RubyGems - inspec-core - Versions diffs - 4.3.2 → 4.6.3 - Mend

inspec-core 4.3.2 → 4.6.3

Files changed (285) hide show

checksums.yaml +4 -4
data/README.md +37 -21
data/etc/deprecations.json +10 -0
data/etc/plugin_filters.json +8 -0
data/lib/bundles/inspec-compliance/api.rb +1 -1
data/lib/bundles/inspec-compliance/configuration.rb +1 -1
data/lib/bundles/inspec-compliance/http.rb +1 -1
data/lib/bundles/inspec-compliance/support.rb +1 -1
data/lib/bundles/inspec-compliance/target.rb +1 -1
data/lib/bundles/inspec-supermarket.rb +3 -7
data/lib/bundles/inspec-supermarket/api.rb +10 -13
data/lib/bundles/inspec-supermarket/cli.rb +12 -15
data/lib/bundles/inspec-supermarket/target.rb +7 -11
data/lib/fetchers/git.rb +14 -15
data/lib/fetchers/local.rb +6 -10
data/lib/fetchers/mock.rb +3 -5
data/lib/fetchers/url.rb +42 -44
data/lib/inspec.rb +23 -24
data/lib/inspec/archive/tar.rb +2 -6
data/lib/inspec/archive/zip.rb +3 -7
data/lib/inspec/backend.rb +8 -9
data/lib/inspec/base_cli.rb +64 -65
data/lib/inspec/cached_fetcher.rb +2 -3
data/lib/inspec/cli.rb +136 -97
data/lib/inspec/config.rb +71 -61
data/lib/inspec/control_eval_context.rb +22 -18
data/lib/inspec/dependencies/cache.rb +2 -3
data/lib/inspec/dependencies/dependency_set.rb +2 -3
data/lib/inspec/dependencies/lockfile.rb +8 -9
data/lib/inspec/dependencies/requirement.rb +7 -8
data/lib/inspec/dependencies/resolver.rb +5 -7
data/lib/inspec/describe.rb +2 -6
data/lib/inspec/dist.rb +20 -0
data/lib/inspec/dsl.rb +4 -7
data/lib/inspec/dsl_shared.rb +1 -2
data/lib/inspec/env_printer.rb +11 -12
data/lib/inspec/errors.rb +0 -4
data/lib/inspec/exceptions.rb +0 -1
data/lib/inspec/expect.rb +5 -8
data/lib/inspec/fetcher.rb +7 -10
data/lib/inspec/file_provider.rb +24 -24
data/lib/inspec/formatters.rb +3 -3
data/lib/inspec/formatters/base.rb +8 -8
data/lib/inspec/globals.rb +2 -2
data/lib/inspec/impact.rb +5 -7
data/lib/inspec/input_registry.rb +84 -33
data/lib/inspec/library_eval_context.rb +3 -6
data/lib/inspec/log.rb +1 -5
data/lib/inspec/metadata.rb +17 -16
data/lib/inspec/method_source.rb +5 -9
data/lib/inspec/objects.rb +10 -12
data/lib/inspec/objects/control.rb +7 -9
data/lib/inspec/objects/describe.rb +9 -11
data/lib/inspec/objects/each_loop.rb +1 -3
data/lib/inspec/objects/input.rb +24 -26
data/lib/inspec/objects/list.rb +4 -6
data/lib/inspec/objects/or_test.rb +2 -4
data/lib/inspec/objects/ruby_helper.rb +3 -5
data/lib/inspec/objects/tag.rb +0 -2
data/lib/inspec/objects/test.rb +9 -11
data/lib/inspec/objects/value.rb +3 -5
data/lib/inspec/plugin/v1.rb +2 -2
data/lib/inspec/plugin/v1/plugin_types/cli.rb +1 -5
data/lib/inspec/plugin/v1/plugin_types/fetcher.rb +2 -5
data/lib/inspec/plugin/v1/plugin_types/resource.rb +4 -6
data/lib/inspec/plugin/v1/plugin_types/secret.rb +1 -5
data/lib/inspec/plugin/v1/plugin_types/source_reader.rb +1 -5
data/lib/inspec/plugin/v1/plugins.rb +15 -19
data/lib/inspec/plugin/v1/registry.rb +0 -4
data/lib/inspec/plugin/v2.rb +8 -8
data/lib/inspec/plugin/v2/activator.rb +1 -1
data/lib/inspec/plugin/v2/config_file.rb +6 -6
data/lib/inspec/plugin/v2/filter.rb +13 -13
data/lib/inspec/plugin/v2/installer.rb +36 -24
data/lib/inspec/plugin/v2/loader.rb +28 -28
data/lib/inspec/plugin/v2/plugin_base.rb +15 -2
data/lib/inspec/plugin/v2/plugin_types/cli.rb +5 -5
data/lib/inspec/plugin/v2/plugin_types/input.rb +34 -0
data/lib/inspec/plugin/v2/plugin_types/mock.rb +1 -1
data/lib/inspec/plugin/v2/registry.rb +7 -7
data/lib/inspec/polyfill.rb +0 -3
data/lib/inspec/profile.rb +55 -63
data/lib/inspec/profile_context.rb +27 -30
data/lib/inspec/profile_vendor.rb +6 -9
data/lib/inspec/reporters.rb +24 -24
data/lib/inspec/reporters/automate.rb +17 -19
data/lib/inspec/reporters/base.rb +1 -1
data/lib/inspec/reporters/cli.rb +88 -91
data/lib/inspec/reporters/json.rb +2 -4
data/lib/inspec/reporters/json_automate.rb +1 -3
data/lib/inspec/reporters/json_min.rb +1 -3
data/lib/inspec/reporters/junit.rb +26 -28
data/lib/inspec/reporters/yaml.rb +1 -3
data/lib/inspec/require_loader.rb +0 -4
data/lib/inspec/resource.rb +4 -125
data/lib/inspec/resources.rb +121 -0
data/lib/{resources → inspec/resources}/aide_conf.rb +24 -25
data/lib/{resources → inspec/resources}/apache.rb +13 -14
data/lib/{resources → inspec/resources}/apache_conf.rb +16 -17
data/lib/{resources → inspec/resources}/apt.rb +17 -17
data/lib/{resources → inspec/resources}/audit_policy.rb +7 -6
data/lib/{resources → inspec/resources}/auditd.rb +62 -64
data/lib/{resources → inspec/resources}/auditd_conf.rb +7 -8
data/lib/{resources → inspec/resources}/bash.rb +6 -8
data/lib/{resources → inspec/resources}/bond.rb +15 -14
data/lib/{resources → inspec/resources}/bridge.rb +8 -8
data/lib/{resources → inspec/resources}/chocolatey_package.rb +10 -8
data/lib/{resources → inspec/resources}/command.rb +11 -10
data/lib/{resources → inspec/resources}/cpan.rb +12 -12
data/lib/{resources → inspec/resources}/cran.rb +9 -9
data/lib/{resources → inspec/resources}/crontab.rb +47 -48
data/lib/{resources → inspec/resources}/csv.rb +5 -5
data/lib/{resources → inspec/resources}/dh_params.rb +5 -7
data/lib/{resources → inspec/resources}/directory.rb +5 -7
data/lib/{resources → inspec/resources}/docker.rb +63 -63
data/lib/{resources → inspec/resources}/docker_container.rb +6 -6
data/lib/{resources → inspec/resources}/docker_image.rb +9 -9
data/lib/{resources → inspec/resources}/docker_object.rb +8 -13
data/lib/{resources → inspec/resources}/docker_plugin.rb +6 -6
data/lib/{resources → inspec/resources}/docker_service.rb +7 -7
data/lib/{resources → inspec/resources}/elasticsearch.rb +40 -42
data/lib/{resources → inspec/resources}/etc_fstab.rb +23 -24
data/lib/{resources → inspec/resources}/etc_group.rb +26 -27
data/lib/{resources → inspec/resources}/etc_hosts.rb +11 -13
data/lib/{resources → inspec/resources}/etc_hosts_allow_deny.rb +25 -27
data/lib/{resources → inspec/resources}/file.rb +80 -79
data/lib/{resources → inspec/resources}/filesystem.rb +20 -15
data/lib/{resources → inspec/resources}/firewalld.rb +26 -26
data/lib/{resources → inspec/resources}/gem.rb +12 -12
data/lib/{resources → inspec/resources}/groups.rb +28 -27
data/lib/{resources → inspec/resources}/grub_conf.rb +46 -48
data/lib/{resources → inspec/resources}/host.rb +31 -29
data/lib/{resources → inspec/resources}/http.rb +24 -24
data/lib/{resources → inspec/resources}/iis_app.rb +6 -7
data/lib/{resources → inspec/resources}/iis_app_pool.rb +21 -19
data/lib/{resources → inspec/resources}/iis_site.rb +17 -15
data/lib/{resources → inspec/resources}/inetd_conf.rb +9 -10
data/lib/{resources → inspec/resources}/ini.rb +7 -8
data/lib/{resources → inspec/resources}/interface.rb +30 -30
data/lib/{resources → inspec/resources}/iptables.rb +8 -8
data/lib/{resources → inspec/resources}/json.rb +8 -10
data/lib/{resources → inspec/resources}/kernel_module.rb +15 -15
data/lib/{resources → inspec/resources}/kernel_parameter.rb +8 -8
data/lib/{resources → inspec/resources}/key_rsa.rb +8 -10
data/lib/{resources → inspec/resources}/ksh.rb +6 -8
data/lib/{resources → inspec/resources}/limits_conf.rb +8 -9
data/lib/{resources/login_def.rb → inspec/resources/login_defs.rb} +9 -10
data/lib/{resources → inspec/resources}/mount.rb +6 -8
data/lib/{resources → inspec/resources}/mssql_session.rb +16 -18
data/lib/inspec/resources/mysql.rb +81 -0
data/lib/{resources → inspec/resources}/mysql_conf.rb +13 -14
data/lib/{resources → inspec/resources}/mysql_session.rb +16 -16
data/lib/{resources → inspec/resources}/nginx.rb +16 -17
data/lib/{resources → inspec/resources}/nginx_conf.rb +26 -27
data/lib/{resources → inspec/resources}/npm.rb +9 -10
data/lib/{resources → inspec/resources}/ntp_conf.rb +9 -10
data/lib/{resources → inspec/resources}/oneget.rb +8 -8
data/lib/{resources → inspec/resources}/oracledb_session.rb +33 -34
data/lib/{resources → inspec/resources}/os.rb +6 -8
data/lib/{resources → inspec/resources}/os_env.rb +11 -12
data/lib/{resources → inspec/resources}/package.rb +66 -65
data/lib/{resources → inspec/resources}/packages.rb +13 -13
data/lib/{resources → inspec/resources}/parse_config.rb +8 -8
data/lib/{resources → inspec/resources}/passwd.rb +18 -19
data/lib/{resources → inspec/resources}/pip.rb +19 -19
data/lib/{resources → inspec/resources}/platform.rb +9 -11
data/lib/{resources → inspec/resources}/port.rb +134 -136
data/lib/{resources → inspec/resources}/postgres.rb +40 -32
data/lib/{resources → inspec/resources}/postgres_conf.rb +17 -17
data/lib/{resources → inspec/resources}/postgres_hba_conf.rb +21 -23
data/lib/{resources → inspec/resources}/postgres_ident_conf.rb +12 -14
data/lib/{resources → inspec/resources}/postgres_session.rb +8 -9
data/lib/{resources → inspec/resources}/powershell.rb +17 -13
data/lib/{resources → inspec/resources}/processes.rb +29 -29
data/lib/{resources/rabbitmq_conf.rb → inspec/resources/rabbitmq_config.rb} +10 -11
data/lib/{resources → inspec/resources}/registry_key.rb +14 -14
data/lib/inspec/resources/script.rb +1 -0
data/lib/{resources → inspec/resources}/security_identifier.rb +11 -10
data/lib/{resources → inspec/resources}/security_policy.rb +59 -58
data/lib/{resources → inspec/resources}/service.rb +74 -75
data/lib/{resources → inspec/resources}/shadow.rb +44 -45
data/lib/{resources/ssh_conf.rb → inspec/resources/ssh_config.rb} +16 -17
data/lib/{resources → inspec/resources}/ssl.rb +28 -29
data/lib/inspec/resources/sys_info.rb +30 -0
data/lib/{resources → inspec/resources}/toml.rb +5 -7
data/lib/{resources → inspec/resources}/users.rb +65 -65
data/lib/{resources → inspec/resources}/vbscript.rb +8 -9
data/lib/{resources → inspec/resources}/virtualization.rb +60 -62
data/lib/{resources → inspec/resources}/windows_feature.rb +9 -9
data/lib/{resources → inspec/resources}/windows_hotfix.rb +5 -5
data/lib/{resources → inspec/resources}/windows_task.rb +16 -15
data/lib/{resources → inspec/resources}/wmi.rb +7 -8
data/lib/{resources → inspec/resources}/x509_certificate.rb +9 -11
data/lib/{resources/xinetd.rb → inspec/resources/xinetd_conf.rb} +27 -29
data/lib/{resources → inspec/resources}/xml.rb +7 -7
data/lib/{resources → inspec/resources}/yaml.rb +5 -6
data/lib/{resources → inspec/resources}/yum.rb +10 -10
data/lib/{resources → inspec/resources}/zfs_dataset.rb +6 -6
data/lib/{resources → inspec/resources}/zfs_pool.rb +4 -4
data/lib/inspec/rspec_extensions.rb +24 -8
data/lib/inspec/rule.rb +14 -15
data/lib/inspec/runner.rb +28 -28
data/lib/inspec/runner_mock.rb +1 -5
data/lib/inspec/runner_rspec.rb +18 -20
data/lib/inspec/runtime_profile.rb +2 -5
data/lib/inspec/schema.rb +142 -143
data/lib/inspec/secrets.rb +3 -7
data/lib/inspec/secrets/yaml.rb +3 -5
data/lib/inspec/shell.rb +11 -15
data/lib/inspec/shell_detector.rb +6 -7
data/lib/inspec/source_reader.rb +4 -8
data/lib/inspec/ui.rb +33 -39
data/lib/inspec/ui_table_helper.rb +12 -0
data/lib/{utils → inspec/utils}/command_wrapper.rb +4 -8
data/lib/{utils → inspec/utils}/convert.rb +0 -4
data/lib/{utils → inspec/utils}/database_helpers.rb +4 -8
data/lib/inspec/utils/deprecation.rb +6 -0
data/lib/{utils → inspec/utils}/deprecation/config_file.rb +19 -19
data/lib/{utils → inspec/utils}/deprecation/deprecator.rb +12 -12
data/lib/{utils → inspec/utils}/deprecation/errors.rb +1 -1
data/lib/{utils → inspec/utils}/deprecation/global_method.rb +2 -2
data/lib/{utils → inspec/utils}/enumerable_delegation.rb +0 -2
data/lib/{utils → inspec/utils}/erlang_parser.rb +61 -65
data/lib/{utils → inspec/utils}/file_reader.rb +1 -2
data/lib/{utils → inspec/utils}/filter.rb +30 -33
data/lib/{utils → inspec/utils}/filter_array.rb +0 -2
data/lib/{utils → inspec/utils}/find_files.rb +9 -12
data/lib/{utils → inspec/utils}/hash.rb +1 -5
data/lib/inspec/utils/json_log.rb +15 -0
data/lib/inspec/utils/latest_version.rb +13 -0
data/lib/{utils → inspec/utils}/modulator.rb +0 -3
data/lib/{utils → inspec/utils}/nginx_parser.rb +31 -35
data/lib/{utils → inspec/utils}/object_traversal.rb +0 -3
data/lib/{utils → inspec/utils}/parser.rb +45 -45
data/lib/{utils → inspec/utils}/pkey_reader.rb +4 -2
data/lib/{utils → inspec/utils}/simpleconfig.rb +8 -10
data/lib/{utils → inspec/utils}/spdx.rb +1 -4
data/lib/{utils → inspec/utils}/spdx.txt +0 -0
data/lib/inspec/utils/telemetry.rb +3 -3
data/lib/inspec/utils/telemetry/collector.rb +30 -9
data/lib/inspec/utils/telemetry/data_series.rb +3 -1
data/lib/inspec/utils/telemetry/global_methods.rb +1 -1
data/lib/inspec/version.rb +1 -1
data/lib/matchers/matchers.rb +22 -25
data/lib/plugins/inspec-artifact/lib/inspec-artifact.rb +1 -1
data/lib/plugins/inspec-artifact/lib/inspec-artifact/base.rb +52 -45
data/lib/plugins/inspec-artifact/lib/inspec-artifact/cli.rb +18 -16
data/lib/plugins/inspec-compliance/lib/inspec-compliance.rb +1 -1
data/lib/plugins/inspec-compliance/lib/inspec-compliance/api.rb +73 -73
data/lib/plugins/inspec-compliance/lib/inspec-compliance/api/login.rb +66 -62
data/lib/plugins/inspec-compliance/lib/inspec-compliance/cli.rb +59 -57
data/lib/plugins/inspec-compliance/lib/inspec-compliance/configuration.rb +11 -11
data/lib/plugins/inspec-compliance/lib/inspec-compliance/http.rb +20 -22
data/lib/plugins/inspec-compliance/lib/inspec-compliance/support.rb +2 -4
data/lib/plugins/inspec-compliance/lib/inspec-compliance/target.rb +30 -27
data/lib/plugins/inspec-habitat/Berksfile +2 -2
data/lib/plugins/inspec-habitat/lib/inspec-habitat.rb +1 -1
data/lib/plugins/inspec-habitat/lib/inspec-habitat/cli.rb +15 -13
data/lib/plugins/inspec-habitat/lib/inspec-habitat/profile.rb +64 -63
data/lib/plugins/inspec-habitat/templates/habitat/hooks/run.erb +3 -3
data/lib/plugins/inspec-habitat/templates/habitat/plan.sh.erb +11 -11
data/lib/plugins/inspec-init/lib/inspec-init.rb +1 -1
data/lib/plugins/inspec-init/lib/inspec-init/cli.rb +6 -8
data/lib/plugins/inspec-init/lib/inspec-init/cli_plugin.rb +72 -74
data/lib/plugins/inspec-init/lib/inspec-init/cli_profile.rb +9 -11
data/lib/plugins/inspec-init/lib/inspec-init/renderer.rb +4 -4
data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/Gemfile +0 -1
data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/inspec-plugin-template.gemspec +0 -2
data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template.rb +0 -2
data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/cli_command.rb +0 -2
data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/plugin.rb +0 -2
data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/version.rb +0 -2
data/lib/plugins/inspec-init/templates/profiles/os/controls/example.rb +6 -7
data/lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli.rb +1 -2
data/lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli/cli_command.rb +72 -70
data/lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli/plugin.rb +1 -1
data/lib/plugins/shared/core_plugin_test_helper.rb +43 -38
data/lib/source_readers/flat.rb +6 -10
data/lib/source_readers/inspec.rb +8 -12
metadata +139 -140
data/lib/resources/mysql.rb +0 -82
data/lib/resources/sys_info.rb +0 -28
data/lib/utils/deprecation.rb +0 -6
data/lib/utils/json_log.rb +0 -18
data/lib/utils/latest_version.rb +0 -22

data/lib/{resources → inspec/resources}/inetd_conf.rb RENAMED Viewed

@@ -1,14 +1,13 @@
-# encoding: utf-8
 # copyright: 2015, Vulcano Security GmbH
-require 'utils/simpleconfig'
-require 'utils/file_reader'
+require "inspec/utils/simpleconfig"
+require "inspec/utils/file_reader"
 module Inspec::Resources
   class InetdConf < Inspec.resource(1)
-    name 'inetd_conf'
-    supports platform: 'unix'
-    desc 'Use the inetd_conf InSpec audit resource to test if a service is enabled in the inetd.conf file on Linux and UNIX platforms. inetd---the Internet service daemon---listens on dedicated ports, and then loads the appropriate program based on a request. The inetd.conf file is typically located at /etc/inetd.conf and contains a list of Internet services associated to the ports on which that service will listen. Only enabled services may handle a request; only services that are required by the system should be enabled.'
+    name "inetd_conf"
+    supports platform: "unix"
+    desc "Use the inetd_conf InSpec audit resource to test if a service is enabled in the inetd.conf file on Linux and UNIX platforms. inetd---the Internet service daemon---listens on dedicated ports, and then loads the appropriate program based on a request. The inetd.conf file is typically located at /etc/inetd.conf and contains a list of Internet services associated to the ports on which that service will listen. Only enabled services may handle a request; only services that are required by the system should be enabled."
     example <<~EXAMPLE
       describe inetd_conf do
         its('shell') { should eq nil }
@@ -20,14 +19,14 @@ module Inspec::Resources
     include FileReader
     def initialize(path = nil)
-      @conf_path = path || '/etc/inetd.conf'
+      @conf_path = path || "/etc/inetd.conf"
       @content = read_file_content(@conf_path)
     end
     # overwrite exec to ensure it works with its
     # TODO: this needs to be fixed in RSpec
     def exec
-      read_params['exec']
+      read_params["exec"]
     end
     def method_missing(name)
@@ -42,13 +41,13 @@ module Inspec::Resources
         @content,
         assignment_regex: /^\s*(\S+?)\s+(.*?)\s+(.*?)\s+(.*?)\s+(.*?)\s+(.*?)\s+(.*?)\s*$/,
         key_values: 6,
-        multiple_values: false,
+        multiple_values: false
       )
       @params = conf.params
     end
     def to_s
-      'inetd.conf'
+      "inetd.conf"
     end
   end
 end

data/lib/{resources → inspec/resources}/ini.rb RENAMED Viewed

@@ -1,13 +1,12 @@
-# encoding: utf-8
-require 'utils/simpleconfig'
+require "inspec/resources/json"
+require "inspec/utils/simpleconfig"
 module Inspec::Resources
   class IniConfig < JsonConfig
-    name 'ini'
-    supports platform: 'unix'
-    supports platform: 'windows'
-    desc 'Use the ini InSpec audit resource to test data in a INI file.'
+    name "ini"
+    supports platform: "unix"
+    supports platform: "windows"
+    desc "Use the ini InSpec audit resource to test data in a INI file."
     example <<~EXAMPLE
       descibe ini do
         its('auth_protocol') { should eq 'https' }
@@ -23,7 +22,7 @@ module Inspec::Resources
     # used by JsonConfig to build up a full to_s method
     # based on whether a file path, content, or command was supplied.
     def resource_base_name
-      'INI'
+      "INI"
     end
   end
 end

data/lib/{resources → inspec/resources}/interface.rb RENAMED Viewed

@@ -1,13 +1,13 @@
-# encoding: utf-8
-require 'utils/convert'
+require "inspec/resources/command"
+require "inspec/utils/convert"
+require "inspec/utils/simpleconfig"
 module Inspec::Resources
   class NetworkInterface < Inspec.resource(1)
-    name 'interface'
-    supports platform: 'unix'
-    supports platform: 'windows'
-    desc 'Use the interface InSpec audit resource to test basic network adapter properties, such as name, status, and link speed (in MB/sec).'
+    name "interface"
+    supports platform: "unix"
+    supports platform: "windows"
+    desc "Use the interface InSpec audit resource to test basic network adapter properties, such as name, status, and link speed (in MB/sec)."
     example <<~EXAMPLE
       describe interface('eth0') do
         it { should exist }
@@ -26,7 +26,7 @@ module Inspec::Resources
       elsif inspec.os.windows?
         @interface_provider = WindowsInterface.new(inspec)
       else
-        return skip_resource 'The `interface` resource is not supported on your OS yet.'
+        return skip_resource "The `interface` resource is not supported on your OS yet."
       end
     end
@@ -52,15 +52,15 @@ module Inspec::Resources
     end
     def ipv4_addresses
-      ipv4_cidrs.map { |i| i.split('/')[0] }
+      ipv4_cidrs.map { |i| i.split("/")[0] }
     end
     def ipv6_addresses
-      ipv6_cidrs.map { |i| i.split('/')[0] }
+      ipv6_cidrs.map { |i| i.split("/")[0] }
     end
     def ipv4_addresses_netmask
-      ipv4_cidrs.map { |i| i.split('/') }.map do |addr, netlen|
+      ipv4_cidrs.map { |i| i.split("/") }.map do |addr, netlen|
         binmask = "#{'1' * netlen.to_i}#{'0' * (32 - netlen.to_i)}".to_i(2)
         netmask = []
         (1..4).each do |_byte|
@@ -113,15 +113,15 @@ module Inspec::Resources
       # parse state
       state = false
-      if params.key?('operstate')
-        operstate, _value = params['operstate'].first
-        state = operstate == 'up'
+      if params.key?("operstate")
+        operstate, _value = params["operstate"].first
+        state = operstate == "up"
       end
       # parse speed
       speed = nil
-      if params.key?('speed')
-        speed, _value = params['speed'].first
+      if params.key?("speed")
+        speed, _value = params["speed"].first
         speed = convert_to_i(speed)
       end
@@ -130,19 +130,19 @@ module Inspec::Resources
         name: iface,
         up: state,
         speed: speed,
-        ipv4_addresses: family_addresses['inet'],
-        ipv6_addresses: family_addresses['inet6'],
+        ipv4_addresses: family_addresses["inet"],
+        ipv6_addresses: family_addresses["inet6"],
       }
     end
     private
     def addresses(iface)
-      addrs_by_family = { 'inet6' => [], 'inet' => [] }
+      addrs_by_family = { "inet6" => [], "inet" => [] }
       [4, 6].each do |v|
         cmd = inspec.command("/sbin/ip -br -#{v} address show dev #{iface}")
         next unless cmd.exit_status.to_i == 0
-        family = v == 6 ? 'inet6' : 'inet'
+        family = v == 6 ? "inet6" : "inet"
         cmd.stdout.each_line do |line|
           _dev, _state, *addrs = line.split(/\s+/)
@@ -156,11 +156,11 @@ module Inspec::Resources
   class WindowsInterface < InterfaceInfo
     def interface_info(iface)
       # gather all network interfaces
-      cmd = inspec.command('Get-NetAdapter | Select-Object -Property Name, InterfaceDescription, Status, State, ' \
-                           'MacAddress, LinkSpeed, ReceiveLinkSpeed, TransmitLinkSpeed, Virtual | ConvertTo-Json')
+      cmd = inspec.command("Get-NetAdapter | Select-Object -Property Name, InterfaceDescription, Status, State, " \
+                           "MacAddress, LinkSpeed, ReceiveLinkSpeed, TransmitLinkSpeed, Virtual | ConvertTo-Json")
-      addr_cmd = inspec.command('Get-NetIPAddress | Select-Object -Property IPv6Address, IPv4Address, InterfaceAlias,' \
-                                ' PrefixLength | ConvertTo-Json')
+      addr_cmd = inspec.command("Get-NetIPAddress | Select-Object -Property IPv6Address, IPv4Address, InterfaceAlias," \
+                                " PrefixLength | ConvertTo-Json")
       # filter network interface
       begin
@@ -178,11 +178,11 @@ module Inspec::Resources
       adapters = net_adapter.each_with_object([]) do |adapter, adapter_collection|
         # map object
         info = {
-          name: adapter['Name'],
-          up: adapter['State'] == 2,
-          speed: adapter['ReceiveLinkSpeed'] / 1000,
-          ipv4_addresses: addresses_for_proto(addresses, adapter['Name'], 'IPv4'),
-          ipv6_addresses: addresses_for_proto(addresses, adapter['Name'], 'IPv6'),
+          name: adapter["Name"],
+          up: adapter["State"] == 2,
+          speed: adapter["ReceiveLinkSpeed"] / 1000,
+          ipv4_addresses: addresses_for_proto(addresses, adapter["Name"], "IPv4"),
+          ipv6_addresses: addresses_for_proto(addresses, adapter["Name"], "IPv6"),
         }
         adapter_collection.push(info) if info[:name].casecmp(iface) == 0
       end
@@ -195,7 +195,7 @@ module Inspec::Resources
     private
     def addresses_for_proto(all_addresses, iface, proto)
-      all_addresses.select { |i| i['InterfaceAlias'] == iface }
+      all_addresses.select { |i| i["InterfaceAlias"] == iface }
                    .map { |i| "#{i["#{proto}Address"]}/#{i['PrefixLength']}" unless i["#{proto}Address"].nil? }
                    .compact
     end

data/lib/{resources → inspec/resources}/iptables.rb RENAMED Viewed

@@ -1,4 +1,4 @@
-# encoding: utf-8
+require "inspec/resources/command"
 # Usage:
 # describe iptables do
@@ -21,9 +21,9 @@
 # @see https://www.frozentux.net/iptables-tutorial/iptables-tutorial.html
 module Inspec::Resources
   class IpTables < Inspec.resource(1)
-    name 'iptables'
-    supports platform: 'linux'
-    desc 'Use the iptables InSpec audit resource to test rules that are defined in iptables, which maintains tables of IP packet filtering rules. There may be more than one table. Each table contains one (or more) chains (both built-in and custom). A chain is a list of rules that match packets. When the rule matches, the rule defines what target to assign to the packet.'
+    name "iptables"
+    supports platform: "linux"
+    desc "Use the iptables InSpec audit resource to test rules that are defined in iptables, which maintains tables of IP packet filtering rules. There may be more than one table. Each table contains one (or more) chains (both built-in and custom). A chain is a list of rules that match packets. When the rule matches, the rule defines what target to assign to the packet."
     example <<~EXAMPLE
       describe iptables do
         it { should have_rule('-P INPUT ACCEPT') }
@@ -39,7 +39,7 @@ module Inspec::Resources
       # ensures, all calls are aborted for non-supported os
       @iptables_cache = []
-      skip_resource 'The `iptables` resource is not supported on your OS yet.'
+      skip_resource "The `iptables` resource is not supported on your OS yet."
     end
     def has_rule?(rule = nil, _table = nil, _chain = nil)
@@ -54,7 +54,7 @@ module Inspec::Resources
       # construct iptables command to read all rules
       bin = find_iptables_or_error
       table_cmd = "-t #{@table}" if @table
-      iptables_cmd = format('%s %s -S %s', bin, table_cmd, @chain).strip
+      iptables_cmd = format("%s %s -S %s", bin, table_cmd, @chain).strip
       cmd = inspec.command(iptables_cmd)
       return [] if cmd.exit_status.to_i != 0
@@ -64,7 +64,7 @@ module Inspec::Resources
     end
     def to_s
-      format('Iptables %s %s', @table && "table: #{@table}", @chain && "chain: #{@chain}").strip
+      format("Iptables %s %s", @table && "table: #{@table}", @chain && "chain: #{@chain}").strip
     end
     private
@@ -74,7 +74,7 @@ module Inspec::Resources
         return cmd if inspec.command(cmd).exist?
       end
-      raise Inspec::Exceptions::ResourceFailed, 'Could not find `iptables`'
+      raise Inspec::Exceptions::ResourceFailed, "Could not find `iptables`"
     end
   end
 end

data/lib/{resources → inspec/resources}/json.rb RENAMED Viewed

@@ -1,13 +1,11 @@
-# encoding: utf-8
-require 'utils/object_traversal'
-require 'utils/enumerable_delegation'
-require 'utils/file_reader'
+require "inspec/utils/object_traversal"
+require "inspec/utils/enumerable_delegation"
+require "inspec/utils/file_reader"
 module Inspec::Resources
   class JsonConfig < Inspec.resource(1)
-    name 'json'
-    desc 'Use the json InSpec audit resource to test data in a JSON file.'
+    name "json"
+    desc "Use the json InSpec audit resource to test data in a JSON file."
     example <<~EXAMPLE
       describe json('policyfile.lock.json') do
         its(['cookbook_locks','omnibus','version']) { should eq('2.2.0') }
@@ -67,7 +65,7 @@ module Inspec::Resources
     private
     def parse(content)
-      require 'json'
+      require "json"
       JSON.parse(content)
     rescue => e
       raise Inspec::Exceptions::ResourceFailed, "Unable to parse JSON: #{e.message}"
@@ -86,7 +84,7 @@ module Inspec::Resources
       elsif opts.key?(:content)
         opts[:content]
       else
-        raise Inspec::Exceptions::ResourceFailed, 'No JSON content; must specify a file, command, or raw JSON content'
+        raise Inspec::Exceptions::ResourceFailed, "No JSON content; must specify a file, command, or raw JSON content"
       end
     end
@@ -104,7 +102,7 @@ module Inspec::Resources
     # for resources the subclass JsonConfig, this allows specification of the resource
     # base name in each subclass so we can build a good to_s method
     def resource_base_name
-      'JSON'
+      "JSON"
     end
   end
 end

data/lib/{resources → inspec/resources}/kernel_module.rb RENAMED Viewed

@@ -1,9 +1,9 @@
-# encoding: utf-8
+require "inspec/resources/command"
 module Inspec::Resources
   class KernelModule < Inspec.resource(1)
-    name 'kernel_module'
-    supports platform: 'unix'
+    name "kernel_module"
+    supports platform: "unix"
     desc 'Use the kernel_module InSpec audit resource to test kernel modules on
     Linux platforms. These parameters are located under /lib/modules. Any submodule
     may be tested using this resource.
@@ -36,14 +36,14 @@ module Inspec::Resources
     def initialize(modulename = nil)
       @module = modulename
       # this resource is only supported on Linux
-      return skip_resource 'The `kernel_parameter` resource is not supported on your OS.' if !inspec.os.linux?
+      return skip_resource "The `kernel_parameter` resource is not supported on your OS." if !inspec.os.linux?
     end
     def loaded?
-      if inspec.os.redhat? || inspec.os.name == 'fedora'
-        lsmod_cmd = '/sbin/lsmod'
+      if inspec.os.redhat? || inspec.os.name == "fedora"
+        lsmod_cmd = "/sbin/lsmod"
       else
-        lsmod_cmd = 'lsmod'
+        lsmod_cmd = "lsmod"
       end
       # get list of all modules
@@ -51,7 +51,7 @@ module Inspec::Resources
       return false if cmd.exit_status != 0
       # check if module is loaded
-      re = Regexp.new('^'+Regexp.quote(@module)+'\s')
+      re = Regexp.new("^" + Regexp.quote(@module) + '\s')
       found = cmd.stdout.match(re)
       !found.nil?
     end
@@ -66,7 +66,7 @@ module Inspec::Resources
     def version
       cmd = inspec.command("#{modinfo_cmd_for_os} -F version #{@module}")
-      cmd.exit_status.zero? ? cmd.stdout.delete("\n") : nil
+      cmd.exit_status == 0 ? cmd.stdout.delete("\n") : nil
     end
     def to_s
@@ -80,18 +80,18 @@ module Inspec::Resources
     end
     def modinfo_cmd_for_os
-      if inspec.os.redhat? || inspec.os.name == 'fedora'
-        '/sbin/modinfo'
+      if inspec.os.redhat? || inspec.os.name == "fedora"
+        "/sbin/modinfo"
       else
-        'modinfo'
+        "modinfo"
       end
     end
     def modprobe_cmd_for_os
-      if inspec.os.redhat? || inspec.os.name == 'fedora'
-        '/sbin/modprobe'
+      if inspec.os.redhat? || inspec.os.name == "fedora"
+        "/sbin/modprobe"
       else
-        'modprobe'
+        "modprobe"
       end
     end

data/lib/{resources → inspec/resources}/kernel_parameter.rb RENAMED Viewed

@@ -1,10 +1,10 @@
-# encoding: utf-8
+require "inspec/resources/command"
 module Inspec::Resources
   class KernelParameter < Inspec.resource(1)
-    name 'kernel_parameter'
-    supports platform: 'unix'
-    desc 'Use the kernel_parameter InSpec audit resource to test kernel parameters on Linux platforms.'
+    name "kernel_parameter"
+    supports platform: "unix"
+    desc "Use the kernel_parameter InSpec audit resource to test kernel parameters on Linux platforms."
     example <<~EXAMPLE
       describe kernel_parameter('net.ipv4.conf.all.forwarding') do
         its('value') { should eq 0 }
@@ -15,7 +15,7 @@ module Inspec::Resources
       @parameter = parameter
       # this resource is only supported on Linux
-      return skip_resource 'The `kernel_parameter` resource is not supported on your OS.' if !inspec.os.linux?
+      return skip_resource "The `kernel_parameter` resource is not supported on your OS." if !inspec.os.linux?
     end
     def value
@@ -34,15 +34,15 @@ module Inspec::Resources
   end
   class LinuxKernelParameter < KernelParameter
-    name 'linux_kernel_parameter'
+    name "linux_kernel_parameter"
     def initialize(parameter)
-      Inspec.deprecate(:resource_linux_kernel_parameter, 'The `linux_kernel_parameter` resource is deprecated. Please use `kernel_parameter`')
+      Inspec.deprecate(:resource_linux_kernel_parameter, "The `linux_kernel_parameter` resource is deprecated. Please use `kernel_parameter`")
       super(parameter)
     end
     def value
-      Inspec.deprecate(:resource_linux_kernel_parameter, 'The `linux_kernel_parameter` resource is deprecated. Please use `kernel_parameter`')
+      Inspec.deprecate(:resource_linux_kernel_parameter, "The `linux_kernel_parameter` resource is deprecated. Please use `kernel_parameter`")
       super()
     end

data/lib/{resources → inspec/resources}/key_rsa.rb RENAMED Viewed

@@ -1,16 +1,14 @@
-# encoding: utf-8
-require 'openssl'
-require 'hashie/mash'
-require 'utils/file_reader'
-require 'utils/pkey_reader'
+require "openssl"
+require "hashie/mash"
+require "inspec/utils/file_reader"
+require "inspec/utils/pkey_reader"
 module Inspec::Resources
   class RsaKey < Inspec.resource(1)
-    name 'key_rsa'
-    supports platform: 'unix'
-    supports platform: 'windows'
-    desc 'public/private RSA key pair test'
+    name "key_rsa"
+    supports platform: "unix"
+    supports platform: "windows"
+    desc "public/private RSA key pair test"
     example <<~EXAMPLE
       describe key_rsa('/etc/pki/www.mywebsite.com.key') do
         its('public_key') { should match /BEGIN RSA PUBLIC KEY/ }