feat(dagger): support non-artifact materials (#512)

Signed-off-by: Miguel Martinez Trivino <[email protected]>

Author: migmartri

extras/dagger/README.md

@@ -36,12 +36,24 @@ dagger call -m github.com/chainloop-dev/chainloop/extras/dagger \
 
 ### Add pieces of evidence ([docs](https://docs.chainloop.dev/getting-started/attestation-crafting#adding-materials))
 
+You can attest pieces of evidence by providing its material name and its value, either in the form of a path to a file (`--path`) or a raw value (`--value`).
+
+A path to a file is required for materials derived from artifacts, such as Software Bill Of materials, or any other file-based evidence.
+
 ```sh
+# Provide a material of kind artifact through its path
+dagger call -m github.com/chainloop-dev/chainloop/extras/dagger \
+  --token env:CHAINLOOP_TOKEN attestation-add \
+  --attestation-id $ATTESTATION_ID \
+  --name my-sbom \
+  --path ./path/to/sbom.json
+
+# Or one with a raw value such as a container image reference
 dagger call -m github.com/chainloop-dev/chainloop/extras/dagger \
   --token env:CHAINLOOP_TOKEN attestation-add \
   --attestation-id $ATTESTATION_ID \
-  --name [MATERIAL NAME] \
-  --value [MATERIAL_VALUE]    
+  --name my-container-image \
+  --value ghcr.io/chainloop-dev/chainloop
 ```
 
 ### Sign and push ([docs](https://docs.chainloop.dev/getting-started/attestation-crafting#encode-sign-and-push-attestation))

extras/dagger/main.go

@@ -46,27 +46,47 @@ func (m *Chainloop) AttestationStatus(ctx context.Context, attestationID string)
 		"attestation", "status",
 		"--remote-state",
 		"--attestation-id", attestationID,
+		"--full",
 	}).Stdout(ctx)
 }
 
 // Add a piece of evidence/material to the current attestation
-func (m *Chainloop) AttestationAdd(ctx context.Context, name string, value *File, attestationID string) (string, error) {
-	fileName, err := value.Name(ctx)
-	if err != nil {
-		return "", fmt.Errorf("getting file name: %w", err)
+// The material value can be provided either in the form of a file or as a raw string
+// The file type is required for materials of kind ARTIFACT that are uploaded to the CAS
+func (m *Chainloop) AttestationAdd(
+	ctx context.Context,
+	// material name
+	name string,
+	// path to the file to be added
+	// +optional
+	path *File,
+	// raw value to be added
+	// +optional
+	value string,
+	attestationID string) (string, error) {
+	if value != "" && path != nil {
+		return "", fmt.Errorf("only one of material path or value can be provided")
 	}
 
-	filePath := fmt.Sprintf("/tmp/%s", fileName)
+	c := m.cliImage()
+	// if the value is provided in a file we need to upload it to the container
+	if path != nil {
+		fileName, err := path.Name(ctx)
+		if err != nil {
+			return "", fmt.Errorf("getting file name: %w", err)
+		}
 
-	return m.cliImage().
-		WithFile(filePath, value).
-		WithExec([]string{
-			"attestation", "add",
-			"--remote-state",
-			"--attestation-id", attestationID,
-			"--name", name,
-			"--value", filePath,
-		}).Stderr(ctx)
+		value = fmt.Sprintf("/tmp/%s", fileName)
+		c = c.WithFile(value, path)
+	}
+
+	return c.WithExec([]string{
+		"attestation", "add",
+		"--remote-state",
+		"--attestation-id", attestationID,
+		"--name", name,
+		"--value", value,
+	}).Stderr(ctx)
 }
 
 // Generate, sign and push the attestation to the control plane