inspec-core 4.37.17 → 4.38.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 72cf7b34a66e5b4d2e79329b3530d14e16f5d6eaf75b76322d8e926655573ed4
-  data.tar.gz: dd99f49c67c10ca4d97f464331aab65cf286f5ffa355526b8dc39c62ef0620f6
+  metadata.gz: da7b208efcb020501f9a283e5e512d3862cd4c3e7c19f2012e143af2721fd893
+  data.tar.gz: f534843ff5445086f3d40802fff3fe19c8ed787660dde2ce17816e8dc1225cac
 SHA512:
-  metadata.gz: 2dc77b50b2fa6bc122ac9458030c6a905e56dfbee365dfe21118ec5d26eb87fc0019b035a0e5860c4863289a50a82a8528745db9c1318567d39971cfe90100be
-  data.tar.gz: a53f07e9e2b52be166ca2c33afa68db9c424efb6f47e3fd4b741f913e6d667a6f57a5f59ec835ec7ed23caf88c9c60ee10a23f1f000e2c931b5535777934eeb3
+  metadata.gz: efd72de313d408802e8484dba99e6291bcd1a571fe028642736fccfcb3d02b78bb700d88a0441d6b2525285891707a738b8315c8dc315edc50e288eb000940e3
+  data.tar.gz: 12d51bdaea741376370ea5e64abf645d9734a2edf4328118b8931c11d6032446830f0f7f495eed987e7fcc27518472e21f523d93bd1c1578468b97d9028d11c3

data/Gemfile

@@ -20,11 +20,22 @@ end
 # but our runtime dep is still 3.9+
 gem "rspec", ">= 3.10"
 
+def probably_x86?
+  # We don't currently build on ARM windows, so assume x86 there
+  return true if RUBY_PLATFORM =~ /windows|mswin|msys|mingw|cygwin/
+
+  # Otherwise rely on uname -m
+  `uname -m`.match?(/^(x86_64|i\d86)/)
+end
+
 group :omnibus do
   gem "rb-readline"
   gem "appbundler"
   gem "ed25519" # ed25519 ssh key support done here as its a native gem we can't put in the gemspec
   gem "bcrypt_pbkdf" # ed25519 ssh key support done here as its a native gem we can't put in the gemspec
+  if probably_x86?
+    gem "x25519" # ed25519 KEX module, not supported on ARM
+  end
 end
 
 group :test do
@@ -55,6 +66,7 @@ end
 if Gem.ruby_version >= Gem::Version.new("2.7.0")
   group :kitchen do
     gem "berkshelf"
+    gem "chef", ">= 16.0" # Required to allow net-ssh > 6
     gem "test-kitchen", ">= 2.8"
     gem "kitchen-inspec", ">= 2.0"
     gem "kitchen-dokken", ">= 2.11"

data/etc/deprecations.json

@@ -120,6 +120,11 @@
     "object_classes": {
       "action": "warn",
       "suffix": "These classes will be removed in InSpec 5.0."
+    },
+    "cli_option_hook":{
+      "action": "warn",
+      "prefix": "The --hook option is being replaced by the --activator option.",
+      "suffix": "This options will be removed in InSpec 4.0."
     }
   }
 }

data/lib/inspec/base_cli.rb

@@ -181,7 +181,7 @@ module Inspec
       puts "  Patents: chef.io/patents\n\n"
     end
 
-    def self.format_platform_info(params: {}, indent: 0, color: 39)
+    def self.format_platform_info(params: {}, indent: 0, color: 39, enable_color: true)
       str = ""
       params.each do |item, info|
         data = info
@@ -192,7 +192,7 @@ module Inspec
         # Do not output fields of data is missing ('unknown' is fine)
         next if data.nil?
 
-        data = "\e[1m\e[#{color}m#{data}\e[0m"
+        data = "\e[1m\e[#{color}m#{data}\e[0m" if enable_color
         str << format("#{" " * indent}%-10s %s\n", item.to_s.capitalize + ":", data)
       end
       str

data/lib/inspec/cli.rb

@@ -305,7 +305,7 @@ class Inspec::InspecCLI < Inspec::BaseCLI
       puts res.to_json
     else
       ui.headline("Platform Details")
-      ui.plain Inspec::BaseCLI.format_platform_info(params: res, indent: 0, color: 36)
+      ui.plain Inspec::BaseCLI.format_platform_info(params: res, indent: 0, color: 36, enable_color: ui.color?)
     end
   rescue ArgumentError, RuntimeError, Train::UserError => e
     $stderr.puts e.message

data/lib/inspec/fetcher/local.rb

@@ -3,7 +3,8 @@ require "openssl" unless defined?(OpenSSL)
 module Inspec::Fetcher
   class Local < Inspec.fetcher(1)
     name "local"
-    priority 0
+    priority 1
+    # Priority is used for setting precedence of fetchers. And registry plugin(v1) decides which fetcher to use for loading profiles by using this priority
 
     def self.resolve(target)
       if target.is_a?(String)

data/lib/inspec/fetcher/mock.rb

@@ -6,9 +6,11 @@ module Inspec::Fetcher
     priority 0
 
     def self.resolve(target)
-      return nil unless target.is_a? Hash
-
-      new(target)
+      if (target.is_a? Hash) && ((target.keys & %i{cwd path backend}).empty?)
+        new(target)
+      else
+        nil
+      end
     end
 
     def initialize(data)

data/lib/inspec/resources.rb

@@ -71,6 +71,8 @@ require "inspec/resources/key_rsa"
 require "inspec/resources/ksh"
 require "inspec/resources/limits_conf"
 require "inspec/resources/login_defs"
+require "inspec/resources/mongodb"
+require "inspec/resources/mongodb_conf"
 require "inspec/resources/mount"
 require "inspec/resources/mssql_session"
 require "inspec/resources/mysql"

data/lib/inspec/resources/mongodb.rb

@@ -0,0 +1,65 @@
+module Inspec::Resources
+  class Mongodb < Inspec.resource(1)
+    name "mongodb"
+    supports platform: "unix"
+    supports platform: "windows"
+
+    desc "The 'mongodb' resource is a helper for the 'mongodb_conf' & 'mongodb_session' resources.  Please use those instead."
+
+    attr_reader :conf_path
+
+    def initialize
+      case inspec.os[:family]
+      when "debian", "fedora", "redhat", "linux", "suse"
+        init_linux
+      when "darwin"
+        init_macos
+      when "windows"
+        init_windows
+      end
+    end
+
+    def to_s
+      "MongoDB"
+    end
+
+    private
+
+    def init_linux
+      @conf_path = "/etc/mongod.conf"
+    end
+
+    def init_macos
+      @conf_path = "/usr/local/etc/mongod.conf"
+    end
+
+    def init_windows
+      dir = "C:\\Program Files\\MongoDB\\Server"
+      @version = version_from_dir(dir)
+      unless @version.to_s.empty?
+        @conf_path = "#{dir}\\#{@version}\\bin\\mongod.cfg"
+      end
+    end
+
+    def version_from_dir(dir)
+      dirs = inspec.command("Get-ChildItem -Path \"#{dir}\" -Name").stdout
+      entries = dirs.lines.count
+      case entries
+      when 0
+        warn "Could not determine version of installed MongoDB by inspecting #{dir}"
+        nil
+      when 1
+        dir_to_version(dirs)
+      else
+        warn "Multiple versions of MongoDB installed or incorrect base dir #{dir}"
+        first = dir_to_version(dirs.lines.first)
+        warn "Using the first version found: #{first}"
+        first
+      end
+    end
+
+    def dir_to_version(dir)
+      dir.chomp.split("/").last
+    end
+  end
+end

data/lib/inspec/resources/mongodb_conf.rb

@@ -0,0 +1,39 @@
+require "inspec/resources/json"
+require "inspec/resources/mongodb"
+
+module Inspec::Resources
+  class MongodbConf < JsonConfig
+    name "mongodb_conf"
+    supports platform: "unix"
+    supports platform: "windows"
+    desc "Use the mongodb_conf InSpec audit resource to test the contents of the configuration file for MongoDB, typically located at `/etc/mongod.conf` or `C:\\Program Files\\MongoDB\\Server\\<version>\\bin\\mongod.cfg`, depending on the platform."
+    example <<~EXAMPLE
+      describe mongodb_conf do
+        its(["storage", "dbPath"]) { should eq "/var/lib/mongodb" }
+        its(["net", "port"]) { should eq 27017 }
+      end
+    EXAMPLE
+
+    def initialize(conf_path = nil)
+      @conf_path = conf_path || inspec.mongodb.conf_path
+
+      if @conf_path.nil?
+        return skip_resource "MongoDB conf path is not set."
+      end
+
+      super(@conf_path)
+    end
+
+    private
+
+    def parse(content)
+      YAML.load(content)
+    rescue => e
+      raise Inspec::Exceptions::ResourceFailed, "Unable to parse `mongod.conf` or `mongod.cfg` file: #{e.message}"
+    end
+
+    def resource_base_name
+      "MongoDB Configuration"
+    end
+  end
+end

data/lib/inspec/resources/mysql_session.rb

@@ -44,10 +44,14 @@ module Inspec::Resources
       @port = port
       @socket = socket
       init_fallback if user.nil? || pass.nil?
-      skip_resource("Can't run MySQL SQL checks without authentication") if @user.nil? || @pass.nil?
+      raise Inspec::Exceptions::ResourceFailed, "Can't run MySQL SQL checks without authentication." if @user.nil? || @pass.nil?
+
+      test_connection
     end
 
     def query(q, db = "")
+      raise Inspec::Exceptions::ResourceFailed, "#{resource_exception_message}" if resource_failed?
+
       mysql_cmd = create_mysql_cmd(q, db)
       cmd = if !@pass.nil?
               inspec.command(mysql_cmd, redact_regex: /(mysql -u\w+ -p).+(\s-(h|S).*)/)
@@ -56,7 +60,7 @@ module Inspec::Resources
             end
       out = cmd.stdout + "\n" + cmd.stderr
       if cmd.exit_status != 0 || out =~ /Can't connect to .* MySQL server/ || out.downcase =~ /^error:.*/
-        Lines.new(out, "MySQL query with errors: #{q}", cmd.exit_status)
+        raise Inspec::Exceptions::ResourceFailed, "MySQL query with errors: #{out}"
       else
         Lines.new(cmd.stdout.strip, "MySQL query: #{q}", cmd.exit_status)
       end
@@ -68,6 +72,12 @@ module Inspec::Resources
 
     private
 
+    # Querying on the database to make sure conneciton can be established. If not this will set the resource exception
+    # message which we raise before querying on the database using mysql_session object.
+    def test_connection
+      query("select now()")
+    end
+
     def escape_string(query)
       Shellwords.escape(query)
     end

data/lib/inspec/resources/postgres_session.rb

@@ -45,14 +45,19 @@ module Inspec::Resources
       @pass = pass
       @host = host || "localhost"
       @port = port || 5432
+      raise Inspec::Exceptions::ResourceFailed, "Can't run PostgreSQL SQL checks without authentication." if @user.nil? || @pass.nil?
+
+      test_connection
     end
 
     def query(query, db = [])
+      raise Inspec::Exceptions::ResourceFailed, "#{resource_exception_message}" if resource_failed?
+
       psql_cmd = create_psql_cmd(query, db)
       cmd = inspec.command(psql_cmd, redact_regex: /(PGPASSWORD=').+(' psql .*)/)
       out = cmd.stdout + "\n" + cmd.stderr
       if cmd.exit_status != 0 || out =~ /could not connect to .*/ || out.downcase =~ /^error:.*/
-        Lines.new(out, "PostgreSQL query with errors: #{query}")
+        raise Inspec::Exceptions::ResourceFailed, "PostgreSQL query with errors: #{out}"
       else
         Lines.new(cmd.stdout.strip, "PostgreSQL query: #{query}")
       end
@@ -60,6 +65,10 @@ module Inspec::Resources
 
     private
 
+    def test_connection
+      query("select now()")
+    end
+
     def escaped_query(query)
       Shellwords.escape(query)
     end

data/lib/inspec/version.rb

@@ -1,3 +1,3 @@
 module Inspec
-  VERSION = "4.37.17".freeze
+  VERSION = "4.38.3".freeze
 end

data/lib/plugins/inspec-compliance/lib/inspec-compliance/api.rb

@@ -24,16 +24,8 @@ module InspecPlugins
       # the username of the account is used that is logged in
       def self.profiles(config, profile_filter = nil) # rubocop:disable Metrics/PerceivedComplexity, Metrics/CyclomaticComplexity, Metrics/AbcSize, Metrics/MethodLength
         owner = config["owner"] || config["user"]
-
-        # Chef Compliance
-        if is_compliance_server?(config)
-          url = "#{config["server"]}/user/compliance"
-        # Chef Automate2
-        elsif is_automate2_server?(config)
+        if is_automate2_server?(config)
           url = "#{config["server"]}/compliance/profiles/search"
-        # Chef Automate
-        elsif is_automate_server?(config)
-          url = "#{config["server"]}/profiles/#{owner}"
         else
           raise ServerConfigurationMissing
         end
@@ -45,12 +37,9 @@ module InspecPlugins
           id, ver = nil
         end
 
-        if is_automate2_server?(config)
-          body = { owner: owner, name: id }.to_json
-          response = InspecPlugins::Compliance::HTTP.post_with_headers(url, headers, body, config["insecure"])
-        else
-          response = InspecPlugins::Compliance::HTTP.get(url, headers, config["insecure"])
-        end
+        body = { owner: owner, name: id }.to_json
+        response = InspecPlugins::Compliance::HTTP.post_with_headers(url, headers, body, config["insecure"])
+
         data = response.body
         response_code = response.code
         case response_code
@@ -58,25 +47,12 @@ module InspecPlugins
           msg = "success"
           profiles = JSON.parse(data)
           # iterate over profiles
-          if is_compliance_server?(config)
-            mapped_profiles = []
-            profiles.values.each do |org|
-              mapped_profiles += org.values
-            end
-          # Chef Automate pre 0.8.0
-          elsif is_automate_server_pre_080?(config)
-            mapped_profiles = profiles.values.flatten
-          elsif is_automate2_server?(config)
-            mapped_profiles = []
-            profiles["profiles"].each do |p|
-              mapped_profiles << p
-            end
-          else
-            mapped_profiles = profiles.map do |e|
-              e["owner_id"] = owner
-              e
-            end
+
+          mapped_profiles = []
+          profiles["profiles"].each do |p|
+            mapped_profiles << p
           end
+
           # filter by name and version if they were specified in profile_filter
           mapped_profiles.select! do |p|
             (!ver || p["version"] == ver) && (!id || p["name"] == id)
@@ -120,26 +96,9 @@ module InspecPlugins
       end
 
       def self.upload(config, owner, profile_name, archive_path)
-        # Chef Compliance
-        if is_compliance_server?(config)
-          url = "#{config["server"]}/owners/#{owner}/compliance/#{profile_name}/tar"
-        # Chef Automate pre 0.8.0
-        elsif is_automate_server_pre_080?(config)
-          url = "#{config["server"]}/#{owner}"
-        elsif is_automate2_server?(config)
-          url = "#{config["server"]}/compliance/profiles?owner=#{owner}"
-        # Chef Automate
-        else
-          url = "#{config["server"]}/profiles/#{owner}"
-        end
-
+        url = "#{config["server"]}/compliance/profiles?owner=#{owner}"
         headers = get_headers(config)
-        if is_automate2_server?(config)
-          res = InspecPlugins::Compliance::HTTP.post_multipart_file(url, headers, archive_path, config["insecure"])
-        else
-          res = InspecPlugins::Compliance::HTTP.post_file(url, headers, archive_path, config["insecure"])
-        end
-
+        res = InspecPlugins::Compliance::HTTP.post_multipart_file(url, headers, archive_path, config["insecure"])
         [res.is_a?(Net::HTTPSuccess), res.body]
       end
 
@@ -210,16 +169,12 @@ module InspecPlugins
 
       def self.get_headers(config)
         token = get_token(config)
-        if is_automate_server?(config) || is_automate2_server?(config)
-          headers = { "chef-delivery-enterprise" => config["automate"]["ent"] }
-          if config["automate"]["token_type"] == "dctoken"
-            headers["x-data-collector-token"] = token
-          else
-            headers["chef-delivery-user"] = config["user"]
-            headers["chef-delivery-token"] = token
-          end
+        headers = { "chef-delivery-enterprise" => config["automate"]["ent"] }
+        if config["automate"]["token_type"] == "dctoken"
+          headers["x-data-collector-token"] = token
         else
-          headers = { "Authorization" => "Bearer #{token}" }
+          headers["chef-delivery-user"] = config["user"]
+          headers["chef-delivery-token"] = token
         end
         headers
       end
@@ -232,16 +187,7 @@ module InspecPlugins
       end
 
       def self.target_url(config, profile)
-        owner, id, ver = profile_split(profile)
-
-        return "#{config["server"]}/compliance/profiles/tar" if is_automate2_server?(config)
-        return "#{config["server"]}/owners/#{owner}/compliance/#{id}/tar" unless is_automate_server?(config)
-
-        if ver.nil?
-          "#{config["server"]}/profiles/#{owner}/#{id}/tar"
-        else
-          "#{config["server"]}/profiles/#{owner}/#{id}/version/#{ver}/tar"
-        end
+        "#{config["server"]}/compliance/profiles/tar"
       end
 
       def self.profile_split(profile)
@@ -260,33 +206,6 @@ module InspecPlugins
         uri.to_s.sub(%r{^compliance:\/\/}, "")
       end
 
-      def self.is_compliance_server?(config)
-        config["server_type"] == "compliance"
-      end
-
-      def self.is_automate_server_pre_080?(config)
-        # Automate versions before 0.8.x do not have a valid version in the config
-        return false unless config["server_type"] == "automate"
-
-        server_version_from_config(config).nil?
-      end
-
-      def self.is_automate_server_080_and_later?(config)
-        # Automate versions 0.8.x and later will have a "version" key in the config
-        # that is properly parsed out via server_version_from_config below
-        return false unless config["server_type"] == "automate"
-
-        !server_version_from_config(config).nil?
-      end
-
-      def self.is_automate2_server?(config)
-        config["server_type"] == "automate2"
-      end
-
-      def self.is_automate_server?(config)
-        config["server_type"] == "automate"
-      end
-
       def self.server_version_from_config(config)
         # Automate versions 0.8.x and later will have a "version" key in the config
         # that looks like: "version":{"api":"compliance","version":"0.8.24"}
@@ -296,87 +215,8 @@ module InspecPlugins
         config["version"]["version"]
       end
 
-      def self.determine_server_type(url, insecure)
-        if target_is_automate2_server?(url, insecure)
-          :automate2
-        elsif target_is_automate_server?(url, insecure)
-          :automate
-        elsif target_is_compliance_server?(url, insecure)
-          :compliance
-        else
-          Inspec::Log.debug("Could not determine server type using known endpoints")
-          nil
-        end
-      end
-
-      def self.target_is_automate2_server?(url, insecure)
-        automate_endpoint = "/dex/auth"
-        response = InspecPlugins::Compliance::HTTP.get(url + automate_endpoint, nil, insecure)
-        if response.code == "400"
-          Inspec::Log.debug(
-            "Received 400 from #{url}#{automate_endpoint} - " \
-            "assuming target is a #{AUTOMATE_PRODUCT_NAME}2 instance"
-          )
-          true
-        else
-          Inspec::Log.debug(
-            "Received #{response.code} from #{url}#{automate_endpoint} - " \
-            "assuming target is not an #{AUTOMATE_PRODUCT_NAME}2 instance"
-          )
-          false
-        end
-      end
-
-      def self.target_is_automate_server?(url, insecure)
-        automate_endpoint = "/compliance/version"
-        response = InspecPlugins::Compliance::HTTP.get(url + automate_endpoint, nil, insecure)
-        case response.code
-        when "401"
-          Inspec::Log.debug(
-            "Received 401 from #{url}#{automate_endpoint} - " \
-            "assuming target is a #{AUTOMATE_PRODUCT_NAME} instance"
-          )
-          true
-        when "200"
-          # Chef Automate currently returns 401 for `/compliance/version` but some
-          # versions of OpsWorks Chef Automate return 200 and a Chef Manage page
-          # when unauthenticated requests are received.
-          if response.body.include?("Are You Looking For the #{SERVER_PRODUCT_NAME}?")
-            Inspec::Log.debug(
-              "Received 200 from #{url}#{automate_endpoint} - " \
-              "assuming target is an #{AUTOMATE_PRODUCT_NAME} instance"
-            )
-            true
-          else
-            Inspec::Log.debug(
-              "Received 200 from #{url}#{automate_endpoint} " \
-              "but did not receive the Chef Manage page - " \
-              "assuming target is not a #{AUTOMATE_PRODUCT_NAME} instance"
-            )
-            false
-          end
-        else
-          Inspec::Log.debug(
-            "Received unexpected status code #{response.code} " \
-            "from #{url}#{automate_endpoint} - " \
-            "assuming target is not a #{AUTOMATE_PRODUCT_NAME} instance"
-          )
-          false
-        end
-      end
-
-      def self.target_is_compliance_server?(url, insecure)
-        # All versions of Chef Compliance return 200 for `/api/version`
-        compliance_endpoint = "/api/version"
-
-        response = InspecPlugins::Compliance::HTTP.get(url + compliance_endpoint, nil, insecure)
-        return false unless response.code == "200"
-
-        Inspec::Log.debug(
-          "Received 200 from #{url}#{compliance_endpoint} - " \
-          "assuming target is a #{AUTOMATE_PRODUCT_NAME} server"
-        )
-        true
+      def self.is_automate2_server?(config)
+        config["server_type"] == "automate2"
       end
     end
   end

data/lib/plugins/inspec-compliance/lib/inspec-compliance/api/login.rb

@@ -11,20 +11,10 @@ module InspecPlugins
         def login(options)
           raise ArgumentError, "Please specify a server using `#{EXEC_NAME} automate login https://SERVER` or `#{EXEC_NAME} compliance login https://SERVER`" unless options["server"]
 
+          options["server_type"] = "automate2"
           options["server"] = URI("https://#{options["server"]}").to_s if URI(options["server"]).scheme.nil?
 
-          options["server_type"] = InspecPlugins::Compliance::API.determine_server_type(options["server"], options["insecure"])
-
-          case options["server_type"]
-          when :automate2
-            Login::Automate2Server.login(options)
-          when :automate
-            Login::AutomateServer.login(options)
-          when :compliance
-            Login::ComplianceServer.login(options)
-          else
-            raise CannotDetermineServerType, "Unable to determine if #{options["server"]} is a #{AUTOMATE_PRODUCT_NAME} or #{COMPLIANCE_PRODUCT_NAME} server"
-          end
+          Login::Automate2Server.login(options)
         end
 
         module Automate2Server
@@ -48,7 +38,7 @@ module InspecPlugins
             config["user"] = options["user"]
             config["owner"] = options["user"]
             config["insecure"] = options["insecure"] || false
-            config["server_type"] = options["server_type"].to_s
+            config["server_type"] = options["server_type"]
             config["token"] = token
             config["version"] = "0"
 
@@ -69,133 +59,6 @@ module InspecPlugins
           end
         end
 
-        module AutomateServer
-          def self.login(options)
-            verify_thor_options(options)
-
-            options["url"] = options["server"] + "/compliance"
-            token = options["dctoken"] || options["token"]
-            success, msg = API::Login.authenticate_login(options)
-            success ? store_access_token(options, token) : msg
-          end
-
-          def self.store_access_token(options, token)
-            token_type = if options["token"]
-                           "usertoken"
-                         else
-                           "dctoken"
-                         end
-
-            config = InspecPlugins::Compliance::Configuration.new
-
-            config.clean
-
-            config["automate"] = {}
-            config["automate"]["ent"] = options["ent"]
-            config["automate"]["token_type"] = token_type
-            config["server"] = options["url"]
-            config["user"] = options["user"]
-            config["insecure"] = options["insecure"] || false
-            config["server_type"] = options["server_type"].to_s
-            config["token"] = token
-            config["version"] = InspecPlugins::Compliance::API.version(config)
-
-            config.store
-            API::Login.configuration_stored_message(config)
-          end
-
-          # Automate login requires `--ent`, `--user`, and either `--token` or `--dctoken`
-          def self.verify_thor_options(o)
-            error_msg = []
-
-            error_msg.push("Please specify a user using `--user='USER'`") if o["user"].nil?
-            error_msg.push("Please specify an enterprise using `--ent='automate'`") if o["ent"].nil?
-
-            if o["token"].nil? && o["dctoken"].nil?
-              error_msg.push("Please specify a token using `--token='AUTOMATE_TOKEN'` or `--dctoken='DATA_COLLECTOR_TOKEN'`")
-            end
-
-            raise ArgumentError, error_msg.join("\n") unless error_msg.empty?
-          end
-        end
-
-        module ComplianceServer
-          include Inspec::Dist
-
-          def self.login(options)
-            compliance_verify_thor_options(options)
-
-            options["url"] = options["server"] + "/api"
-
-            if options["user"] && options["token"]
-              success, msg = API::Login.authenticate_login(options)
-              success ? compliance_store_access_token(options, options["token"]) : msg
-            elsif options["user"] && options["password"]
-              compliance_login_user_pass(options)
-            elsif options["refresh_token"]
-              compliance_login_refresh_token(options)
-            end
-          end
-
-          def self.compliance_login_user_pass(options)
-            success, msg, token = InspecPlugins::Compliance::API.get_token_via_password(
-              options["url"],
-              options["user"],
-              options["password"],
-              options["insecure"]
-            )
-
-            raise msg unless success
-
-            compliance_store_access_token(options, token)
-          end
-
-          def self.compliance_login_refresh_token(options)
-            success, msg, token = InspecPlugins::Compliance::API.get_token_via_refresh_token(
-              options["url"],
-              options["refresh_token"],
-              options["insecure"]
-            )
-
-            raise msg unless success
-
-            compliance_store_access_token(options, token)
-          end
-
-          def self.compliance_store_access_token(options, token)
-            config = InspecPlugins::Compliance::Configuration.new
-            config.clean
-
-            config["user"] = options["user"] if options["user"]
-            config["server"] = options["url"]
-            config["insecure"] = options["insecure"] || false
-            config["server_type"] = options["server_type"].to_s
-            config["token"] = token
-            config["version"] = InspecPlugins::Compliance::API.version(config)
-
-            config.store
-            API::Login.configuration_stored_message(config)
-          end
-
-          # Compliance login requires `--user` or `--refresh_token`
-          # If `--user` then either `--password`, `--token`, or `--refresh-token`, is required
-          def self.compliance_verify_thor_options(o)
-            error_msg = []
-
-            error_msg.push("Please specify a server using `#{EXEC_NAME} automate login https://SERVER` or `#{EXEC_NAME} compliance login https://SERVER`") if o["server"].nil?
-
-            if o["user"].nil? && o["refresh_token"].nil?
-              error_msg.push("Please specify a `--user='USER'` or a `--refresh-token='TOKEN'`")
-            end
-
-            if o["user"] && o["password"].nil? && o["token"].nil? && o["refresh_token"].nil?
-              error_msg.push("Please specify either a `--password`, `--token`, or `--refresh-token`")
-            end
-
-            raise ArgumentError, error_msg.join("\n") unless error_msg.empty?
-          end
-        end
-
         def self.authenticate_login(options)
           InspecPlugins::Compliance::API.authenticate_login_using_version_api(
             options["url"],

data/lib/plugins/inspec-compliance/lib/inspec-compliance/cli.rb

@@ -13,10 +13,9 @@ module InspecPlugins
       long_desc <<-LONGDESC
         `login` allows you to use InSpec with #{AUTOMATE_PRODUCT_NAME} Server
 
-        You need to a token for communication. More information about token retrieval
+        You need to have a token for communication. More information about token retrieval
         is available at:
-          https://docs.chef.io/api_automate.html#authentication-methods
-          https://docs.chef.io/api_compliance.html#obtaining-an-api-token
+          https://docs.chef.io/automate/api_tokens
       LONGDESC
       option :insecure, aliases: :k, type: :boolean,
         desc: 'Explicitly allows InSpec to perform "insecure" SSL connections and transfers'

data/lib/plugins/inspec-compliance/lib/inspec-compliance/target.rb

@@ -32,16 +32,8 @@ module InspecPlugins
 
       def self.check_compliance_token(uri, config)
         if config["token"].nil? && config["refresh_token"].nil?
-          if config["server_type"] == "automate"
-            server = "automate"
-            msg = "#{EXEC_NAME} [automate|compliance] login https://your_automate_server --user USER --ent ENT --dctoken DCTOKEN or --token USERTOKEN"
-          elsif config["server_type"] == "automate2"
-            server = "automate2"
-            msg = "#{EXEC_NAME} [automate|compliance] login https://your_automate2_server --user USER --token APITOKEN"
-          else
-            server = "compliance"
-            msg = "#{EXEC_NAME} [automate|compliance] login https://your_compliance_server --user admin --insecure --token 'PASTE TOKEN HERE' "
-          end
+          server = "automate2"
+          msg = "#{EXEC_NAME} [automate|compliance] login https://your_automate2_server --user USER --token APITOKEN"
           raise Inspec::FetcherFailure, <<~EOF
 
             Cannot fetch #{uri} because your #{server} token has not been
@@ -119,19 +111,9 @@ module InspecPlugins
 
       # determine the owner_id and the profile name from the url
       def compliance_profile_name
-        m = if InspecPlugins::Compliance::API.is_automate_server_pre_080?(@config)
-              %r{^#{@config['server']}/(?<owner>[^/]+)/(?<id>[^/]+)/tar$}
-            elsif InspecPlugins::Compliance::API.is_automate_server_080_and_later?(@config)
-              %r{^#{@config['server']}/profiles/(?<owner>[^/]+)/(?<id>[^/]+)/tar$}
-            else
-              %r{^#{@config['server']}/owners/(?<owner>[^/]+)/compliance/(?<id>[^/]+)/tar$}
-            end.match(@target)
-
-        if InspecPlugins::Compliance::API.is_automate2_server?(@config)
-          m = {}
-          m[:owner] = @config["profile"][0]
-          m[:id] = @config["profile"][1]
-        end
+        m = {}
+        m[:owner] = @config["profile"][0]
+        m[:id] = @config["profile"][1]
 
         if m.nil?
           raise "Unable to determine compliance profile name. This can be caused by " \

data/lib/plugins/inspec-init/lib/inspec-init/cli_plugin.rb

@@ -17,7 +17,8 @@ module InspecPlugins
       option :description, type: :string, default: "", desc: "Multi-line description of the plugin"
       option :summary, type: :string, default: "A plugin with a default summary", desc: "One-line summary of your plugin"
       option :license_name, type: :string, default: "Apache-2.0", desc: "The name of a license"
-      option :hook, type: :array, default: ["cli_command:my_command"], desc: "A list of plugin hooks, in the form type1:name1, type2:name2, etc"
+      option :activator, type: :array, default: ["cli_command:my_command"], desc: "A list of plugin activators, in the form type1:name1, type2:name2, etc"
+      option :hook, type: :array, desc: "Legacy name for --activator - Deprecated."
       # These vars have calculated defaults
       option :homepage, type: :string, default: nil, desc: "A URL for your project, often a GitHub link"
       option :module_name, type: :string, default: nil, desc: "Module Name for your plugin package.  Will change plugin name to CamelCase by default."
@@ -29,6 +30,12 @@ module InspecPlugins
         plugin_type = determine_plugin_type(plugin_name)
         snake_case = plugin_name.tr("-", "_")
 
+        # Handle deprecation of option --hook
+        unless options[:hook].nil?
+          Inspec.deprecate "cli_option_hook"
+          options[:activator] = options.delete(:hook)
+        end
+
         template_vars = {
           name: plugin_name,
           plugin_name: plugin_name,
@@ -41,7 +48,7 @@ module InspecPlugins
           templates_path: TEMPLATES_PATH,
           overwrite: options[:overwrite],
           file_rename_map: make_rename_map(plugin_type, plugin_name, snake_case),
-          skip_files: make_skip_list(template_vars["hooks"].keys),
+          skip_files: make_skip_list(template_vars["activators"].keys),
         }
 
         renderer = InspecPlugins::Init::Renderer.new(ui, render_opts)
@@ -71,12 +78,15 @@ module InspecPlugins
         {
           "inspec-plugin-template.gemspec" => plugin_name + ".gemspec",
           File.join("lib", "inspec-plugin-template") => File.join("lib", plugin_name),
-          File.join("lib", "inspec-plugin-template.rb") => File.join("lib", plugin_name + ".rb"),
-          File.join("lib", "inspec-plugin-template", "cli_command.rb") => File.join("lib", plugin_name, "cli_command.rb"),
-          File.join("lib", "inspec-plugin-template", "reporter.rb") => File.join("lib", plugin_name, "reporter.rb"),
-          File.join("lib", "inspec-plugin-template", "plugin.rb") => File.join("lib", plugin_name, "plugin.rb"),
-          File.join("lib", "inspec-plugin-template", "version.rb") => File.join("lib", plugin_name, "version.rb"),
-          File.join("test", "functional", "inspec_plugin_template_test.rb") => File.join("test", "functional", snake_case + "_test.rb"),
+          File.join("lib", "inspec-plugin-template.erb") => File.join("lib", plugin_name + ".rb"),
+          File.join("lib", "inspec-plugin-template", "cli_command.erb") => File.join("lib", plugin_name, "cli_command.rb"),
+          File.join("lib", "inspec-plugin-template", "reporter.erb") => File.join("lib", plugin_name, "reporter.rb"),
+          File.join("lib", "inspec-plugin-template", "plugin.erb") => File.join("lib", plugin_name, "plugin.rb"),
+          File.join("lib", "inspec-plugin-template", "version.erb") => File.join("lib", plugin_name, "version.rb"),
+          File.join("test", "functional", "inspec_plugin_template_test.erb") => File.join("test", "functional", snake_case + "_test.rb"),
+          File.join("test", "unit", "cli_args_test.erb") => File.join("test", "unit", "cli_args_test.rb"),
+          File.join("test", "unit", "plugin_def_test.erb") => File.join("test", "unit", "plugin_def_test.rb"),
+          File.join("test", "helper.erb") => File.join("test", "helper.rb"),
         }
       end
 
@@ -93,7 +103,7 @@ module InspecPlugins
           ui.error("You requested interactive prompting for the template variables, but this does not seem to be an interactive terminal.")
           ui.exit(:usage_error)
         end
-        vars.merge(parse_hook_option(options[:hook]))
+        vars.merge(parse_activator_option(options[:activator]))
       end
 
       def vars_from_defaults
@@ -121,7 +131,7 @@ module InspecPlugins
             ],
           },
           homepage: { default_setter: proc { options[:homepage] ||= "https://github.com/" + options[:author_email].split("@").first + "/" + options[:plugin_name] } },
-          # TODO: Handle hooks, when we ever have more than one type of plugin
+          # TODO: Handle activators, when we ever have more than one type of plugin
         }
 
         prompt_for_options(order)
@@ -153,26 +163,26 @@ module InspecPlugins
         end
       end
 
-      def parse_hook_option(raw_option)
-        hooks_by_type = {}
+      def parse_activator_option(raw_option)
+        activators_by_type = {}
         raw_option.each do |entry|
           parts = entry.split(":")
           type = parts.first.to_sym
           name = parts.last
-          if hooks_by_type.key?(type)
-            ui.error "The InSpec plugin generator can currently only generate one hook of each type"
+          if activators_by_type.key?(type)
+            ui.error "The InSpec plugin generator can currently only generate one activator of each type"
             ui.exit(:usage_error)
           end
-          hooks_by_type[type] = name
+          activators_by_type[type] = name
         end
 
-        vars = { hooks: hooks_by_type }
-        if hooks_by_type.key?(:cli_command)
-          vars[:command_name_dashes] = hooks_by_type[:cli_command].tr("_", "-")
-          vars[:command_name_snake] = hooks_by_type[:cli_command].tr("-", "_")
-        elsif hooks_by_type.key?(:reporter)
-          vars[:reporter_name_dashes] = hooks_by_type[:reporter].tr("_", "-")
-          vars[:reporter_name_snake] = hooks_by_type[:reporter].tr("-", "_")
+        vars = { activators: activators_by_type }
+        if activators_by_type.key?(:cli_command)
+          vars[:command_name_dashes] = activators_by_type[:cli_command].tr("_", "-")
+          vars[:command_name_snake] = activators_by_type[:cli_command].tr("-", "_")
+        elsif activators_by_type.key?(:reporter)
+          vars[:reporter_name_dashes] = activators_by_type[:reporter].tr("_", "-")
+          vars[:reporter_name_snake] = activators_by_type[:reporter].tr("-", "_")
         end
         vars
       end
@@ -210,7 +220,7 @@ module InspecPlugins
         end
       end
 
-      def make_skip_list(requested_hooks)
+      def make_skip_list(requested_activators)
         skips = []
         case options[:detail]
         when "full" # rubocop: disable Lint/EmptyWhen
@@ -230,13 +240,13 @@ module InspecPlugins
             "Rakefile",
             File.join("test", "fixtures", "README.md"),
             File.join("test", "fixtures"),
-            File.join("test", "functional", "inspec_plugin_template_test.rb"),
+            File.join("test", "functional", "inspec_plugin_template_test.erb"),
             File.join("test", "functional", "README.md"),
-            File.join("test", "unit", "cli_args_test.rb"),
-            File.join("test", "unit", "plugin_def_test.rb"),
+            File.join("test", "unit", "cli_args_test.erb"),
+            File.join("test", "unit", "plugin_def_test.erb"),
             File.join("test", "unit", "README.md"),
             File.join("test", "unit"),
-            File.join("test", "helper.rb"),
+            File.join("test", "helper.erb"),
             File.join("test"),
           ]
         else
@@ -244,17 +254,17 @@ module InspecPlugins
           ui.exit(:usage_error)
         end
 
-        # Remove hook-specific files
-        unless requested_hooks.include?(:cli_command)
+        # Remove activator-specific files
+        unless requested_activators.include?(:cli_command)
           skips += [
-            File.join("lib", "inspec-plugin-template", "cli_command.rb"),
-            File.join("test", "unit", "cli_args_test.rb"),
-            File.join("test", "functional", "inspec_plugin_template_test.rb"),
+            File.join("lib", "inspec-plugin-template", "cli_command.erb"),
+            File.join("test", "unit", "cli_args_test.erb"),
+            File.join("test", "functional", "inspec_plugin_template_test.erb"),
           ]
         end
-        unless requested_hooks.include?(:reporter)
+        unless requested_activators.include?(:reporter)
           skips += [
-            File.join("lib", "inspec-plugin-template", "reporter.rb"),
+            File.join("lib", "inspec-plugin-template", "reporter.erb"),
           ]
         end
 

data/lib/plugins/inspec-init/lib/inspec-init/renderer.rb

@@ -65,6 +65,7 @@ module InspecPlugins
             # read & render content
             content = render(File.read(source_file), template_values)
             # write file content
+
             File.write(full_destination_item_path, content)
           else
             ui.warning "Ignoring #{ui.emphasis(source_file)}, because its not an file or directoy"

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/Gemfile

@@ -1,11 +1,11 @@
-source 'https://rubygems.org'
+source "https://rubygems.org"
 
 gemspec
 
 group :development do
-  gem 'bundler'
-  gem 'byebug'
-  gem 'minitest'
-  gem 'rake'
-  gem 'rubocop', '= 0.49.1' # Need to keep in sync with main InSpec project, so config files will work
+  gem "bundler"
+  gem "byebug"
+  gem "minitest"
+  gem "rake"
+  gem "rubocop", "= 0.49.1" # Need to keep in sync with main InSpec project, so config files will work
 end

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/Rakefile

@@ -7,13 +7,13 @@
 
 # This task template will make a task named 'test', and run
 # the tests that it finds.
-require 'rake/testtask'
+require "rake/testtask"
 
 Rake::TestTask.new do |t|
-  t.libs.push 'lib'
+  t.libs.push "lib"
   t.test_files = FileList[
-    'test/unit/*_test.rb',
-    'test/functional/*_test.rb',
+    "test/unit/*_test.rb",
+    "test/functional/*_test.rb",
   ]
   t.verbose = true
   # Ideally, we'd run tests with warnings enabled,
@@ -26,15 +26,15 @@ end
 #------------------------------------------------------------------#
 #                    Code Style Tasks
 #------------------------------------------------------------------#
-require 'rubocop/rake_task'
+require "rubocop/rake_task"
 
 RuboCop::RakeTask.new(:lint) do |t|
   # Choices of RuboCop rules to enforce are deeply personal.
   # Here, we set things up so that your plugin will use the Bundler-installed
   # inspec gem's copy of the InSpec project's rubocop.yml file (which
   # is indeed packaged with the inspec gem).
-  require 'inspec/globals'
-  inspec_rubocop_yml = File.join(Inspec.src_root, '.rubocop.yml')
+  require "inspec/globals"
+  inspec_rubocop_yml = File.join(Inspec.src_root, ".rubocop.yml")
 
-  t.options = ['--display-cop-names', '--config', inspec_rubocop_yml]
+  t.options = ["--display-cop-names", "--config", inspec_rubocop_yml]
 end

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/inspec-plugin-template.gemspec

@@ -4,23 +4,23 @@
 
 # It is traditional in a gemspec to dynamically load the current version
 # from a file in the source tree.  The next three lines make that happen.
-lib = File.expand_path('../lib', __FILE__)
+lib = File.expand_path("../lib", __FILE__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require '<%= plugin_name %>/version'
+require "<%= plugin_name %>/version"
 
 Gem::Specification.new do |spec|
   # Importantly, all InSpec plugins must be prefixed with `inspec-` (most
   # plugins) or `train-` (plugins which add new connectivity features).
-  spec.name          = '<%= plugin_name %>'
+  spec.name          = "<%= plugin_name %>"
 
   # It is polite to namespace your plugin under InspecPlugins::YourPluginInCamelCase
   spec.version       = InspecPlugins::<%= module_name %>::VERSION
-  spec.authors       = ['<%= author_name %>']
-  spec.email         = ['<%= author_email %>']
-  spec.summary       = '<%= summary %>'
-  spec.description   = '<%= description %>'
-  spec.homepage      = '<%= homepage %>'
-  spec.license       = '<%= license_name %>'
+  spec.authors       = ["<%= author_name %>"]
+  spec.email         = ["<%= author_email %>"]
+  spec.summary       = "<%= summary %>"
+  spec.description   = "<%= description.is_a?(Array) ? description.join(" "): description %>"
+  spec.homepage      = "<%= homepage %>"
+  spec.license       = "<%= license_name %>"
 
   # Though complicated-looking, this is pretty standard for a gemspec.
   # It just filters what will actually be packaged in the gem (leaving
@@ -28,9 +28,9 @@ Gem::Specification.new do |spec|
   spec.files = %w{
     README.md <%= snake_case %>.gemspec Gemfile
   } + Dir.glob(
-    'lib/**/*', File::FNM_DOTMATCH
+    "lib/**/*", File::FNM_DOTMATCH
   ).reject { |f| File.directory?(f) }
-  spec.require_paths = ['lib']
+  spec.require_paths = ["lib"]
 
   # If you rely on any other gems, list them here with any constraints.
   # This is how `inspec plugin install` is able to manage your dependencies.
@@ -39,5 +39,5 @@ Gem::Specification.new do |spec|
 
   # All plugins should mention inspec, > 2.2.78
   # 2.2.78 included the v2 Plugin API
-  spec.add_dependency 'inspec', '>=2.2.78', '<4.0.0'
+  spec.add_dependency "inspec", ">= 2.2.78", "< 4.0.0"
 end

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/{inspec-plugin-template.rb → inspec-plugin-template.erb}

@@ -11,4 +11,4 @@
 libdir = File.dirname(__FILE__)
 $LOAD_PATH.unshift(libdir) unless $LOAD_PATH.include?(libdir)
 
-require '<%= plugin_name %>/plugin'
+require "<%= plugin_name %>/plugin"

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/{cli_command.rb → cli_command.erb}

@@ -1,4 +1,4 @@
-require 'inspec/resource'
+require "inspec/resource"
 
 module InspecPlugins::<%= module_name %>
   # This class will provide the actual CLI implementation.
@@ -21,31 +21,31 @@ module InspecPlugins::<%= module_name %>
     # Note: if you want your command (or subcommand) to have dashes in it,
     # use underscores where you want a dash, and Thor will convert them.
     # Thor will fail to find a command that is directly named with dashes.
-    subcommand_desc '<%= command_name_snake %> [COMMAND]', 'Your Usage Message Here'
+    subcommand_desc "<%= command_name_snake %> [COMMAND]", "Your Usage Message Here"
 
     # The usual rhythm for a Thor CLI file is description, options, command method.
     # Thor just has you call DSL methods in sequence prior to each command.
 
     # Let's make a command, 'do_something'. This will then be available
-    # as `inspec <%= command_name_dashes %> do-something
+    # as `inspec <%= command_name_dashes %> do-something`
     # (Change this method name to be something sensible for your plugin.)
 
     # First, provide a usage / description. This will appear
     # in `inspec help <%= command_name_dashes %>`.
     # As this is a usage message, you should write the command as it should appear
     # to the user (if you want it to have dashes, use dashes)
-    desc 'do-something WHAT [OPTIONS]', 'Does something'
+    desc "do-something WHAT [OPTIONS]", "Does something"
 
     # Let's include an option, -s, to summarize
     # Refer to the Thors docs; there is a lot you can do here.
-    option :summary, desc: 'Include a total at the bottom', \
+    option :summary, desc: "Include a total at the bottom", \
                      type: :boolean, default: true, aliases: [:s]
 
-    # OK, now the actual method itself.  If you provide params, you're telling Thor that
+    # OK, now the actual method itself. If you provide params, you're telling Thor that
     # you accept CLI arguments after all options have been consumed.
     # Note again that the method name has an underscore, but when invoked
     # on the CLI, use a dash.
-    def do_something(what = 'nothing')
+    def do_something(what = "nothing")
       # The code here will *only* be executed if someone actually
       # runs `inspec <%= command_name_dashes %> do-something`.
 
@@ -55,7 +55,7 @@ module InspecPlugins::<%= module_name %>
       # Talk to the user using the `ui` object (see Inspec::UI)
       # ui.error('Whoops!')
 
-      ui.warning('This is a generated plugin with a default implementation.  Edit lib/<%= plugin_name %>/cli_command.rb to make it do what you want.')
+      ui.warning("This is a generated plugin with a default implementation.  Edit lib/<%= plugin_name %>/cli_command.rb to make it do what you want.")
       ui.exit(:success) # or :usage_error
     end
   end

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/{plugin.rb → plugin.erb}

@@ -1,49 +1,49 @@
 # Plugin Definition file
 # The purpose of this file is to declare to InSpec what plugin_types (capabilities)
-# are included in this plugin, and provide hooks that will load them as needed.
+# are included in this plugin, and provide activator that will load them as needed.
 
 # It is important that this file load successfully and *quickly*.
 # Your plugin's functionality may never be used on this InSpec run; so we keep things
 # fast and light by only loading heavy things when they are needed.
 
 # Presumably this is light
-require '<%= plugin_name %>/version'
+require "<%= plugin_name %>/version"
 
 # The InspecPlugins namespace is where all plugins should declare themselves.
-# The 'Inspec' capitalization is used throughout the InSpec source code; yes, it's
+# The "Inspec" capitalization is used throughout the InSpec source code; yes, it's
 # strange.
 module InspecPlugins
-  # Pick a reasonable namespace here for your plugin.  A reasonable choice
+  # Pick a reasonable namespace here for your plugin. A reasonable choice
   # would be the CamelCase version of your plugin gem name.
   # <%= plugin_name %> => <%= module_name %>
   module <%= module_name %>
     # This simple class handles the plugin definition, so calling it simply Plugin is OK.
     #   Inspec.plugin returns various Classes, intended to be superclasses for various
     # plugin components. Here, the one-arg form gives you the Plugin Definition superclass,
-    # which mainly gives you access to the hook / plugin_type DSL.
+    # which mainly gives you access to the activator / plugin_type DSL.
     #   The number '2' says you are asking for version 2 of the plugin API. If there are
     # future versions, InSpec promises plugin API v2 will work for at least two more InSpec
     # major versions.
     class Plugin < ::Inspec.plugin(2)
       # Internal machine name of the plugin. InSpec will use this in errors, etc.
-      plugin_name :'<%= plugin_name %>'
+      plugin_name :"<%= plugin_name %>"
 
-      <% if hooks[:cli_command] %>
+      <% if activators[:cli_command] %>
       # Define a new CLI subcommand.
       # The argument here will be used to match against the command line args,
-      # and if the user said `inspec list-resources`, this hook will get called.
-      # Notice that you can define multiple hooks with different names, and they
+      # and if the user said `inspec list-resources`, this activator will get called.
+      # Notice that you can define multiple activators with different names, and they
       # don't have to match the plugin name.
 
       # We'd like this to be list-resources, but Thor does not support hyphens
       # see https://github.com/erikhuda/thor/pull/613
       cli_command :<%= command_name_snake %> do
-        # Calling this hook doesn't mean the subcommand is being executed - just
+        # Calling this activator doesn't mean the subcommand is being executed - just
         # that we should be ready to do so. So, load the file that defines the
         # functionality.
-        # For example, InSpec will activate this hook when `inspec help` is
+        # For example, InSpec will activate this activator when `inspec help` is
         # executed, so that this plugin's usage message will be included in the help.
-        require '<%= plugin_name %>/cli_command'
+        require "<%= plugin_name %>/cli_command"
 
         # Having loaded our functionality, return a class that will let the
         # CLI engine tap into it.
@@ -51,15 +51,15 @@ module InspecPlugins
       end
       <% end %>
 
-      <% if hooks[:reporter] %>
+      <% if activators[:reporter] %>
       # Define a new Reporter.
       # The argument here will be used to match against the CLI --reporter option.
       # `--reporter <%= reporter_name_snake %>` will load your reporter and call its renderer.
       reporter :<%= reporter_name_snake %> do
-        # Calling this hook doesn't mean the reporter is being executed - just
+        # Calling this activator doesn't mean the reporter is being executed - just
         # that we should be ready to do so. So, load the file that defines the
         # functionality.
-        require '<%= plugin_name %>/reporter'
+        require "<%= plugin_name %>/reporter"
 
         # Having loaded our functionality, return a class that will let the
         # reporting engine tap into it.

data/lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/{version.rb → version.erb}

@@ -3,6 +3,6 @@
 # to learn the current version.
 module InspecPlugins
   module <%= module_name %>
-    VERSION = '0.1.0'.freeze
+    VERSION = "0.1.0".freeze
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec-core
 version: !ruby/object:Gem::Version
-  version: 4.37.17
+  version: 4.38.3
 platform: ruby
 authors:
 - Chef InSpec Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-05-19 00:00:00.000000000 Z
+date: 2021-06-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: chef-telemetry
@@ -554,6 +554,8 @@ files:
 - lib/inspec/resources/limits_conf.rb
 - lib/inspec/resources/linux_kernel_parameter.rb
 - lib/inspec/resources/login_defs.rb
+- lib/inspec/resources/mongodb.rb
+- lib/inspec/resources/mongodb_conf.rb
 - lib/inspec/resources/mount.rb
 - lib/inspec/resources/mssql_session.rb
 - lib/inspec/resources/mysql.rb
@@ -712,11 +714,11 @@ files:
 - lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/README.md
 - lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/Rakefile
 - lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/inspec-plugin-template.gemspec
-- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template.rb
-- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/cli_command.rb
-- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/plugin.rb
-- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/reporter.rb
-- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/version.rb
+- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template.erb
+- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/cli_command.erb
+- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/plugin.erb
+- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/reporter.erb
+- lib/plugins/inspec-init/templates/plugins/inspec-plugin-template/lib/inspec-plugin-template/version.erb
 - lib/plugins/inspec-init/templates/profiles/aws/README.md
 - lib/plugins/inspec-init/templates/profiles/aws/controls/example.rb
 - lib/plugins/inspec-init/templates/profiles/aws/inputs.yml