From 545000837dfba0571e0308178e3e3462c2fe0052 Mon Sep 17 00:00:00 2001
From: Sam Doran <sdoran@redhat.com>
Date: Mon, 4 Nov 2024 14:51:51 -0500
Subject: [PATCH] Add rpms-signature-scan task (#144)

---
 .tekton/pipeline-build.yaml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/.tekton/pipeline-build.yaml b/.tekton/pipeline-build.yaml
index 40136ca..461df63 100644
--- a/.tekton/pipeline-build.yaml
+++ b/.tekton/pipeline-build.yaml
@@ -485,6 +485,27 @@ spec:
           - name: kind
             value: task
 
+    - name: rpms-signature-scan
+      params:
+        - name: image-digest
+          value: $(tasks.build-container.results.IMAGE_DIGEST)
+
+        - name: image-url
+          value: $(tasks.build-container.results.IMAGE_URL)
+      runAfter:
+        - build-container
+      taskRef:
+        resolver: bundles
+        params:
+          - name: name
+            value: rpms-signature-scan
+
+          - name: bundle
+            value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2@sha256:b627a8040f900bf359b50bfb5201907f73712ae5949270d57ea30cff11df078c
+
+          - name: kind
+            value: task
+
   finally:
     - name: show-sbom
       params: