Loading...

XML

Word

Printable

Type: Task
Resolution: Unresolved
Priority: Critical
Fix Version/s: 1.8.0
Affects Version/s: 1.8.0
Component/s: Build, Dynamic plugins, Marketplace
Labels:
None

Story Points:
5
Epic Link:
Onboard RHDH plugin OCI artifacts to Konflux (1.8)
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Intelligence Requested:
Market:

Sprint:
RHDH COPE 3280, RHDH COPE 3281

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Chatting with Rogue today in thread, we've decided this approach might be best for getting an SBOM which includes nodejs issues but doesn't attempt to report 80 CVE JIRAs for 80 plugins if they all have the same RPM dependencies.

FROM registry.stage.redhat.io/rhdh/plugin-catalog-builder-rhel9:1.8 as builder

# RHIDP-4220 - make Konflux preflight happy (don't run as root)
USER 1001

RUN do the plugin export 
# https://gitlab.cee.redhat.com/rhidp/rhdh-plugin-catalog/-/blob/rhdh-1-rhel-9/build/task/export-plugins.sh?ref_type=heads

FROM scratch
COPY --from=builder /path/to/plugin-to-include ./

Depends on RHIDP-7998

Once the above image is built containing the single plugin, we can then run https://gitlab.cee.redhat.com/rhidp/rhdh-plugin-catalog/-/blob/rhdh-1-rhel-9/build/task/publish-plugins.yaml?ref_type=heads#L60-91 to copy stuff to quay.

is blocked by

RHIDP-7998 Merge RHDH and plugin-catalog gitlab runners + tekton builder image for rhdh-plugin-catalog into a single builder image

In Progress

mentioned on

Merge request - chore(rhdh): add new ECP for pushing to stage for our builder image; not for production!

Merge request - fix pipelines to run export in custom .tekton/*.Containerfile and save only SINGLE .oci file to the scratch layer

Assignee:: Nick Boldt

Reporter:: Nick Boldt

Team:: RHIDP - Cope

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/08/26 2:38 PM

Updated:: 2025/10/16 7:48 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates