Hermetic task Package
This package verifies that all the tasks in the attestation that are required to be hermetic were invoked with the proper parameters to perform a hermetic execution.
Rules Included
Task called with hermetic param set
Verify the task in the PipelineRun attestation was invoked with the proper parameters to make the task execution hermetic.
Solution: Make sure the task has the input parameter 'HERMETIC' set to 'true'.
-
Rule type: FAILURE
-
FAILURE message:
Task '%s' was not invoked with the hermetic parameter set -
Code:
hermetic_task.hermetic