WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations.
WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate sbom-cyclonedx.json --key <key path>'.
Uploading SBOM file for [quay.io/rhtap_qe/backend-tests-go-wzxjpjqg:on-pr-84f49537338672e2c7451e96e350266958de715a] to [quay.io/rhtap_qe/backend-tests-go-wzxjpjqg:sha256-1b6af3a252e8ef8c7e7a6dc9de0ff71b3ed2aa22edc67c812fa826b11e42a4ed.sbom] with mediaType [application/vnd.cyclonedx+json].