running buildah-tssc Step: buildah-tssc Results: /workspace/source/source/results/buildah-tssc Custom root CA variable is not set. Make sure CA trust is established ========Running buildah-tssc:login --- Registry Auth Bypass Active --- ========Running buildah-tssc:build STEP 1/7: FROM registry.access.redhat.com/ubi9/python-312:latest Trying to pull registry.access.redhat.com/ubi9/python-312:latest... Getting image source signatures Checking if image destination supports signatures Copying blob sha256:551a05fb3a7831521d737d626ca217d267be08dd69e3673bfc89ad7178bcb34e Copying blob sha256:4659f647ba9358e423d7a6d11b064756eae785fadb68f83b36a662a36dcc1d2d Copying blob sha256:b56ba94a703f3a48a47de5722159e07270a0c09dec1893b52b70c30317ed98c3 Copying blob sha256:82802daa14561c6530ef7fb00bcb9f5af1d332869bbf459b54f53ad0728eb02b Copying config sha256:78d14d7a49c040915ea1db9bd146927da4495ccf51360ede48fe4f13a192105b Writing manifest to image destination Storing signatures STEP 2/7: EXPOSE 8081/tcp STEP 3/7: ENV FLASK_PORT=8081 STEP 4/7: WORKDIR /projects STEP 5/7: COPY . . STEP 6/7: RUN if [ -f requirements.txt ]; then pip install -r requirements.txt; elif [ `ls -1q *.txt | wc -l` == 1 ]; then pip install -r *.txt; fi Collecting blinker==1.9.0 (from -r requirements.txt (line 7)) Downloading blinker-1.9.0-py3-none-any.whl (8.5 kB) Collecting click==8.3.1 (from -r requirements.txt (line 11)) Downloading click-8.3.1-py3-none-any.whl (108 kB) Collecting Flask==3.1.3 (from -r requirements.txt (line 15)) Downloading flask-3.1.3-py3-none-any.whl (103 kB) Collecting itsdangerous==2.2.0 (from -r requirements.txt (line 19)) Downloading itsdangerous-2.2.0-py3-none-any.whl (16 kB) Collecting jinja2==3.1.6 (from -r requirements.txt (line 23)) Downloading jinja2-3.1.6-py3-none-any.whl (134 kB) Collecting MarkupSafe==3.0.3 (from -r requirements.txt (line 27)) Downloading markupsafe-3.0.3-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl (22 kB) Collecting Werkzeug==3.1.4 (from -r requirements.txt (line 120)) Downloading werkzeug-3.1.4-py3-none-any.whl (224 kB) Installing collected packages: MarkupSafe, itsdangerous, click, blinker, Werkzeug, jinja2, Flask Successfully installed Flask-3.1.3 MarkupSafe-3.0.3 Werkzeug-3.1.4 blinker-1.9.0 click-8.3.1 itsdangerous-2.2.0 jinja2-3.1.6 [notice] A new release of pip is available: 24.2 -> 26.1.2 [notice] To update, run: pip install --upgrade pip STEP 7/7: CMD [ "python", "./app.py" ] COMMIT quay.io/rhtap_qe/e2e-tests-python-tvkatlii:on-pr-7657fd7a46f4c8aa4d3130333edfca5e621181f6 Getting image source signatures Copying blob sha256:d4d4d2f9b9fec2d76a14d2c656a1410a186efcf97b39cce6f75d773076b29cda Copying blob sha256:8f03f0abc66c6ba7c31ca8ce8bfa692302be6ef4b76ed08a47ae2bd15a3f4924 Copying blob sha256:1930daa935234b7b00b3ab3bd954738f0166f4d8777ac845ccf97be4a8a96e50 Copying blob sha256:690e9e69568c9f641f2f36b2d796f13bd5a90c83ecd0cca466e17de4843db16d Copying blob sha256:5b3f549b74949eac953b5051c0f262118fc9c1d17d3c2632d3d49f285da9f122 Copying config sha256:c5833d6a1feba27619fa8abfd8ee2c4ba3286e664ce28890bf97bbe240f10d9b Writing manifest to image destination --> c5833d6a1feb Successfully tagged quay.io/rhtap_qe/e2e-tests-python-tvkatlii:on-pr-7657fd7a46f4c8aa4d3130333edfca5e621181f6 c5833d6a1feba27619fa8abfd8ee2c4ba3286e664ce28890bf97bbe240f10d9b Getting image source signatures Copying blob sha256:5b3f549b74949eac953b5051c0f262118fc9c1d17d3c2632d3d49f285da9f122 Copying blob sha256:d4d4d2f9b9fec2d76a14d2c656a1410a186efcf97b39cce6f75d773076b29cda Copying blob sha256:690e9e69568c9f641f2f36b2d796f13bd5a90c83ecd0cca466e17de4843db16d Copying blob sha256:8f03f0abc66c6ba7c31ca8ce8bfa692302be6ef4b76ed08a47ae2bd15a3f4924 Copying blob sha256:1930daa935234b7b00b3ab3bd954738f0166f4d8777ac845ccf97be4a8a96e50 Copying config sha256:c5833d6a1feba27619fa8abfd8ee2c4ba3286e664ce28890bf97bbe240f10d9b Writing manifest to image destination sha256:298c279452476267fabba677b66fb384df1b463a28d5ee554d0fe949166962bdquay.io/rhtap_qe/e2e-tests-python-tvkatlii:on-pr-7657fd7a46f4c8aa4d3130333edfca5e621181f6Getting image source signatures Copying blob sha256:5b3f549b74949eac953b5051c0f262118fc9c1d17d3c2632d3d49f285da9f122 Copying blob sha256:690e9e69568c9f641f2f36b2d796f13bd5a90c83ecd0cca466e17de4843db16d Copying blob sha256:1930daa935234b7b00b3ab3bd954738f0166f4d8777ac845ccf97be4a8a96e50 Copying blob sha256:d4d4d2f9b9fec2d76a14d2c656a1410a186efcf97b39cce6f75d773076b29cda Copying blob sha256:8f03f0abc66c6ba7c31ca8ce8bfa692302be6ef4b76ed08a47ae2bd15a3f4924 Copying config sha256:c5833d6a1feba27619fa8abfd8ee2c4ba3286e664ce28890bf97bbe240f10d9b Writing manifest to image destination ========Running buildah-tssc:generate-sboms { "bom-ref": "af63bd4c8601b7f1", "type": "file", "name": "e2e-tests-python-tvkatlii", "version": "7657fd7a46f4c8aa4d3130333edfca5e621181f6" } { "bom-ref": "ab9be7281553f0df", "type": "container", "name": "quay.io/rhtap_qe/e2e-tests-python-tvkatlii:on-pr-7657fd7a46f4c8aa4d3130333edfca5e621181f6", "version": "sha256:298c279452476267fabba677b66fb384df1b463a28d5ee554d0fe949166962bd" } ========RUNNING PYTHON ========Running buildah-tssc:upload-sbom There is a discussion in sigstore community triggered by https://github.com/sigstore/cosign/issues/3599. It is likely that cosign attach deprecation will be reverted. Please, ignore deprecation warning for now. WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations. WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate /workspace/source/source/results/temp/files/sbom-cyclonedx.json --key '. Uploading SBOM file for [quay.io/rhtap_qe/e2e-tests-python-tvkatlii:on-pr-7657fd7a46f4c8aa4d3130333edfca5e621181f6] to [quay.io/rhtap_qe/e2e-tests-python-tvkatlii:sha256-298c279452476267fabba677b66fb384df1b463a28d5ee554d0fe949166962bd.sbom] with mediaType [application/vnd.cyclonedx+json]. ========