Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sigstore not working properly with transparency.enabled: manual #1117

Open
renzodavid9 opened this issue May 10, 2024 · 0 comments
Open

Sigstore not working properly with transparency.enabled: manual #1117

renzodavid9 opened this issue May 10, 2024 · 0 comments
Labels
kind/bug Categorizes issue or PR as related to a bug.

Comments

@renzodavid9
Copy link
Contributor

Expected Behavior

With Pipeline version >= 0.49.0, and transparency.enabled: "manual" configured in Chains, when submitting a TaskRun/PipelineRun that has the chains.tekton.dev/transparency-upload: "true" annotation, Chains should upload the generated data to Rekor and populate the chains.tekton.dev/transparency annotation with the URL where the info is.

Actual Behavior

The chains.tekton.dev/transparency annotation is not added to the TaskRun/PipelineRun.

Steps to Reproduce the Problem

  1. Install a Pipeline version >= v0.49.0 (e.g, kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.55.0/release.yaml)
  2. Install Chains, and configure the feature flag transparency.enabled to manual
  3. Apply the following TaskRun:
apiVersion: tekton.dev/v1
kind: TaskRun
metadata:
  annotations:
    chains.tekton.dev/transparency-upload: "true"
  name: image-task
spec:
  taskSpec:
    steps:
    - image: busybox
      name: "step1"
      script: |
        echo Hello test
  1. After it completes, inspect it, you won't find the chains.tekton.dev/transparency annotation with the URL

Additional Info

  • Kubernetes version: any
  • Tekton Pipeline version: >= v0.49.0

This issue is blocking the upgrade of the Tekton Pipeline version used for the e2e tests.

Related issue in Pipelines: tektoncd/pipeline#7291
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/bug Categorizes issue or PR as related to a bug.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@renzodavid9