Jason Hall

> This is running into the same problem as #514 😭 > > We need Go 1.18 but the CI images are on 1.17. I made a PR to bump...

``` --- FAIL: TestNoDeps (0.59s) --- FAIL: TestNoDeps/github.com/tektoncd/chains/cmd/controller (0.59s) depcheck.go:126: CheckNoDependency() = github.com/tektoncd/chains/cmd/controller depends on banned dependency github.com/golang/glog github.com/tektoncd/chains/cmd/controller github.com/tektoncd/chains/pkg/reconciler/taskrun github.com/tektoncd/chains/pkg/chains github.com/tektoncd/chains/pkg/chains/signing/x509 github.com/sigstore/cosign/cmd/cosign/cli/fulcio # Also: [github.com/sigstore/cosign/cmd/cosign/cli/options github.com/sigstore/cosign/pkg/cosign/git github.com/sigstore/cosign/pkg/cosign/git/github github.com/sigstore/cosign/pkg/cosign/git/gitlab github.com/sigstore/cosign/pkg/cosign/kubernetes...

Today in GCB a build can specify `images` which we'll attempt to push after steps have finished. Since we do the push, we also scrape the digest reported by the...

The error seems to be that the git creds aren't annotated so that creds init can write them to .gitconfig. That's a bug in my open auth PR. Other related...

Some questions/thoughts: * Steps run as init containers in a pod so that Kubernetes will run them in order. I assume there's no affordance for a pre-init container, that runs...

And, a partial list of sidecars we think we might want: 1. Logging sidecar, to slurp logs from steps and send them...somewhere. 1. Provenance sidecar, to run after each step...

In the meantime you can specify a `ContainerSource` which specifies a container to run to fetch and place source into `/workspace`, or anywhere else you want. Longer term, this should...

/lgtm /approve

Kaniko should use [`k8schain`](https://github.com/mattmoor/k8schain) to automatically pick up k8s credentials. It currently [only uses `authn.DefaultKeychain`](https://github.com/GoogleContainerTools/kaniko/blob/31b7cd3732300fed6d7d31ce49b61327a285b60c/pkg/executor/executor.go#L212) to authorize pushes (and base image pulls). /cc @dlorenc @mattmoor

@jchesterpivotal I'm confused, I would expect this to be fixed by https://github.com/GoogleContainerTools/kaniko/pull/243 which has been merged and released AFAIK. What's the error you're seeing?