From 1add3decfe815bf29ab5abdf0e07bd2b62049983 Mon Sep 17 00:00:00 2001
From: Priya Wadhwa <priyawadhwa@google.com>
Date: Mon, 27 Sep 2021 14:23:32 -0700
Subject: [PATCH] Make sure images stored in registry mirrors are signed

We were't previously signing these images because we weren't storing them in the `IMAGES` result when releaseAsLatest=true.

Since releaseAsLatest=true by default for releases, these images were never getting signed.

This change includes mirror images in the result, so they should be picked up by Chains and signed from now on.
---
 tekton/publish.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tekton/publish.yaml b/tekton/publish.yaml
index b6d939d869f..52b3ccd8436 100644
--- a/tekton/publish.yaml
+++ b/tekton/publish.yaml
@@ -201,7 +201,7 @@ spec:
           else
             TAG="$(params.versionTag)"
             crane cp ${IMAGE_WITH_SHA} ${REGION}.${IMAGE_WITHOUT_SHA_AND_TAG}:$TAG
-            echo ${REGION}.$IMAGE_WITH_SHA, >> $(results.IMAGES.path)
           fi
+          echo ${REGION}.$IMAGE_WITH_SHA, >> $(results.IMAGES.path)
         done
       done