Add builtin func for tag-based artifact discovery

Implement ec.oci.image_tag_refs() builtin to discover artifacts
attached to images using legacy cosign tag conventions
(.sig, .att, .sbom suffixes).

This enables policy rules to locate and validate tag-based signatures,
attestations, and SBOMs alongside the newer OCI Referrers API approach.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

Ref: https://issues.redhat.com/browse/EC-1655

Author: st3penta

acceptance/examples/image_tag_refs.rego

@@ -0,0 +1,75 @@
+package tag_refs
+
+import rego.v1
+
+# METADATA
+# custom:
+#   short_name: count
+deny contains result if {
+	refs := ec.oci.image_tag_refs(input.image.ref)
+	count(refs) != 2
+	result := {
+		"code": "tag_refs.count",
+		"msg": sprintf("Expected 2 tag-based artifact references, got %d: %v", [count(refs), refs]),
+	}
+}
+
+# METADATA
+# custom:
+#   short_name: format
+deny contains result if {
+	refs := ec.oci.image_tag_refs(input.image.ref)
+	not all_refs_valid_format(refs)
+	result := {
+		"code": "tag_refs.format",
+		"msg": sprintf("Invalid tag reference format in: %v", [refs]),
+	}
+}
+
+# METADATA
+# custom:
+#   short_name: sig_count
+deny contains result if {
+	refs := ec.oci.image_tag_refs(input.image.ref)
+	sig_count := count([ref | some ref in refs; contains(ref, ".sig")])
+	sig_count != 1
+	result := {
+		"code": "tag_refs.sig_count",
+		"msg": sprintf("Expected 1 .sig reference, got %d", [sig_count]),
+	}
+}
+
+# METADATA
+# custom:
+#   short_name: att_count
+deny contains result if {
+	refs := ec.oci.image_tag_refs(input.image.ref)
+	att_count := count([ref | some ref in refs; contains(ref, ".att")])
+	att_count != 1
+	result := {
+		"code": "tag_refs.att_count",
+		"msg": sprintf("Expected 1 .att reference, got %d", [att_count]),
+	}
+}
+
+all_refs_valid_format(refs) if {
+	every ref in refs {
+		# Each ref should be a valid OCI reference with tag format: registry/repo:sha256-<hex>.<suffix>
+		contains(ref, ":")
+		contains(ref, "sha256-")
+		# Split by : and get the last part (the tag)
+		parts := split(ref, ":")
+		tag_part := parts[count(parts) - 1]
+		# Tag should start with sha256- and end with .sig or .att
+		startswith(tag_part, "sha256-")
+		valid_suffix(tag_part)
+	}
+}
+
+valid_suffix(tag) if {
+	endswith(tag, ".sig")
+}
+
+valid_suffix(tag) if {
+	endswith(tag, ".att")
+}

docs/modules/ROOT/pages/ec_oci_image_tag_refs.adoc

@@ -0,0 +1,15 @@
+= ec.oci.image_tag_refs
+
+Discover artifacts attached to an image via legacy tag-based discovery (cosign .sig, .att, .sbom suffixes).
+
+== Usage
+
+  refs = ec.oci.image_tag_refs(ref: string)
+
+== Parameters
+
+* `ref` (`string`): OCI image reference
+
+== Return
+
+`refs` (`array<string>`): list of tag-based artifact references

docs/modules/ROOT/pages/rego_builtins.adoc

@@ -22,6 +22,8 @@ information.
 |Fetch an Image Manifest from an OCI registry.
 |xref:ec_oci_image_manifests.adoc[ec.oci.image_manifests]
 |Fetch Image Manifests from an OCI registry in parallel.
+|xref:ec_oci_image_tag_refs.adoc[ec.oci.image_tag_refs]
+|Discover artifacts attached to an image via legacy tag-based discovery (cosign .sig, .att, .sbom suffixes).
 |xref:ec_purl_is_valid.adoc[ec.purl.is_valid]
 |Determine whether or not a given PURL is valid.
 |xref:ec_purl_parse.adoc[ec.purl.parse]

docs/modules/ROOT/partials/rego_nav.adoc

@@ -6,6 +6,7 @@
 ** xref:ec_oci_image_index.adoc[ec.oci.image_index]
 ** xref:ec_oci_image_manifest.adoc[ec.oci.image_manifest]
 ** xref:ec_oci_image_manifests.adoc[ec.oci.image_manifests]
+** xref:ec_oci_image_tag_refs.adoc[ec.oci.image_tag_refs]
 ** xref:ec_purl_is_valid.adoc[ec.purl.is_valid]
 ** xref:ec_purl_parse.adoc[ec.purl.parse]
 ** xref:ec_sigstore_verify_attestation.adoc[ec.sigstore.verify_attestation]

features/__snapshots__/validate_image.snap

@@ -5593,3 +5593,98 @@ Error: success criteria not met
 [happy day with skip-image-sig-check flag:stderr - 1]
 
 ---
+
+[discover tag-based artifact references:stdout - 1]
+{
+  "success": true,
+  "components": [
+    {
+      "name": "Unnamed",
+      "containerImage": "${REGISTRY}/acceptance/image-tag-refs@sha256:${REGISTRY_acceptance/image-tag-refs:latest_DIGEST}",
+      "source": {},
+      "successes": [
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "builtin.attestation.signature_check"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "builtin.attestation.syntax_check"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "builtin.image.signature_check"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "tag_refs.att_count"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "tag_refs.count"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "tag_refs.format"
+          }
+        },
+        {
+          "msg": "Pass",
+          "metadata": {
+            "code": "tag_refs.sig_count"
+          }
+        }
+      ],
+      "success": true,
+      "signatures": [
+        {
+          "keyid": "",
+          "sig": "${IMAGE_SIGNATURE_acceptance/image-tag-refs}"
+        }
+      ],
+      "attestations": [
+        {
+          "type": "https://in-toto.io/Statement/v0.1",
+          "predicateType": "https://slsa.dev/provenance/v0.2",
+          "predicateBuildType": "https://tekton.dev/attestations/chains/pipelinerun@v2",
+          "signatures": [
+            {
+              "keyid": "",
+              "sig": "${ATTESTATION_SIGNATURE_acceptance/image-tag-refs}"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "key": "${known_PUBLIC_KEY_JSON}",
+  "policy": {
+    "sources": [
+      {
+        "policy": [
+          "git::${GITHOST}/git/image-tag-refs-policy?ref=${LATEST_COMMIT}"
+        ]
+      }
+    ],
+    "rekorUrl": "${REKOR}",
+    "publicKey": "${known_PUBLIC_KEY}"
+  },
+  "ec-version": "${EC_VERSION}",
+  "effective-time": "${TIMESTAMP}"
+}
+---
+
+[discover tag-based artifact references:stderr - 1]
+
+---

features/validate_image.feature

@@ -1151,6 +1151,29 @@ Feature: evaluate enterprise contract
     Then the exit status should be 0
     Then the output should match the snapshot
 
+  Scenario: discover tag-based artifact references
+    Given a key pair named "known"
+    Given an image named "acceptance/image-tag-refs"
+    Given a valid image signature of "acceptance/image-tag-refs" image signed by the "known" key
+    Given a valid attestation of "acceptance/image-tag-refs" signed by the "known" key
+    Given a git repository named "image-tag-refs-policy" with
+      | main.rego | examples/image_tag_refs.rego |
+    Given policy configuration named "ec-policy" with specification
+      """
+      {
+        "sources": [
+          {
+            "policy": [
+              "git::https://${GITHOST}/git/image-tag-refs-policy"
+            ]
+          }
+        ]
+      }
+      """
+    When ec command is run with "validate image --image ${REGISTRY}/acceptance/image-tag-refs --policy acceptance/ec-policy --public-key ${known_PUBLIC_KEY} --rekor-url ${REKOR} --show-successes --output json"
+    Then the exit status should be 0
+    Then the output should match the snapshot
+
   Scenario: tracing and debug logging
     Given a key pair named "trace_debug"
       And an image named "acceptance/trace-debug"