to registry [retry] executing: cosign attach sbom --sbom sbom.json --type spdx quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations. WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate sbom.json --key '. Uploading SBOM file for [quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534] to [quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:sha256-f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534.sbom] with mediaType [text/spdx+json]. quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:87402ff4f19352b4900889a9996d6ca2ae0f6c6a46bee73816214455e9def701 [2026-03-31T14:50:44,235291713+00:00] End upload-sbom pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clair-scan-pod | init container: prepare 2026/03/31 14:51:04 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clair-scan-pod | init container: place-scripts 2026/03/31 14:51:06 Decoded script /tekton/scripts/script-0-kpgwx 2026/03/31 14:51:06 Decoded script /tekton/scripts/script-1-wmb5g 2026/03/31 14:51:06 Decoded script /tekton/scripts/script-2-ptqx7 2026/03/31 14:51:06 Decoded script /tekton/scripts/script-3-llgqr pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clair-scan-pod | container step-get-image-manifests: Inspecting raw image manifest quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534. pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clair-scan-pod | container step-get-vulnerabilities: pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clair-scan-pod | container step-oci-attach-report: Using token for quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx Executing: oras attach --no-tty --format go-template={{.digest}} --registry-config /home/oras/auth.json --artifact-type application/vnd.redhat.clair-report+json quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 clair-report-amd64.json:application/vnd.redhat.clair-report+json Selecting auth Attaching clair-report-amd64.json to quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clair-scan-pod | container step-conftest-vulnerabilities: [ { "filename": "/tekton/home/clair-result-amd64.json", "namespace": "required_checks", "successes": 10 } ] {"vulnerabilities":{"critical":0,"high":0,"medium":0,"low":0,"unknown":0},"unpatched_vulnerabilities":{"critical":0,"high":0,"medium":0,"low":0,"unknown":0}} {"image": {"pullspec": "quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204", "digests": ["sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534"]}} {"result":"SUCCESS","timestamp":"2026-03-31T14:51:28+00:00","note":"Task clair-scan completed: Refer to Tekton task result SCAN_OUTPUT for vulnerabilities scanned by Clair.","namespace":"default","successes":0,"failures":0,"warnings":0} pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clamav-scan-pod | init container: prepare 2026/03/31 14:51:25 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clamav-scan-pod | init container: place-scripts 2026/03/31 14:51:26 Decoded script /tekton/scripts/script-0-d8lbf 2026/03/31 14:51:26 Decoded script /tekton/scripts/script-1-zgdfp pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clamav-scan-pod | container step-extract-and-scan-image: Starting clamd ... clamd is ready! Detecting artifact type for quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534. Detected container image. Processing image manifests. Running "oc image extract" on image of arch amd64 Scanning image for arch amd64. This operation may take a while. ----------- SCAN SUMMARY ----------- Infected files: 0 Time: 4.528 sec (0 m 4 s) Start Date: 2026:03:31 14:51:44 End Date: 2026:03:31 14:51:48 Executed-on: Scan was executed on clamsdcan version - ClamAV 1.4.3/27956/Mon Mar 30 06:24:32 2026 Database version: 27956 [ { "filename": "/work/logs/clamscan-result-log-amd64.json", "namespace": "required_checks", "successes": 2 } ] {"timestamp":"1774968708","namespace":"required_checks","successes":2,"failures":0,"warnings":0,"result":"SUCCESS","note":"All checks passed successfully"} {"timestamp":"1774968708","namespace":"required_checks","successes":2,"failures":0,"warnings":0,"result":"SUCCESS","note":"All checks passed successfully"} {"timestamp":"1774968708","namespace":"required_checks","successes":2,"failures":0,"warnings":0,"result":"SUCCESS","note":"All checks passed successfully"} {"image": {"pullspec": "quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204", "digests": ["sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534"]}} pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clamav-scan-pod | container step-upload: Selecting auth Using token for quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx Attaching to quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 Executing: oras attach --no-tty --registry-config /home/oras/auth.json --artifact-type application/vnd.clamav quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 clamscan-result-amd64.log:text/vnd.clamav clamscan-ec-test-amd64.json:application/vnd.konflux.test_output+json Preparing clamscan-result-amd64.log Preparing clamscan-ec-test-amd64.json Exists 44136fa355b3 application/vnd.oci.empty.v1+json Uploading 69704d3f56a8 clamscan-result-amd64.log Uploading 527bab2700bd clamscan-ec-test-amd64.json Uploaded 69704d3f56a8 clamscan-result-amd64.log Uploaded 527bab2700bd clamscan-ec-test-amd64.json Uploading 56292e6d4ebf application/vnd.oci.image.manifest.v1+json Uploaded 56292e6d4ebf application/vnd.oci.image.manifest.v1+json Attached to [registry] quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 Digest: sha256:56292e6d4ebfe95b1ee4cbd073ef7978db15bd4b5ab3c828c3d834adbf349f7e pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clone-repository-pod | init container: prepare 2026/03/31 14:49:40 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clone-repository-pod | init container: place-scripts 2026/03/31 14:49:41 Decoded script /tekton/scripts/script-0-b9j88 2026/03/31 14:49:41 Decoded script /tekton/scripts/script-1-dfd7t pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clone-repository-pod | container step-clone: INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt {"level":"info","ts":1774968584.584822,"caller":"git/git.go:394","msg":"Retrying operation (attempt 1)"} {"level":"info","ts":1774968584.9825368,"caller":"git/git.go:223","msg":"Successfully cloned https://github.com/redhat-appstudio-qe/devfile-sample-hello-world-blxdhm @ 79f973f5d4ea8135a6210741db6c46de69f2a204 (grafted, HEAD) in path /workspace/output/source"} {"level":"info","ts":1774968584.982607,"caller":"git/git.go:394","msg":"Retrying operation (attempt 1)"} {"level":"info","ts":1774968585.030935,"caller":"git/git.go:277","msg":"Successfully initialized and updated submodules in path /workspace/output/source"} Merge option disabled. Using checked-out revision 79f973f5d4ea8135a6210741db6c46de69f2a204 directly. pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-clone-repository-pod | container step-symlink-check: Running symlink check pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-init-pod | init container: prepare 2026/03/31 14:49:34 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-init-pod | container step-init: time="2026-03-31T14:49:38Z" level=info msg="Using in-cluster config" logger=KubeClient time="2026-03-31T14:49:38Z" level=info msg="[param] ENABLE: false" time="2026-03-31T14:49:38Z" level=info msg="[param] DEFAULT HTTP PROXY: squid.caching.svc.cluster.local:3128" time="2026-03-31T14:49:38Z" level=info msg="[param] DEFAULT NO PROXY: brew.registry.redhat.io,docker.io,gcr.io,ghcr.io,images.paas.redhat.com,mirror.gcr.io,nvcr.io,quay.io,registry-proxy.engineering.redhat.com,registry.access.redhat.com,registry.ci.openshift.org,registry.fedoraproject.org,registry.redhat.io,registry.stage.redhat.io,vault.habana.ai" time="2026-03-31T14:49:38Z" level=info msg="[param] HTTP PROXY RESULT PATH: /tekton/results/http-proxy" time="2026-03-31T14:49:38Z" level=info msg="[param] NO PROXY RESULT PATH: /tekton/results/no-proxy" time="2026-03-31T14:49:38Z" level=info msg="Cache proxy is disabled in param or in backend" time="2026-03-31T14:49:38Z" level=info msg="[result] HTTP PROXY: " time="2026-03-31T14:49:38Z" level=info msg="[result] NO PROXY: " pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-push-dockerfile-pod | init container: prepare 2026/03/31 14:51:05 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-push-dockerfile-pod | init container: working-dir-initializer pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-push-dockerfile-pod | container step-push: time="2026-03-31T14:51:10Z" level=info msg="[param] Image URL: quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204" time="2026-03-31T14:51:10Z" level=info msg="[param] Image digest: sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534" time="2026-03-31T14:51:10Z" level=info msg="[param] Tag suffix: .dockerfile" time="2026-03-31T14:51:10Z" level=info msg="[param] Containerfile: docker/Dockerfile" time="2026-03-31T14:51:10Z" level=info msg="[param] Context: ." time="2026-03-31T14:51:10Z" level=info msg="[param] Artifact type: application/vnd.konflux.dockerfile" time="2026-03-31T14:51:10Z" level=info msg="[param] Source directory: source" time="2026-03-31T14:51:10Z" level=info msg="[param] Image Reference result file: /tekton/results/IMAGE_REF" time="2026-03-31T14:51:10Z" level=info msg="[param] Alternative file name: Dockerfile" time="2026-03-31T14:51:11Z" level=info msg="oras [stdout] quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:9b6ba470f1e5e9da5e01f443ccff2adea40c276ce6ad6325c140a3623df4aa30" logger=CliExecutor time="2026-03-31T14:51:11Z" level=info msg="Containerfile '/workspace/workspace/source/docker/Dockerfile' is pushed to registry with tag: sha256-f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534.dockerfile" {"image_ref":"quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx@sha256:9b6ba470f1e5e9da5e01f443ccff2adea40c276ce6ad6325c140a3623df4aa30"} pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-shell-check-pod | init container: prepare 2026/03/31 14:51:04 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-shell-check-pod | init container: place-scripts 2026/03/31 14:51:05 Decoded script /tekton/scripts/script-0-p7jks 2026/03/31 14:51:05 Decoded script /tekton/scripts/script-1-zl7w2 pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-shell-check-pod | init container: working-dir-initializer pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-shell-check-pod | container step-sast-shell-check: + source /utils.sh ++ OPM_RENDER_CACHE=/tmp/konflux-test-opm-cache ++ DEFAULT_INDEX_IMAGE=registry.redhat.io/redhat/redhat-operator-index + trap 'handle_error /tekton/results/TEST_OUTPUT' EXIT + [[ -z '' ]] + PROJECT_NAME=gh-test-custom-branch-ayrqfx + echo 'INFO: The PROJECT_NAME used is: gh-test-custom-branch-ayrqfx' INFO: The PROJECT_NAME used is: gh-test-custom-branch-ayrqfx + ca_bundle=/mnt/trusted-ca/ca-bundle.crt + '[' -f /mnt/trusted-ca/ca-bundle.crt ']' + echo 'INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt' + cp -vf /mnt/trusted-ca/ca-bundle.crt /etc/pki/ca-trust/source/anchors INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' + update-ca-trust ++ rpm -q --queryformat '%{NAME}-%{VERSION}-%{RELEASE}\n' ShellCheck + PACKAGE_VERSION=ShellCheck-0.10.0-3.el9 + OUTPUT_FILE=shellcheck-results.json + SOURCE_CODE_DIR=/workspace/workspace/source + declare -a ALL_TARGETS + IFS=, + read -ra TARGET_ARRAY + for d in "${TARGET_ARRAY[@]}" + potential_path=/workspace/workspace/source/. ++ realpath -m /workspace/workspace/source/. + resolved_path=/workspace/workspace/source + [[ /workspace/workspace/source == \/\w\o\r\k\s\p\a\c\e\/\w\o\r\k\s\p\a\c\e\/\s\o\u\r\c\e* ]] + ALL_TARGETS+=("$resolved_path") + '[' -z '' ']' + '[' -r /sys/fs/cgroup/cpu.max ']' + read -r quota period + '[' 800000 '!=' max ']' + '[' -n 100000 ']' + '[' 100000 -gt 0 ']' + export SC_JOBS=8 + SC_JOBS=8 + echo 'INFO: Setting SC_JOBS=8 based on cgroups v2 max for run-shellcheck.sh' + /usr/share/csmock/scripts/run-shellcheck.sh /workspace/workspace/source INFO: Setting SC_JOBS=8 based on cgroups v2 max for run-shellcheck.sh Looking for shell scripts................ done + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/applypatch-msg.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/commit-msg.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/post-update.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/prepare-commit-msg.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-applypatch.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-commit.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-merge-commit.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-push.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-rebase.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/pre-receive.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/push-to-checkout.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/sendemail-validate.sample + timeout 30 shellcheck --format=json1 --external-sources --source-path=/workspace/workspace/source /workspace/workspace/source/.git/hooks/update.sample + CSGREP_OPTS=(--mode=json --strip-path-prefix="$SOURCE_CODE_DIR"/ --remove-duplicates --embed-context=3 --set-scan-prop="ShellCheck:${PACKAGE_VERSION}") + [[ true == \t\r\u\e ]] + CSGREP_EVENT_FILTER='\[SC(1020|1035|1054|1066|1068|1073|1080|1083|1099|1113|1115|1127|1128|1143|2043|2050|' + CSGREP_EVENT_FILTER+='2055|2057|2066|2069|2071|2077|2078|2091|2092|2157|2171|2193|2194|2195|2215|2216|' + CSGREP_EVENT_FILTER+='2218|2224|2225|2242|2256|2258|2261)\]$' + CSGREP_OPTS+=(--event="$CSGREP_EVENT_FILTER") + csgrep --mode=json --strip-path-prefix=/workspace/workspace/source/ --remove-duplicates --embed-context=3 --set-scan-prop=ShellCheck:ShellCheck-0.10.0-3.el9 '--event=\[SC(1020|1035|1054|1066|1068|1073|1080|1083|1099|1113|1115|1127|1128|1143|2043|2050|2055|2057|2066|2069|2071|2077|2078|2091|2092|2157|2171|2193|2194|2195|2215|2216|2218|2224|2225|2242|2256|2258|2261)\]$' ./shellcheck-results/empty.json ./shellcheck-results/sc-116.json ./shellcheck-results/sc-128.json ./shellcheck-results/sc-130.json ./shellcheck-results/sc-132.json ./shellcheck-results/sc-83.json ./shellcheck-results/sc-86.json ./shellcheck-results/sc-88.json ./shellcheck-results/sc-91.json ./shellcheck-results/sc-94.json ./shellcheck-results/sc-97.json + [[ SITE_DEFAULT == \S\I\T\E\_\D\E\F\A\U\L\T ]] + KFP_GIT_URL=https://gitlab.cee.redhat.com/osh/known-false-positives.git + PROBE_URL=https://gitlab.cee.redhat.com/osh/known-false-positives + KFP_DIR=known-false-positives + KFP_CLONED=0 + mkdir known-false-positives + [[ -n https://gitlab.cee.redhat.com/osh/known-false-positives.git ]] + echo -n 'INFO: Probing https://gitlab.cee.redhat.com/osh/known-false-positives... ' + curl --fail --head --max-time 60 --no-progress-meter https://gitlab.cee.redhat.com/osh/known-false-positives ++ head -1 curl: (6) Could not resolve host: gitlab.cee.redhat.com + [[ 0 -eq 0 ]] + echo 'WARN: Failed to clone known-false-positives at https://gitlab.cee.redhat.com/osh/known-false-positives.git, scan results will not be filtered' + echo 'ShellCheck results have been saved to shellcheck-results.json' + csgrep --mode=evtstat shellcheck-results.json INFO: Probing https://gitlab.cee.redhat.com/osh/known-false-positives... WARN: Failed to clone known-false-positives at https://gitlab.cee.redhat.com/osh/known-false-positives.git, scan results will not be filtered ShellCheck results have been saved to shellcheck-results.json + csgrep --mode=sarif shellcheck-results.json + TEST_OUTPUT= + parse_test_output sast-shell-check sarif shellcheck-results.sarif + TEST_NAME=sast-shell-check + TEST_RESULT_FORMAT=sarif + TEST_RESULT_FILE=shellcheck-results.sarif + '[' -z sast-shell-check ']' + '[' -z sarif ']' + '[' -z shellcheck-results.sarif ']' + '[' '!' -f shellcheck-results.sarif ']' + '[' sarif = sarif ']' +++ jq -rce '(if (.runs[].results | length > 0) then "FAILURE" else "SUCCESS" end)' shellcheck-results.sarif +++ jq -rce '(.runs[].results | length)' shellcheck-results.sarif ++ make_result_json -r SUCCESS -f 0 ++ local RESULT= ++ local SUCCESSES=0 ++ local FAILURES=0 ++ local WARNINGS=0 ++ local 'NOTE=For details, check Tekton task log.' ++ local NAMESPACE=default ++ local OUTPUT ++ local OPTIND opt ++ getopts :r:s:f:w:t:n: opt ++ case "${opt}" in ++ RESULT=SUCCESS ++ getopts :r:s:f:w:t:n: opt ++ case "${opt}" in ++ FAILURES=0 ++ getopts :r:s:f:w:t:n: opt ++ shift 4 ++ '[' -z SUCCESS ']' ++ case "${RESULT}" in ++++ date -u --iso-8601=seconds +++ jq -rce --arg date 2026-03-31T14:51:11+00:00 --arg result SUCCESS --arg note 'For details, check Tekton task log.' --arg namespace default --arg successes 0 --arg failures 0 --arg warnings 0 --null-input '{ result: $result, timestamp: $date, note: $note, namespace: $namespace, successes: $successes|tonumber, failures: $failures|tonumber, warnings: $warnings|tonumber }' ++ OUTPUT='{"result":"SUCCESS","timestamp":"2026-03-31T14:51:11+00:00","note":"For details, check Tekton task log.","namespace":"default","successes":0,"failures":0,"warnings":0}' ++ echo '{"result":"SUCCESS","timestamp":"2026-03-31T14:51:11+00:00","note":"For details, check Tekton task log.","namespace":"default","successes":0,"failures":0,"warnings":0}' + TEST_OUTPUT='{"result":"SUCCESS","timestamp":"2026-03-31T14:51:11+00:00","note":"For details, check Tekton task log.","namespace":"default","successes":0,"failures":0,"warnings":0}' ++ echo '{"result":"SUCCESS","timestamp":"2026-03-31T14:51:11+00:00","note":"For details, check Tekton task log.","namespace":"default","successes":0,"failures":0,"warnings":0}' ++ jq .failures + '[' 0 -gt 0 ']' + echo '{"result":"SUCCESS","timestamp":"2026-03-31T14:51:11+00:00","note":"For details, check Tekton task log.","namespace":"default","successes":0,"failures":0,"warnings":0}' + tee /tekton/results/TEST_OUTPUT {"result":"SUCCESS","timestamp":"2026-03-31T14:51:11+00:00","note":"For details, check Tekton task log.","namespace":"default","successes":0,"failures":0,"warnings":0} + handle_error /tekton/results/TEST_OUTPUT + exit_code=0 + '[' 0 -ne 0 ']' + exit 0 pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-shell-check-pod | container step-upload: Selecting auth Using token for quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx Attaching to quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204 Executing: oras attach --no-tty --registry-config /home/oras/auth.json --artifact-type application/sarif+json quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 shellcheck-results.sarif:application/sarif+json Preparing shellcheck-results.sarif Exists 44136fa355b3 application/vnd.oci.empty.v1+json Exists 3b606a9dd3a1 shellcheck-results.sarif Uploading f2f0450002e4 application/vnd.oci.image.manifest.v1+json Uploaded f2f0450002e4 application/vnd.oci.image.manifest.v1+json Attached to [registry] quay.io/redhat-appstudio-qe/build-e2e-ejnp/gh-test-custom-branch-ayrqfx:79f973f5d4ea8135a6210741db6c46de69f2a204@sha256:f60c9d27fbdad7a9ca680f0144550f98dd86abe2c9f0e649d636cf83dbd03534 Digest: sha256:f2f0450002e439052e5d8dbcaf811fb87a6a3fa4598cbe5283994d0c59db9c1e No excluded-findings.json exists. Skipping upload. pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-snyk-check-pod | init container: prepare 2026/03/31 14:51:25 Entrypoint initialization pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-snyk-check-pod | init container: place-scripts 2026/03/31 14:51:25 Decoded script /tekton/scripts/script-0-p5bv9 2026/03/31 14:51:25 Decoded script /tekton/scripts/script-1-pkvsd pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-snyk-check-pod | init container: working-dir-initializer pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-snyk-check-pod | container step-sast-snyk-check: INFO: The PROJECT_NAME used is: gh-test-custom-branch-ayrqfx INFO: Using mounted CA bundle: /mnt/trusted-ca/ca-bundle.crt '/mnt/trusted-ca/ca-bundle.crt' -> '/etc/pki/ca-trust/source/anchors/ca-bundle.crt' {"result":"SKIPPED","timestamp":"2026-03-31T14:51:31+00:00","note":"Task sast-snyk-check skipped: If you wish to use the Snyk code SAST task, please create a secret name snyk-secret with the key 'snyk_token' containing the Snyk token by following the steps given [here](https://konflux-ci.dev/docs/testing/build/snyk/)","namespace":"default","successes":0,"failures":0,"warnings":0} pod: gh-test-custom-branch-ayrqfx-on-push-7vggb-sast-snyk-check-pod | container step-upload: No sast_snyk_check_out.sarif exists. Skipping upload. No excluded-findings.json exists. Skipping upload.