What does this fork signal mean?

Groq forked groq/siderolabs-extensions (forked from siderolabs/extensions). This fork signal points to upstream code the lab may be inspecting, patching, or building on. High-signal details: repo groq/siderolabs-extensions · parent siderolabs/extensions · Routine fork of extensions repo. onlylabs links this event to 1 captured evidence page and 6 related fork signals.

Groq Fork: groq/siderolabs-extensions

Captured source

source ↗

GitHub/github.com/groq/siderolabs-extensions

groq/siderolabs-extensions repository metadata

Source ↗

published Oct 18, 2024seen 5dcaptured 9hhttp 200method plain

groq/siderolabs-extensions

Language: Makefile

License: MPL-2.0

Stars: 0

Forks: 0

Open issues: 2

Created: 2024-10-18T20:02:16Z

Pushed: 2026-03-31T16:18:57Z

Default branch: main

Fork: yes

Parent repository: siderolabs/extensions

Archived: no

README:

Talos Linux System Extensions

This repo serves as a central place for publishing supported extensions to Talos Linux. Extensions allow for additional functionality on top of the default Talos Linux capabilities. Things like gVisor, GPU support, etc. are good candidates for extensions.

Using Extensions

Extensions in this repo are published as container images. These images can be added to the the Talos Linux boot asset to produce a final boot asset containing a base Talos initramfs and a set of system extensions appended to it.

The extension image is composed of a manifest.yaml file that provides information and compatibility information, as well as a rootfs that contains things like compiled binaries that are bind mounted into the system.

Installing Extensions

In order to find a container reference for a system extension compatible with your Talos Linux version, you can use the following command:

crane export ghcr.io/siderolabs/extensions:v | tar x -O image-digests | grep

For example, to find a compatible version of the gasket-driver extension for Talos v1.5.3, you can run:

$ crane export ghcr.io/siderolabs/extensions:v1.5.3 | tar x -O image-digests | grep gasket-driver
ghcr.io/siderolabs/gasket-driver:97aeba58-v1.5.3@sha256:c786edb356edae3b451cb82d5322f94e54ea0710195181b93ae37ccc8e7ba908

Please always use the pinned digest when referencing an extension image.

All extensions are signed with Google Accounts OIDC issuer matching @siderolabs.com domain, so the image signatures can be verified, for example:

cosign verify --certificate-identity-regexp '@siderolabs\.com$' --certificate-oidc-issuer https://accounts.google.com ghcr.io/siderolabs/extensions:v1.5.3
cosign verify --certificate-identity-regexp '@siderolabs\.com$' --certificate-oidc-issuer https://accounts.google.com ghcr.io/siderolabs/gasket-driver:97aeba58-v1.5.3@sha256:c786edb356edae3b451cb82d5322f94e54ea0710195181b93ae37ccc8e7ba908

Extension Catalog

Container Runtimes

| Name | Image | Description | Version Format | | -------------------------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------- | ------------------ | | [crun](container-runtime/crun/) | ghcr.io/siderolabs/crun | crun container runtime | upstream version | | [gvisor](container-runtime/gvisor/) | ghcr.io/siderolabs/gvisor | gVisor container runtime | upstream version | | [stargz-snapshotter](container-runtime/stargz-snapshotter/) | ghcr.io/siderolabs/stargz-snapshotter | Stargz Snapshotter container runtime | upstream version | | [ecr-credential-provider](container-runtime/ecr-credential-provider) | ghcr.io/siderolabs/ecr-credential-provider | ECR Credential Provider kubelet plugin | upstream version | | [wasmedge](container-runtime/wasmedge) | ghcr.io/siderolabs/wasmedge | WasmEdge container runtime | upstream_version | | [spin](container-runtime/spin) | ghcr.io/siderolabs/spin | Spin container runtime | upstream_version | | [kata-containers](container-runtime/kata-containers) | ghcr.io/siderolabs/kata-containers | Kata Containers container runtime | upstream version |

Firmware

| Name | Image | Description | Version Format | | -------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------- | --------------------------- | ------------------------ | | [amd-ucode](firmware/amd-ucode/) | ghcr.io/siderolabs/amd-ucode | AMD CPU microcode updates | linux firmware version | | [amdgpu-firmware](firmware/amdgpu-firmware/) | ghcr.io/siderolabs/amdgpu-firmware | AMD GPU firmware | linux firmware version | | [bnx2-bnx2x](firmware/bnx2-bnx2x/) | ghcr.io/siderolabs/bnx2-bnx2x | Broadcom NetXtreme firmware | linux firmware version | | [chelsio-firmware](firmware/chelsio-firmware/) | ghcr.io/siderolabs/chelsio-firmware | Chelsio NIC firmware | linux firmware version | | [i915-ucode](firmware/i915-ucode/) | ghcr.io/siderolabs/i915-ucode | Intel GPU firmware | linux firmware version | | [intel-ice-firmware](firmware/intel-ice-firmware/) | ghcr.io/siderolabs/intel-ice-firmware | Intel ICE NIC firmware | linux firmware version | | [intel-ucode](firmware/intel-ucode/) | ghcr.io/siderolabs/intel-ucode | Intel CPU microcode updates | upstream version | | [qlogic-firmware](firmware/qlogic-firmware/) |…

Excerpt shown — open the source for the full document.

Notability

notability 2.0/10

Routine fork of extensions repo