Proposal (incomplete):
Mess with the containers that the tekton task creates, as a user:
- try to exec into them
- try to run custom commands in them
- try to expose secrets/env variables
- Try to trigger a build for another user/tool
- Try to deny service for other users