Konflux EC testing failures due to new sast tasks

[michael-valdron]

/kind bug

Which area is this bug related to?

/area ci
/area registry
/area landing-page
/area registry-viewer

Bug Summary

Describe the bug:

EC testing is currently failing in devfile/registry and devfile/devfile-web due to missing new sast tasks, see KFLUXSPRT-2609. As a result, all new PRs include Konflux patch PRs will not pass testing.

To Reproduce:

Open a PR under devfile/registry or devfile/devfile-web.

Expected behavior

EC testing should pass.

Any logs, error output, screenshots etc? Provide the devfile that sees this bug, if applicable

Results:
✕ [Violation] tasks.required_tasks_found
  ImageRef: quay.io/redhat-user-workloads/devfiles-tenant/registry-viewer-main@sha256:561496f25cbb8b7650ea77bff9fed5eee6e4cefb529bcd83c023f4851fe4d838
  Reason: One of "sast-unicode-check", "sast-unicode-check-oci-ta" tasks is missing
  Title: All required tasks were included in the pipeline
  Description: Ensure that the set of required tasks are included in the PipelineRun attestation. To exclude this rule add one or
  more of "tasks.required_tasks_found:sast-unicode-check", "tasks.required_tasks_found:sast-unicode-check-oci-ta" to the `exclude`
  section of the policy configuration.
  Solution: Make sure all required tasks are in the build pipeline. The required task list is contained as
  xref:ec-cli:ROOT:configuration.adoc#_data_sources[data] under the key 'required-tasks'.

Additional context

Any workaround?

None.

Suggestion on how to fix the bug

Apply fix mentioned under https://gitlab.cee.redhat.com/konflux/docs/sop/-/blob/main/conforma/new-sast-tasks-mar25.md.

[thepetk]

Opened two PRs, one in registry and one in web to unblock the rest of PRs.