From 92f0349440a8d7b2358b298156710480b7fc619d Mon Sep 17 00:00:00 2001
From: Adam Cmiel <acmiel@redhat.com>
Date: Wed, 28 Feb 2024 10:57:19 +0100
Subject: [PATCH] task/rpm-ostree: respect user config for Syft

See the corresponding commit for the buildah task

Note that rpm-ostree does not currently support hermetic builds, which
makes the tradeoffs (allowing the user to cause false negatives) more
severe. Support for hermetic builds should eventually be added though,
so this concern is temporary.

Signed-off-by: Adam Cmiel <acmiel@redhat.com>
---
 task/rpm-ostree/0.1/rpm-ostree.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/task/rpm-ostree/0.1/rpm-ostree.yaml b/task/rpm-ostree/0.1/rpm-ostree.yaml
index 5d3eaff645..1e11afaf31 100644
--- a/task/rpm-ostree/0.1/rpm-ostree.yaml
+++ b/task/rpm-ostree/0.1/rpm-ostree.yaml
@@ -156,6 +156,9 @@ spec:
         memory: 6Gi
       requests:
         memory: 6Gi
+    # Respect Syft configuration if the user has it in the root of their repository
+    # (need to set the workdir, see https://github.com/anchore/syft/issues/2465)
+    workingDir: $(workspaces.source.path)/source
     script: |
       syft oci-dir:/var/lib/containers/rhtap-final-image --output cyclonedx-json=$(workspaces.source.path)/sbom-cyclonedx.json
     volumeMounts: