You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
feat(HUM-2061): optimize filter-already-released-advisory-rpms for speed and reliability
- Refactor managed and internal filter tasks for large advisory handling
- Add oras authentication and credential setup for OCI artifact access
- Fix argument-too-long errors with large RPM lists using file-based processing
- Optimize purl-to-advisory mapping build performance
- Treat unpublished advisory RPMs as unreleased (correct filtering logic)
- Restore advisory as authoritative source of truth for release state
- Add internal pipeline for filter task orchestration
- Add unit tests for all-released, no-advisories, and partial-release scenarios
- Update CI config and local test runner for filter task test support
Original commits: 0e2e9cf, 518504c, 2136628, ab7b1d9, ac9eb61,
2f02b82, 0feb4cc, d8a9469, 11da144, a2dbcc1, 694d187, 3801a22
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Copy file name to clipboardExpand all lines: pipelines/internal/filter-already-released-advisory-rpms/README.md
+1Lines changed: 1 addition & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,5 +11,6 @@ It returns lists of unreleased RPMs and RPMs found in advisories for digest vali
11
11
| origin | The origin workspace where the release CR comes from | No | - |
12
12
| advisory_secret_name | The name of the secret that contains the advisory GitLab metadata | No | - |
13
13
| internalRequestPipelineRunName | Name of the PipelineRun that requested this pipeline | No | - |
14
+
| ociStorage | The OCI repository to store results artifact | No | - |
14
15
| taskGitUrl | The url to the git repo where the release-service-catalog tasks to be used are stored | Yes |https://github.com/konflux-ci/release-service-catalog.git|
15
16
| taskGitRevision | The revision in the taskGitUrl repo to be used | No | - |
| transformedSnapshot | Base64 string of gzipped JSON array of RPM entries with purls | No | - |
12
+
| origin | The origin workspace for the release CR | No | - |
13
+
| advisory_secret_name | Name of the secret containing advisory GitLab metadata | No | - |
14
+
| internalRequestPipelineRunName | Name of the PipelineRun that requested this task | No | - |
15
+
| ociStorage | The OCI repository to store results artifact | No | - |
16
+
| trusted_artifacts_dockerconfig_json_secret_name | The name of the secret that contains the dockerconfig json for trusted artifact operations | Yes | quay-token-konflux-release-trusted-artifacts-secret |
17
+
| caTrustConfigMapName | The name of the ConfigMap to read CA bundle data from | Yes | trusted-ca |
18
+
| caTrustConfigMapKey | The name of the key in the ConfigMap that contains the CA bundle data | Yes | ca-bundle.crt |
0 commit comments