feat: mock in-toto attestations query

Signed-off-by: felipecruz91 <[email protected]>

policy/policy_handler/legacy/builder.go

@@ -17,6 +17,10 @@ func BuildLocalEvalMocks(sb *types.SBOM) map[edn.Keyword]edn.RawMessage {
 		m[GetUserQueryName], _ = edn.Marshal(MockGetUserForLocalEval(sb.Source.Image.Config.Config.User))
 	}
 
+	if sb.Source.Provenance != nil {
+		m[GetInTotoAttestationsQueryName], _ = edn.Marshal(MockGetInTotoAttestationsForLocalEval(sb))
+	}
+
 	return m
 }
 

policy/policy_handler/legacy/ssc_metadata.go

@@ -0,0 +1,25 @@
+package legacy
+
+import "github.com/atomist-skills/go-skill/policy/types"
+
+const (
+	GetInTotoAttestationsQueryName = "get-intoto-attestations"
+)
+
+type ImageAttestationQueryResult struct {
+	Digest   *string   `edn:"docker.image/digest"`
+	Subjects []Subject `edn:"intoto.attestation/_subject"`
+}
+
+type Subject struct {
+	PredicateType *string     `edn:"intoto.predicate/type"`
+	Predicates    []Predicate `edn:"intoto.predicate/_attestation"`
+}
+
+type Predicate struct {
+	StartLine *int `edn:"slsa.provenance.from/start-line"` // if field is present then provenance is max-mode
+}
+
+func MockGetInTotoAttestationsForLocalEval(sb *types.SBOM) ImageAttestationQueryResult {
+	return ImageAttestationQueryResult{} // incompatible with local evaluation until SBOM includes the raw attestations
+}