diff --git a/Makefile b/Makefile index 6e1a9fb..d0c77dd 100644 --- a/Makefile +++ b/Makefile @@ -1,6 +1,6 @@ # THIS FILE WAS AUTOMATICALLY GENERATED, PLEASE DO NOT EDIT. # -# Generated on 2025-09-03T12:28:03Z by kres 784fa1f. +# Generated on 2025-09-04T16:43:47Z by kres 784fa1f-dirty. # common variables @@ -25,7 +25,7 @@ SOURCE_DATE_EPOCH := $(shell git log $(INITIAL_COMMIT_SHA) --pretty=%ct) # sync bldr image with pkgfile -BLDR_RELEASE := v0.5.2 +BLDR_RELEASE := v0.5.3 BLDR_IMAGE := ghcr.io/siderolabs/bldr:$(BLDR_RELEASE) BLDR := docker run --rm --user $(shell id -u):$(shell id -g) --volume $(PWD):/src --entrypoint=/bldr $(BLDR_IMAGE) --root=/src @@ -36,16 +36,17 @@ PLATFORM ?= linux/amd64,linux/arm64 PROGRESS ?= auto PUSH ?= false CI_ARGS ?= +BUILD_ARGS = --build-arg=SOURCE_DATE_EPOCH=$(SOURCE_DATE_EPOCH) +BUILD_ARGS += --build-arg=TAG="$(TAG)" +BUILD_ARGS += --build-arg=PKGS="$(PKGS)" +BUILD_ARGS += --build-arg=PKGS_PREFIX="$(PKGS_PREFIX)" +BUILD_ARGS += --build-arg=TOOLS="$(TOOLS)" +BUILD_ARGS += --build-arg=TOOLS_PREFIX="$(TOOLS_PREFIX)" COMMON_ARGS = --file=Pkgfile COMMON_ARGS += --provenance=false COMMON_ARGS += --progress=$(PROGRESS) COMMON_ARGS += --platform=$(PLATFORM) -COMMON_ARGS += --build-arg=SOURCE_DATE_EPOCH=$(SOURCE_DATE_EPOCH) -COMMON_ARGS += --build-arg=TAG="$(TAG)" -COMMON_ARGS += --build-arg=PKGS="$(PKGS)" -COMMON_ARGS += --build-arg=PKGS_PREFIX="$(PKGS_PREFIX)" -COMMON_ARGS += --build-arg=TOOLS="$(TOOLS)" -COMMON_ARGS += --build-arg=TOOLS_PREFIX="$(TOOLS_PREFIX)" +COMMON_ARGS += $(BUILD_ARGS) # extra variables @@ -214,9 +215,10 @@ $(ARTIFACTS)/bldr: $(ARTIFACTS) ## Downloads bldr binary. @curl -sSL https://github.com/siderolabs/bldr/releases/download/$(BLDR_RELEASE)/bldr-$(OPERATING_SYSTEM)-$(GOARCH) -o $(ARTIFACTS)/bldr @chmod +x $(ARTIFACTS)/bldr -.PHONY: deps.png -deps.png: ## Generates a dependency graph of the Pkgfile. - @$(BLDR) graph | dot -Tpng -o deps.png +.PHONY: deps.svg +deps.svg: ## Generates a dependency graph of the Pkgfile. + @rm -f deps.png + @$(BLDR) graph $(BUILD_ARGS) | dot -Tsvg -o deps.svg .PHONY: extensions extensions: internal/extensions/descriptions.yaml diff --git a/Pkgfile b/Pkgfile index 24684f7..45daf62 100644 --- a/Pkgfile +++ b/Pkgfile @@ -1,4 +1,4 @@ -# syntax = ghcr.io/siderolabs/bldr:v0.5.2 +# syntax = ghcr.io/siderolabs/bldr:v0.5.3 format: v1alpha2 diff --git a/README.md b/README.md index 5891f34..fdfa592 100644 --- a/README.md +++ b/README.md @@ -261,4 +261,4 @@ Any paths in the `rootfs` should be contained within the following hierarchies: ## Dependency Diagram -![Dependency Diagram](/deps.png) +![Dependency Diagram](/deps.svg) diff --git a/deps.png b/deps.png deleted file mode 100644 index e6a9893..0000000 Binary files a/deps.png and /dev/null differ diff --git a/deps.svg b/deps.svg new file mode 100644 index 0000000..068a793 --- /dev/null +++ b/deps.svg @@ -0,0 +1,2238 @@ + + + + + + + + + +n120 + +Alpine: autoconf + + + +n27 + +libtirpc + + + +n120->n27 + + + + + +n30 + +Alpine: bash + + + +n25 + +elfutils + + + +n30->n25 + + + + + +n47 + +glibc + + + +n30->n47 + + + + + +n24 + +libcap + + + +n30->n24 + + + + + +n23 + +libseccomp + + + +n30->n23 + + + + + +n30->n27 + + + + + +n43 + +nvidia-container-cli-lts + + + +n30->n43 + + + + + +n20 + +nvidia-container-cli-production + + + +n30->n20 + + + + + +n45 + +nvidia-container-runtime + + + +n30->n45 + + + + + +n44 + +nvidia-pkgs-lts + + + +n30->n44 + + + + + +n22 + +nvidia-pkgs-production + + + +n30->n22 + + + + + +n26 + +zlib + + + +n30->n26 + + + + + +n100 + +Alpine: bison + + + +n100->n47 + + + + + +n28 + +Alpine: build-base + + + +n28->n25 + + + + + +n28->n47 + + + + + +n28->n24 + + + + + +n28->n23 + + + + + +n28->n27 + + + + + +n28->n43 + + + + + +n28->n20 + + + + + +n28->n45 + + + + + +n28->n26 + + + + + +n128 + +Alpine: cargo + + + +n126 + +xen-guest-agent + + + +n128->n126 + + + + + +n130 + +Alpine: clang-dev + + + +n130->n126 + + + + + +n32 + +Alpine: coreutils + + + +n32->n43 + + + + + +n32->n20 + + + + + +n34 + +Alpine: curl + + + +n34->n43 + + + + + +n34->n20 + + + + + +n99 + +Alpine: gawk + + + +n99->n47 + + + + + +n29 + +Alpine: gcc-14 + + + +n29->n25 + + + + + +n29->n47 + + + + + +n29->n24 + + + + + +n29->n23 + + + + + +n29->n27 + + + + + +n29->n43 + + + + + +n29->n20 + + + + + +n29->n45 + + + + + +n29->n26 + + + + + +n31 + +Alpine: go + + + +n31->n43 + + + + + +n31->n20 + + + + + +n31->n45 + + + + + +n103 + +Alpine: gperf + + + +n103->n23 + + + + + +n131 + +Alpine: llvm-dev + + + +n131->n126 + + + + + +n42 + +Alpine: m4 + + + +n42->n25 + + + + + +n36 + +Alpine: patch + + + +n36->n24 + + + + + +n36->n43 + + + + + +n36->n20 + + + + + +n36->n45 + + + + + +n132 + +Alpine: pkgconf + + + +n132->n126 + + + + + +n101 + +Alpine: python3 + + + +n101->n47 + + + + + +n35 + +Alpine: rpcsvc-proto + + + +n35->n43 + + + + + +n35->n20 + + + + + +n33 + +Alpine: sed + + + +n33->n43 + + + + + +n33->n20 + + + + + +n129 + +Alpine: xen-dev + + + +n129->n126 + + + + + +n127 + +alpine + + + +n127->n126 + + + + + +n122 + +amazon-ena + + + +n4 + +amd-ucode + + + +n86 + +amdgpu + + + +n2 + +base + + + +n2->n122 + + + + + +n2->n4 + + + + + +n2->n86 + + + + + +n133 + +binfmt-misc + + + +n2->n133 + + + + + +n40 + +bnx2-bnx2x + + + +n2->n40 + + + + + +n70 + +btrfs + + + +n2->n70 + + + + + +n65 + +chelsio-drivers + + + +n2->n65 + + + + + +n98 + +chelsio-firmware + + + +n2->n98 + + + + + +n102 + +cloudflared + + + +n2->n102 + + + + + +n104 + +crun + + + +n2->n104 + + + + + +n110 + +ctr + + + +n2->n110 + + + + + +n89 + +drbd + + + +n2->n89 + + + + + +n16 + +dvb-cx23885 + + + +n2->n16 + + + + + +n15 + +dvb-m88ds3103 + + + +n2->n15 + + + + + +n48 + +ecr-credential-provider + + + +n2->n48 + + + + + +n71 + +fuse3 + + + +n2->n71 + + + + + +n73 + +gasket-driver + + + +n2->n73 + + + + + +n52 + +glib + + + +n2->n52 + + + + + +n80 + +gvisor + + + +n2->n80 + + + + + +n49 + +gvisor-debug + + + +n2->n49 + + + + + +n82 + +hailort + + + +n2->n82 + + + + + +n66 + +hello-world-service + + + +n2->n66 + + + + + +n108 + +i915 + + + +n2->n108 + + + + + +n91 + +intel-ice-firmware + + + +n2->n91 + + + + + +n17 + +intel-ucode + + + +n2->n17 + + + + + +n11 + +iscsi-tools + + + +n2->n11 + + + + + +n81 + +kata-containers + + + +n2->n81 + + + + + +n60 + +libevent + + + +n2->n60 + + + + + +n112 + +libnvme + + + +n2->n112 + + + + + +n63 + +libtirpc-zfs + + + +n2->n63 + + + + + +n53 + +lldpd + + + +n2->n53 + + + + + +n58 + +mdadm + + + +n2->n58 + + + + + +n124 + +mei + + + +n2->n124 + + + + + +n87 + +metal-agent + + + +n2->n87 + + + + + +n116 + +nebula + + + +n2->n116 + + + + + +n134 + +newt + + + +n2->n134 + + + + + +n121 + +nfsd + + + +n2->n121 + + + + + +n107 + +nfsrahead + + + +n2->n107 + + + + + +n118 + +nonfree-kmod-nvidia-lts + + + +n2->n118 + + + + + +n92 + +nonfree-kmod-nvidia-production + + + +n2->n92 + + + + + +n10 + +nut-client + + + +n2->n10 + + + + + +n55 + +nvidia-container-runtime-wrapper + + + +n2->n55 + + + + + +n69 + +nvidia-container-toolkit-lts + + + +n2->n69 + + + + + +n54 + +nvidia-container-toolkit-production + + + +n2->n54 + + + + + +n94 + +nvidia-fabricmanager-lts + + + +n2->n94 + + + + + +n77 + +nvidia-fabricmanager-production + + + +n2->n77 + + + + + +n78 + +nvidia-open-gpu-kernel-modules-lts + + + +n2->n78 + + + + + +n37 + +nvidia-open-gpu-kernel-modules-production + + + +n2->n37 + + + + + +n46 + +nvidia-persistenced-wrapper + + + +n2->n46 + + + + + +n114 + +nvme-cli + + + +n2->n114 + + + + + +n12 + +open-iscsi + + + +n2->n12 + + + + + +n115 + +panfrost + + + +n2->n115 + + + + + +n19 + +pcre2 + + + +n2->n19 + + + + + +n105 + +qemu-guest-agent + + + +n2->n105 + + + + + +n109 + +qlogic-firmware + + + +n2->n109 + + + + + +n56 + +realtek-firmware + + + +n2->n56 + + + + + +n18 + +revpi-firmware + + + +n2->n18 + + + + + +n39 + +spin + + + +n2->n39 + + + + + +n61 + +sqlite + + + +n2->n61 + + + + + +n117 + +stargz-snapshotter + + + +n2->n117 + + + + + +n8 + +tailscale + + + +n2->n8 + + + + + +n84 + +tenstorrent + + + +n2->n84 + + + + + +n75 + +thunderbolt + + + +n2->n75 + + + + + +n125 + +uinput + + + +n2->n125 + + + + + +n76 + +usb-modem-drivers + + + +n2->n76 + + + + + +n97 + +util-linux-tools + + + +n2->n97 + + + + + +n1 + +v4l-uvc-drivers + + + +n2->n1 + + + + + +n14 + +vc4 + + + +n2->n14 + + + + + +n67 + +vmtoolsd-guest-agent + + + +n2->n67 + + + + + +n13 + +wasmedge + + + +n2->n13 + + + + + +n50 + +xdma-driver + + + +n2->n50 + + + + + +n2->n126 + + + + + +n72 + +youki + + + +n2->n72 + + + + + +n106 + +zerotier + + + +n2->n106 + + + + + +n41 + +zerotier-wrapper + + + +n2->n41 + + + + + +n95 + +zfs + + + +n2->n95 + + + + + +n9 + +zfs-service + + + +n2->n9 + + + + + +n62 + +zfs-tools + + + +n2->n62 + + + + + +n64 + +zlib-zfs + + + +n2->n64 + + + + + +n21 + +cgr.dev/chainguard/wolfi-base + + + +n21->n25 + + + + + +n21->n47 + + + + + +n21->n24 + + + + + +n21->n23 + + + + + +n21->n27 + + + + + +n21->n43 + + + + + +n21->n20 + + + + + +n21->n45 + + + + + +n21->n44 + + + + + +n21->n22 + + + + + +n21->n26 + + + + + +n16->n15 + + + + + +n25->n43 + + + + + +n25->n20 + + + + + +n25->n69 + + + + + +n25->n54 + + + + + +n57 + +extensions + + + +n111 + +ghcr.io/siderolabs/containerd:v1.12.0-alpha.0-17-gc4faa38 + + + +n111->n110 + + + + + +n90 + +ghcr.io/siderolabs/drbd-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n90->n89 + + + + + +n123 + +ghcr.io/siderolabs/ena-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n123->n122 + + + + + +n7 + +ghcr.io/siderolabs/extensions-validator:fe85801 + + + +n7->n2 + + + + + +n74 + +ghcr.io/siderolabs/gasket-driver-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n74->n73 + + + + + +n83 + +ghcr.io/siderolabs/hailort-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n83->n82 + + + + + +n3 + +ghcr.io/siderolabs/kernel:v1.12.0-alpha.0-17-gc4faa38 + + + +n3->n86 + + + + + +n3->n133 + + + + + +n3->n70 + + + + + +n3->n65 + + + + + +n3->n16 + + + + + +n3->n15 + + + + + +n3->n108 + + + + + +n3->n124 + + + + + +n3->n121 + + + + + +n3->n75 + + + + + +n3->n125 + + + + + +n3->n76 + + + + + +n3->n1 + + + + + +n113 + +ghcr.io/siderolabs/libjson-c:v1.12.0-alpha.0-17-gc4faa38 + + + +n113->n112 + + + + + +n113->n114 + + + + + +n5 + +ghcr.io/siderolabs/linux-firmware:v1.12.0-alpha.0-17-gc4faa38 + + + +n5->n4 + + + + + +n5->n86 + + + + + +n5->n40 + + + + + +n5->n98 + + + + + +n5->n108 + + + + + +n5->n91 + + + + + +n5->n109 + + + + + +n5->n56 + + + + + +n119 + +ghcr.io/siderolabs/nonfree-kmod-nvidia-lts-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n119->n118 + + + + + +n93 + +ghcr.io/siderolabs/nonfree-kmod-nvidia-production-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n93->n92 + + + + + +n79 + +ghcr.io/siderolabs/nvidia-open-gpu-kernel-modules-lts-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n79->n78 + + + + + +n38 + +ghcr.io/siderolabs/nvidia-open-gpu-kernel-modules-production-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n38->n37 + + + + + +n59 + +ghcr.io/siderolabs/systemd-udevd:v1.12.0-alpha.0-17-gc4faa38 + + + +n59->n58 + + + + + +n88 + +ghcr.io/siderolabs/talos-metal-agent:v0.1.3 + + + +n88->n87 + + + + + +n68 + +ghcr.io/siderolabs/talos-vmtoolsd:v1.3.0 + + + +n68->n67 + + + + + +n85 + +ghcr.io/siderolabs/tenstorrent-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n85->n84 + + + + + +n6 + +ghcr.io/siderolabs/tools:v1.12.0-alpha.0-5-g7c659e9 + + + +n6->n2 + + + + + +n51 + +ghcr.io/siderolabs/xdma-driver-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n51->n50 + + + + + +n96 + +ghcr.io/siderolabs/zfs-pkg:v1.12.0-alpha.0-17-gc4faa38 + + + +n96->n95 + + + + + +n52->n105 + + + + + +n47->n44 + + + + + +n47->n22 + + + + + +n24->n43 + + + + + +n24->n20 + + + + + +n24->n69 + + + + + +n24->n54 + + + + + +n60->n107 + + + + + +n112->n114 + + + + + +n112->n114 + + + + + +n23->n43 + + + + + +n23->n20 + + + + + +n23->n69 + + + + + +n23->n54 + + + + + +n27->n43 + + + + + +n27->n20 + + + + + +n27->n69 + + + + + +n27->n54 + + + + + +n63->n107 + + + + + +n63->n95 + + + + + +n63->n62 + + + + + +n43->n69 + + + + + +n20->n54 + + + + + +n45->n69 + + + + + +n45->n54 + + + + + +n55->n69 + + + + + +n55->n54 + + + + + +n46->n69 + + + + + +n46->n54 + + + + + +n44->n43 + + + + + +n22->n20 + + + + + +n12->n11 + + + + + +n19->n52 + + + + + +n19->n105 + + + + + +n61->n107 + + + + + +n1->n16 + + + + + +n41->n106 + + + + + +n9->n95 + + + + + +n62->n95 + + + + + +n26->n25 + + + + + +n26->n43 + + + + + +n26->n20 + + + + + +n26->n69 + + + + + +n26->n54 + + + + + +n64->n95 + + + + + +n64->n62 + + + + + diff --git a/internal/grype-scan/vars.yaml b/internal/grype-scan/vars.yaml new file mode 100644 index 0000000..e173166 --- /dev/null +++ b/internal/grype-scan/vars.yaml @@ -0,0 +1 @@ +GRAPH_IGNORE: true diff --git a/reproducibility/vars.yaml b/reproducibility/vars.yaml new file mode 100644 index 0000000..e173166 --- /dev/null +++ b/reproducibility/vars.yaml @@ -0,0 +1 @@ +GRAPH_IGNORE: true