RubyGems - abide_dev_utils - Versions diffs - 0.11.0 → 0.12.1 - Mend

abide_dev_utils 0.11.0 → 0.12.1

Files changed (44) hide show

checksums.yaml +4 -4
data/Gemfile.lock +18 -31
data/lib/abide_dev_utils/cem/benchmark.rb +335 -136
data/lib/abide_dev_utils/cem/generate/coverage_report.rb +380 -0
data/lib/abide_dev_utils/cem/generate/reference.rb +238 -35
data/lib/abide_dev_utils/cem/generate.rb +5 -4
data/lib/abide_dev_utils/cem/hiera_data/mapping_data/map_data.rb +110 -0
data/lib/abide_dev_utils/cem/hiera_data/mapping_data/mixins.rb +46 -0
data/lib/abide_dev_utils/cem/hiera_data/mapping_data.rb +146 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data/control.rb +127 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data/parameters.rb +90 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data/resource.rb +102 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data.rb +310 -0
data/lib/abide_dev_utils/cem/hiera_data.rb +7 -0
data/lib/abide_dev_utils/cem/mapping/mapper.rb +161 -34
data/lib/abide_dev_utils/cem/validate/resource_data.rb +33 -0
data/lib/abide_dev_utils/cem/validate.rb +10 -0
data/lib/abide_dev_utils/cem.rb +0 -1
data/lib/abide_dev_utils/cli/cem.rb +20 -2
data/lib/abide_dev_utils/dot_number_comparable.rb +75 -0
data/lib/abide_dev_utils/errors/cem.rb +10 -0
data/lib/abide_dev_utils/ppt/class_utils.rb +1 -1
data/lib/abide_dev_utils/ppt/code_gen/data_types.rb +64 -0
data/lib/abide_dev_utils/ppt/code_gen/generate.rb +15 -0
data/lib/abide_dev_utils/ppt/code_gen/resource.rb +59 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/base.rb +93 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/class.rb +17 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/manifest.rb +16 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/parameter.rb +16 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/strings.rb +13 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types.rb +6 -0
data/lib/abide_dev_utils/ppt/code_gen.rb +15 -0
data/lib/abide_dev_utils/ppt/code_introspection.rb +102 -0
data/lib/abide_dev_utils/ppt/hiera.rb +4 -1
data/lib/abide_dev_utils/ppt/puppet_module.rb +2 -1
data/lib/abide_dev_utils/ppt.rb +3 -0
data/lib/abide_dev_utils/version.rb +1 -1
data/lib/abide_dev_utils/xccdf/parser/helpers.rb +146 -0
data/lib/abide_dev_utils/xccdf/parser/objects.rb +87 -144
data/lib/abide_dev_utils/xccdf/parser.rb +5 -0
data/lib/abide_dev_utils/xccdf/utils.rb +89 -0
data/lib/abide_dev_utils/xccdf.rb +193 -63
metadata +27 -3
data/lib/abide_dev_utils/cem/coverage_report.rb +0 -348

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7cf13209260261bcf509e7953d4af4a47aa7301cc7c2e8227c3d736d163cd0b1
-  data.tar.gz: a6d6cb52aadf58e33ce6a57d77c7921226ebb130aa2d6e4350c42c197df0f06c
+  metadata.gz: d6f05434761a55369ffb231c1573ba627aa5c9ebef29d198ccfa16c422d05c48
+  data.tar.gz: 534968456e7eefca691fa6a3cdc46a170dc3ee12060261225fc35adadbc27d18
 SHA512:
-  metadata.gz: be0ac34b2ee3ea116793580ef1ffff41ca4f11b41ceb6587866183734f1aee15a566b5a0063b106a18962739a1d4d7091d6e8d276dffdf6101cfcfb48afb3832
-  data.tar.gz: 97f9b753cb94f1a1d326eb370a59ae35d00a3c2797b6e030941e51f51e9f7713eca0af9148f9858a0f4c375273bb468ab1df928cd589903d48b9bbe7c86a92fd
+  metadata.gz: b9907ee602b3367d4692b5c2102f0c769614f33d22980d5b8c0a14ea7dd15ac19947800eed399e6d68215ea2c21ab670b233209bf62e79399795fc5cc0ca68c2
+  data.tar.gz: edbeac0d044795300b42ac1ddd70623abc9c9e7d322ecf1e5d6356c8b4f875a31e31e02c96397b0bc9ee1a6a815fa342401916d9f87696f0ad68f0bd9d887b75

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    abide_dev_utils (0.11.0)
+    abide_dev_utils (0.12.1)
       amatch (~> 0.4)
       cmdparse (~> 3.0)
       facterdb (>= 1.18)
@@ -60,10 +60,10 @@ GEM
     diff-lcs (1.5.0)
     digest-crc (0.6.4)
       rake (>= 12.0.0, < 14.0.0)
-    facter (4.2.10)
+    facter (4.2.11)
       hocon (~> 1.3)
       thor (>= 1.0.1, < 2.0)
-    facterdb (1.18.0)
+    facterdb (1.19.0)
       facter (< 5.0.0)
       jgrep
     faraday (2.3.0)
@@ -84,7 +84,7 @@ GEM
       octokit (~> 4.6)
       rainbow (>= 2.2.1)
       rake (>= 10.0)
-    google-apis-core (0.5.0)
+    google-apis-core (0.7.0)
       addressable (~> 2.5, >= 2.5.1)
       googleauth (>= 0.16.2, < 2.a)
       httpclient (>= 2.8.1, < 3.a)
@@ -93,25 +93,25 @@ GEM
       retriable (>= 2.0, < 4.a)
       rexml
       webrick
-    google-apis-iamcredentials_v1 (0.10.0)
-      google-apis-core (>= 0.4, < 2.a)
-    google-apis-storage_v1 (0.14.0)
-      google-apis-core (>= 0.4, < 2.a)
+    google-apis-iamcredentials_v1 (0.13.0)
+      google-apis-core (>= 0.7, < 2.a)
+    google-apis-storage_v1 (0.17.0)
+      google-apis-core (>= 0.7, < 2.a)
     google-cloud-core (1.6.0)
       google-cloud-env (~> 1.0)
       google-cloud-errors (~> 1.0)
     google-cloud-env (1.6.0)
       faraday (>= 0.17.3, < 3.0)
     google-cloud-errors (1.2.0)
-    google-cloud-storage (1.36.2)
+    google-cloud-storage (1.38.0)
       addressable (~> 2.8)
       digest-crc (~> 0.4)
       google-apis-iamcredentials_v1 (~> 0.1)
-      google-apis-storage_v1 (~> 0.1)
+      google-apis-storage_v1 (~> 0.17.0)
       google-cloud-core (~> 1.6)
       googleauth (>= 0.16.2, < 2.a)
       mini_mime (~> 1.0)
-    googleauth (1.1.3)
+    googleauth (1.2.0)
       faraday (>= 0.17.3, < 3.a)
       jwt (>= 1.4, < 3.0)
       memoist (~> 0.16)
@@ -119,7 +119,7 @@ GEM
       os (>= 0.9, < 2.0)
       signet (>= 0.16, < 2.a)
     hashdiff (1.0.1)
-    hiera (3.9.0)
+    hiera (3.10.0)
     hocon (1.3.1)
     httpclient (2.8.3)
     i18n (1.10.0)
@@ -130,7 +130,7 @@ GEM
       atlassian-jwt
       multipart-post
       oauth (~> 0.5, >= 0.5.0)
-    jwt (2.3.0)
+    jwt (2.4.1)
     locale (2.1.3)
     memoist (0.16.2)
     method_source (1.0.0)
@@ -139,11 +139,9 @@ GEM
     mize (0.4.0)
       protocol (~> 2.0)
     multi_json (1.15.0)
-    multipart-post (2.1.1)
+    multipart-post (2.2.3)
     nio4r (2.5.8)
-    nokogiri (1.13.6-x86_64-darwin)
-      racc (~> 1.4)
-    nokogiri (1.13.6-x86_64-linux)
+    nokogiri (1.13.8-x86_64-darwin)
       racc (~> 1.4)
     oauth (0.5.10)
     octokit (4.25.0)
@@ -166,18 +164,7 @@ GEM
       coderay (~> 1.1)
       method_source (~> 1.0)
     public_suffix (4.0.7)
-    puppet (7.17.0)
-      concurrent-ruby (~> 1.0)
-      deep_merge (~> 1.0)
-      facter (> 2.0.1, < 5)
-      fast_gettext (>= 1.1, < 3)
-      hiera (>= 3.2.1, < 4)
-      locale (~> 2.1)
-      multi_json (~> 1.10)
-      puppet-resource_api (~> 1.5)
-      scanf (~> 1.0)
-      semantic_puppet (~> 1.0)
-    puppet (7.17.0-universal-darwin)
+    puppet (7.18.0-universal-darwin)
       CFPropertyList (~> 2.2)
       concurrent-ruby (~> 1.0)
       deep_merge (~> 1.0)
@@ -247,9 +234,9 @@ GEM
       rubyzip (>= 1.2.2)
     semantic_puppet (1.0.4)
     sexp_processor (4.16.1)
-    signet (0.16.1)
+    signet (0.17.0)
       addressable (~> 2.8)
-      faraday (>= 0.17.5, < 3.0)
+      faraday (>= 0.17.5, < 3.a)
       jwt (>= 1.5, < 3.0)
       multi_json (~> 1.10)
     sync (0.5.0)

data/lib/abide_dev_utils/cem/benchmark.rb CHANGED Viewed

@@ -1,14 +1,318 @@
 # frozen_string_literal: true
+require 'set'
+require 'abide_dev_utils/dot_number_comparable'
 require 'abide_dev_utils/errors'
-require 'abide_dev_utils/ppt/facter_utils'
+require 'abide_dev_utils/ppt'
 require 'abide_dev_utils/cem/mapping/mapper'
 module AbideDevUtils
   module CEM
-    # Repesents a benchmark for purposes of organizing data for markdown representation
+    # Represents a resource data resource statement
+    class Resource
+      attr_reader :title, :type
+      def initialize(title, data, framework, mapper)
+        @title = title
+        @data = data
+        @type = data['type']
+        @framework = framework
+        @mapper = mapper
+        @dependent = []
+      end
+      # Returns a representation of the actual manifest backing this resource.
+      # This is used to gather information from the Puppet code about this
+      # resource.
+      # @return [AbideDevUtils::Ppt::CodeIntrospection::Manifest]
+      # @return [nil] if the manifest could not be found or could not be parsed
+      def manifest
+        @manifest ||= load_manifest
+      end
+      def manifest?
+        !manifest.nil?
+      end
+      def file_path
+        @file_path ||= AbideDevUtils::Ppt::ClassUtils.path_from_class_name((type == 'class' ? title : type))
+      end
+      def controls
+        @controls || load_controls
+      end
+      def cem_options?
+        !cem_options.empty?
+      end
+      def cem_options
+        @cem_options ||= resource_properties('cem_options')
+      end
+      def cem_protected?
+        !cem_protected.empty?
+      end
+      def cem_protected
+        @cem_protected ||= resource_properties('cem_protected')
+      end
+      def dependent_controls
+        @dependent_controls ||= @dependent.flatten.uniq.filter_map { |x| controls.find { |y| y.id == x } }
+      end
+      def to_reference
+        "#{type.split('::').map(&:capitalize).join('::')}['#{title}']"
+      end
+      private
+      attr_reader :data, :framework, :mapper
+      def load_manifest
+        AbideDevUtils::Ppt::CodeIntrospection::Manifest.new(file_path)
+      rescue StandardError
+        nil
+      end
+      def resource_properties(prop_name)
+        props = Set.new
+        return props unless data.key?(prop_name)
+        data[prop_name].each do |param, param_val|
+          props << { name: param,
+                     type: ruby_class_to_puppet_type(param_val.class.to_s),
+                     default: param_val }
+        end
+        props
+      end
+      def load_controls
+        if data['controls'].respond_to?(:keys)
+          load_hash_controls(data['controls'], framework, mapper)
+        elsif data['controls'].respond_to?(:each_with_index)
+          load_array_controls(data['controls'], framework, mapper)
+        else
+          raise "Control type is invalid. Type: #{data['controls'].class}"
+        end
+      end
+      def load_hash_controls(ctrls, framework, mapper)
+        ctrls.each_with_object([]) do |(name, data), arr|
+          if name == 'dependent'
+            @dependent << data
+            next
+          end
+          ctrl = Control.new(name, data, self, framework, mapper)
+          arr << ctrl
+        rescue AbideDevUtils::Errors::ControlIdFrameworkMismatchError,
+               AbideDevUtils::Errors::NoMappingDataForControlError
+          next
+        end
+      end
+      def load_array_controls(ctrls, framework, mapper)
+        ctrls.each_with_object([]) do |c, arr|
+          if c == 'dependent'
+            @dependent << c
+            next
+          end
+          ctrl = Control.new(c, 'no_params', self, framework, mapper)
+          arr << ctrl
+        rescue AbideDevUtils::Errors::ControlIdFrameworkMismatchError,
+               AbideDevUtils::Errors::NoMappingDataForControlError
+          next
+        end
+      end
+      def ruby_class_to_puppet_type(class_name)
+        pup_type = class_name.split('::').last.capitalize
+        case pup_type
+        when %r{(Trueclass|Falseclass)}
+          'Boolean'
+        when %r{(String|Pathname)}
+          'String'
+        when %r{(Integer|Fixnum)}
+          'Integer'
+        when %r{(Float|Double)}
+          'Float'
+        when %r{Nilclass}
+          'Optional'
+        else
+          pup_type
+        end
+      end
+    end
+    # Represents a singular rule in a benchmark
+    class Control
+      include AbideDevUtils::DotNumberComparable
+      attr_reader :id, :params, :resource, :framework, :dependent
+      def initialize(id, params, resource, framework, mapper)
+        validate_id_with_framework(id, framework, mapper)
+        @id = id
+        @params = params
+        @resource = resource
+        @framework = framework
+        @mapper = mapper
+        raise AbideDevUtils::Errors::NoMappingDataForControlError, @id unless @mapper.get(id)
+      end
+      def params?
+        !(params.nil? || params.empty? || params == 'no_params') || (resource.cem_options? || resource.cem_protected?)
+      end
+      def resource_properties?
+        resource.cem_options? || resource.cem_protected?
+      end
+      def param_hashes
+        return [no_params] unless params?
+        params.each_with_object([]) do |(param, param_val), ar|
+          ar << { name: param,
+                  type: ruby_class_to_puppet_type(param_val.class.to_s),
+                  default: param_val }
+        end
+      end
+      def alternate_ids(level: nil, profile: nil)
+        id_map = @mapper.get(id, level: level, profile: profile)
+        if display_title_type.to_s == @mapper.map_type(id)
+          id_map
+        else
+          alt_ids = id_map.each_with_object([]) do |mapval, arr|
+            arr << if display_title_type.to_s == @mapper.map_type(mapval)
+                     @mapper.get(mapval, level: level, profile: profile)
+                   else
+                     mapval
+                   end
+          end
+          alt_ids.flatten.uniq
+        end
+      end
+      def id_map_type
+        @mapper.map_type(id)
+      end
+      def display_title
+        send(display_title_type) unless display_title_type.nil?
+      end
+      def levels
+        levels_and_profiles[0]
+      end
+      def profiles
+        levels_and_profiles[1]
+      end
+      def valid_maps?
+        valid = AbideDevUtils::CEM::Mapping::FRAMEWORK_TYPES[framework].each_with_object([]) do |mtype, arr|
+          arr << if @mapper.map_type(id) == mtype
+                   id
+                 else
+                   @mapper.get(id).find { |x| @mapper.map_type(x) == mtype }
+                 end
+        end
+        valid.compact.length == AbideDevUtils::CEM::Mapping::FRAMEWORK_TYPES[framework].length
+      end
+      def method_missing(meth, *args, &block)
+        meth_s = meth.to_s
+        if AbideDevUtils::CEM::Mapping::ALL_TYPES.include?(meth_s)
+          @mapper.get(id).find { |x| @mapper.map_type(x) == meth_s }
+        else
+          super
+        end
+      end
+      def respond_to_missing?(meth, include_private = false)
+        AbideDevUtils::CEM::Mapping::ALL_TYPES.include?(meth.to_s) || super
+      end
+      def to_h
+        {
+          id: id,
+          display_title: display_title,
+          alternate_ids: alternate_ids,
+          levels: levels,
+          profiles: profiles,
+          params: param_hashes,
+          resource: resource.to_stubbed_h,
+        }
+      end
+      private
+      def display_title_type
+        if (!vulnid.nil? && !vulnid.is_a?(String)) || !title.is_a?(String)
+          nil
+        elsif framework == 'stig' && vulnid
+          :vulnid
+        else
+          :title
+        end
+      end
+      def validate_id_with_framework(id, framework, mapper)
+        mtype = mapper.map_type(id)
+        return if AbideDevUtils::CEM::Mapping::FRAMEWORK_TYPES[framework].include?(mtype)
+        raise AbideDevUtils::Errors::ControlIdFrameworkMismatchError, [id, mtype, framework]
+      end
+      def map
+        @map ||= @mapper.get(id)
+      end
+      def levels_and_profiles
+        @levels_and_profiles ||= find_levels_and_profiles
+      end
+      def find_levels_and_profiles
+        lvls = []
+        profs = []
+        @mapper.levels.each do |lvl|
+          @mapper.profiles.each do |prof|
+            unless @mapper.get(id, level: lvl, profile: prof).nil?
+              lvls << lvl
+              profs << prof
+            end
+          end
+        end
+        [lvls.flatten.compact.uniq, profs.flatten.compact.uniq]
+      end
+      def ruby_class_to_puppet_type(class_name)
+        pup_type = class_name.split('::').last.capitalize
+        case pup_type
+        when %r{(Trueclass|Falseclass)}
+          'Boolean'
+        when %r{(String|Pathname)}
+          'String'
+        when %r{(Integer|Fixnum)}
+          'Integer'
+        when %r{(Float|Double)}
+          'Float'
+        when %r{Nilclass}
+          'Optional'
+        else
+          pup_type
+        end
+      end
+      def no_params
+        { name: 'No parameters', type: nil, default: nil }
+      end
+    end
+    # Repesents a benchmark based on resource and mapping data
     class Benchmark
-      attr_reader :osname, :major_version, :os_facts, :osfamily, :hiera_conf, :module_name, :framework, :rules
+      attr_reader :osname, :major_version, :os_facts, :osfamily, :hiera_conf, :module_name, :framework
       def initialize(osname, major_version, hiera_conf, module_name, framework: 'cis')
         @osname = osname
@@ -18,10 +322,8 @@ module AbideDevUtils
         @hiera_conf = hiera_conf
         @module_name = module_name
         @framework = framework
-        @rules = {}
         @map_cache = {}
         @rules_in_map = {}
-        load_rules
       end
       # Creates Benchmark objects from a Puppet module
@@ -38,23 +340,47 @@ module AbideDevUtils
           if majver.is_a?(Array)
             majver.sort.each do |v|
               frameworks.each do |fw|
-                benchmark = Benchmark.new(osname, v, pupmod.hiera_conf, pupmod.name(strip_namespace: true), framework: fw)
+                benchmark = Benchmark.new(osname,
+                                          v,
+                                          pupmod.hiera_conf,
+                                          pupmod.name(strip_namespace: true),
+                                          framework: fw)
+                benchmark.controls
                 ary << benchmark
+              rescue AbideDevUtils::Errors::MappingDataFrameworkMismatchError => e
+                raise e unless ignore_all_errors || ignore_framework_mismatch
               rescue StandardError => e
-                raise e unless ignore_all_errors || (e.instance_of?(AbideDevUtils::Errors::MappingDataFrameworkMismatchError) && ignore_framework_mismatch)
+                raise e unless ignore_all_errors
               end
             end
           else
             frameworks.each do |fw|
-              benchmark = Benchmark.new(osname, majver, pupmod.hiera_conf, pupmod.name(strip_namespace: true), framework: fw)
+              benchmark = Benchmark.new(osname,
+                                        majver,
+                                        pupmod.hiera_conf,
+                                        pupmod.name(strip_namespace: true),
+                                        framework: fw)
+              benchmark.controls
               ary << benchmark
+            rescue AbideDevUtils::Errors::MappingDataFrameworkMismatchError => e
+              raise e unless ignore_all_errors || ignore_framework_mismatch
             rescue StandardError => e
-              raise e unless ignore_all_errors || (e.instance_of?(AbideDevUtils::Errors::MappingDataFrameworkMismatchError) && ignore_framework_mismatch)
+              raise e unless ignore_all_errors
             end
           end
         end
       end
+      def resources
+        @resources ||= resource_data["#{module_name}::resources"].each_with_object([]) do |(rtitle, rdata), arr|
+          arr << Resource.new(rtitle, rdata, framework, mapper)
+        end
+      end
+      def controls
+        @controls ||= resources.map(&:controls).flatten.sort
+      end
       def mapper
         @mapper ||= AbideDevUtils::CEM::Mapping::Mapper.new(module_name, framework, load_mapping_data)
       end
@@ -113,131 +439,6 @@ module AbideDevUtils
       private
-      def load_rules
-        resource_data["#{module_name}::resources"].each do |_, rdata|
-          unless rdata.key?('controls')
-            puts "Controls key not found in #{rdata}"
-            next
-          end
-          rdata['controls'].each do |control, control_data|
-            rule_title = map(control)
-            next if rule_title.nil? || rule_title.empty?
-            rule_title.find { |id| map_type(id) == 'title' }
-            alternate_ids = map(rule_title)
-            next unless rule_title.is_a?(String)
-            @rules[rule_title] = {} unless @rules&.key?(rule_title)
-            @rules[rule_title]['number'] = alternate_ids.find { |id| map_type(id) == 'number' }
-            @rules[rule_title]['alternate_ids'] = alternate_ids
-            @rules[rule_title]['params'] = [] unless @rules[rule_title].key?('params')
-            @rules[rule_title]['level'] = [] unless @rules[rule_title].key?('level')
-            @rules[rule_title]['profile'] = [] unless @rules[rule_title].key?('profile')
-            param_hashes(control_data).each do |param_hash|
-              next if @rules[rule_title]['params'].include?(param_hash[:name])
-              @rules[rule_title]['params'] << param_hash
-            end
-            levels, profiles = find_levels_and_profiles(control)
-            unless @rules[rule_title]['level'] == levels
-              @rules[rule_title]['level'] = @rules[rule_title]['level'] | levels
-            end
-            unless @rules[rule_title]['profile'] == profiles
-              @rules[rule_title]['profile'] = @rules[rule_title]['profile'] | profiles
-            end
-            @rules[rule_title]['resource'] = rdata['type']
-          end
-        end
-        @rules = sort_rules
-      end
-      def param_hashes(control_data)
-        return [] if control_data.nil? || control_data.empty?
-        p_hashes = []
-        if !control_data.respond_to?(:each) && control_data == 'no_params'
-          p_hashes << no_params
-        else
-          control_data.each do |param, param_val|
-            p_hashes << {
-              name: param,
-              type: ruby_class_to_puppet_type(param_val.class.to_s),
-              default: param_val,
-            }
-          end
-        end
-        p_hashes
-      end
-      def no_params
-        { name: 'No parameters', type: nil, default: nil }
-      end
-      # We sort the rules by their control number so they
-      # appear in the REFERENCE in benchmark order
-      def sort_rules
-        sorted = @rules.dup.sort_by do |_, v|
-          control_num_to_int(v['number'])
-        end
-        sorted.to_h
-      end
-      # In order to sort the rules by their control number,
-      # we need to convert the control number to an integer.
-      # This is a rough conversion, but should be sufficient
-      # for the purposes of sorting. The multipliers are
-      # the 20th, 15th, 10th, and 5th numbers in the Fibonacci
-      # sequence, then 1 after that. The reason for this is to
-      # ensure a "spiraled" wieghting of the sections in the control
-      # number, with 1st section having the most sorting weight, 2nd
-      # having second most, etc. However, the differences in the multipliers
-      # are such that it would be difficult for the product of a lesser-weighted
-      # section to be greater than a greater-weighted section.
-      def control_num_to_int(control_num)
-        multipliers = [6765, 610, 55, 5, 1]
-        nsum = 0
-        midx = 0
-        control_num.split('.').each do |num|
-          multiplier = midx >= multipliers.length ? 1 : multipliers[midx]
-          nsum += num.to_i * multiplier
-          midx += 1
-        end
-        nsum
-      end
-      def find_levels_and_profiles(control_id)
-        levels = []
-        profiles = []
-        mapper.each_like(control_id) do |lvl, profile_hash|
-          next if lvl == 'benchmark'
-          profile_hash.each do |prof, _|
-            unless map(control_id, level: lvl, profile: prof).nil?
-              levels << lvl
-              profiles << prof
-            end
-          end
-        end
-        [levels, profiles]
-      end
-      def ruby_class_to_puppet_type(class_name)
-        pup_type = class_name.split('::').last.capitalize
-        case pup_type
-        when %r{(Trueclass|Falseclass)}
-          'Boolean'
-        when %r{(String|Pathname)}
-          'String'
-        when %r{(Integer|Fixnum)}
-          'Integer'
-        when %r{(Float|Double)}
-          'Float'
-        else
-          pup_type
-        end
-      end
       def load_mapping_data
         files = case module_name
                 when /_windows$/
@@ -248,8 +449,6 @@ module AbideDevUtils
                   raise "Module name '#{module_name}' is not a CEM module"
                 end
         validate_mapping_files_framework(files).each_with_object({}) do |f, h|
-          next unless f.path.include?(framework)
           h[File.basename(f.path, '.yaml')] = YAML.load_file(f.path)
         end
       end