running buildah-tssc Step: buildah-tssc Results: /workspace/source/source/results/buildah-tssc Custom root CA variable is not set. Make sure CA trust is established ========Running buildah-tssc:login --- Registry Auth Bypass Active --- ========Running buildah-tssc:build STEP 1/7: FROM registry.access.redhat.com/ubi9/python-312:latest Trying to pull registry.access.redhat.com/ubi9/python-312:latest... Getting image source signatures Checking if image destination supports signatures Copying blob sha256:645dc2e3584ea640906773e625dbe756eb10fc7be5663149644218a3538d3064 Copying blob sha256:b6465ca781aee78355d6e3fb79fcf2437d6666324b86768319788e1dd559c04e Copying blob sha256:ce92e6343cae2bcf14e94618e2c3d8c8d641732abd5edcfffc71784afdc193e7 Copying blob sha256:ee475114bdbdddd41853a0ad76086fb125f077ca2bd8ac3aec85361a9702c266 Copying config sha256:28e5e24daa0fb462275c4ab9252ba09efd6a83c206baaec450c37fdc1d29243b Writing manifest to image destination Storing signatures STEP 2/7: EXPOSE 8081/tcp STEP 3/7: ENV FLASK_PORT=8081 STEP 4/7: WORKDIR /projects STEP 5/7: COPY . . STEP 6/7: RUN if [ -f requirements.txt ]; then pip install -r requirements.txt; elif [ `ls -1q *.txt | wc -l` == 1 ]; then pip install -r *.txt; fi Collecting blinker==1.9.0 (from -r requirements.txt (line 7)) Downloading blinker-1.9.0-py3-none-any.whl (8.5 kB) Collecting click==8.3.3 (from -r requirements.txt (line 11)) Downloading click-8.3.3-py3-none-any.whl (110 kB) Collecting Flask==3.1.3 (from -r requirements.txt (line 15)) Downloading flask-3.1.3-py3-none-any.whl (103 kB) Collecting itsdangerous==2.2.0 (from -r requirements.txt (line 19)) Downloading itsdangerous-2.2.0-py3-none-any.whl (16 kB) Collecting jinja2==3.1.6 (from -r requirements.txt (line 23)) Downloading jinja2-3.1.6-py3-none-any.whl (134 kB) Collecting MarkupSafe==3.0.3 (from -r requirements.txt (line 27)) Downloading markupsafe-3.0.3-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl (22 kB) Collecting Werkzeug==3.1.4 (from -r requirements.txt (line 120)) Downloading werkzeug-3.1.4-py3-none-any.whl (224 kB) Installing collected packages: MarkupSafe, itsdangerous, click, blinker, Werkzeug, jinja2, Flask Successfully installed Flask-3.1.3 MarkupSafe-3.0.3 Werkzeug-3.1.4 blinker-1.9.0 click-8.3.3 itsdangerous-2.2.0 jinja2-3.1.6 [notice] A new release of pip is available: 24.2 -> 26.0.1 [notice] To update, run: pip install --upgrade pip STEP 7/7: CMD [ "python", "./app.py" ] COMMIT quay.io/rhtap_qe/e2e-tests-python-wgrqjqyn:on-pr-ee8348362eb532c66db3a8fe692ed79aa1f4ce95 Getting image source signatures Copying blob sha256:f3076d947f3de060c9c0a173c8a1f07121d0580aaa8b0caf25515f99531f2144 Copying blob sha256:699503a334beee92db1479887dcada1641276721594f456eb35b2e389c06c640 Copying blob sha256:d288bd004441f9c61e6cc9a83cb214e3ba309312b4f1e71f144ac131d19b0bb8 Copying blob sha256:a65f5f5540fd03d00592eac8ab99eb50076ea4eccef27905f9ec0d789142a7f4 Copying blob sha256:92a9762f55626712b9ceea7f5e358769e15f62b593f145608dad2784056cd11d Copying config sha256:744bd757999ad388fb083e1b1293ed4f62b3f2ee8a48e3ee1c94200bb47898cf Writing manifest to image destination --> 744bd757999a Successfully tagged quay.io/rhtap_qe/e2e-tests-python-wgrqjqyn:on-pr-ee8348362eb532c66db3a8fe692ed79aa1f4ce95 744bd757999ad388fb083e1b1293ed4f62b3f2ee8a48e3ee1c94200bb47898cf Getting image source signatures Copying blob sha256:92a9762f55626712b9ceea7f5e358769e15f62b593f145608dad2784056cd11d Copying blob sha256:f3076d947f3de060c9c0a173c8a1f07121d0580aaa8b0caf25515f99531f2144 Copying blob sha256:d288bd004441f9c61e6cc9a83cb214e3ba309312b4f1e71f144ac131d19b0bb8 Copying blob sha256:699503a334beee92db1479887dcada1641276721594f456eb35b2e389c06c640 Copying blob sha256:a65f5f5540fd03d00592eac8ab99eb50076ea4eccef27905f9ec0d789142a7f4 Copying config sha256:744bd757999ad388fb083e1b1293ed4f62b3f2ee8a48e3ee1c94200bb47898cf Writing manifest to image destination sha256:1078226294d4a3e43f1471d2a91c976d12a5f13700053295201bcd0320003de9quay.io/rhtap_qe/e2e-tests-python-wgrqjqyn:on-pr-ee8348362eb532c66db3a8fe692ed79aa1f4ce95Getting image source signatures Copying blob sha256:92a9762f55626712b9ceea7f5e358769e15f62b593f145608dad2784056cd11d Copying blob sha256:699503a334beee92db1479887dcada1641276721594f456eb35b2e389c06c640 Copying blob sha256:a65f5f5540fd03d00592eac8ab99eb50076ea4eccef27905f9ec0d789142a7f4 Copying blob sha256:f3076d947f3de060c9c0a173c8a1f07121d0580aaa8b0caf25515f99531f2144 Copying blob sha256:d288bd004441f9c61e6cc9a83cb214e3ba309312b4f1e71f144ac131d19b0bb8 Copying config sha256:744bd757999ad388fb083e1b1293ed4f62b3f2ee8a48e3ee1c94200bb47898cf Writing manifest to image destination ========Running buildah-tssc:generate-sboms { "bom-ref": "af63bd4c8601b7f1", "type": "file", "name": "e2e-tests-python-wgrqjqyn", "version": "ee8348362eb532c66db3a8fe692ed79aa1f4ce95" } { "bom-ref": "fe828c0ef2576be0", "type": "container", "name": "quay.io/rhtap_qe/e2e-tests-python-wgrqjqyn:on-pr-ee8348362eb532c66db3a8fe692ed79aa1f4ce95", "version": "sha256:1078226294d4a3e43f1471d2a91c976d12a5f13700053295201bcd0320003de9" } ========RUNNING PYTHON ========Running buildah-tssc:upload-sbom There is a discussion in sigstore community triggered by https://github.com/sigstore/cosign/issues/3599. It is likely that cosign attach deprecation will be reverted. Please, ignore deprecation warning for now. WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations. WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate /workspace/source/source/results/temp/files/sbom-cyclonedx.json --key '. Uploading SBOM file for [quay.io/rhtap_qe/e2e-tests-python-wgrqjqyn:on-pr-ee8348362eb532c66db3a8fe692ed79aa1f4ce95] to [quay.io/rhtap_qe/e2e-tests-python-wgrqjqyn:sha256-1078226294d4a3e43f1471d2a91c976d12a5f13700053295201bcd0320003de9.sbom] with mediaType [application/vnd.cyclonedx+json]. ========