From 3b5adfaa3916da4b5fd90989983b4698a42f0342 Mon Sep 17 00:00:00 2001
From: Michalis Papadopoullos
 <31603-mpapadop@users.noreply.gitlab.cee.redhat.com>
Date: Wed, 20 May 2026 15:01:50 +0200
Subject: [PATCH 1/2] feat(sast): configure sast-snyk-check task

- simplify konflux task
- org: layered-services
---
 .tekton/multi-arch-build-pipeline.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.tekton/multi-arch-build-pipeline.yaml b/.tekton/multi-arch-build-pipeline.yaml
index 92ee25fa8..2cc993997 100644
--- a/.tekton/multi-arch-build-pipeline.yaml
+++ b/.tekton/multi-arch-build-pipeline.yaml
@@ -256,6 +256,8 @@ spec:
       value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
     - name: TARGET_DIRS
       value: $(params.sast-target-dirs)
+    - name: ARGS
+      value: "--project-name=bpfman --report --org=b6dda4fc-c9ea-48da-ac45-67f75f258e5a"
     runAfter:
     - build-image-index
     taskRef:

From cc450dc1e0e151b1d9639842728328ce8d2d37a5 Mon Sep 17 00:00:00 2001
From: Michalis Papadopoullos
 <31603-mpapadop@users.noreply.gitlab.cee.redhat.com>
Date: Wed, 20 May 2026 21:54:51 +0200
Subject: [PATCH 2/2] feat(sast): configure sast-snyk-check task

- add cachi2/ to ignorePaths
---
 .tekton/multi-arch-build-pipeline.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.tekton/multi-arch-build-pipeline.yaml b/.tekton/multi-arch-build-pipeline.yaml
index 2cc993997..cd538474e 100644
--- a/.tekton/multi-arch-build-pipeline.yaml
+++ b/.tekton/multi-arch-build-pipeline.yaml
@@ -256,6 +256,8 @@ spec:
       value: $(tasks.prefetch-dependencies.results.CACHI2_ARTIFACT)
     - name: TARGET_DIRS
       value: $(params.sast-target-dirs)
+    - name: IGNORE_FILE_PATHS
+      value: "cachi2/"
     - name: ARGS
       value: "--project-name=bpfman --report --org=b6dda4fc-c9ea-48da-ac45-67f75f258e5a"
     runAfter: