Expected Behavior
According to SLSA, the buildType should be a type URI for how to interpret the provenance: https://slsa.dev/spec/v1.2/build-provenance#builddefinition
In a SLSA provenance predicate that I have, I see the following buildType
"predicateType": "https://slsa.dev/provenance/v1",
"predicate": {
"buildDefinition": {
"buildType": "https://tekton.dev/chains/v2/slsa",Unfortunately, https://tekton.dev/chains/v2/slsa reports a "Not Found" error.
Should the buildType be changed to an actual resolvable address or can we put a proper URI specification at that address?
Actual Behavior
The Type URI resolves to how to interpret the provenance
Output of kubectl version:
Expected Behavior
According to SLSA, the buildType should be a type URI for how to interpret the provenance: https://slsa.dev/spec/v1.2/build-provenance#builddefinition
In a SLSA provenance predicate that I have, I see the following buildType
Unfortunately, https://tekton.dev/chains/v2/slsa reports a "Not Found" error.
Should the buildType be changed to an actual resolvable address or can we put a proper URI specification at that address?
Actual Behavior
The Type URI resolves to how to interpret the provenance
Output of
kubectl version:Tekton Pipeline version:
Output of
tkn versionorkubectl get pods -n tekton-pipelines -l app=tekton-pipelines-controller -o=jsonpath='{.items[0].metadata.labels.version}'