Hermetic task Package
This package verifies that all the tasks in the attestation that are required to be hermetic were invoked with the proper parameters to perform a hermetic execution.
Rules Included
Task called with hermetic param set
Verify the task in the PipelineRun attestation was invoked with the proper parameters to make the task execution hermetic.
Solution: Make sure the task has the input parameter 'HERMETIC' set to 'true'.
-
Rule type: FAILURE
-
FAILURE message:
Task '%s' was not invoked with the hermetic parameter set -
Code:
hermetic_task.hermetic
proxy_enabled_purl_types format
Confirm the proxy_enabled_purl_types and allowed_proxy_url_patterns rule data match the expected format.
-
Rule type: FAILURE
-
FAILURE message:
%s -
Code:
hermetic_task.proxy_rule_data_format