diff --git a/.tekton/rh-trex-pull-request.yaml b/.tekton/rh-trex-pull-request.yaml
index 3f8738e2..8823adc0 100644
--- a/.tekton/rh-trex-pull-request.yaml
+++ b/.tekton/rh-trex-pull-request.yaml
@@ -381,6 +381,23 @@ spec:
         operator: in
         values:
         - "false"
+    - name: rpms-signature-scan
+      params:
+      - name: image-url
+        value: $(tasks.build-container.results.IMAGE_URL)
+      - name: image-digest
+        value: $(tasks.build-container.results.IMAGE_DIGEST)
+      - name: fail-unsigned
+        value: true
+      taskRef:
+        params:
+          - name: name
+            value: rpms-signature-scan
+          - name: bundle
+            value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.1@sha256:8e3515fdc0bbc0bcac994482a2396a8cd23e6a6fa9efaf3ec715ee312a376777
+          - name: kind
+            value: task
+        resolver: bundles
     workspaces:
     - name: workspace
     - name: git-auth
diff --git a/.tekton/rh-trex-push.yaml b/.tekton/rh-trex-push.yaml
index 8d490eac..e0a52411 100644
--- a/.tekton/rh-trex-push.yaml
+++ b/.tekton/rh-trex-push.yaml
@@ -378,6 +378,23 @@ spec:
         operator: in
         values:
         - "false"
+    - name: rpms-signature-scan
+      params:
+      - name: image-url
+        value: $(tasks.build-container.results.IMAGE_URL)
+      - name: image-digest
+        value: $(tasks.build-container.results.IMAGE_DIGEST)
+      - name: fail-unsigned
+        value: true
+      taskRef:
+        params:
+          - name: name
+            value: rpms-signature-scan
+          - name: bundle
+            value: quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan:0.1@sha256:8e3515fdc0bbc0bcac994482a2396a8cd23e6a6fa9efaf3ec715ee312a376777
+          - name: kind
+            value: task
+        resolver: bundles
     workspaces:
     - name: workspace
     - name: git-auth