tektoncd
Make grafeas notehint configurable and change the BuildType field
- Add new configmap field -
storage.grafeas.notehintto allow customization for the hint field configurable in grafeas ATTESTATION Note - Change the
BuildTypefield in the intoto attestation to the GroupVersionKind of the run object i.e.tekton.dev/v1beta1/kind=TaskRun - This commit also cleans up the testing code.
Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all
The following is the coverage report on the affected files.
Say /test pull-tekton-chains-go-coverage to re-run this coverage report
| File | Old Coverage | New Coverage | Delta |
|---|---|---|---|
| pkg/chains/storage/grafeas/grafeas.go | 78.1% | 77.5% | -0.6 |
Offline discussed with @wlynch.
We decided to just allow the hint field in grafeas note to be configurable.
- The
buildTypein the slsa predicate of intoto attestation will be set to run object's groupversion kind. - The
builderVersionin the grafeas build note will be set to an annotation field of the run object that will be added in pipeline. See https://github.com/tektoncd/pipeline/issues/5303 for more information.
Looks good! Last thing is we should add a release-notes section to the PR (since I think the release tool will pick up on this) with the user facing changes.
Looks good! Last thing is we should add a release-notes section to the PR (since I think the release tool will pick up on this) with the user facing changes.
SG! Added!
[APPROVALNOTIFIER] This PR is APPROVED
This pull-request has been approved by: wlynch
The full list of commands accepted by this bot can be found here.
The pull request process is described here
- ~~OWNERS~~ [wlynch]
Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment