running buildah-tssc Step: buildah-tssc Results: /workspace/source/source/results/buildah-tssc Custom root CA variable is not set. Make sure CA trust is established ========Running buildah-tssc:login --- Registry Auth Bypass Active --- ========Running buildah-tssc:build STEP 1/7: FROM registry.access.redhat.com/ubi9/python-312:latest Trying to pull registry.access.redhat.com/ubi9/python-312:latest... Getting image source signatures Checking if image destination supports signatures Copying blob sha256:614d1005a5881671c6e659c35c661e2b33c6b11886d5ffd24c32cfd4ea1f83b7 Copying blob sha256:ba373b90b6f2d2618a2bc1620c38d599a9c0be5539a04db9669652030ee174a1 Copying blob sha256:7ecb09432dbc631c807208909dc90538c274d6955dc77d3bc71d6065c528ae1c Copying blob sha256:38620aa9eda73695e49cbc29288c6eba6860116bd3fc155c2ed32d0a773cd6d7 Copying config sha256:c1ada273154210c5bb6f237eb49a5a97e8d56b5051a9d56d0c4edff2b72df966 Writing manifest to image destination Storing signatures STEP 2/7: EXPOSE 8081/tcp STEP 3/7: ENV FLASK_PORT=8081 STEP 4/7: WORKDIR /projects STEP 5/7: COPY . . STEP 6/7: RUN if [ -f requirements.txt ]; then pip install -r requirements.txt; elif [ `ls -1q *.txt | wc -l` == 1 ]; then pip install -r *.txt; fi Collecting blinker==1.9.0 (from -r requirements.txt (line 7)) Downloading blinker-1.9.0-py3-none-any.whl (8.5 kB) Collecting click==8.3.1 (from -r requirements.txt (line 11)) Downloading click-8.3.1-py3-none-any.whl (108 kB) Collecting Flask==3.1.3 (from -r requirements.txt (line 15)) Downloading flask-3.1.3-py3-none-any.whl (103 kB) Collecting itsdangerous==2.2.0 (from -r requirements.txt (line 19)) Downloading itsdangerous-2.2.0-py3-none-any.whl (16 kB) Collecting jinja2==3.1.6 (from -r requirements.txt (line 23)) Downloading jinja2-3.1.6-py3-none-any.whl (134 kB) Collecting MarkupSafe==3.0.3 (from -r requirements.txt (line 27)) Downloading markupsafe-3.0.3-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl (22 kB) Collecting Werkzeug==3.1.4 (from -r requirements.txt (line 120)) Downloading werkzeug-3.1.4-py3-none-any.whl (224 kB) Installing collected packages: MarkupSafe, itsdangerous, click, blinker, Werkzeug, jinja2, Flask Successfully installed Flask-3.1.3 MarkupSafe-3.0.3 Werkzeug-3.1.4 blinker-1.9.0 click-8.3.1 itsdangerous-2.2.0 jinja2-3.1.6 [notice] A new release of pip is available: 24.2 -> 26.0.1 [notice] To update, run: pip install --upgrade pip STEP 7/7: CMD [ "python", "./app.py" ] COMMIT quay.io/rhtap_qe/e2e-tests-python-sdqpadka:on-pr-8f0cb3b0b1f9fa26cc200ba958c2128b5adc91d4 Getting image source signatures Copying blob sha256:eb14e5ae93ae3f9d30fa532f71a0026f81c4d11fce14d716aa64297272576329 Copying blob sha256:2fbe88a1c9840ea6039bffa0fc8f9f89487a3bc18e0e46fba81435e6cfa4ed1a Copying blob sha256:65910b1492eb2097aecfc9a5a677ac6513448e46b46bbdf2e99be528513e9c7c Copying blob sha256:b615acbfad3e3720eb4f5101af8c985a0c4dbce2ed87b886ce47d1409863d255 Copying blob sha256:da7d6119d2d283715211aadf41c37dd6ea46f36a9eed91c7e370491ad943fc94 Copying config sha256:8d5816bb416c3445aa19062dcf6df9f6a4386914224ec01ad84b3359ae921a16 Writing manifest to image destination --> 8d5816bb416c Successfully tagged quay.io/rhtap_qe/e2e-tests-python-sdqpadka:on-pr-8f0cb3b0b1f9fa26cc200ba958c2128b5adc91d4 8d5816bb416c3445aa19062dcf6df9f6a4386914224ec01ad84b3359ae921a16 Getting image source signatures Copying blob sha256:da7d6119d2d283715211aadf41c37dd6ea46f36a9eed91c7e370491ad943fc94 Copying blob sha256:65910b1492eb2097aecfc9a5a677ac6513448e46b46bbdf2e99be528513e9c7c Copying blob sha256:b615acbfad3e3720eb4f5101af8c985a0c4dbce2ed87b886ce47d1409863d255 Copying blob sha256:2fbe88a1c9840ea6039bffa0fc8f9f89487a3bc18e0e46fba81435e6cfa4ed1a Copying blob sha256:eb14e5ae93ae3f9d30fa532f71a0026f81c4d11fce14d716aa64297272576329 Copying config sha256:8d5816bb416c3445aa19062dcf6df9f6a4386914224ec01ad84b3359ae921a16 Writing manifest to image destination sha256:d8582e0f55ddd46e1c57f3e14799e9ec512e45044e59474c10dad871957edc0bquay.io/rhtap_qe/e2e-tests-python-sdqpadka:on-pr-8f0cb3b0b1f9fa26cc200ba958c2128b5adc91d4Getting image source signatures Copying blob sha256:da7d6119d2d283715211aadf41c37dd6ea46f36a9eed91c7e370491ad943fc94 Copying blob sha256:65910b1492eb2097aecfc9a5a677ac6513448e46b46bbdf2e99be528513e9c7c Copying blob sha256:eb14e5ae93ae3f9d30fa532f71a0026f81c4d11fce14d716aa64297272576329 Copying blob sha256:2fbe88a1c9840ea6039bffa0fc8f9f89487a3bc18e0e46fba81435e6cfa4ed1a Copying blob sha256:b615acbfad3e3720eb4f5101af8c985a0c4dbce2ed87b886ce47d1409863d255 Copying config sha256:8d5816bb416c3445aa19062dcf6df9f6a4386914224ec01ad84b3359ae921a16 Writing manifest to image destination ========Running buildah-tssc:generate-sboms { "bom-ref": "af63bd4c8601b7f1", "type": "file", "name": "e2e-tests-python-sdqpadka", "version": "8f0cb3b0b1f9fa26cc200ba958c2128b5adc91d4" } { "bom-ref": "05dae6b6d22cadc8", "type": "container", "name": "quay.io/rhtap_qe/e2e-tests-python-sdqpadka:on-pr-8f0cb3b0b1f9fa26cc200ba958c2128b5adc91d4", "version": "sha256:d8582e0f55ddd46e1c57f3e14799e9ec512e45044e59474c10dad871957edc0b" } ========RUNNING PYTHON ========Running buildah-tssc:upload-sbom There is a discussion in sigstore community triggered by https://github.com/sigstore/cosign/issues/3599. It is likely that cosign attach deprecation will be reverted. Please, ignore deprecation warning for now. WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations. WARNING: Attaching SBOMs this way does not sign them. To sign them, use 'cosign attest --predicate /workspace/source/source/results/temp/files/sbom-cyclonedx.json --key '. Uploading SBOM file for [quay.io/rhtap_qe/e2e-tests-python-sdqpadka:on-pr-8f0cb3b0b1f9fa26cc200ba958c2128b5adc91d4] to [quay.io/rhtap_qe/e2e-tests-python-sdqpadka:sha256-d8582e0f55ddd46e1c57f3e14799e9ec512e45044e59474c10dad871957edc0b.sbom] with mediaType [application/vnd.cyclonedx+json]. ========