From 527a7152a40d2975849fe24924f368590e2fc6a1 Mon Sep 17 00:00:00 2001
From: cmoulliard <cmoulliard@redhat.com>
Date: Wed, 27 Nov 2024 10:45:46 +0100
Subject: [PATCH] Added new tasks: apply-tags, push-dockerfile &
 rpms-signature-scan

Signed-off-by: cmoulliard <cmoulliard@redhat.com>
---
 .../konflux-default-pipeline.yaml             | 28 +++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/src/main/resources/dev/snowdrop/configuration/konflux-default-pipeline.yaml b/src/main/resources/dev/snowdrop/configuration/konflux-default-pipeline.yaml
index 51cb461..8a2d38b 100644
--- a/src/main/resources/dev/snowdrop/configuration/konflux-default-pipeline.yaml
+++ b/src/main/resources/dev/snowdrop/configuration/konflux-default-pipeline.yaml
@@ -195,6 +195,34 @@ job:
         - image-url: "$(tasks.build-container.results.IMAGE_URL)"
       ref: bundle://quay.io/konflux-ci/tekton-catalog/task-clamav-scan:0.1
 
+    - name: apply-tags
+      runAfter:
+        - build-image-index
+      params:
+        - IMAGE: "$(tasks.build-image-index.results.IMAGE_URL)"
+      ref: bundle://quay.io/konflux-ci/tekton-catalog/task-apply-tags:0.1
+
+    - name: push-dockerfile
+      runAfter:
+        - build-image-index
+      params:
+        - IMAGE: "$(tasks.build-image-index.results.IMAGE_URL)"
+        - IMAGE_DIGEST: "$(tasks.build-image-index.results.IMAGE_DIGEST)"
+        - DOCKERFILE: "$(params.dockerfile)"
+        - CONTEXT: "$(params.path-context)"
+        - SOURCE_ARTIFACT: "$(tasks.prefetch-dependencies.results.SOURCE_ARTIFACT)"
+      ref: bundle://quay.io/konflux-ci/tekton-catalog/task-push-dockerfile-oci-ta:0.1
+
+    - name: rpms-signature-scan
+      runAfter:
+        - build-image-index
+      when:
+        - "$(params.skip-checks): false"
+      params:
+        - image-url: "$(tasks.build-image-index.results.IMAGE_URL)"
+        - image-digest: "$(tasks.build-image-index.results.IMAGE_DIGEST)"
+      ref: bundle://quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.2
+
     # Deprecated since Sep 2024
     # - name: sbom-json-check
     #   runAfter: build-container