feat: implement shared cache for bundle, git, and cluster resolvers

[twoGiants]

Changes

This PR takes the state of PR #8825, starting from commit f817655 (actually 087c5a5 but the first is the big important one) and adds the re-work from the second review of @twoGiants on top of it.

All resolved comments are marked with a 👍 and a "resolved" comment.

What is left to do?

• add back in InitializeFromConfigMap and implement functionality => maybe in Resolver.Initialize
  • => comment from Vincent
• add comment which test case covers cache misses implicitly: pkg/remoteresolution/resolver/cluster/resolver_test.go:TestResolve
• encapsulate annotated resource => package scope
• fix e2e tests
• merge cache, cache/injection, framework/cache packages into => framework/cache/**
• add/fix unit tests
• resolve all of your TODO comments
• implement config watching for cache

Submitter Checklist

As the author of this PR, please check off the items in this checklist:

• Has Docs if any changes are user facing, including updates to minimum requirements e.g. Kubernetes version bumps
• Has Tests included if any functionality added or changed
• pre-commit Passed
• Follows the commit message standard
• Meets the Tekton contributor standards (including functionality, content, code)
• Has a kind label. You can add one by adding a comment on this PR that contains /kind <type>. Valid types are bug, cleanup, design, documentation, feature, flake, misc, question, tep
• Release notes block below has been updated with any user facing changes (API changes, bug fixes, changes requiring upgrade notices or deprecation warnings). See some examples of good release notes.
• Release notes contains the string "action required" if the change requires additional action from users switching to the new release

Release Notes

## Resolver Caching for Bundle, Git, and Cluster Resolvers
Support caching for bundle, git, and cluster resolvers, reducing redundant fetches and improving pipeline performance.

**Key Features:**
- **Automatic caching** for immutable references (digest-based bundles, git SHAs)
- **Three cache modes**: `always` (cache everything), `never` (disable caching),`auto` (cache only immutable references - default)
- **Configurable via ConfigMap**: Set cache size and TTL without restarting controllers
- **Per-task override**: Tasks can override global cache settings using the `cache` parameter
- **Observability**: Cache hits/misses and timestamps added to resource annotations

**Configuration:**
Control cache behavior via the `resolver-cache-config` ConfigMap with `max-size` (default: 1000) and `ttl` (default: 5m). Cache mode can be set globally in resolver ConfigMaps or per-task.

apiVersion: v1
kind: ConfigMap
metadata:
  name: resolver-cache-config
data:
  max-size: "1000"  # Maximum cache entries (default: 1000)
  ttl: "5m"         # Cache entry lifetime (default: 5m)

Set cache mode in resolver ConfigMaps (bundleresolver-config, git-resolver-config, cluster-resolver-config):

data:
  cache: "auto"  # Options: always, never, auto (default: auto)

Override cache behavior per-task using the cache parameter:

params:
  - name: cache
    value: "always"  # Force caching for this task

Cache annotations are added to resolved resources for observability.

This helps reduce external API calls, improves pipeline exec speed, and provides better resilience during remote resource resolution.

[linux-foundation-easycla]

The committers listed above are authorized under a signed CLA.

• ✅ login: waveywaves / name: Vibhav Bobade (1221ec3, 170f0a5, 401f09f, 76c2515, 9396379, 999fc78, bc192ae, ded85a8, e4f1f37)

[tekton-robot]

The following is the coverage report on the affected files.
Say /test pull-tekton-pipeline-go-coverage-df to re-run this coverage report

File	Old Coverage	New Coverage	Delta
pkg/remoteresolution/cache/injection/cache.go	Do not exist	0.0%
pkg/remoteresolution/resolver/framework/cache.go	Do not exist	0.0%
pkg/remoteresolution/resolver/framework/reconciler.go	75.3%	73.8%	-1.6
pkg/remoteresolution/resolver/http/resolver.go	88.9%	100.0%	11.1
pkg/resolution/resolver/bundle/bundle.go	71.1%	71.4%	0.4
pkg/resolution/resolver/bundle/params.go	87.9%	86.1%	-1.8
pkg/resolution/resolver/cluster/resolver.go	80.4%	79.9%	-0.6
pkg/resolution/resolver/git/resolver.go	84.9%	84.3%	-0.6

[waveywaves]

@twoGiants I have been updating the original PR

[waveywaves]

I will contribute here instead

[waveywaves]

/retest

[waveywaves]

/retest

[waveywaves]

/retest

[vdemeester]

Looking good, still some questions/comments and todos

• There is still some TODOs (the DEPRECATED functions in pkg/remoteresolution/cache package)
• I am not a huge fan of loading the configmap when we start and not do anything else. I would prefer if we do the same as we do for the other configmap, we watch it from the controller, and we adapt from changes.
  • As it is today, if you change the configuration for cache, you need to restart the deployment of resolvers
  • If someone wants to enable cache on a running instance, same then, a manual intervention is needed

[vdemeester]

Quick note : as of today, a full git SHA is SHA-1, but tomorrow (git v3), it would/could but SHA-256, so we could try to take this case into account today already ? (or create a follow-up issue)

[twoGiants]

@waveywaves ☝️ 😸

[vdemeester]

I think we are good. There might be a few nits that we can do in a follow-up.
We will also need to stash some commits a bit, there is too much right now 🙃

[tekton-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: vdemeester

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [vdemeester]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[waveywaves]

/retest

[waveywaves]

/retest

[waveywaves]

/retest

[vdemeester]

/lgtm

[twoGiants]

This didn't change anything but make the cacheConfig and its properties public. @waveywaves