From 81e509becfab743b0fa22408a9c57c6db5b9920e Mon Sep 17 00:00:00 2001
From: Maksim Nabokikh <maksim.nabokikh@flant.com>
Date: Mon, 16 Feb 2026 13:48:20 +0100
Subject: [PATCH] Refactor artifact workflow by removing redundant steps

Removed unnecessary steps for extracting OCI tarball and checking images.

Signed-off-by: Maksim Nabokikh <maksim.nabokikh@flant.com>
---
 .github/workflows/artifacts.yaml | 24 ++++--------------------
 1 file changed, 4 insertions(+), 20 deletions(-)

diff --git a/.github/workflows/artifacts.yaml b/.github/workflows/artifacts.yaml
index ca18b946..0b515265 100644
--- a/.github/workflows/artifacts.yaml
+++ b/.github/workflows/artifacts.yaml
@@ -142,33 +142,14 @@ jobs:
         id: image-ref
         run: echo "value=${{ steps.image-name.outputs.value }}@${{ steps.build.outputs.digest }}" >> "$GITHUB_OUTPUT"
 
-      - name: Extract OCI tarball
+      - name: Prepare image fs
         run: |
-          mkdir -p image
-          tar -xf image.tar -C image
-
-      - name: Debug - list extracted OCI files
-        run: |        
-          ls -la image/
-          find image -type f | head -20
-
-      - name: Check Images
-        run: |
-          docker images
           docker load --input image.tar
-          docker images
-          cat image/index.json
-          jq -r '.manifests[0].annotations["org.opencontainers.image.ref.name"]' image/index.json
-
-      - name: Fetch image
-        run: |
-          FIRST_TAG=$(jq -r '.manifests[0].annotations["org.opencontainers.image.ref.name"]' image/index.json)
           docker export $(docker create --rm ${{ steps.image-name.outputs.value }}@${{ steps.build.outputs.digest }}) -o docker-image.tar
 
           mkdir -p docker-image
           tar -xf docker-image.tar -C docker-image
 
-
       # Uncomment the following lines for debugging:
       # - name: Upload image as artifact
       #   uses: actions/upload-artifact@v3
@@ -247,6 +228,9 @@ jobs:
       - name: change permissions for trivy.db
         run: sudo chmod 0644 ./cache/db/trivy.db
 
+      - name: Check Trivy sarif
+        run: cat trivy-results.sarif
+
       - name: Upload Trivy scan results as artifact
         uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
         with: