Skip to content

Commit

Permalink
Merge remote-tracking branch 'origin/redhat-v1.3'
Browse files Browse the repository at this point in the history
  • Loading branch information
JasonPowr committed Feb 13, 2024
2 parents d596e9d + 189eea0 commit 52c6e63
Show file tree
Hide file tree
Showing 18 changed files with 2,888 additions and 65 deletions.
415 changes: 415 additions & 0 deletions .tekton/backfill-redis-1-0-gamma-pull-request.yaml

Large diffs are not rendered by default.

412 changes: 412 additions & 0 deletions .tekton/backfill-redis-1-0-gamma-push.yaml

Large diffs are not rendered by default.

61 changes: 61 additions & 0 deletions .tekton/rekor-build-test-image.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,61 @@
apiVersion: tekton.dev/v1beta1
kind: Task
metadata:
name: build-test-image
annotations:
tekton.dev/title: "Build a test image for rekor-server"
spec:
workspaces:
- name: source
results:
- name: TEST_IMAGE_URL
description: The reference of the built image.
steps:
- name: build-and-push-test-image
securityContext:
capabilities:
add: ["SETFCAP"]
workingDir: $(workspaces.source.path)
image: quay.io/buildah/stable:v1
volumeMounts:
- name: docker-config-volume
mountPath: $(workspaces.source.path)/.docker
- name: brew-config-volume
mountPath: $(workspaces.source.path)/.brew_auth
- name: varlibcontainers
mountPath: /home/build/.local/share/containers
env:
- name: REGISTRY_AUTH_FILE
value: .docker/.dockerconfigjson
script: |
#!/usr/bin/env sh
buildah --storage-driver=vfs bud \
--target=test --format=oci \
--tls-verify=true --no-cache \
--authfile .brew_auth/.dockerconfigjson \
-f source/Dockerfile -t quay.io/securesign/rekor-server_test:latest source
buildah --storage-driver=vfs push \
--tls-verify=true \
quay.io/securesign/rekor-server_test:latest \
docker://quay.io/securesign/rekor-server_test:latest
- name: get-image-sha
workingDir: $(workspaces.source.path)
image: quay.io/skopeo/stable:v1
script: |
export IMAGE_DIGEST=$(skopeo inspect docker://quay.io/securesign/rekor-server_test:latest | grep -m1 '"Digest":' | awk -F'"' '{print $4}')
echo -n "quay.io/securesign/rekor-server_test@$IMAGE_DIGEST" > $(results.TEST_IMAGE_URL.path)
volumes:
- name: docker-config-volume
secret:
secretName: rekor-test-build-secret
- name: brew-config-volume
secret:
secretName: brew-registry-pull-secret
- name: varlibcontainers
emptyDir: {}
# This file bundles the builds for the rekor test image .
# If any changes are made to this file, it must be pushed to Quay using the following command:
# 'tkn bundle push quay.io/securesign/rekor-build-test-image:latest -f .tekton/rekor-build-test-image.yaml'.
Loading

0 comments on commit 52c6e63

Please sign in to comment.