---
apiVersion: tekton.dev/v1beta1
kind: Task
metadata:
  name: syft
  labels:
    app.kubernetes.io/version: "0.1"
  annotations:
    tekton.dev/pipelines.minVersion: "0.12.1"
    tekton.dev/categories: Security
    tekton.dev/tags: CLI, syft
    tekton.dev/displayName: syft
    tekton.dev/platforms: "linux/amd64,linux/arm64,linux/ppc64le,linux/390x"
spec:
  description: >-
   CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  workspaces:
    - name: source-dir
      optional: true
  params:
    - name: ARGS
      description: The Arguments to be passed to Syft command.
      type: array
    - name: SYFT_IMAGE
      default: docker.io/anchore/syft@sha256:dd40bc09ff2bf3b860c399e7cf5c2db088e84c85937ac05fdeca3cd88fe2a728  # v0.85.0
      description: Syft image to be used
      type: string
  steps:
    - name: syft
      image: $(params.SYFT_IMAGE)
      workingDir: $(workspaces.source-dir.path)
      args:
        - "$(params.ARGS)"