From c460cca7c8f595f139457c1587c3cd3edf63a819 Mon Sep 17 00:00:00 2001 From: ghartuv Date: Wed, 10 Dec 2025 14:22:36 +0200 Subject: [PATCH] Add trusted task rule data to allow konflux-ci/tekton-catalog Add a new rule data file `data/trusted_task_rules.yaml` with an allow rule that trusts all tasks from oci://quay.io/konflux-ci/tekton-catalog/ Ref: https://issues.redhat.com/browse/EC-1539 Assisted-by: Cursor (using claude-4.5-sonnet) --- data/trusted_task_rules.yaml | 4 ++++ 1 file changed, 4 insertions(+) create mode 100644 data/trusted_task_rules.yaml diff --git a/data/trusted_task_rules.yaml b/data/trusted_task_rules.yaml new file mode 100644 index 0000000..0265a3b --- /dev/null +++ b/data/trusted_task_rules.yaml @@ -0,0 +1,4 @@ +trusted_task_rules: + allow: + - name: Implicitly trust all tasks from konflux-ci/tekton-catalog + pattern: oci://quay.io/konflux-ci/tekton-catalog/*