docs: improve the docstring of ArtifactPipelineCheck

behnazh-w · behnazh-w · commit e592c5d500b5 · 2024-10-29T15:25:41.000+10:00
Signed-off-by: behnazh-w &lt;behnaz.hassanshahi@oracle.com&gt;
diff --git a/src/macaron/slsa_analyzer/checks/infer_artifact_pipeline_check.py b/src/macaron/slsa_analyzer/checks/infer_artifact_pipeline_check.py
@@ -68,8 +68,12 @@ class ArtifactPipelineFacts(CheckFacts):
 class ArtifactPipelineCheck(BaseCheck):
     """This check detects a pipeline from which an artifact is published.
 
+    This check depends on the deploy command identified by the ``mcn_build_as_code_1 check``.
+    If a deploy command is detected, this check will attempt to locate a successful CI
+    pipeline that triggered the step containing the deploy command.
+
     When a verifiable provenance is found for an artifact, we use it to obtain the pipeline trigger.
-    Otherwise, we use heuristics to check whether a CI workflow run has automatically published the artifact.
+    Otherwise, we use heuristics to find the triggering pipeline.
 
     We use several heuristics in this check for inference:
 
