Container: step-upload-sbom
WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations.
WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate sbom-cyclonedx.json --key <key path>'.
Uploading SBOM file for [quay.io/rhtap_qe/rhtap-qe-java-springboot:9bf8c305e37e9d38076578bb217227892fdd0f58] to [quay.io/rhtap_qe/rhtap-qe-java-springboot:sha256-a8993c2635c30a366314696c1e580933337556209130d36ce72c59d24bc1a7ed.sbom] with mediaType [application/vnd.cyclonedx+json].