RubyGems - abide_dev_utils - Versions diffs - 0.11.0 → 0.12.1 - Mend

abide_dev_utils 0.11.0 → 0.12.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (44) hide show

checksums.yaml +4 -4
data/Gemfile.lock +18 -31
data/lib/abide_dev_utils/cem/benchmark.rb +335 -136
data/lib/abide_dev_utils/cem/generate/coverage_report.rb +380 -0
data/lib/abide_dev_utils/cem/generate/reference.rb +238 -35
data/lib/abide_dev_utils/cem/generate.rb +5 -4
data/lib/abide_dev_utils/cem/hiera_data/mapping_data/map_data.rb +110 -0
data/lib/abide_dev_utils/cem/hiera_data/mapping_data/mixins.rb +46 -0
data/lib/abide_dev_utils/cem/hiera_data/mapping_data.rb +146 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data/control.rb +127 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data/parameters.rb +90 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data/resource.rb +102 -0
data/lib/abide_dev_utils/cem/hiera_data/resource_data.rb +310 -0
data/lib/abide_dev_utils/cem/hiera_data.rb +7 -0
data/lib/abide_dev_utils/cem/mapping/mapper.rb +161 -34
data/lib/abide_dev_utils/cem/validate/resource_data.rb +33 -0
data/lib/abide_dev_utils/cem/validate.rb +10 -0
data/lib/abide_dev_utils/cem.rb +0 -1
data/lib/abide_dev_utils/cli/cem.rb +20 -2
data/lib/abide_dev_utils/dot_number_comparable.rb +75 -0
data/lib/abide_dev_utils/errors/cem.rb +10 -0
data/lib/abide_dev_utils/ppt/class_utils.rb +1 -1
data/lib/abide_dev_utils/ppt/code_gen/data_types.rb +64 -0
data/lib/abide_dev_utils/ppt/code_gen/generate.rb +15 -0
data/lib/abide_dev_utils/ppt/code_gen/resource.rb +59 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/base.rb +93 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/class.rb +17 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/manifest.rb +16 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/parameter.rb +16 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types/strings.rb +13 -0
data/lib/abide_dev_utils/ppt/code_gen/resource_types.rb +6 -0
data/lib/abide_dev_utils/ppt/code_gen.rb +15 -0
data/lib/abide_dev_utils/ppt/code_introspection.rb +102 -0
data/lib/abide_dev_utils/ppt/hiera.rb +4 -1
data/lib/abide_dev_utils/ppt/puppet_module.rb +2 -1
data/lib/abide_dev_utils/ppt.rb +3 -0
data/lib/abide_dev_utils/version.rb +1 -1
data/lib/abide_dev_utils/xccdf/parser/helpers.rb +146 -0
data/lib/abide_dev_utils/xccdf/parser/objects.rb +87 -144
data/lib/abide_dev_utils/xccdf/parser.rb +5 -0
data/lib/abide_dev_utils/xccdf/utils.rb +89 -0
data/lib/abide_dev_utils/xccdf.rb +193 -63
metadata +27 -3
data/lib/abide_dev_utils/cem/coverage_report.rb +0 -348

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7cf13209260261bcf509e7953d4af4a47aa7301cc7c2e8227c3d736d163cd0b1
-  data.tar.gz: a6d6cb52aadf58e33ce6a57d77c7921226ebb130aa2d6e4350c42c197df0f06c
+  metadata.gz: d6f05434761a55369ffb231c1573ba627aa5c9ebef29d198ccfa16c422d05c48
+  data.tar.gz: 534968456e7eefca691fa6a3cdc46a170dc3ee12060261225fc35adadbc27d18
 SHA512:
-  metadata.gz: be0ac34b2ee3ea116793580ef1ffff41ca4f11b41ceb6587866183734f1aee15a566b5a0063b106a18962739a1d4d7091d6e8d276dffdf6101cfcfb48afb3832
-  data.tar.gz: 97f9b753cb94f1a1d326eb370a59ae35d00a3c2797b6e030941e51f51e9f7713eca0af9148f9858a0f4c375273bb468ab1df928cd589903d48b9bbe7c86a92fd
+  metadata.gz: b9907ee602b3367d4692b5c2102f0c769614f33d22980d5b8c0a14ea7dd15ac19947800eed399e6d68215ea2c21ab670b233209bf62e79399795fc5cc0ca68c2
+  data.tar.gz: edbeac0d044795300b42ac1ddd70623abc9c9e7d322ecf1e5d6356c8b4f875a31e31e02c96397b0bc9ee1a6a815fa342401916d9f87696f0ad68f0bd9d887b75

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    abide_dev_utils (0.11.0)
+    abide_dev_utils (0.12.1)
       amatch (~> 0.4)
       cmdparse (~> 3.0)
       facterdb (>= 1.18)
@@ -60,10 +60,10 @@ GEM
     diff-lcs (1.5.0)
     digest-crc (0.6.4)
       rake (>= 12.0.0, < 14.0.0)
-    facter (4.2.10)
+    facter (4.2.11)
       hocon (~> 1.3)
       thor (>= 1.0.1, < 2.0)
-    facterdb (1.18.0)
+    facterdb (1.19.0)
       facter (< 5.0.0)
       jgrep
     faraday (2.3.0)
@@ -84,7 +84,7 @@ GEM
       octokit (~> 4.6)
       rainbow (>= 2.2.1)
       rake (>= 10.0)
-    google-apis-core (0.5.0)
+    google-apis-core (0.7.0)
       addressable (~> 2.5, >= 2.5.1)
       googleauth (>= 0.16.2, < 2.a)
       httpclient (>= 2.8.1, < 3.a)
@@ -93,25 +93,25 @@ GEM
       retriable (>= 2.0, < 4.a)
       rexml
       webrick
-    google-apis-iamcredentials_v1 (0.10.0)
-      google-apis-core (>= 0.4, < 2.a)
-    google-apis-storage_v1 (0.14.0)
-      google-apis-core (>= 0.4, < 2.a)
+    google-apis-iamcredentials_v1 (0.13.0)
+      google-apis-core (>= 0.7, < 2.a)
+    google-apis-storage_v1 (0.17.0)
+      google-apis-core (>= 0.7, < 2.a)
     google-cloud-core (1.6.0)
       google-cloud-env (~> 1.0)
       google-cloud-errors (~> 1.0)
     google-cloud-env (1.6.0)
       faraday (>= 0.17.3, < 3.0)
     google-cloud-errors (1.2.0)
-    google-cloud-storage (1.36.2)
+    google-cloud-storage (1.38.0)
       addressable (~> 2.8)
       digest-crc (~> 0.4)
       google-apis-iamcredentials_v1 (~> 0.1)
-      google-apis-storage_v1 (~> 0.1)
+      google-apis-storage_v1 (~> 0.17.0)
       google-cloud-core (~> 1.6)
       googleauth (>= 0.16.2, < 2.a)
       mini_mime (~> 1.0)
-    googleauth (1.1.3)
+    googleauth (1.2.0)
       faraday (>= 0.17.3, < 3.a)
       jwt (>= 1.4, < 3.0)
       memoist (~> 0.16)
@@ -119,7 +119,7 @@ GEM
       os (>= 0.9, < 2.0)
       signet (>= 0.16, < 2.a)
     hashdiff (1.0.1)
-    hiera (3.9.0)
+    hiera (3.10.0)
     hocon (1.3.1)
     httpclient (2.8.3)
     i18n (1.10.0)
@@ -130,7 +130,7 @@ GEM
       atlassian-jwt
       multipart-post
       oauth (~> 0.5, >= 0.5.0)
-    jwt (2.3.0)
+    jwt (2.4.1)
     locale (2.1.3)
     memoist (0.16.2)
     method_source (1.0.0)
@@ -139,11 +139,9 @@ GEM
     mize (0.4.0)
       protocol (~> 2.0)
     multi_json (1.15.0)
-    multipart-post (2.1.1)
+    multipart-post (2.2.3)
     nio4r (2.5.8)
-    nokogiri (1.13.6-x86_64-darwin)
-      racc (~> 1.4)
-    nokogiri (1.13.6-x86_64-linux)
+    nokogiri (1.13.8-x86_64-darwin)
       racc (~> 1.4)
     oauth (0.5.10)
     octokit (4.25.0)
@@ -166,18 +164,7 @@ GEM
       coderay (~> 1.1)
       method_source (~> 1.0)
     public_suffix (4.0.7)
-    puppet (7.17.0)
-      concurrent-ruby (~> 1.0)
-      deep_merge (~> 1.0)
-      facter (> 2.0.1, < 5)
-      fast_gettext (>= 1.1, < 3)
-      hiera (>= 3.2.1, < 4)
-      locale (~> 2.1)
-      multi_json (~> 1.10)
-      puppet-resource_api (~> 1.5)
-      scanf (~> 1.0)
-      semantic_puppet (~> 1.0)
-    puppet (7.17.0-universal-darwin)
+    puppet (7.18.0-universal-darwin)
       CFPropertyList (~> 2.2)
       concurrent-ruby (~> 1.0)
       deep_merge (~> 1.0)
@@ -247,9 +234,9 @@ GEM
       rubyzip (>= 1.2.2)
     semantic_puppet (1.0.4)
     sexp_processor (4.16.1)
-    signet (0.16.1)
+    signet (0.17.0)
       addressable (~> 2.8)
-      faraday (>= 0.17.5, < 3.0)
+      faraday (>= 0.17.5, < 3.a)
       jwt (>= 1.5, < 3.0)
       multi_json (~> 1.10)
     sync (0.5.0)

data/lib/abide_dev_utils/cem/benchmark.rb CHANGED Viewed

@@ -1,14 +1,318 @@
 # frozen_string_literal: true
+require 'set'
+require 'abide_dev_utils/dot_number_comparable'
 require 'abide_dev_utils/errors'
-require 'abide_dev_utils/ppt/facter_utils'
+require 'abide_dev_utils/ppt'
 require 'abide_dev_utils/cem/mapping/mapper'
 module AbideDevUtils
   module CEM
-    # Repesents a benchmark for purposes of organizing data for markdown representation
+    # Represents a resource data resource statement
+    class Resource
+      attr_reader :title, :type
+      def initialize(title, data, framework, mapper)
+        @title = title
+        @data = data
+        @type = data['type']
+        @framework = framework
+        @mapper = mapper
+        @dependent = []
+      end
+      # Returns a representation of the actual manifest backing this resource.
+      # This is used to gather information from the Puppet code about this
+      # resource.
+      # @return [AbideDevUtils::Ppt::CodeIntrospection::Manifest]
+      # @return [nil] if the manifest could not be found or could not be parsed
+      def manifest
+        @manifest ||= load_manifest
+      end
+      def manifest?
+        !manifest.nil?
+      end
+      def file_path
+        @file_path ||= AbideDevUtils::Ppt::ClassUtils.path_from_class_name((type == 'class' ? title : type))
+      end
+      def controls
+        @controls || load_controls
+      end
+      def cem_options?
+        !cem_options.empty?
+      end
+      def cem_options
+        @cem_options ||= resource_properties('cem_options')
+      end
+      def cem_protected?
+        !cem_protected.empty?
+      end
+      def cem_protected
+        @cem_protected ||= resource_properties('cem_protected')
+      end
+      def dependent_controls
+        @dependent_controls ||= @dependent.flatten.uniq.filter_map { |x| controls.find { |y| y.id == x } }
+      end
+      def to_reference
+        "#{type.split('::').map(&:capitalize).join('::')}['#{title}']"
+      end
+      private
+      attr_reader :data, :framework, :mapper
+      def load_manifest
+        AbideDevUtils::Ppt::CodeIntrospection::Manifest.new(file_path)
+      rescue StandardError
+        nil
+      end
+      def resource_properties(prop_name)
+        props = Set.new
+        return props unless data.key?(prop_name)
+        data[prop_name].each do |param, param_val|
+          props << { name: param,
+                     type: ruby_class_to_puppet_type(param_val.class.to_s),
+                     default: param_val }
+        end
+        props
+      end
+      def load_controls
+        if data['controls'].respond_to?(:keys)
+          load_hash_controls(data['controls'], framework, mapper)
+        elsif data['controls'].respond_to?(:each_with_index)
+          load_array_controls(data['controls'], framework, mapper)
+        else
+          raise "Control type is invalid. Type: #{data['controls'].class}"
+        end
+      end
+      def load_hash_controls(ctrls, framework, mapper)
+        ctrls.each_with_object([]) do |(name, data), arr|
+          if name == 'dependent'
+            @dependent << data
+            next
+          end
+          ctrl = Control.new(name, data, self, framework, mapper)
+          arr << ctrl
+        rescue AbideDevUtils::Errors::ControlIdFrameworkMismatchError,
+               AbideDevUtils::Errors::NoMappingDataForControlError
+          next
+        end
+      end
+      def load_array_controls(ctrls, framework, mapper)
+        ctrls.each_with_object([]) do |c, arr|
+          if c == 'dependent'
+            @dependent << c
+            next
+          end
+          ctrl = Control.new(c, 'no_params', self, framework, mapper)
+          arr << ctrl
+        rescue AbideDevUtils::Errors::ControlIdFrameworkMismatchError,
+               AbideDevUtils::Errors::NoMappingDataForControlError
+          next
+        end
+      end
+      def ruby_class_to_puppet_type(class_name)
+        pup_type = class_name.split('::').last.capitalize
+        case pup_type
+        when %r{(Trueclass|Falseclass)}
+          'Boolean'
+        when %r{(String|Pathname)}
+          'String'
+        when %r{(Integer|Fixnum)}
+          'Integer'
+        when %r{(Float|Double)}
+          'Float'
+        when %r{Nilclass}
+          'Optional'
+        else
+          pup_type
+        end
+      end
+    end
+    # Represents a singular rule in a benchmark
+    class Control
+      include AbideDevUtils::DotNumberComparable
+      attr_reader :id, :params, :resource, :framework, :dependent
+      def initialize(id, params, resource, framework, mapper)
+        validate_id_with_framework(id, framework, mapper)
+        @id = id
+        @params = params
+        @resource = resource
+        @framework = framework
+        @mapper = mapper
+        raise AbideDevUtils::Errors::NoMappingDataForControlError, @id unless @mapper.get(id)
+      end
+      def params?
+        !(params.nil? || params.empty? || params == 'no_params') || (resource.cem_options? || resource.cem_protected?)
+      end
+      def resource_properties?
+        resource.cem_options? || resource.cem_protected?
+      end
+      def param_hashes
+        return [no_params] unless params?
+        params.each_with_object([]) do |(param, param_val), ar|
+          ar << { name: param,
+                  type: ruby_class_to_puppet_type(param_val.class.to_s),
+                  default: param_val }
+        end
+      end
+      def alternate_ids(level: nil, profile: nil)
+        id_map = @mapper.get(id, level: level, profile: profile)
+        if display_title_type.to_s == @mapper.map_type(id)
+          id_map
+        else
+          alt_ids = id_map.each_with_object([]) do |mapval, arr|
+            arr << if display_title_type.to_s == @mapper.map_type(mapval)
+                     @mapper.get(mapval, level: level, profile: profile)
+                   else
+                     mapval
+                   end
+          end
+          alt_ids.flatten.uniq
+        end
+      end
+      def id_map_type
+        @mapper.map_type(id)
+      end
+      def display_title
+        send(display_title_type) unless display_title_type.nil?
+      end
+      def levels
+        levels_and_profiles[0]
+      end
+      def profiles
+        levels_and_profiles[1]
+      end
+      def valid_maps?
+        valid = AbideDevUtils::CEM::Mapping::FRAMEWORK_TYPES[framework].each_with_object([]) do |mtype, arr|
+          arr << if @mapper.map_type(id) == mtype
+                   id
+                 else
+                   @mapper.get(id).find { |x| @mapper.map_type(x) == mtype }
+                 end
+        end
+        valid.compact.length == AbideDevUtils::CEM::Mapping::FRAMEWORK_TYPES[framework].length
+      end
+      def method_missing(meth, *args, &block)
+        meth_s = meth.to_s
+        if AbideDevUtils::CEM::Mapping::ALL_TYPES.include?(meth_s)
+          @mapper.get(id).find { |x| @mapper.map_type(x) == meth_s }
+        else
+          super
+        end
+      end
+      def respond_to_missing?(meth, include_private = false)
+        AbideDevUtils::CEM::Mapping::ALL_TYPES.include?(meth.to_s) || super
+      end
+      def to_h
+        {
+          id: id,
+          display_title: display_title,
+          alternate_ids: alternate_ids,
+          levels: levels,
+          profiles: profiles,
+          params: param_hashes,
+          resource: resource.to_stubbed_h,
+        }
+      end
+      private
+      def display_title_type
+        if (!vulnid.nil? && !vulnid.is_a?(String)) || !title.is_a?(String)
+          nil
+        elsif framework == 'stig' && vulnid
+          :vulnid
+        else
+          :title
+        end
+      end
+      def validate_id_with_framework(id, framework, mapper)
+        mtype = mapper.map_type(id)
+        return if AbideDevUtils::CEM::Mapping::FRAMEWORK_TYPES[framework].include?(mtype)
+        raise AbideDevUtils::Errors::ControlIdFrameworkMismatchError, [id, mtype, framework]
+      end
+      def map
+        @map ||= @mapper.get(id)
+      end
+      def levels_and_profiles
+        @levels_and_profiles ||= find_levels_and_profiles
+      end
+      def find_levels_and_profiles
+        lvls = []
+        profs = []
+        @mapper.levels.each do |lvl|
+          @mapper.profiles.each do |prof|
+            unless @mapper.get(id, level: lvl, profile: prof).nil?
+              lvls << lvl
+              profs << prof
+            end
+          end
+        end
+        [lvls.flatten.compact.uniq, profs.flatten.compact.uniq]
+      end
+      def ruby_class_to_puppet_type(class_name)
+        pup_type = class_name.split('::').last.capitalize
+        case pup_type
+        when %r{(Trueclass|Falseclass)}
+          'Boolean'
+        when %r{(String|Pathname)}
+          'String'
+        when %r{(Integer|Fixnum)}
+          'Integer'
+        when %r{(Float|Double)}
+          'Float'
+        when %r{Nilclass}
+          'Optional'
+        else
+          pup_type
+        end
+      end
+      def no_params
+        { name: 'No parameters', type: nil, default: nil }
+      end
+    end
+    # Repesents a benchmark based on resource and mapping data
     class Benchmark
-      attr_reader :osname, :major_version, :os_facts, :osfamily, :hiera_conf, :module_name, :framework, :rules
+      attr_reader :osname, :major_version, :os_facts, :osfamily, :hiera_conf, :module_name, :framework
       def initialize(osname, major_version, hiera_conf, module_name, framework: 'cis')
         @osname = osname
@@ -18,10 +322,8 @@ module AbideDevUtils
         @hiera_conf = hiera_conf
         @module_name = module_name
         @framework = framework
-        @rules = {}
         @map_cache = {}
         @rules_in_map = {}
-        load_rules
       end
       # Creates Benchmark objects from a Puppet module
@@ -38,23 +340,47 @@ module AbideDevUtils
           if majver.is_a?(Array)
             majver.sort.each do |v|
               frameworks.each do |fw|
-                benchmark = Benchmark.new(osname, v, pupmod.hiera_conf, pupmod.name(strip_namespace: true), framework: fw)
+                benchmark = Benchmark.new(osname,
+                                          v,
+                                          pupmod.hiera_conf,
+                                          pupmod.name(strip_namespace: true),
+                                          framework: fw)
+                benchmark.controls
                 ary << benchmark
+              rescue AbideDevUtils::Errors::MappingDataFrameworkMismatchError => e
+                raise e unless ignore_all_errors || ignore_framework_mismatch
               rescue StandardError => e
-                raise e unless ignore_all_errors || (e.instance_of?(AbideDevUtils::Errors::MappingDataFrameworkMismatchError) && ignore_framework_mismatch)
+                raise e unless ignore_all_errors
               end
             end
           else
             frameworks.each do |fw|
-              benchmark = Benchmark.new(osname, majver, pupmod.hiera_conf, pupmod.name(strip_namespace: true), framework: fw)
+              benchmark = Benchmark.new(osname,
+                                        majver,
+                                        pupmod.hiera_conf,
+                                        pupmod.name(strip_namespace: true),
+                                        framework: fw)
+              benchmark.controls
               ary << benchmark
+            rescue AbideDevUtils::Errors::MappingDataFrameworkMismatchError => e
+              raise e unless ignore_all_errors || ignore_framework_mismatch
             rescue StandardError => e
-              raise e unless ignore_all_errors || (e.instance_of?(AbideDevUtils::Errors::MappingDataFrameworkMismatchError) && ignore_framework_mismatch)
+              raise e unless ignore_all_errors
             end
           end
         end
       end
+      def resources
+        @resources ||= resource_data["#{module_name}::resources"].each_with_object([]) do |(rtitle, rdata), arr|
+          arr << Resource.new(rtitle, rdata, framework, mapper)
+        end
+      end
+      def controls
+        @controls ||= resources.map(&:controls).flatten.sort
+      end
       def mapper
         @mapper ||= AbideDevUtils::CEM::Mapping::Mapper.new(module_name, framework, load_mapping_data)
       end
@@ -113,131 +439,6 @@ module AbideDevUtils
       private
-      def load_rules
-        resource_data["#{module_name}::resources"].each do |_, rdata|
-          unless rdata.key?('controls')
-            puts "Controls key not found in #{rdata}"
-            next
-          end
-          rdata['controls'].each do |control, control_data|
-            rule_title = map(control)
-            next if rule_title.nil? || rule_title.empty?
-            rule_title.find { |id| map_type(id) == 'title' }
-            alternate_ids = map(rule_title)
-            next unless rule_title.is_a?(String)
-            @rules[rule_title] = {} unless @rules&.key?(rule_title)
-            @rules[rule_title]['number'] = alternate_ids.find { |id| map_type(id) == 'number' }
-            @rules[rule_title]['alternate_ids'] = alternate_ids
-            @rules[rule_title]['params'] = [] unless @rules[rule_title].key?('params')
-            @rules[rule_title]['level'] = [] unless @rules[rule_title].key?('level')
-            @rules[rule_title]['profile'] = [] unless @rules[rule_title].key?('profile')
-            param_hashes(control_data).each do |param_hash|
-              next if @rules[rule_title]['params'].include?(param_hash[:name])
-              @rules[rule_title]['params'] << param_hash
-            end
-            levels, profiles = find_levels_and_profiles(control)
-            unless @rules[rule_title]['level'] == levels
-              @rules[rule_title]['level'] = @rules[rule_title]['level'] | levels
-            end
-            unless @rules[rule_title]['profile'] == profiles
-              @rules[rule_title]['profile'] = @rules[rule_title]['profile'] | profiles
-            end
-            @rules[rule_title]['resource'] = rdata['type']
-          end
-        end
-        @rules = sort_rules
-      end
-      def param_hashes(control_data)
-        return [] if control_data.nil? || control_data.empty?
-        p_hashes = []
-        if !control_data.respond_to?(:each) && control_data == 'no_params'
-          p_hashes << no_params
-        else
-          control_data.each do |param, param_val|
-            p_hashes << {
-              name: param,
-              type: ruby_class_to_puppet_type(param_val.class.to_s),
-              default: param_val,
-            }
-          end
-        end
-        p_hashes
-      end
-      def no_params
-        { name: 'No parameters', type: nil, default: nil }
-      end
-      # We sort the rules by their control number so they
-      # appear in the REFERENCE in benchmark order
-      def sort_rules
-        sorted = @rules.dup.sort_by do |_, v|
-          control_num_to_int(v['number'])
-        end
-        sorted.to_h
-      end
-      # In order to sort the rules by their control number,
-      # we need to convert the control number to an integer.
-      # This is a rough conversion, but should be sufficient
-      # for the purposes of sorting. The multipliers are
-      # the 20th, 15th, 10th, and 5th numbers in the Fibonacci
-      # sequence, then 1 after that. The reason for this is to
-      # ensure a "spiraled" wieghting of the sections in the control
-      # number, with 1st section having the most sorting weight, 2nd
-      # having second most, etc. However, the differences in the multipliers
-      # are such that it would be difficult for the product of a lesser-weighted
-      # section to be greater than a greater-weighted section.
-      def control_num_to_int(control_num)
-        multipliers = [6765, 610, 55, 5, 1]
-        nsum = 0
-        midx = 0
-        control_num.split('.').each do |num|
-          multiplier = midx >= multipliers.length ? 1 : multipliers[midx]
-          nsum += num.to_i * multiplier
-          midx += 1
-        end
-        nsum
-      end
-      def find_levels_and_profiles(control_id)
-        levels = []
-        profiles = []
-        mapper.each_like(control_id) do |lvl, profile_hash|
-          next if lvl == 'benchmark'
-          profile_hash.each do |prof, _|
-            unless map(control_id, level: lvl, profile: prof).nil?
-              levels << lvl
-              profiles << prof
-            end
-          end
-        end
-        [levels, profiles]
-      end
-      def ruby_class_to_puppet_type(class_name)
-        pup_type = class_name.split('::').last.capitalize
-        case pup_type
-        when %r{(Trueclass|Falseclass)}
-          'Boolean'
-        when %r{(String|Pathname)}
-          'String'
-        when %r{(Integer|Fixnum)}
-          'Integer'
-        when %r{(Float|Double)}
-          'Float'
-        else
-          pup_type
-        end
-      end
       def load_mapping_data
         files = case module_name
                 when /_windows$/
@@ -248,8 +449,6 @@ module AbideDevUtils
                   raise "Module name '#{module_name}' is not a CEM module"
                 end
         validate_mapping_files_framework(files).each_with_object({}) do |f, h|
-          next unless f.path.include?(framework)
           h[File.basename(f.path, '.yaml')] = YAML.load_file(f.path)
         end
       end