overthinkos/cloud-init
ov-foundation/skills/cloud-init/SKILL.md
Cloud-init for instance initialization in cloud/VM environments with NoCloud datasource. Use when working with cloud-init, VM provisioning, or cloud instance bootstrapping.
devops
Updated May 10, 2026
$ install --global
skillsauthnpx skillsauth add overthinkos/overthink-plugins cloud-initInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 10, 2026, 5:27 AM146.9s1 file scanned
SKILL.md
- name:
- cloud-init
- description:
- |
cloud-init -- cloud instance initialization
Layer Properties
| Property | Value |
|----------|-------|
| Dependencies | sshd |
| Install files | tasks:, layer.yml |
Packages
cloud-init(RPM) -- cloud instance initializationcloud-utils-growpart(RPM) -- partition growing utility
Usage
# overthink.yml or image.yml
image:
my-cloud-image:
base: "quay.io/fedora/fedora-bootc:43"
bootc: true
layers:
- cloud-init
Used In Images
Used in bootc images for VM/cloud deployments. Depends on sshd.
Host-side pairing with kind: vm entities
This layer installs the guest-side cloud-init package — the daemon that reads a NoCloud seed ISO at first boot. The host-side companion is the RenderCloudInit path in the ov binary itself (/ov-dev:cloud-init-renderer), which produces that seed ISO from the structured VmSpec.CloudInit block on a kind: vm entity.
The two sides cooperate across the host/guest boundary:
/ov-dev:cloud-init-rendereremitsuser-data+meta-data+network-config+ seeds ISO via xorriso.- This guest-side layer installs cloud-init so the guest reads
/dev/sr0(the seed ISO) at boot. - The
composeUsersadopt-merge pattern (renderer-side) deposits the SSH pubkey in~<base_user>/.ssh/authorized_keyswithoutuseradd.
For cloud_image VMs (source.kind: cloud_image), cloud-init typically comes pre-installed in the upstream qcow2 — this layer isn't needed; author the VM entity directly in vms.yml. For bootc VMs that want cloud-init provisioning, add this layer explicitly. See /ov-vms:vms for the authoring guide and /ov-vms:arch for a worked example.
Related Skills
/ov-coder:sshd-- SSH server dependency/ov-foundation:bootc-base— composition that includes this layer/ov-foundation:qemu-guest-agent— host-guest communication (paired with cloud-init in VMs)/ov-advanced:vm— VM lifecycle (create, start, stop, ssh) for kind:vm entities/ov-vms:vms— kind:vm authoring reference/ov-dev:cloud-init-renderer— host-side renderer producing the NoCloud seed ISO this layer reads/ov-build:layer— layer authoring reference
When to Use This Skill
Use when the user asks about:
- Cloud-init configuration or NoCloud datasource
- VM instance provisioning
- Cloud instance bootstrapping
- Partition growing with growpart
- System services: cloud-init-local, cloud-init, cloud-config, cloud-final
Related
/ov-build:eval— declarative testing (eval:block,ov eval image,ov eval live)
Related Skills
overthinkos/charly
tools
VerifiedTrustedCommunity
OpenCharly CLI (charly) binary installed into container/VM images for in-container use. Use when working with charly binary deployment inside containers, native D-Bus support, or the full charly toolchain (charly binary + virtualization + gocryptfs + socat).
SKILL.mdUpdated Jun 10, 2026
overthinkos/charly-cachyos
development
VerifiedTrustedCommunity
Operator CachyOS workstation profile — a kind:local template + target:local deploy that installs the full dev stack (30 candies) onto a CachyOS host via ShellExecutor. Lives in the overthinkos/cachyos submodule. MUST be invoked before editing or applying the charly-cachyos workstation profile.
SKILL.mdUpdated Jun 10, 2026
overthinkos/charly-fedora
tools
VerifiedTrustedCommunity
Fedora box with the full charly toolchain using shared candies. Rootless-first — runs as uid=1000 with passwordless sudo (no root, no cap_add: ALL). Same candy list as charly-arch. Includes NVIDIA GPU runtime. MUST be invoked before building, deploying, configuring, or troubleshooting the charly-fedora box.
SKILL.mdUpdated Jun 10, 2026
overthinkos/charly-arch
tools
VerifiedTrustedCommunity
Arch Linux box with the full charly toolchain. Rootless-first — runs as uid=1000 with passwordless sudo (no root, no cap_add: ALL). Composes /charly-coder:charly-mcp so the box is reachable as an MCP gateway on port 18765. NVIDIA GPU runtime composed in. MUST be invoked before building, deploying, configuring, or troubleshooting the charly-arch box.
SKILL.mdUpdated Jun 10, 2026