Inspecting raw image manifest quay.io/rhtap_qe/default-tenant/tsf-demo-comp@sha256:7270792e83c7d9239ab94b620dee24ba0c7d7b4a15aaddf5c6938e54f69c52c0.
Selecting auth
Using token for quay.io/rhtap_qe/default-tenant/tsf-demo-comp
Selecting auth
Using token for quay.io/rhtap_qe/default-tenant/tsf-demo-comp
WARNING: SBOM attachments are deprecated and support will be removed in a Cosign release soon after 2024-02-22 (see https://github.com/sigstore/cosign/issues/2755). Instead, please use SBOM attestations.
WARNING: Downloading SBOMs this way does not ensure its authenticity. If you want to ensure a tamper-proof SBOM, download it using 'cosign download attestation <image uri>'.
Found SBOM of media type: text/spdx+json
Running TPA scan on amd64 image manifest...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed

  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
100  588k    0     0  100  588k      0  2827k --:--:-- --:--:-- --:--:-- 2813k