Container: step-upload-sbom
WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations.
WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate sbom-cyclonedx.json --key <key path>'.
Uploading SBOM file for [quay.io/rhtap_qe/rhtap-qe-java-springboot:36988b0e7d5b77473a5aa912c12c04810cf09a80] to [quay.io/rhtap_qe/rhtap-qe-java-springboot:sha256-64d16d04055c079c9f23c1f8d6c1df20761058dba5f7b7bfcc4193e104f29374.sbom] with mediaType [application/vnd.cyclonedx+json].